$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/E3ED2A86F1E511EF9D0E0D1BC4F9AE02.roa File: E3ED2A86F1E511EF9D0E0D1BC4F9AE02.roa (raw, json) Hash identifier: lWJ7FF/SRkIiHgjEhrH+14a75dMx3dN1hls3lTn79Sw= Subject key identifier: DB:C6:E9:18:25:62:43:3C:CE:23:CF:6E:5F:B9:03:C4:5B:73:E9:A3 Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 0659 Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/E3ED2A86F1E511EF9D0E0D1BC4F9AE02.roa Signing time: Sun 23 Feb 2025 12:58:35 +0000 ROA not before: Sun 23 Feb 2025 12:58:35 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 8100 IP address blocks: 43.251.9.0/24 maxlen: 24 43.251.10.0/24 maxlen: 24 43.251.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499 Validity Not Before: Feb 23 12:58:35 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67bb1b7a-41b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:c8:ba:44:9c:07:66:26:a2:35:b0:5f:31: a6:02:4d:ab:3e:76:15:20:ac:80:68:ca:2f:39:b0: 01:41:c2:d4:cc:2d:c1:f2:ec:e8:b4:f2:ae:78:0a: f6:ca:f8:c2:8d:50:a9:4c:21:4a:aa:18:7f:3a:78: 89:19:ed:35:c9:76:a0:76:32:e2:f3:17:a5:c6:64: d6:6e:c2:8c:7e:bf:97:b1:25:93:4e:d0:0e:78:bd: 28:17:de:1e:d4:3b:54:81:7c:14:b9:23:0c:75:91: 23:4b:9e:96:74:82:dc:b2:b9:54:68:38:7d:f3:0e: 99:7e:60:1c:6f:ba:95:a2:09:28:7d:41:a8:d5:8f: 5d:40:1a:aa:82:3e:5d:e1:7e:15:7a:82:21:e3:8f: 7a:ea:ef:4f:f6:37:db:5c:ed:08:f3:46:0b:f2:fe: ba:ad:4e:46:c7:b1:12:4b:59:5e:8e:a6:ee:37:ef: 62:7b:06:a2:34:1f:c3:94:35:8e:d6:74:1c:85:36: a6:d5:fc:62:37:45:5a:63:50:22:a8:04:93:f7:5a: 63:9a:f3:2c:39:a7:38:84:f0:ba:3e:c3:0c:11:73: 2f:a3:19:b6:3b:b2:11:80:fc:d1:71:74:18:c0:28: 55:12:64:7d:96:b0:90:84:fb:ee:a7:1d:7c:20:04: e3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C6:E9:18:25:62:43:3C:CE:23:CF:6E:5F:B9:03:C4:5B:73:E9:A3 X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/E3ED2A86F1E511EF9D0E0D1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.9.0-43.251.11.255 Signature Algorithm: sha256WithRSAEncryption 79:f9:cc:f0:c4:76:4d:c9:95:bb:ae:80:4a:86:91:90:4b:78: cd:c5:a1:87:d3:60:e4:1f:54:a7:f4:64:8e:18:a1:51:77:0e: a0:7f:59:c2:18:05:8b:67:0c:51:5c:53:18:34:79:eb:fb:b2: d8:2f:14:d8:ba:c8:0c:59:1e:09:8a:6c:fa:f8:9e:d3:91:f2: e1:08:52:a7:0f:9f:3c:f6:05:9b:db:ee:3e:a8:cb:a5:42:be: 9b:99:42:bc:3d:cb:b9:46:f5:01:93:8e:35:1d:0c:fb:e0:17: 5d:f8:a4:63:14:d8:f5:68:ee:00:8b:f5:99:9f:4e:fc:7e:56: 10:ab:4f:fe:70:b7:7b:8d:e9:0b:42:76:f6:69:8d:3d:d8:ba: c2:6e:a3:21:a0:27:97:13:f5:30:34:6b:7d:cf:a7:b3:d6:31: 30:f7:d7:5f:14:72:49:d3:fd:37:0d:e0:af:d3:ae:b9:4c:ed: ea:c2:e5:63:28:46:08:ec:f8:4c:61:b9:b2:49:13:c4:e0:71: 05:72:d2:d6:1b:6c:29:f7:e8:55:a3:b9:c6:12:81:74:23:47: a2:a8:04:b0:a9:53:62:5a:57:86:ee:21:ad:53:e3:2f:ce:f7: 40:81:e9:bc:20:25:00:a2:92:f6:54:2a:91:4f:f5:e3:0b:48: dc:51:c8:f4 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUwMjIzMTI1ODM1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JiMWI3YS00MWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU3IukScB2YmojWwXzGmAk2rPnYVIKyAaMovObABQcLUzC3B8uzotPKueAr2 yvjCjVCpTCFKqhh/OniJGe01yXagdjLi8xelxmTWbsKMfr+XsSWTTtAOeL0oF94e 1DtUgXwUuSMMdZEjS56WdILcsrlUaDh98w6ZfmAcb7qVogkofUGo1Y9dQBqqgj5d 4X4VeoIh44966u9P9jfbXO0I80YL8v66rU5Gx7ESS1lejqbuN+9iewaiNB/DlDWO 1nQchTam1fxiN0VaY1AiqAST91pjmvMsOac4hPC6PsMMEXMvoxm2O7IRgPzRcXQY wChVEmR9lrCQhPvupx18IATjuQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFNvG6Rgl YkM8ziPPbl+5A8Rbc+mjMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY0OTkvOUY4MzZDNTI3ODA5MTFFQkExNkFFMTU2QzRGOUFFMDIvRTNFRDJBODZG MUU1MTFFRjlEMEUwRDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEACv7CQMEAiv7CDANBgkqhkiG9w0BAQsFAAOCAQEAefnM 8MR2TcmVu66ASoaRkEt4zcWhh9Ng5B9Up/RkjhihUXcOoH9ZwhgFi2cMUVxTGDR5 6/uy2C8U2LrIDFkeCYps+vie05Hy4QhSpw+fPPYFm9vuPqjLpUK+m5lCvD3LuUb1 AZOONR0M++AXXfikYxTY9WjuAIv1mZ9O/H5WEKtP/nC3e43pC0J29mmNPdi6wm6j IaAnlxP1MDRrfc+ns9YxMPfXXxRySdP9Nw3gr9OuuUzt6sLlYyhGCOz4TGG5skkT xOBxBXLS1htsKffoVaO5xhKBdCNHoqgEsKlTYlpXhu4hrVPjL873QIHpvCAlAKKS 9lQqkU/14wtI3FHI9A== -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:42 2025 by rpki-client