$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/7B50FA5EA13911EF8B634635C4F9AE02.roa File: 7B50FA5EA13911EF8B634635C4F9AE02.roa (raw, json) Hash identifier: J8+lxSFWmAdItoP7AGJ9n1czEhUKmEFacTRv8zqHb88= Subject key identifier: D2:54:33:4A:93:12:9C:CE:5B:4E:2C:55:7E:15:A8:16:74:74:64:51 Certificate issuer: /CN=A91DB7E9/serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4 Certificate serial: 010E Authority key identifier: DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/7B50FA5EA13911EF8B634635C4F9AE02.roa Signing time: Tue 11 Feb 2025 04:28:10 +0000 ROA not before: Tue 11 Feb 2025 04:28:10 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 55747 IP address blocks: 202.37.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9 Validity Not Before: Feb 11 04:28:10 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67aad1da-a159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:39:84:93:f0:75:27:e5:42:2f:68:33:eb:97: 50:60:40:0b:e1:dd:08:a6:3f:3a:4c:0e:3e:b1:a3: 45:3b:a0:a7:e6:69:06:65:b8:54:87:3e:c3:ba:4b: cb:48:d6:80:59:19:22:3e:72:a9:fd:34:91:01:c7: b0:93:de:e0:20:cd:96:32:ce:1e:0f:76:51:34:93: 12:fa:da:62:ad:68:4b:05:20:b3:a2:53:f9:c9:f8: a5:d8:c1:88:3d:44:4f:fd:c7:fe:66:4a:5f:a2:15: ed:81:c5:f1:d5:c3:d1:c2:c7:a4:be:c3:ec:0d:76: 10:91:ff:61:20:76:e2:74:24:47:8c:07:c1:fc:92: d7:c5:a0:3b:2e:8b:34:19:74:10:76:51:c4:52:1b: d2:ba:d9:d2:e5:ee:d4:02:1b:9f:35:5a:7e:e9:fe: 7c:ec:6e:9f:79:8c:3f:a5:4e:a9:cf:c7:40:9c:15: 84:8c:3f:48:29:bf:e1:b6:11:fa:ac:b2:c6:ec:7a: 3b:1b:45:7a:87:d1:55:ca:c9:2d:a5:8e:a8:05:ae: 6b:8d:e7:1a:b6:31:de:8d:2d:79:0d:16:f3:57:cf: 39:ab:6b:23:53:38:92:4d:42:c1:bf:a5:ab:9f:8b: 37:d3:0b:d6:f2:b3:59:2d:11:3e:5a:1b:e4:d1:09: d4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:54:33:4A:93:12:9C:CE:5B:4E:2C:55:7E:15:A8:16:74:74:64:51 X509v3 Authority Key Identifier: keyid:DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/7B50FA5EA13911EF8B634635C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.43.0/24 Signature Algorithm: sha256WithRSAEncryption a6:4a:64:d1:d5:bc:84:e1:54:21:40:cc:a7:b7:55:1a:b9:5b: e9:08:ad:7b:26:cf:ba:ab:13:0f:14:42:04:43:87:6f:80:7d: 3f:2b:f7:bd:78:3a:0b:b7:9c:20:ba:a8:85:f0:3a:6e:f1:db: 61:69:29:2f:66:34:74:a9:27:07:8b:63:a6:12:55:46:be:2e: 28:de:42:8e:78:84:02:27:73:dc:61:f6:08:00:07:f5:d6:1f: d0:9b:e7:c9:93:83:50:fe:ff:4a:ee:4d:7c:45:9d:9e:4f:3e: b9:b2:4a:99:62:bc:cd:20:74:cb:41:41:a9:27:0b:1a:85:28: 6f:3c:a2:85:3e:8e:f1:0f:48:f5:cb:07:ed:c6:26:79:bd:e6: af:44:6e:c4:fd:5c:0b:9c:8d:72:ca:99:7a:21:1a:81:e3:eb: 85:16:79:11:9e:11:31:a7:f6:98:61:97:cf:25:20:6d:9a:35: a0:d3:bf:95:9e:41:58:93:53:13:db:ea:d3:48:c0:cb:73:37: 2f:ca:44:b9:95:4a:31:80:ca:18:a8:aa:98:fc:ea:b0:12:06: bc:99:36:e8:36:fc:c6:1d:f6:23:f8:81:a1:31:41:9f:75:ff: cc:d7:01:08:92:b7:b3:28:fd:a4:1c:3b:8e:a4:0d:c4:2e:3a: 0e:6f:0a:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKERGNTE0NzBCMTVFOEMxNDFBRjJGQTg0NkEyOEMwM0Iz ODU5MUJBQjQwHhcNMjUwMjExMDQyODEwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FhZDFkYS1hMTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTmEk/B1J+VCL2gz65dQYEAL4d0Ipj86TA4+saNFO6Cn5mkGZbhUhz7DukvL SNaAWRkiPnKp/TSRAcewk97gIM2WMs4eD3ZRNJMS+tpirWhLBSCzolP5yfil2MGI PURP/cf+ZkpfohXtgcXx1cPRwsekvsPsDXYQkf9hIHbidCRHjAfB/JLXxaA7Los0 GXQQdlHEUhvSutnS5e7UAhufNVp+6f587G6feYw/pU6pz8dAnBWEjD9IKb/hthH6 rLLG7Ho7G0V6h9FVysktpY6oBa5rjecatjHejS15DRbzV885q2sjUziSTULBv6Wr n4s30wvW8rNZLRE+Whvk0QnUCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJUM0qT EpzOW04sVX4VqBZ0dGRRMB8GA1UdIwQYMBaAFN9RRwsV6MFBry+oRqKMA7OFkbq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FOTlFN0Y1MjZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi8zMUZIQ3hYb3dVR3ZMNmhHb293RHM0V1J1 clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMxRkhDeFhvd1VHdkw2aEdvb3dEczRXUnVyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI3RTkvRTk5RTdGNTI2RTJFMTFFRTg1RDkyRDMyQzRGOUFFMDIvN0I1MEZBNUVB MTM5MTFFRjhCNjM0NjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJSswDQYJKoZIhvcNAQELBQADggEBAKZKZNHVvIThVCFA zKe3VRq5W+kIrXsmz7qrEw8UQgRDh2+AfT8r9714Ogu3nCC6qIXwOm7x22FpKS9m NHSpJweLY6YSVUa+LijeQo54hAInc9xh9ggAB/XWH9Cb58mTg1D+/0ruTXxFnZ5P PrmySplivM0gdMtBQaknCxqFKG88ooU+jvEPSPXLB+3GJnm95q9EbsT9XAucjXLK mXohGoHj64UWeRGeETGn9phhl88lIG2aNaDTv5WeQViTUxPb6tNIwMtzNy/KRLmV SjGAyhioqpj86rASBryZNug2/MYd9iP4gaExQZ91/8zXAQiSt7Mo/aQcO46kDcQu Og5vCi8= -----END CERTIFICATE-----Generated at Mon Apr 7 03:06:48 2025 by rpki-client