$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/AFA37450139811EA807F1A26C4F9AE02.roa File: AFA37450139811EA807F1A26C4F9AE02.roa (raw, json) Hash identifier: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ= Subject key identifier: A0:2C:D8:31:F9:CD:EE:95:D8:71:20:9C:96:77:D7:B3:47:27:00:0B Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1A3B Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/AFA37450139811EA807F1A26C4F9AE02.roa Signing time: Wed 08 Jan 2025 16:02:41 +0000 ROA not before: Wed 08 Jan 2025 16:02:41 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 24389 IP address blocks: 37.111.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 15:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6715 (0x1a3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Jan 8 16:02:41 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677ea1a1-e891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:78:c9:f5:8b:d4:54:fe:51:7d:85:8b:c7:9a: ea:34:11:2b:bc:74:19:cb:d1:76:95:a4:bf:46:76: 36:c9:ea:97:63:25:d4:92:e2:c3:ac:84:de:d4:0a: 51:39:9b:5b:74:db:8f:3b:97:47:d8:e6:86:6c:d1: 9c:28:47:e2:a0:88:a8:66:d4:59:7a:38:a7:b9:d5: 69:b6:af:c3:53:7f:88:dc:4e:49:f5:10:76:ad:42: 06:ec:af:b4:0c:a5:1f:ff:4b:c8:f3:47:b1:ed:95: 91:aa:7a:23:f1:2d:8c:dd:1a:c0:dd:1c:d2:12:2b: e1:e1:47:1e:56:2c:18:05:ec:b7:5c:a4:03:c9:64: 62:9b:7e:85:2b:32:6d:06:cb:de:89:d8:51:b3:4a: 97:ed:8f:17:dd:00:5e:52:4a:c5:8b:6c:02:c0:d1: a5:99:d5:4f:73:a9:71:20:f0:e6:82:72:90:dd:6b: 07:70:99:7b:3f:4e:0b:d1:3e:74:79:63:ee:75:fb: 2b:3c:da:1f:41:b8:46:c6:62:28:ef:45:81:59:b6: 68:b8:cd:1f:a7:f3:43:53:aa:da:70:7e:df:28:00: f3:8f:7d:77:8d:1a:f5:67:31:e3:c4:fa:3e:a5:00: 98:2c:8f:29:a8:1b:c9:51:52:44:f2:d7:0b:9e:0f: e8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:2C:D8:31:F9:CD:EE:95:D8:71:20:9C:96:77:D7:B3:47:27:00:0B X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/AFA37450139811EA807F1A26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 37.111.192.0/18 Signature Algorithm: sha256WithRSAEncryption 0c:66:1e:96:bd:cc:ff:63:e2:ad:25:0e:02:92:41:e4:02:19: 29:7e:f5:c3:81:c3:c9:9b:79:61:fc:c2:fb:6b:ed:33:62:d9: 63:8e:6d:e2:fe:1f:a1:21:0b:72:98:7d:61:d9:e0:f4:fc:f5: 64:a9:04:fe:2f:9d:33:7d:9f:ff:da:7b:39:23:08:6a:90:a2: 65:0d:c4:72:0c:d5:99:6d:ec:3e:de:66:25:47:f9:9d:c5:49: 32:7d:1f:d8:31:bf:b3:fc:6f:8d:9a:53:5d:1d:e4:89:7e:cc: d3:ed:c0:0d:10:77:2f:ac:46:10:0d:a2:8b:ee:e1:43:81:91: 5e:7f:5e:54:56:80:5f:90:fe:f6:a4:6a:45:93:3a:6d:33:b4: dd:b2:91:01:4a:65:49:5b:5a:99:1a:f5:ea:b5:1d:39:21:2c: f8:68:8b:b7:cd:b7:6b:05:28:60:ad:74:d1:20:49:85:f9:eb: bd:b6:5a:28:23:4d:e8:81:b5:8f:83:da:09:5a:21:96:58:88: 1c:c8:a7:d8:2e:19:b3:92:c3:05:ef:1c:40:dd:40:79:43:8f: 09:8c:a5:ac:09:ec:f1:c3:24:1f:8b:90:87:a7:73:08:d6:14: 45:cf:36:89:f9:8a:5a:6d:f1:95:14:1f:ed:ab:92:7c:81:37: 3b:c6:50:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjUwMTA4MTYwMjQxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlYTFhMS1lODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznjJ9YvUVP5RfYWLx5rqNBErvHQZy9F2laS/RnY2yeqXYyXUkuLDrITe1ApR OZtbdNuPO5dH2OaGbNGcKEfioIioZtRZejinudVptq/DU3+I3E5J9RB2rUIG7K+0 DKUf/0vI80ex7ZWRqnoj8S2M3RrA3RzSEivh4UceViwYBey3XKQDyWRim36FKzJt BsveidhRs0qX7Y8X3QBeUkrFi2wCwNGlmdVPc6lxIPDmgnKQ3WsHcJl7P04L0T50 eWPudfsrPNofQbhGxmIo70WBWbZouM0fp/NDU6racH7fKADzj313jRr1ZzHjxPo+ pQCYLI8pqBvJUVJE8tcLng/ohwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKAs2DH5 ze6V2HEgnJZ317NHJwALMB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNBNzQvNzUzRDcxRUUzQUI1MTFFN0I4NjA5RjFDQzRGOUFFMDIvQUZBMzc0NTAx Mzk4MTFFQTgwN0YxQTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAYlb8AwDQYJKoZIhvcNAQELBQADggEBAAxmHpa9zP9j4q0l DgKSQeQCGSl+9cOBw8mbeWH8wvtr7TNi2WOObeL+H6EhC3KYfWHZ4PT89WSpBP4v nTN9n//aezkjCGqQomUNxHIM1Zlt7D7eZiVH+Z3FSTJ9H9gxv7P8b42aU10d5Il+ zNPtwA0Qdy+sRhANoovu4UOBkV5/XlRWgF+Q/vakakWTOm0ztN2ykQFKZUlbWpka 9eq1HTkhLPhoi7fNt2sFKGCtdNEgSYX56722WigjTeiBtY+D2glaIZZYiBzIp9gu GbOSwwXvHEDdQHlDjwmMpawJ7PHDJB+LkIencwjWFEXPNon5ilpt8ZUUH+2rknyB NzvGUIE= -----END CERTIFICATE-----Generated at Tue Apr 15 07:32:45 2025 by rpki-client