$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa File: 2E7B4F0CD45811EF908AFE44C4F9AE02.roa (raw, json) Hash identifier: S3+8DNkqu1goqREjsGkO1YtrwS4ggwnIUbsG5DF2wXA= Subject key identifier: FB:8B:A2:72:36:5F:80:29:4A:B1:F7:02:04:C8:B0:B6:A1:FE:3A:44 Certificate issuer: /CN=A91C6BB9/serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE Certificate serial: 06EE Authority key identifier: C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa Signing time: Thu 16 Jan 2025 22:21:08 +0000 ROA not before: Thu 16 Jan 2025 22:21:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17763 IP address blocks: 203.12.28.0/24 maxlen: 24 203.28.70.0/24 maxlen: 24 203.28.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 21:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BB9 Validity Not Before: Jan 16 22:21:07 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67898653-bffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4e:3a:bd:9f:be:94:7b:43:ac:15:5d:4f:15: 65:88:41:e8:f9:dc:5b:8f:50:cd:e5:28:79:58:f6: 43:47:e8:e8:42:21:16:27:c5:5e:8e:80:2f:d5:e9: 8c:59:09:c3:56:ee:e0:ec:da:07:3a:03:be:d4:3f: bc:c6:f8:a5:81:ff:ea:79:c8:fb:1a:09:34:2e:bb: 3a:76:b3:03:c0:6b:28:20:52:ec:29:6d:d7:fa:80: c1:51:9b:76:cf:0a:f7:4b:ab:91:25:d6:26:d3:a3: 50:7d:ab:e1:a7:5b:c3:05:97:75:79:9a:00:f3:3a: 70:0d:33:5c:66:ea:5e:cf:7f:4f:a2:eb:2b:df:21: 5b:c1:8d:c6:9c:bd:8c:d1:9b:2f:ec:bd:91:cc:11: a7:86:ce:ef:ed:18:90:39:42:f2:88:11:30:a1:f0: 26:3d:44:ad:85:9e:ea:9e:2e:2b:d7:a3:51:16:3e: 4a:35:db:d0:d8:3d:db:03:f8:29:de:bc:61:21:1d: c7:83:d2:43:70:ca:2e:ea:68:05:41:e4:0a:27:b5: 94:ff:48:ff:86:25:09:58:0d:ca:84:bf:33:e0:e4: c0:fe:3f:ca:2e:f9:54:46:8b:b9:91:7d:73:5e:1b: 0f:36:48:ea:0f:55:de:3b:29:a6:e4:f9:f1:5c:73: 3d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8B:A2:72:36:5F:80:29:4A:B1:F7:02:04:C8:B0:B6:A1:FE:3A:44 X509v3 Authority Key Identifier: keyid:C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.28.0/24 203.28.70.0/23 Signature Algorithm: sha256WithRSAEncryption 75:5f:4c:3c:36:3e:c7:aa:3c:1b:34:23:9e:52:c2:84:29:09: 8b:ab:1a:43:aa:cd:d6:25:26:c6:90:26:67:63:c4:c6:3c:ae: 5a:a5:64:e2:d4:af:79:89:b8:c6:69:a8:12:88:2e:59:6f:5f: e3:7a:c4:60:b9:06:4d:a9:8b:54:4e:ce:22:80:60:44:ef:9c: db:fe:3e:4f:7f:37:d1:7e:29:ba:37:5b:37:aa:ad:d7:07:49: fd:8f:7a:43:ad:fb:47:e9:60:df:7e:78:04:01:67:3a:39:81: 0a:a4:2d:21:67:93:d2:50:9f:99:b6:a7:31:22:bf:f9:d4:a2: d1:7e:6a:1c:de:b8:4d:5b:4a:b1:43:40:f8:d8:02:c0:8f:14: c4:ea:45:75:64:ba:6e:fb:ad:47:cc:3b:3e:ff:d1:e6:83:65: d5:f2:8e:3e:b7:34:fe:3b:96:bc:e3:b3:e4:63:1c:be:f4:d9: 36:6e:c0:ba:30:ed:e5:da:0b:36:1d:d7:a2:6c:3c:75:ec:fa: 63:a4:9c:4e:5a:b5:08:22:bb:93:b5:d7:4c:70:6e:8b:28:0c: d6:e8:63:84:da:dc:ac:9e:7a:d9:31:31:dc:d3:be:22:80:d3: a4:bf:ff:2d:96:5b:61:3c:45:be:1c:d6:9b:ad:7f:32:d3:45: 22:72:e2:54 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCQjkxMTAvBgNVBAUTKEM3OTExMkM3QzVBQzM2NTgzMjIxRDFGOTQ2NzUxOTZD MjEzNkVBQkUwHhcNMjUwMTE2MjIyMTA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg5ODY1My1iZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv046vZ++lHtDrBVdTxVliEHo+dxbj1DN5Sh5WPZDR+joQiEWJ8VejoAv1emM WQnDVu7g7NoHOgO+1D+8xvilgf/qecj7Ggk0Lrs6drMDwGsoIFLsKW3X+oDBUZt2 zwr3S6uRJdYm06NQfavhp1vDBZd1eZoA8zpwDTNcZupez39Pousr3yFbwY3GnL2M 0Zsv7L2RzBGnhs7v7RiQOULyiBEwofAmPUSthZ7qni4r16NRFj5KNdvQ2D3bA/gp 3rxhIR3Hg9JDcMou6mgFQeQKJ7WU/0j/hiUJWA3KhL8z4OTA/j/KLvlURou5kX1z XhsPNkjqD1XeOymm5PnxXHM9SwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPuLonI2 X4ApSrH3AgTIsLah/jpEMB8GA1UdIwQYMBaAFMeREsfFrDZYMiHR+UZ1GWwhNuq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJCOS82QkRFQUE3RTM5 MEMxMUVCQjIxODFENjNDNEY5QUUwMi94NUVTeDhXc05sZ3lJZEg1Um5VWmJDRTI2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1RVN4OFdzTmxneUlkSDVSblVaYkNFMjZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCQjkvNkJERUFBN0UzOTBDMTFFQkIyMTgxRDYzQzRGOUFFMDIvMkU3QjRGMENE NDU4MTFFRjkwOEFGRTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLDBwDBAHLHEYwDQYJKoZIhvcNAQELBQADggEBAHVfTDw2 PseqPBs0I55SwoQpCYurGkOqzdYlJsaQJmdjxMY8rlqlZOLUr3mJuMZpqBKILllv X+N6xGC5Bk2pi1ROziKAYETvnNv+Pk9/N9F+Kbo3WzeqrdcHSf2PekOt+0fpYN9+ eAQBZzo5gQqkLSFnk9JQn5m2pzEiv/nUotF+ahzeuE1bSrFDQPjYAsCPFMTqRXVk um77rUfMOz7/0eaDZdXyjj63NP47lrzjs+RjHL702TZuwLow7eXaCzYd16JsPHXs +mOknE5atQgiu5O110xwbosoDNboY4Ta3KyeetkxMdzTviKA06S//y2WW2E8Rb4c 1putfzLTRSJy4lQ= -----END CERTIFICATE-----Generated at Fri Apr 11 15:13:23 2025 by rpki-client