$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/9E924168765811EB9E261F25C4F9AE02.roa File: 9E924168765811EB9E261F25C4F9AE02.roa (raw, json) Hash identifier: gf+XHv/B7y9fMOtlEsCMLfQ4eU62pqLRv/z7H7sAxg4= Subject key identifier: 7A:D5:33:55:64:4C:19:B7:97:8F:C9:96:AF:CC:35:D5:83:D0:E4:2F Certificate issuer: /CN=A91DBE37/serialNumber=EFD70769F7E855D257A24D6A1D4903950AB369D3 Certificate serial: 0655 Authority key identifier: EF:D7:07:69:F7:E8:55:D2:57:A2:4D:6A:1D:49:03:95:0A:B3:69:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/9E924168765811EB9E261F25C4F9AE02.roa Signing time: Wed 26 Feb 2025 23:51:44 +0000 ROA not before: Wed 26 Feb 2025 23:51:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45780 IP address blocks: 43.251.152.0/23 maxlen: 23 43.251.155.0/24 maxlen: 24 103.226.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.crl rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1621 (0x655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBE37 Validity Not Before: Feb 26 23:51:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bfa910-6da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:aa:11:5e:d1:de:5c:49:a1:42:6e:18:bd:cc: ad:b0:7f:f0:e6:e9:ad:c1:da:6f:b5:0f:5f:bd:ce: 16:92:16:ef:14:3e:ee:a9:d6:84:74:da:86:3d:e0: 70:fe:94:6c:2e:e8:d4:e0:85:43:00:6a:53:be:32: 31:30:f5:d4:2a:6e:fd:6c:29:a4:41:27:8e:ce:84: ed:2b:e4:69:14:01:7e:f3:bb:2d:c0:39:69:b9:a1: 53:e9:85:16:6f:e8:39:40:14:36:70:59:d8:5b:c7: 18:16:f6:bf:f7:33:30:2c:34:f3:ed:1e:09:24:35: 3f:8e:b2:57:fc:59:f7:9c:8d:3d:ae:48:08:71:c1: e4:5d:76:43:f6:61:7c:79:f2:f4:fe:f2:76:56:c7: e9:22:89:a7:ff:b4:ee:8e:9d:37:67:1b:d3:6c:8f: f8:f2:e4:98:b8:0e:75:73:22:67:fb:d8:07:68:38: 21:d9:e8:86:26:b4:05:bc:e5:67:50:23:6e:50:72: d4:56:35:d7:6a:d2:cf:21:ff:15:c2:12:9c:86:f4: 51:02:ab:c5:34:2a:e8:60:76:9c:ce:b0:18:55:77: d4:dc:ff:aa:c4:d1:a3:9f:b0:cf:85:17:6d:5f:19: 49:c0:04:c9:8b:1e:bb:a3:9d:db:0b:e3:8e:78:ea: c7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D5:33:55:64:4C:19:B7:97:8F:C9:96:AF:CC:35:D5:83:D0:E4:2F X509v3 Authority Key Identifier: keyid:EF:D7:07:69:F7:E8:55:D2:57:A2:4D:6A:1D:49:03:95:0A:B3:69:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/9E924168765811EB9E261F25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.152.0/23 43.251.155.0/24 103.226.160.0/22 Signature Algorithm: sha256WithRSAEncryption 16:2f:1f:40:20:d1:64:10:e5:82:7c:72:dd:b7:79:00:95:a0: da:60:3b:9e:d6:9c:e1:31:61:c2:bc:c2:e1:d7:99:bf:be:d0: fe:f4:35:17:e8:8f:d1:33:26:0a:7a:c1:eb:31:41:e2:3e:b1: 2d:e5:94:f7:b5:b7:45:3d:fa:35:27:02:15:ae:07:7a:15:a6: fc:ab:19:1e:ed:5b:65:bb:9a:b9:14:43:18:37:a0:74:5b:a9: c4:19:1b:9e:62:02:16:94:fc:a4:f4:66:73:41:4b:8c:3c:66: ce:15:30:6c:59:38:3d:48:ef:a4:e1:d4:bc:7a:05:6a:27:b0: c0:e8:48:cf:bb:a2:ef:ec:0b:76:93:51:0d:e7:f4:8d:12:a2: 81:ac:39:86:2f:37:07:67:de:48:35:03:d5:4f:9a:40:d4:1d: 92:90:57:97:2b:fe:a4:aa:17:74:46:3e:50:53:a4:2a:9d:dd: 6b:fe:85:80:8f:c3:0f:4d:08:6e:6b:ef:d9:2d:1b:f3:bc:61: e1:c1:8a:21:3c:4a:e2:aa:b8:af:77:65:7a:cb:ea:5f:94:91: d5:29:b9:12:28:3d:c4:c8:7c:46:b5:65:83:c0:54:f7:98:d6: ca:df:f9:46:89:28:54:00:53:74:9c:e9:15:41:d2:cd:62:17: d0:38:de:c3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJFMzcxMTAvBgNVBAUTKEVGRDcwNzY5RjdFODU1RDI1N0EyNEQ2QTFENDkwMzk1 MEFCMzY5RDMwHhcNMjUwMjI2MjM1MTQ0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmYTkxMC02ZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqoRXtHeXEmhQm4YvcytsH/w5umtwdpvtQ9fvc4WkhbvFD7uqdaEdNqGPeBw /pRsLujU4IVDAGpTvjIxMPXUKm79bCmkQSeOzoTtK+RpFAF+87stwDlpuaFT6YUW b+g5QBQ2cFnYW8cYFva/9zMwLDTz7R4JJDU/jrJX/Fn3nI09rkgIccHkXXZD9mF8 efL0/vJ2VsfpIomn/7Tujp03ZxvTbI/48uSYuA51cyJn+9gHaDgh2eiGJrQFvOVn UCNuUHLUVjXXatLPIf8VwhKchvRRAqvFNCroYHaczrAYVXfU3P+qxNGjn7DPhRdt XxlJwATJix67o53bC+OOeOrHXwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHrVM1Vk TBm3l4/Jlq/MNdWD0OQvMB8GA1UdIwQYMBaAFO/XB2n36FXSV6JNah1JA5UKs2nT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkUzNy82QTM1RTNEMDc2 NTcxMUVCOTk3REI0MjRDNEY5QUUwMi83OWNIYWZmb1ZkSlhvazFxSFVrRGxRcXph ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5Y0hhZmZvVmRKWG9rMXFIVWtEbFFxemFkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJFMzcvNkEzNUUzRDA3NjU3MTFFQjk5N0RCNDI0QzRGOUFFMDIvOUU5MjQxNjg3 NjU4MTFFQjlFMjYxRjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEr+5gDBAAr+5sDBAJn4qAwDQYJKoZIhvcNAQELBQADggEB ABYvH0Ag0WQQ5YJ8ct23eQCVoNpgO57WnOExYcK8wuHXmb++0P70NRfoj9EzJgp6 wesxQeI+sS3llPe1t0U9+jUnAhWuB3oVpvyrGR7tW2W7mrkUQxg3oHRbqcQZG55i AhaU/KT0ZnNBS4w8Zs4VMGxZOD1I76Th1Lx6BWonsMDoSM+7ou/sC3aTUQ3n9I0S ooGsOYYvNwdn3kg1A9VPmkDUHZKQV5cr/qSqF3RGPlBTpCqd3Wv+hYCPww9NCG5r 79ktG/O8YeHBiiE8SuKquK93ZXrL6l+UkdUpuRIoPcTIfEa1ZYPAVPeY1srf+UaJ KFQAU3Sc6RVB0s1iF9A43sM= -----END CERTIFICATE-----Generated at Sat Apr 5 07:16:53 2025 by rpki-client