$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/624A8CB0A75211EDB46F8967C4F9AE02.roa File: 624A8CB0A75211EDB46F8967C4F9AE02.roa (raw, json) Hash identifier: H2lEK0K0kQYeTrVqMlmr1093uk7p/5P20OC6SGdaiQI= Subject key identifier: 90:22:BA:0F:A9:F7:A1:BF:A4:67:C7:10:A4:C4:A8:7B:71:84:D1:37 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0EAF Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/624A8CB0A75211EDB46F8967C4F9AE02.roa Signing time: Tue 14 Jan 2025 18:16:12 +0000 ROA not before: Tue 14 Jan 2025 18:16:12 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 131094 IP address blocks: 210.57.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3759 (0xeaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0 Validity Not Before: Jan 14 18:16:12 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786a9ec-00b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:b6:a8:2a:f1:2d:45:2f:2c:4a:fc:4a:27: e4:65:48:72:07:6a:73:6a:a3:72:69:64:c8:c3:f9: 9b:2b:d5:68:d1:47:d4:66:52:32:6d:46:6e:6c:d3: 45:0c:8c:17:ba:2a:b5:f7:f7:13:c0:71:39:21:dd: 0d:eb:1d:c9:8f:16:5d:1b:8e:fc:c0:03:09:01:e6: 35:ca:03:10:7a:92:4b:d5:d7:16:e3:e8:e5:2b:eb: eb:f3:30:74:ff:cf:4c:1c:cf:45:55:1f:98:d6:43: 83:3b:32:ca:e9:cc:de:3c:8f:86:50:d4:97:3f:eb: 4b:21:ea:59:a9:69:27:97:78:78:ed:30:64:ca:19: 46:e1:23:97:5f:f8:29:a4:e3:ec:b5:cb:48:65:e1: 1e:3b:08:b3:5a:7f:29:93:c3:20:84:77:f2:8b:d5: e5:82:35:91:fb:94:93:c5:1d:28:21:9f:8c:20:02: 6a:aa:27:13:4c:45:57:49:43:eb:a3:52:85:58:c9: 87:71:bf:62:95:21:bc:cb:42:49:7d:78:bd:d0:c6: 82:00:53:64:76:3d:54:bb:92:22:18:3a:1f:52:c8: ff:0e:b7:28:6f:b3:ff:f1:db:8c:8a:ff:22:d3:74: 65:4c:3f:fd:3a:cb:e2:33:b3:5d:62:7e:dc:b5:c4: bd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:22:BA:0F:A9:F7:A1:BF:A4:67:C7:10:A4:C4:A8:7B:71:84:D1:37 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/624A8CB0A75211EDB46F8967C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.57.74.0/24 Signature Algorithm: sha256WithRSAEncryption a1:35:33:17:61:2d:40:f6:b8:78:21:23:29:dc:7e:aa:20:81: d3:58:96:f2:42:f4:35:b7:e5:a4:45:23:d1:4d:b4:70:2f:31: 43:e4:4d:31:03:49:f7:23:56:ee:19:f1:c0:55:6a:c2:69:09: 06:71:51:4d:5f:6e:42:9b:27:0f:83:97:d0:73:99:10:a9:c0: 47:74:e3:25:c3:d8:41:b4:fb:9e:0c:52:4b:98:0b:00:5a:46: e9:36:86:cc:de:db:05:ee:7c:31:01:a5:d5:09:0d:8c:16:4c: eb:75:cc:e9:bc:fb:c5:b4:d3:35:62:a4:27:bd:1b:bf:4c:9c: ab:ce:90:5a:ac:f9:07:3c:f9:32:e9:af:69:4c:a8:1a:35:fc: 36:e1:1c:cd:4d:e9:cd:71:e1:83:ff:4a:35:ba:26:53:47:ae: 58:85:65:48:08:cf:5f:a4:33:92:1c:42:36:bf:31:b3:fc:fd: 03:a6:1f:53:42:1b:31:a3:00:a8:92:5f:10:45:e6:66:81:c0: cd:05:5a:72:d2:83:27:49:65:c2:e4:af:fd:14:c8:4c:3c:69: c2:e1:f8:1a:e0:4a:26:92:37:60:ec:55:82:80:75:4b:66:d9: d5:9a:2c:c1:9f:d9:38:f1:fb:f7:79:31:d7:50:f1:e8:01:2a: 95:bf:bd:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjUwMTE0MTgxNjEyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2YTllYy0wMGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZq2qCrxLUUvLEr8SifkZUhyB2pzaqNyaWTIw/mbK9Vo0UfUZlIybUZubNNF DIwXuiq19/cTwHE5Id0N6x3JjxZdG478wAMJAeY1ygMQepJL1dcW4+jlK+vr8zB0 /89MHM9FVR+Y1kODOzLK6czePI+GUNSXP+tLIepZqWknl3h47TBkyhlG4SOXX/gp pOPstctIZeEeOwizWn8pk8MghHfyi9XlgjWR+5STxR0oIZ+MIAJqqicTTEVXSUPr o1KFWMmHcb9ilSG8y0JJfXi90MaCAFNkdj1Uu5IiGDofUsj/Drcob7P/8duMiv8i 03RlTD/9OsviM7NdYn7ctcS9SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJAiug+p 96G/pGfHEKTEqHtxhNE3MB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNjI0QThDQjBB NzUyMTFFREI0NkY4OTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSOUowDQYJKoZIhvcNAQELBQADggEBAKE1MxdhLUD2uHgh IyncfqoggdNYlvJC9DW35aRFI9FNtHAvMUPkTTEDSfcjVu4Z8cBVasJpCQZxUU1f bkKbJw+Dl9BzmRCpwEd04yXD2EG0+54MUkuYCwBaRuk2hsze2wXufDEBpdUJDYwW TOt1zOm8+8W00zVipCe9G79MnKvOkFqs+Qc8+TLpr2lMqBo1/DbhHM1N6c1x4YP/ SjW6JlNHrliFZUgIz1+kM5IcQja/MbP8/QOmH1NCGzGjAKiSXxBF5maBwM0FWnLS gydJZcLkr/0UyEw8acLh+BrgSiaSN2DsVYKAdUtm2dWaLMGf2Tjx+/d5MddQ8egB KpW/vVc= -----END CERTIFICATE-----Generated at Sun Apr 6 06:28:44 2025 by rpki-client