$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/073CAA38A7C811EF92C28379C4F9AE02.roa File: 073CAA38A7C811EF92C28379C4F9AE02.roa (raw, json) Hash identifier: 3RUDCXxLe0lvptsJjUy4NkMr2pEIuvZpBiDjKj7RKDM= Subject key identifier: 79:A4:59:DD:00:93:88:80:CB:B2:FE:99:EC:7E:03:D6:FC:49:9A:9C Certificate issuer: /CN=A91D4786/serialNumber=578C8D02AEF0B43E29FECEA1895DCC9D10663535 Certificate serial: 47 Authority key identifier: 57:8C:8D:02:AE:F0:B4:3E:29:FE:CE:A1:89:5D:CC:9D:10:66:35:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/073CAA38A7C811EF92C28379C4F9AE02.roa Signing time: Sat 29 Mar 2025 07:02:38 +0000 ROA not before: Sat 29 Mar 2025 07:02:38 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4826 IP address blocks: 203.22.108.0/23 maxlen: 23 203.22.108.0/24 maxlen: 24 203.22.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.crl rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:39:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4786 Validity Not Before: Mar 29 07:02:38 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e79b0e-224c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d9:d1:44:e9:ca:af:59:78:ed:2d:eb:6a:2e: 9d:4f:44:3d:3c:5c:62:f4:e1:79:0b:30:7a:01:20: 80:4e:2f:41:d3:67:a0:fa:d9:a0:57:a5:65:9b:6f: 69:61:3f:4c:83:69:36:a0:03:9c:99:3f:c5:ae:db: d1:da:fb:36:0a:fc:94:f8:06:51:85:b7:2d:50:da: c6:13:92:fe:67:74:48:79:91:88:15:bb:e6:b5:27: 5e:65:e8:6a:fa:d8:75:2b:90:3d:4c:58:e0:6d:81: 1f:91:44:1b:57:27:d6:c8:7e:f9:e9:77:d9:7c:fb: 5b:d3:2e:96:16:2c:0d:97:51:13:ac:15:62:b8:3a: e5:c2:d4:46:83:50:8b:bc:a7:5e:fa:51:e1:e8:12: 63:96:8e:00:5a:4d:28:7d:d3:f6:7c:46:f8:90:62: 8a:57:ac:98:86:d2:d1:87:63:fd:61:3c:ce:a3:a0: ba:a9:89:bd:b6:4e:61:c1:db:1a:a0:48:37:83:87: 1f:96:69:ba:74:15:32:e9:73:9c:42:83:84:9d:30: 7a:ec:71:35:71:99:ac:19:32:2d:09:cc:7b:ef:bd: 5d:7b:ef:c2:7f:3d:1c:1f:95:ce:31:02:d5:a9:1a: ff:55:d8:ff:48:75:dc:ea:a2:85:03:e4:bf:ea:b3: 16:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A4:59:DD:00:93:88:80:CB:B2:FE:99:EC:7E:03:D6:FC:49:9A:9C X509v3 Authority Key Identifier: keyid:57:8C:8D:02:AE:F0:B4:3E:29:FE:CE:A1:89:5D:CC:9D:10:66:35:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/073CAA38A7C811EF92C28379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.22.108.0/23 Signature Algorithm: sha256WithRSAEncryption 67:27:9c:de:df:7c:b2:bd:3a:43:9c:d4:15:61:5b:24:86:9a: 96:c7:ff:05:be:fd:be:48:8a:47:ba:86:47:67:f4:14:18:8d: e5:25:8c:ab:f7:a1:55:1c:ad:53:23:19:1e:91:32:41:55:5b: 17:0d:76:74:10:14:d2:32:69:4f:85:46:66:1a:dc:42:31:87: 7f:67:12:7b:86:53:d1:86:67:26:bc:ed:d3:57:20:d6:e1:1c: 8a:25:df:14:24:74:b2:83:c8:bf:5f:b5:4e:30:a0:e2:e7:91: bb:9d:ce:6f:ac:97:19:03:8c:f4:4b:6d:45:b0:8e:3d:89:12: df:4c:56:25:ad:0e:67:08:68:11:83:c1:63:39:27:dd:c5:43: 48:fe:f6:ff:01:4e:49:86:de:ad:32:c5:52:a0:06:b1:8d:fd: ad:cb:97:c9:41:fa:3f:fe:93:a6:62:30:73:1e:8b:cb:dc:37: 7f:96:90:70:76:0c:1e:da:22:d4:db:58:c3:54:96:b5:e1:7c: af:7d:d2:25:94:2f:11:ec:32:26:89:bb:73:18:ea:4d:61:3c: b7:54:46:f5:15:2f:c2:b0:ef:6d:a2:af:b5:43:43:f3:78:a5: 23:af:a5:30:9a:ed:ed:9c:8f:31:43:db:16:2b:3c:17:6a:0f: b0:63:d5:fc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDc4NjExMC8GA1UEBRMoNTc4QzhEMDJBRUYwQjQzRTI5RkVDRUExODk1RENDOUQx MDY2MzUzNTAeFw0yNTAzMjkwNzAyMzhaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTc5YjBlLTIyNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDg2dFE6cqvWXjtLetqLp1PRD08XGL04XkLMHoBIIBOL0HTZ6D62aBXpWWbb2lh P0yDaTagA5yZP8Wu29Ha+zYK/JT4BlGFty1Q2sYTkv5ndEh5kYgVu+a1J15l6Gr6 2HUrkD1MWOBtgR+RRBtXJ9bIfvnpd9l8+1vTLpYWLA2XUROsFWK4OuXC1EaDUIu8 p176UeHoEmOWjgBaTSh90/Z8RviQYopXrJiG0tGHY/1hPM6joLqpib22TmHB2xqg SDeDhx+Wabp0FTLpc5xCg4SdMHrscTVxmawZMi0JzHvvvV1778J/PRwflc4xAtWp Gv9V2P9IddzqooUD5L/qsxZTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUeaRZ3QCT iIDLsv6Z7H4D1vxJmpwwHwYDVR0jBBgwFoAUV4yNAq7wtD4p/s6hiV3MnRBmNTUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0Nzg2LzM0NTk4QzcwQTdD MzExRUZCNTExRTA1M0M0RjlBRTAyL1Y0eU5BcTd3dEQ0cF9zNmhpVjNNblJCbU5U VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVjR5TkFxN3d0RDRwX3M2aGlWM01uUkJtTlRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDc4Ni8zNDU5OEM3MEE3QzMxMUVGQjUxMUUwNTNDNEY5QUUwMi8wNzNDQUEzOEE3 QzgxMUVGOTJDMjgzNzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsWbDANBgkqhkiG9w0BAQsFAAOCAQEAZyec3t98sr06Q5zU FWFbJIaalsf/Bb79vkiKR7qGR2f0FBiN5SWMq/ehVRytUyMZHpEyQVVbFw12dBAU 0jJpT4VGZhrcQjGHf2cSe4ZT0YZnJrzt01cg1uEciiXfFCR0soPIv1+1TjCg4ueR u53Ob6yXGQOM9EttRbCOPYkS30xWJa0OZwhoEYPBYzkn3cVDSP72/wFOSYberTLF UqAGsY39rcuXyUH6P/6TpmIwcx6Ly9w3f5aQcHYMHtoi1NtYw1SWteF8r33SJZQv EewyJom7cxjqTWE8t1RG9RUvwrDvbaKvtUND83ilI6+lMJrt7ZyPMUPbFis8F2oP sGPV/A== -----END CERTIFICATE-----Generated at Sat Apr 5 22:16:48 2025 by rpki-client