$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa File: 367E2CC86E2F11EE9F5DEF32C4F9AE02.roa (raw, json) Hash identifier: mZ/f/kYNljSI/Y1NgwFenBb3960hqwOok7c22vWxduM= Subject key identifier: 63:59:C5:05:5E:E9:96:B3:F5:38:14:EB:83:60:6F:01:D0:AB:3D:44 Certificate issuer: /CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Certificate serial: 010D Authority key identifier: DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa Signing time: Tue 11 Feb 2025 04:28:09 +0000 ROA not before: Tue 11 Feb 2025 04:28:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 23878 IP address blocks: 202.36.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Validity Not Before: Feb 11 04:28:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67aad1d9-2b91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:63:5d:ed:14:40:94:58:1a:63:18:64:f6: 66:44:e2:af:3e:8e:f2:f0:27:17:3b:05:ae:dc:c2: 5c:49:c9:0c:07:a0:e3:63:c6:ac:97:44:79:8d:54: 54:9a:a4:80:d7:22:c5:27:e2:18:b4:a8:eb:b2:2f: 46:14:8b:30:04:97:dd:35:46:a3:30:e3:59:a7:d9: 37:21:2b:14:29:be:4c:aa:a2:da:15:48:b2:07:58: d8:d1:ec:b0:88:5e:64:a9:83:0b:c5:82:8e:72:ca: 3e:16:eb:4a:8c:3f:de:83:7a:63:de:b9:4d:45:5a: bc:87:76:c8:51:62:6e:fb:38:7e:63:40:19:30:ea: a3:b4:0a:49:b7:51:d3:cb:70:8b:c4:59:73:75:13: bf:93:a4:ea:dd:3c:ef:2c:fa:23:5e:36:fe:8c:dc: 3b:4f:1f:d8:48:43:42:f4:b1:7b:b7:74:90:20:4a: be:91:22:85:6f:50:41:c3:57:71:3f:c1:b9:69:41: 4e:d0:66:27:5c:9e:f4:3d:b2:83:b4:e9:05:52:0b: ca:b4:1d:6b:75:fa:e2:61:ba:d3:d9:4d:6b:f5:17: c1:07:32:e4:78:33:37:aa:f5:f4:3a:78:d4:48:38: e0:3e:2f:f3:de:1b:d1:24:f5:43:ba:3f:4c:5e:01: a9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:59:C5:05:5E:E9:96:B3:F5:38:14:EB:83:60:6F:01:D0:AB:3D:44 X509v3 Authority Key Identifier: keyid:DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/367E2CC86E2F11EE9F5DEF32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.224.0/23 Signature Algorithm: sha256WithRSAEncryption 23:b9:57:37:9b:f1:33:52:08:24:b0:a2:58:12:31:93:f7:6d: 3d:e1:6f:96:3e:b4:15:ac:53:d2:cc:ec:bb:92:e4:01:14:18: d5:cc:e7:88:4c:28:89:90:29:ab:d5:6f:3e:4c:ea:4d:3c:2f: db:50:b4:fa:1d:01:86:5f:e0:fe:30:04:9d:64:9f:80:9e:b3: 74:16:f2:4b:dc:e5:cc:8d:ea:bc:44:af:2a:01:f7:a4:60:8f: a6:fd:37:c6:99:01:35:e4:30:47:67:a2:0c:29:a5:35:87:6b: 85:2d:92:14:6a:a1:b5:c3:c2:9f:ba:07:8a:b4:14:39:08:9e: f3:89:47:c6:f2:50:b6:5f:68:da:3a:23:45:59:d3:b5:39:44: 53:48:b0:ce:73:e3:c8:ba:66:c0:6b:b4:b3:bf:0f:56:16:5d: a6:55:94:be:de:57:95:41:1f:cb:66:b7:01:d5:ef:f5:71:fe: 5f:cc:8d:09:56:75:7c:4f:62:c9:30:42:70:96:96:37:01:ac: de:cf:4d:74:71:6c:2f:96:24:bf:71:19:ba:75:cd:a5:ec:dd: d6:85:2e:1f:49:dd:42:46:d9:36:d9:d1:80:49:4b:9b:10:94: d5:cd:4d:33:9e:db:9c:50:93:88:36:17:a9:98:57:a5:33:39: 94:94:b8:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKERGNTE0NzBCMTVFOEMxNDFBRjJGQTg0NkEyOEMwM0Iz ODU5MUJBQjQwHhcNMjUwMjExMDQyODA5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FhZDFkOS0yYjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb1jXe0UQJRYGmMYZPZmROKvPo7y8CcXOwWu3MJcSckMB6DjY8asl0R5jVRU mqSA1yLFJ+IYtKjrsi9GFIswBJfdNUajMONZp9k3ISsUKb5MqqLaFUiyB1jY0eyw iF5kqYMLxYKOcso+FutKjD/eg3pj3rlNRVq8h3bIUWJu+zh+Y0AZMOqjtApJt1HT y3CLxFlzdRO/k6Tq3TzvLPojXjb+jNw7Tx/YSENC9LF7t3SQIEq+kSKFb1BBw1dx P8G5aUFO0GYnXJ70PbKDtOkFUgvKtB1rdfriYbrT2U1r9RfBBzLkeDM3qvX0OnjU SDjgPi/z3hvRJPVDuj9MXgGpwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGNZxQVe 6Zaz9TgU64NgbwHQqz1EMB8GA1UdIwQYMBaAFN9RRwsV6MFBry+oRqKMA7OFkbq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FOTlFN0Y1MjZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi8zMUZIQ3hYb3dVR3ZMNmhHb293RHM0V1J1 clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMxRkhDeFhvd1VHdkw2aEdvb3dEczRXUnVyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI3RTkvRTk5RTdGNTI2RTJFMTFFRTg1RDkyRDMyQzRGOUFFMDIvMzY3RTJDQzg2 RTJGMTFFRTlGNURFRjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKJOAwDQYJKoZIhvcNAQELBQADggEBACO5Vzeb8TNSCCSw olgSMZP3bT3hb5Y+tBWsU9LM7LuS5AEUGNXM54hMKImQKavVbz5M6k08L9tQtPod AYZf4P4wBJ1kn4Ces3QW8kvc5cyN6rxEryoB96Rgj6b9N8aZATXkMEdnogwppTWH a4UtkhRqobXDwp+6B4q0FDkInvOJR8byULZfaNo6I0VZ07U5RFNIsM5z48i6ZsBr tLO/D1YWXaZVlL7eV5VBH8tmtwHV7/Vx/l/MjQlWdXxPYskwQnCWljcBrN7PTXRx bC+WJL9xGbp1zaXs3daFLh9J3UJG2TbZ0YBJS5sQlNXNTTOe25xQk4g2F6mYV6Uz OZSUuLs= -----END CERTIFICATE-----Generated at Sun Apr 13 04:11:51 2025 by rpki-client