$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E14BDC8EF3EE11ECBAE10054C4F9AE02.roa File: E14BDC8EF3EE11ECBAE10054C4F9AE02.roa (raw, json) Hash identifier: gP1rmRhgK5le3CICuUOYmVhhDItIyOhZ8RIHh+3gkE8= Subject key identifier: AF:AB:9B:21:E2:B9:11:B2:93:BD:50:99:5E:0E:20:F0:F2:8A:BE:BA Certificate issuer: /CN=A91C5B46/serialNumber=56CD32D13F8CAE1E92F9C97F395F1A23ABB9C6F7 Certificate serial: 25B3 Authority key identifier: 56:CD:32:D1:3F:8C:AE:1E:92:F9:C9:7F:39:5F:1A:23:AB:B9:C6:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E14BDC8EF3EE11ECBAE10054C4F9AE02.roa Signing time: Wed 12 Mar 2025 15:42:52 +0000 ROA not before: Wed 12 Mar 2025 15:42:52 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38468 IP address blocks: 123.136.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.crl rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9651 (0x25b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5B46 Validity Not Before: Mar 12 15:42:52 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67d1ab7c-f49f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:dc:4c:6e:be:28:7c:ba:41:a8:5e:00:af:dd: 50:c3:31:ee:35:86:b7:6f:52:1b:f9:86:32:3d:82: c6:01:01:21:4d:cb:4e:48:74:e4:af:76:c7:9d:f4: 44:93:8c:80:51:01:df:9d:9f:c4:97:88:b6:c2:a5: 69:ab:59:09:91:6b:fa:8d:bc:f8:e0:c2:62:ed:ca: e8:46:28:99:92:46:0d:22:25:ed:9c:ed:83:6a:55: 17:ad:84:cd:00:6a:3f:ae:6c:81:cd:ed:b5:4b:ed: 5c:42:cf:0e:cc:80:8d:34:66:68:a9:ea:e7:f4:3a: b8:83:2d:bf:4d:cd:49:35:87:f3:57:90:53:3d:b4: 36:89:88:ea:b1:58:d8:9a:f5:21:7b:d6:c6:fb:4e: ed:89:76:0c:9c:30:8f:1c:8f:ae:06:11:73:9b:02: 92:cc:e7:14:79:2a:9e:51:bf:7c:4b:0d:46:92:7f: a0:1d:59:e1:f8:19:b7:94:f5:73:8f:55:06:1c:71: cc:18:9a:02:09:eb:37:fe:4d:f1:5a:2c:f9:9c:f3: 35:e9:77:6e:52:1d:e2:8e:05:a0:78:f2:8b:3b:34: b9:c2:57:7e:b4:d8:83:21:42:52:f0:56:9b:d9:b5: 80:c9:94:50:45:8c:fb:3a:b4:52:6d:7c:55:d8:ea: b8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:AB:9B:21:E2:B9:11:B2:93:BD:50:99:5E:0E:20:F0:F2:8A:BE:BA X509v3 Authority Key Identifier: keyid:56:CD:32:D1:3F:8C:AE:1E:92:F9:C9:7F:39:5F:1A:23:AB:B9:C6:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E14BDC8EF3EE11ECBAE10054C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.136.16.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:b4:38:2e:23:b3:6c:50:49:0e:71:dc:b2:94:31:df:26:66: d3:20:93:27:fb:88:b5:39:5c:9c:73:d3:e0:15:88:a3:50:24: 74:af:eb:9f:de:17:c5:83:fb:6f:f3:da:5d:a2:f3:51:c9:f6: 5f:5e:3e:7e:dc:20:a2:9e:59:72:c0:53:71:f9:98:c9:4a:de: d5:eb:92:0f:c2:b1:5f:d3:fe:30:ab:e7:17:76:2d:9a:54:fb: 0c:74:43:84:a0:65:f1:92:5e:c8:31:69:3c:56:8e:65:91:29: 3e:81:b8:06:2e:c1:7e:01:ad:07:f5:c6:3e:7e:93:76:4f:33: 86:d3:90:10:5a:61:db:d5:15:b0:f3:4f:b8:e7:8d:90:de:8e: 08:d1:24:1f:10:63:2c:b7:40:47:ec:8d:52:f3:80:4c:b8:d6: c7:ad:7f:9b:3b:8c:ad:ef:15:07:77:40:e2:b0:f4:03:66:2a: 6d:c6:cc:d3:61:90:f1:58:70:da:48:69:dc:01:ff:a3:bc:04: 27:fa:ba:ee:c8:f5:ae:ae:26:9a:8f:bb:4a:3c:b7:d4:cb:fd: 6c:94:22:68:36:99:cf:9d:f9:c0:e5:ba:3c:d0:9a:95:38:e8: a8:c0:e7:4e:29:2a:62:45:9a:93:34:e4:99:22:a6:86:44:b9: 30:37:0a:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVCNDYxMTAvBgNVBAUTKDU2Q0QzMkQxM0Y4Q0FFMUU5MkY5Qzk3RjM5NUYxQTIz QUJCOUM2RjcwHhcNMjUwMzEyMTU0MjUyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QxYWI3Yy1mNDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtxMbr4ofLpBqF4Ar91QwzHuNYa3b1Ib+YYyPYLGAQEhTctOSHTkr3bHnfRE k4yAUQHfnZ/El4i2wqVpq1kJkWv6jbz44MJi7croRiiZkkYNIiXtnO2DalUXrYTN AGo/rmyBze21S+1cQs8OzICNNGZoqern9Dq4gy2/Tc1JNYfzV5BTPbQ2iYjqsVjY mvUhe9bG+07tiXYMnDCPHI+uBhFzmwKSzOcUeSqeUb98Sw1Gkn+gHVnh+Bm3lPVz j1UGHHHMGJoCCes3/k3xWiz5nPM16XduUh3ijgWgePKLOzS5wld+tNiDIUJS8Fab 2bWAyZRQRYz7OrRSbXxV2Oq4FwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK+rmyHi uRGyk71QmV4OIPDyir66MB8GA1UdIwQYMBaAFFbNMtE/jK4ekvnJfzlfGiOrucb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUI0Ni9CQTBCODQzMDAy ODgxMUU1QUUxRTQ3NjFDNEY5QUUwMi9WczB5MFQtTXJoNlMtY2xfT1Y4YUk2dTV4 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZzMHkwVC1Ncmg2Uy1jbF9PVjhhSTZ1NXh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzVCNDYvQkEwQjg0MzAwMjg4MTFFNUFFMUU0NzYxQzRGOUFFMDIvRTE0QkRDOEVG M0VFMTFFQ0JBRTEwMDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN7iBAwDQYJKoZIhvcNAQELBQADggEBAFy0OC4js2xQSQ5x 3LKUMd8mZtMgkyf7iLU5XJxz0+AViKNQJHSv65/eF8WD+2/z2l2i81HJ9l9ePn7c IKKeWXLAU3H5mMlK3tXrkg/CsV/T/jCr5xd2LZpU+wx0Q4SgZfGSXsgxaTxWjmWR KT6BuAYuwX4BrQf1xj5+k3ZPM4bTkBBaYdvVFbDzT7jnjZDejgjRJB8QYyy3QEfs jVLzgEy41setf5s7jK3vFQd3QOKw9ANmKm3GzNNhkPFYcNpIadwB/6O8BCf6uu7I 9a6uJpqPu0o8t9TL/WyUImg2mc+d+cDlujzQmpU46KjA504pKmJFmpM05JkipoZE uTA3Cnc= -----END CERTIFICATE-----Generated at Sat Apr 5 07:08:28 2025 by rpki-client