$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/869ED548F1E511E88BD7AA7CC4F9AE02.roa File: 869ED548F1E511E88BD7AA7CC4F9AE02.roa (raw, json) Hash identifier: Tn1WNn2P9hp7f1yU1ogriDIlSi8ORgENeJR6Q9egV04= Subject key identifier: CF:79:78:10:42:D6:A8:69:09:68:9A:57:87:F0:25:FC:94:01:02:55 Certificate issuer: /CN=A91D3794/serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Certificate serial: 214D Authority key identifier: 30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/869ED548F1E511E88BD7AA7CC4F9AE02.roa Signing time: Thu 30 Jan 2025 16:03:27 +0000 ROA not before: Thu 30 Jan 2025 16:03:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133380 IP address blocks: 27.111.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8525 (0x214d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3794 Validity Not Before: Jan 30 16:03:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679ba2cf-d88b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:34:ee:42:9d:b4:37:1f:f2:72:3f:20:b5:ed: 7b:c3:75:26:1a:be:64:fe:c8:c8:7f:a2:7f:51:40: 2c:ba:50:c9:42:0f:dc:9e:aa:cc:8f:64:99:23:65: 6d:b6:24:9e:d0:1f:03:f2:2f:ea:44:47:61:2f:40: 60:11:e6:a5:1d:29:bf:7e:44:7b:cb:c6:29:51:7f: 19:a4:92:e9:a2:08:aa:df:78:a3:19:85:90:34:c2: ce:d7:d0:2e:9c:d5:ff:39:a4:f6:b2:b6:92:32:19: 36:16:1b:c8:ee:21:08:8b:21:5c:5c:7d:44:16:95: 91:26:77:d4:b4:ac:d9:53:c3:b5:3b:68:77:2d:2c: ac:a9:d1:a7:d9:c1:62:3a:9e:0a:98:23:b1:8b:49: 08:dc:d8:f4:d9:5f:03:73:91:e5:f2:8a:b0:4b:9e: d3:36:51:20:73:b4:56:8d:53:05:99:31:1a:d6:1f: 9e:f2:f5:1e:6c:92:0f:0d:ac:50:75:8d:3f:5b:d0: 3c:d7:d1:d8:06:42:5b:5f:26:e6:fd:c6:6a:ed:a5: ca:05:b7:6f:c0:a5:c5:0b:ed:b5:58:ee:cc:08:61: d6:77:ab:ac:bc:a0:57:7b:79:07:e8:c5:fd:07:9b: 05:9b:ca:d6:ab:f7:7b:d2:10:42:88:5f:c1:fc:4d: 1a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:79:78:10:42:D6:A8:69:09:68:9A:57:87:F0:25:FC:94:01:02:55 X509v3 Authority Key Identifier: keyid:30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/869ED548F1E511E88BD7AA7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.82.0/23 Signature Algorithm: sha256WithRSAEncryption 05:82:0c:f3:8a:65:80:97:de:a7:c2:2d:53:92:62:55:ae:29: bc:35:38:dc:b4:36:a3:28:ad:16:d5:46:8e:a5:d9:d6:61:e6: cc:f4:79:cb:e2:67:19:3f:18:08:e3:18:79:c6:4c:39:b3:b4: 5b:dc:df:7b:f6:9f:dd:0e:ea:c3:72:cb:b7:3d:c1:59:c5:64: 8d:24:f2:37:be:bb:7c:43:45:ba:fa:d3:c6:ce:42:70:c3:ec: ce:ad:a1:35:4d:9a:a4:66:92:db:a4:a8:71:d1:92:e0:ff:4f: d9:87:41:0f:07:8e:19:cb:3c:27:62:37:23:39:1b:5f:76:56: 6d:d4:06:3b:7a:61:58:5e:69:1a:f1:8f:bd:d5:76:5c:cb:d5: 4c:5a:d1:2a:b9:83:ba:54:ee:c9:cc:9c:8e:90:53:68:39:37: 4e:1e:31:c3:02:9d:b1:00:29:bf:6e:b3:ff:bd:f0:33:0a:58: e9:14:4b:ba:67:50:5e:4a:bc:77:37:7e:ac:29:8b:ab:7d:6e: f3:32:df:b9:bd:ea:a5:0c:35:29:75:d3:59:58:db:54:b6:a1: ca:0f:41:d9:ac:af:c5:ae:27:44:3e:23:f1:a7:56:dd:ba:1c: 3b:b6:b1:a1:99:ad:60:3a:96:f7:9f:f8:c8:56:9c:b4:ec:c1: 62:36:b6:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3OTQxMTAvBgNVBAUTKDMwRTU4OTI4OEVCNjUwMDI1MTBDODc3QjQ2NkFCRTE5 NzUzQkRCQ0UwHhcNMjUwMTMwMTYwMzI3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliYTJjZi1kODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jTuQp20Nx/ycj8gte17w3UmGr5k/sjIf6J/UUAsulDJQg/cnqrMj2SZI2Vt tiSe0B8D8i/qREdhL0BgEealHSm/fkR7y8YpUX8ZpJLpogiq33ijGYWQNMLO19Au nNX/OaT2sraSMhk2FhvI7iEIiyFcXH1EFpWRJnfUtKzZU8O1O2h3LSysqdGn2cFi Op4KmCOxi0kI3Nj02V8Dc5Hl8oqwS57TNlEgc7RWjVMFmTEa1h+e8vUebJIPDaxQ dY0/W9A819HYBkJbXybm/cZq7aXKBbdvwKXFC+21WO7MCGHWd6usvKBXe3kH6MX9 B5sFm8rWq/d70hBCiF/B/E0a8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFM95eBBC 1qhpCWiaV4fwJfyUAQJVMB8GA1UdIwQYMBaAFDDliSiOtlACUQyHe0Zqvhl1O9vO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzc5NC8yMEZFNTYxNkU5 OEYxMUU1QTNERERDNjZDNEY5QUUwMi9NT1dKS0k2MlVBSlJESWQ3Um1xLUdYVTcy ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PV0pLSTYyVUFKUkRJZDdSbXEtR1hVNzI4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3OTQvMjBGRTU2MTZFOThGMTFFNUEzREREQzY2QzRGOUFFMDIvODY5RUQ1NDhG MUU1MTFFODhCRDdBQTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEbb1IwDQYJKoZIhvcNAQELBQADggEBAAWCDPOKZYCX3qfC LVOSYlWuKbw1ONy0NqMorRbVRo6l2dZh5sz0ecviZxk/GAjjGHnGTDmztFvc33v2 n90O6sNyy7c9wVnFZI0k8je+u3xDRbr608bOQnDD7M6toTVNmqRmktukqHHRkuD/ T9mHQQ8HjhnLPCdiNyM5G192Vm3UBjt6YVheaRrxj73VdlzL1Uxa0Sq5g7pU7snM nI6QU2g5N04eMcMCnbEAKb9us/+98DMKWOkUS7pnUF5KvHc3fqwpi6t9bvMy37m9 6qUMNSl101lY21S2ocoPQdmsr8WuJ0Q+I/GnVt26HDu2saGZrWA6lvef+MhWnLTs wWI2tlw= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:05 2025 by rpki-client