$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa File: 9549EE609A7311EF8A9F432EC4F9AE02.roa (raw, json) Hash identifier: rmLzWyNdWKY0XtIRa8zpHc0j9dgfJvXq9eWmRerS2EI= Subject key identifier: A2:C7:E8:B8:28:92:7E:46:59:DC:2A:03:EE:F2:A8:26:C8:4F:9F:FC Certificate issuer: /CN=A91D6C1B/serialNumber=2CFB0CEF6D16D6676EEA211643EC8E85C25CF2FF Certificate serial: 2F Authority key identifier: 2C:FB:0C:EF:6D:16:D6:67:6E:EA:21:16:43:EC:8E:85:C2:5C:F2:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa Signing time: Wed 15 Jan 2025 06:09:26 +0000 ROA not before: Wed 15 Jan 2025 06:09:26 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7545 IP address blocks: 203.23.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.crl rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6C1B Validity Not Before: Jan 15 06:09:26 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67875115-81ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:01:6e:5f:23:c9:bd:04:ae:27:2c:ba:ad: d3:cc:b7:3d:7b:2e:5a:fa:92:f3:6e:bb:2c:96:02: 66:03:28:1b:37:44:e9:cd:08:9f:49:5b:0a:3f:9c: 85:a3:0f:3a:ee:d0:7b:de:35:a6:30:44:71:43:42: 82:1b:58:e3:54:19:cf:94:78:db:a6:73:bd:4a:45: 89:ad:09:62:f3:1d:e5:4c:88:51:c4:49:f2:46:2b: 6e:33:a1:43:80:4b:14:83:f0:69:e0:72:cc:a5:47: e9:dc:92:4b:01:7a:b6:a1:0c:95:fb:d4:a5:b9:ea: fd:57:20:ec:d3:02:31:a3:10:bc:2d:1d:70:1e:d1: d6:05:ad:9c:a6:94:a6:25:ae:3b:88:51:a0:97:69: c7:99:96:50:c1:ca:3d:41:e0:b2:bd:3e:b7:4c:82: ee:d2:84:ba:b6:ab:59:69:fd:39:66:e3:03:09:d7: c7:c8:e5:cd:7d:51:99:d0:f6:06:f5:35:a9:06:60: ba:9f:b1:96:68:ce:8b:e2:47:e8:b4:11:64:ee:1c: fe:a1:f3:9a:99:8f:6d:68:4b:b8:d8:68:ae:20:ab: e0:13:8f:a2:ed:46:b6:e6:21:77:0a:41:b6:c8:b4: b8:3c:e0:43:c0:b6:f1:99:06:8e:a4:7b:80:c8:2f: df:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C7:E8:B8:28:92:7E:46:59:DC:2A:03:EE:F2:A8:26:C8:4F:9F:FC X509v3 Authority Key Identifier: keyid:2C:FB:0C:EF:6D:16:D6:67:6E:EA:21:16:43:EC:8E:85:C2:5C:F2:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.36.0/24 Signature Algorithm: sha256WithRSAEncryption 89:fb:75:bb:5f:0b:da:0d:ad:18:a9:e2:a3:ad:48:b8:66:2b: 46:5c:2b:8a:85:f0:e1:58:8a:b5:a6:65:aa:35:42:3f:c2:cb: f3:72:26:0c:ca:b5:8b:fb:86:18:f4:c5:09:e8:f4:0a:51:13: 85:b6:23:7c:6a:52:f1:71:0b:de:56:86:33:dd:c9:e1:cf:09: ee:62:c4:12:3c:e3:d9:96:be:5a:4a:9b:2a:ad:47:c7:57:9f: d4:0e:e2:d1:ee:15:a4:71:2b:24:a8:f8:cf:7f:94:a8:94:ad: 83:34:07:94:02:6c:e5:27:f1:aa:29:93:e4:2e:bf:45:4d:d9: ed:f7:34:71:6c:1a:5d:fe:9d:2a:8d:63:80:83:f4:04:16:a2: 39:69:6b:66:74:6a:2a:9e:f3:e7:c8:3b:e7:74:f5:c7:78:16: 2a:56:1a:b6:40:95:d9:75:ca:11:8d:3e:41:a7:4d:c6:70:83: 36:51:e4:0b:a4:82:47:0e:ba:f3:62:2e:21:eb:ea:1b:90:76: c3:ca:0f:5c:84:e6:5f:e1:1d:9d:51:e5:28:41:bd:ab:9a:98: 77:ff:14:68:11:d4:25:d9:c5:4e:8e:b3:a1:e9:87:d7:bc:9a: 03:10:f3:c7:af:b5:4e:5e:55:f3:ef:97:9c:b3:fd:f5:e8:58: 6d:d6:20:f2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkMxQjExMC8GA1UEBRMoMkNGQjBDRUY2RDE2RDY2NzZFRUEyMTE2NDNFQzhFODVD MjVDRjJGRjAeFw0yNTAxMTUwNjA5MjZaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODc1MTE1LTgxYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC39QFuXyPJvQSuJyy6rdPMtz17Llr6kvNuuyyWAmYDKBs3ROnNCJ9JWwo/nIWj Dzru0HveNaYwRHFDQoIbWONUGc+UeNumc71KRYmtCWLzHeVMiFHESfJGK24zoUOA SxSD8GngcsylR+nckksBerahDJX71KW56v1XIOzTAjGjELwtHXAe0dYFrZymlKYl rjuIUaCXaceZllDByj1B4LK9PrdMgu7ShLq2q1lp/Tlm4wMJ18fI5c19UZnQ9gb1 NakGYLqfsZZozoviR+i0EWTuHP6h85qZj21oS7jYaK4gq+ATj6LtRrbmIXcKQbbI tLg84EPAtvGZBo6ke4DIL995AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUosfouCiS fkZZ3CoD7vKoJshPn/wwHwYDVR0jBBgwFoAULPsM720W1mdu6iEWQ+yOhcJc8v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2QzFCL0U1NzMwNkNBOUE3 MjExRUY4RUI0MTYyREM0RjlBRTAyL0xQc003MjBXMW1kdTZpRVdRLXlPaGNKYzh2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTFBzTTcyMFcxbWR1NmlFV1EteU9oY0pjOHY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkMxQi9FNTczMDZDQTlBNzIxMUVGOEVCNDE2MkRDNEY5QUUwMi85NTQ5RUU2MDlB NzMxMUVGOEE5RjQzMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsXJDANBgkqhkiG9w0BAQsFAAOCAQEAift1u18L2g2tGKni o61IuGYrRlwrioXw4ViKtaZlqjVCP8LL83ImDMq1i/uGGPTFCej0ClEThbYjfGpS 8XEL3laGM93J4c8J7mLEEjzj2Za+WkqbKq1Hx1ef1A7i0e4VpHErJKj4z3+UqJSt gzQHlAJs5SfxqimT5C6/RU3Z7fc0cWwaXf6dKo1jgIP0BBaiOWlrZnRqKp7z58g7 53T1x3gWKlYatkCV2XXKEY0+QadNxnCDNlHkC6SCRw6682IuIevqG5B2w8oPXITm X+EdnVHlKEG9q5qYd/8UaBHUJdnFTo6zoemH17yaAxDzx6+1Tl5V8++XnLP99ehY bdYg8g== -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:51 2025 by rpki-client