$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/9B1ABC54486111E8AA9B1B45C4F9AE02.roa File: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (raw, json) Hash identifier: Ms90FxESevmJJSUHqdATBiDii797QEYyZU7sr0gTu+4= Subject key identifier: 13:0E:70:94:CD:5B:2B:24:91:B7:6F:B8:24:7D:42:82:24:32:EE:FD Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 213D Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/9B1ABC54486111E8AA9B1B45C4F9AE02.roa Signing time: Fri 28 Mar 2025 16:24:45 +0000 ROA not before: Fri 28 Mar 2025 16:24:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58621 IP address blocks: 43.243.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8509 (0x213d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F Validity Not Before: Mar 28 16:24:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e6cd4c-1526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d0:9e:82:76:46:b7:1c:6a:75:7c:ba:b0:07: ac:4f:09:94:20:99:1f:8f:63:e0:90:a4:25:c1:13: 99:9a:72:1a:05:a2:71:18:28:60:8a:35:71:8a:a1: 5b:59:fb:43:8a:6a:10:18:73:ef:64:69:9c:4b:33: 9b:63:71:3d:ba:68:37:5f:cf:39:43:97:9d:52:05: 12:44:65:a9:f4:29:86:59:7d:98:1b:92:3b:8b:45: 60:c7:60:d7:0c:2a:8c:2f:bd:6e:73:04:83:32:15: a4:fb:28:37:8b:05:0c:df:e1:53:96:fd:a8:b2:76: 06:de:0a:73:ed:67:7d:95:24:9c:93:2c:05:be:0a: 60:c8:49:a8:21:bd:49:62:ea:dd:57:d6:3b:aa:6c: 20:0e:ff:08:a2:f3:8b:ac:da:e8:d6:b3:cc:85:71: 80:22:1d:a2:94:6b:e3:68:15:30:1e:6a:e0:5f:72: 1d:4b:c8:61:45:8c:d8:03:f4:07:b4:22:be:79:63: af:c6:b9:8d:5b:76:32:63:3e:0e:06:af:75:fc:0f: 58:50:90:60:e6:fc:b4:80:b1:de:bb:2e:ce:d7:12: dd:75:85:52:e1:e4:97:9e:b4:05:b7:9e:89:9b:02: d2:e1:35:88:bb:2f:00:4a:c3:7e:fe:0f:99:a8:da: ba:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0E:70:94:CD:5B:2B:24:91:B7:6F:B8:24:7D:42:82:24:32:EE:FD X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/9B1ABC54486111E8AA9B1B45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.118.0/24 Signature Algorithm: sha256WithRSAEncryption eb:37:9a:fe:d3:2a:41:5c:65:7b:8d:43:92:7e:e9:f5:16:61: 84:d5:a5:97:f9:58:c8:d7:e9:43:0f:c8:a2:43:41:dc:ce:bf: b7:9a:d3:8d:ab:3b:35:16:d9:c5:df:3f:4e:4a:13:05:a2:80: 10:8f:56:cb:25:59:d7:f1:06:28:da:16:76:2c:87:b7:e2:ac: 00:e1:85:40:1a:52:8d:21:bd:4e:e6:e7:8b:e0:51:ec:77:15: d2:62:61:c6:b0:0f:75:f6:e9:ff:f9:d3:db:12:c9:06:e0:94: 50:54:37:c0:68:9f:20:d8:49:f2:a3:5b:fa:10:59:ed:72:7d: 6c:e4:83:de:03:5b:03:0a:52:b5:b4:17:77:80:5d:0b:1e:bd: 61:92:2b:98:c9:35:1f:9b:2e:54:65:c6:cc:de:06:9d:28:9e: 6b:e6:76:fd:d5:ef:74:07:9c:af:14:5e:b7:4f:83:c3:e2:5f: b8:54:2e:ce:79:5e:7b:a5:c2:66:6f:c4:f0:ed:f9:e6:15:07: 9a:9a:5a:bf:02:ae:c7:dd:23:e7:77:d3:a5:53:b1:83:ae:ce: 0f:ae:81:ed:f6:68:cb:d4:7e:1e:f3:57:e0:c1:f5:c3:69:b7: be:dc:1d:1a:9b:16:17:ff:11:fb:9b:80:09:75:2e:2d:47:79: 03:ba:5e:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUwMzI4MTYyNDQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U2Y2Q0Yy0xNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9CegnZGtxxqdXy6sAesTwmUIJkfj2PgkKQlwROZmnIaBaJxGChgijVxiqFb WftDimoQGHPvZGmcSzObY3E9umg3X885Q5edUgUSRGWp9CmGWX2YG5I7i0Vgx2DX DCqML71ucwSDMhWk+yg3iwUM3+FTlv2osnYG3gpz7Wd9lSSckywFvgpgyEmoIb1J YurdV9Y7qmwgDv8IovOLrNro1rPMhXGAIh2ilGvjaBUwHmrgX3IdS8hhRYzYA/QH tCK+eWOvxrmNW3YyYz4OBq91/A9YUJBg5vy0gLHeuy7O1xLddYVS4eSXnrQFt56J mwLS4TWIuy8ASsN+/g+ZqNq6YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBMOcJTN WyskkbdvuCR9QoIkMu79MB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyN0YvOUMzMjU2QTJFOThGMTFFNUIyQURDNTY3QzRGOUFFMDIvOUIxQUJDNTQ0 ODYxMTFFOEFBOUIxQjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr83YwDQYJKoZIhvcNAQELBQADggEBAOs3mv7TKkFcZXuN Q5J+6fUWYYTVpZf5WMjX6UMPyKJDQdzOv7ea042rOzUW2cXfP05KEwWigBCPVssl WdfxBijaFnYsh7firADhhUAaUo0hvU7m54vgUex3FdJiYcawD3X26f/509sSyQbg lFBUN8BonyDYSfKjW/oQWe1yfWzkg94DWwMKUrW0F3eAXQsevWGSK5jJNR+bLlRl xszeBp0onmvmdv3V73QHnK8UXrdPg8PiX7hULs55XnulwmZvxPDt+eYVB5qaWr8C rsfdI+d306VTsYOuzg+uge32aMvUfh7zV+DB9cNpt77cHRqbFhf/EfubgAl1Li1H eQO6Xow= -----END CERTIFICATE-----Generated at Sat Apr 5 02:22:40 2025 by rpki-client