$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/A1DFD796A65511EABDAED713C4F9AE02.roa File: A1DFD796A65511EABDAED713C4F9AE02.roa (raw, json) Hash identifier: vKmmh6WIOEqHjc9HRB9xmdHJEo2LxIyyZG3CXzn2ZyE= Subject key identifier: 3D:CB:FF:BE:C2:ED:EA:AC:36:E2:A8:BF:9C:AB:5B:A3:D1:97:5D:9E Certificate issuer: /CN=A91C9D04/serialNumber=7E67E88CC40378A970463DF2D0B06088E65DB9B0 Certificate serial: 08EB Authority key identifier: 7E:67:E8:8C:C4:03:78:A9:70:46:3D:F2:D0:B0:60:88:E6:5D:B9:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/A1DFD796A65511EABDAED713C4F9AE02.roa Signing time: Thu 06 Mar 2025 17:05:37 +0000 ROA not before: Thu 06 Mar 2025 17:05:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17981 IP address blocks: 202.131.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.crl rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2283 (0x8eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D04 Validity Not Before: Mar 6 17:05:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c9d5e0-a979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:67:6d:76:a7:a3:16:a9:da:91:52:b0:74:62: 63:8d:5b:11:5d:04:f5:8c:b1:a1:ce:50:d9:20:22: cd:d1:aa:17:9d:00:d4:37:27:fa:56:13:2d:8b:bb: b6:d1:31:f4:ba:57:c4:65:20:e2:7a:32:88:fe:5a: 5a:08:bc:95:9a:a7:fb:d4:d5:03:02:46:cc:b9:a6: 0b:70:30:ff:69:9f:0e:9f:3d:b0:18:ef:22:fe:92: e4:08:50:fd:0e:c8:af:27:6d:5b:23:48:d0:94:73: da:45:00:5f:c0:ed:c7:a9:fe:6e:f8:7e:b3:a6:b1: ef:55:af:fb:bf:d8:dc:9a:bd:30:12:ce:8c:71:e0: 23:bf:f2:8a:98:17:47:a3:95:a2:9c:cb:6a:00:15: dc:a9:3f:d2:52:cc:80:4c:e1:19:cb:8e:63:22:9e: ef:35:36:fb:b0:17:86:57:29:c4:04:f4:50:66:4a: 5a:80:14:af:b1:ba:9e:05:ad:2e:13:4a:72:bf:30: eb:87:b8:06:ee:00:34:f7:38:f7:3e:92:d5:ab:9e: 57:67:6d:e2:1a:24:62:bb:31:c1:31:59:34:5a:7d: 13:17:24:b8:83:66:27:0a:eb:0d:9d:da:67:8f:43: 72:f6:11:71:7c:fe:fc:b8:42:d1:bc:14:da:70:d5: a2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:CB:FF:BE:C2:ED:EA:AC:36:E2:A8:BF:9C:AB:5B:A3:D1:97:5D:9E X509v3 Authority Key Identifier: keyid:7E:67:E8:8C:C4:03:78:A9:70:46:3D:F2:D0:B0:60:88:E6:5D:B9:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/A1DFD796A65511EABDAED713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.131.80.0/21 Signature Algorithm: sha256WithRSAEncryption 55:8d:6f:bc:d7:07:be:61:72:7e:69:d4:66:11:d2:8d:03:12: ff:4e:18:d3:b2:79:21:7c:c8:e9:bb:60:71:41:3f:eb:8b:75: 28:11:9a:c9:15:39:11:94:a4:2a:11:c8:4e:d3:ee:a3:b6:c4: 6f:01:c1:70:3b:ed:b5:bc:74:cc:71:e6:85:3f:7b:b4:21:e8: fe:4a:ca:ab:19:1f:af:e4:6e:33:5c:1f:72:7b:96:2c:9f:a2: 02:7f:44:69:c0:d6:03:b6:38:42:94:f7:c8:60:ec:c6:c9:85: d5:96:a2:41:fc:21:7c:94:f7:35:0d:b2:6c:9b:2f:a5:04:a2: 68:2b:26:05:99:ec:ec:ee:ef:00:33:f5:ce:d0:3c:8a:4f:5d: 19:08:85:07:93:6d:43:91:3d:8b:a8:ee:98:1a:5d:65:47:02: 67:a3:d7:46:9c:59:92:4d:91:88:e8:9b:66:c2:f2:7e:8d:96: 55:be:87:54:70:d4:a6:dd:c7:02:78:71:05:da:0f:72:a8:d4: 0b:3f:03:4b:5a:f7:b3:4c:36:f8:b1:b5:c8:99:3a:61:80:07: b4:a5:d5:07:e5:be:46:86:80:34:c6:05:b3:36:ed:a9:84:5f: 45:95:22:56:07:c6:ce:e1:21:92:26:50:b7:50:f7:5c:07:06: 79:cd:c4:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlEMDQxMTAvBgNVBAUTKDdFNjdFODhDQzQwMzc4QTk3MDQ2M0RGMkQwQjA2MDg4 RTY1REI5QjAwHhcNMjUwMzA2MTcwNTM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M5ZDVlMC1hOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWdtdqejFqnakVKwdGJjjVsRXQT1jLGhzlDZICLN0aoXnQDUNyf6VhMti7u2 0TH0ulfEZSDiejKI/lpaCLyVmqf71NUDAkbMuaYLcDD/aZ8Onz2wGO8i/pLkCFD9 DsivJ21bI0jQlHPaRQBfwO3Hqf5u+H6zprHvVa/7v9jcmr0wEs6MceAjv/KKmBdH o5WinMtqABXcqT/SUsyATOEZy45jIp7vNTb7sBeGVynEBPRQZkpagBSvsbqeBa0u E0pyvzDrh7gG7gA09zj3PpLVq55XZ23iGiRiuzHBMVk0Wn0TFyS4g2YnCusNndpn j0Ny9hFxfP78uELRvBTacNWiJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD3L/77C 7eqsNuKov5yrW6PRl12eMB8GA1UdIwQYMBaAFH5n6IzEA3ipcEY98tCwYIjmXbmw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQwNC83MTY2RjM4RTIz NUMxMUU4ODgxMjkyM0ZDNEY5QUUwMi9mbWZvak1RRGVLbHdSajN5MExCZ2lPWmR1 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZtZm9qTVFEZUtsd1JqM3kwTEJnaU9aZHViQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlEMDQvNzE2NkYzOEUyMzVDMTFFODg4MTI5MjNGQzRGOUFFMDIvQTFERkQ3OTZB NjU1MTFFQUJEQUVENzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKg1AwDQYJKoZIhvcNAQELBQADggEBAFWNb7zXB75hcn5p 1GYR0o0DEv9OGNOyeSF8yOm7YHFBP+uLdSgRmskVORGUpCoRyE7T7qO2xG8BwXA7 7bW8dMxx5oU/e7Qh6P5KyqsZH6/kbjNcH3J7liyfogJ/RGnA1gO2OEKU98hg7MbJ hdWWokH8IXyU9zUNsmybL6UEomgrJgWZ7Ozu7wAz9c7QPIpPXRkIhQeTbUORPYuo 7pgaXWVHAmej10acWZJNkYjom2bC8n6NllW+h1Rw1KbdxwJ4cQXaD3Ko1As/A0ta 97NMNvixtciZOmGAB7Sl1QflvkaGgDTGBbM27amEX0WVIlYHxs7hIZImULdQ91wH BnnNxA4= -----END CERTIFICATE-----Generated at Fri Apr 11 19:44:30 2025 by rpki-client