$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/08A1C0B8DC5011EF9C212C5CC4F9AE02.roa File: 08A1C0B8DC5011EF9C212C5CC4F9AE02.roa (raw, json) Hash identifier: Vaf4WstL1N3DSV5lZGZocpmDqTwW1A3D3RH6q2VNIFc= Subject key identifier: 37:58:C9:66:1D:9B:EB:D8:EB:8F:90:A4:4A:00:76:3A:E7:44:6A:F8 Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 0199 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/08A1C0B8DC5011EF9C212C5CC4F9AE02.roa Signing time: Mon 27 Jan 2025 01:42:57 +0000 ROA not before: Mon 27 Jan 2025 01:42:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38277 IP address blocks: 43.252.40.0/24 maxlen: 24 43.252.41.0/24 maxlen: 24 43.252.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017 Validity Not Before: Jan 27 01:42:57 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6796e4a1-3bc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:77:ae:60:43:95:5e:6a:84:08:c3:33:f3:5f: 3d:4f:36:49:3e:9a:d0:99:29:5c:e9:c0:2b:55:95: 08:ba:0f:34:6c:bb:42:ab:c0:78:30:62:35:e3:95: 71:01:dd:9e:24:2a:2d:4b:67:ff:62:da:03:92:fe: dc:dd:a9:44:be:69:11:37:5d:a9:55:40:0f:0b:18: 56:ad:39:2c:38:6f:77:43:da:60:c6:28:5b:f8:a0: 13:aa:27:32:35:1c:c9:36:4a:da:52:5a:c4:94:90: 41:1e:b7:71:4d:62:61:fa:f4:29:62:9b:92:d4:84: 35:5c:5e:e5:21:33:a2:7f:70:5d:78:34:71:8e:6a: b4:d5:66:53:40:7e:fe:33:55:27:16:08:b5:2e:55: fe:64:4d:d6:10:41:aa:98:89:ef:86:71:04:cf:06: 0d:e4:13:04:ff:a4:73:a7:f7:8e:1e:93:9f:f5:39: 13:b1:dc:3e:c2:6b:7d:b8:c9:d8:b3:f9:11:e9:bb: 63:6f:73:96:23:0a:c9:80:db:c4:12:b4:b7:f2:1a: f2:ec:04:1e:ca:f1:ef:1d:40:ae:cd:25:14:82:96: 6e:eb:ac:29:71:36:7d:d4:c9:29:5e:11:93:dc:90: 11:d4:30:9d:68:b6:12:07:c6:e1:bd:83:ca:3a:db: 7e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:58:C9:66:1D:9B:EB:D8:EB:8F:90:A4:4A:00:76:3A:E7:44:6A:F8 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/08A1C0B8DC5011EF9C212C5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.40.0-43.252.42.255 Signature Algorithm: sha256WithRSAEncryption 51:26:4a:4d:38:3a:93:25:79:9b:4f:11:99:8e:5c:db:71:6e: 19:46:72:03:b0:5c:0f:8f:5b:f2:85:f9:49:cd:fb:e8:00:9c: 03:1f:0e:19:23:c0:d2:dc:f3:98:ec:4a:74:c1:2c:bb:42:c8: 60:4c:cc:3e:1b:0e:4f:b1:04:36:cb:64:68:83:a0:9b:b7:df: c3:c1:d2:e5:34:09:df:97:96:5f:dc:01:6e:c3:a9:9f:4d:1e: 30:ba:6d:f0:4a:33:c3:69:d5:56:6d:c0:83:ea:fa:35:f5:2a: 70:c1:cd:1a:c2:02:71:5b:9e:26:3c:21:67:4e:35:b8:38:7a: 8d:c9:5c:c7:d7:f0:58:83:4a:0e:ab:ba:69:5b:16:cb:10:f2: cf:cf:3e:ff:7b:5c:04:91:06:d4:50:b3:37:18:6d:37:ec:92: 0f:68:9e:7f:c1:ad:8a:15:c4:2b:ec:d4:dc:79:31:55:d7:5c: 78:1f:17:6e:09:1e:a4:c5:23:cf:24:48:1c:62:f6:cb:ce:4c: a0:67:d0:5f:5c:38:63:b3:06:43:b8:42:e4:9d:95:99:bc:8e: d9:78:8b:63:14:20:6b:4b:9a:9f:f5:f0:c5:d8:1c:8a:58:ad: 72:0e:d4:7b:ba:0c:12:cc:52:17:bd:5a:23:7a:fd:9a:df:52: a9:23:5c:8e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjUwMTI3MDE0MjU3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk2ZTRhMS0zYmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3euYEOVXmqECMMz8189TzZJPprQmSlc6cArVZUIug80bLtCq8B4MGI145Vx Ad2eJCotS2f/YtoDkv7c3alEvmkRN12pVUAPCxhWrTksOG93Q9pgxihb+KATqicy NRzJNkraUlrElJBBHrdxTWJh+vQpYpuS1IQ1XF7lITOif3BdeDRxjmq01WZTQH7+ M1UnFgi1LlX+ZE3WEEGqmInvhnEEzwYN5BME/6Rzp/eOHpOf9TkTsdw+wmt9uMnY s/kR6btjb3OWIwrJgNvEErS38hry7AQeyvHvHUCuzSUUgpZu66wpcTZ91MkpXhGT 3JAR1DCdaLYSB8bhvYPKOtt+LwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFDdYyWYd m+vY64+QpEoAdjrnRGr4MB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwMTcvMTA1QUM4RkM5MEMzMTFFREJBMURDQzIzQzRGOUFFMDIvMDhBMUMwQjhE QzUwMTFFRjlDMjEyQzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAyv8KAMEACv8KjANBgkqhkiG9w0BAQsFAAOCAQEAUSZK TTg6kyV5m08RmY5c23FuGUZyA7BcD49b8oX5Sc376ACcAx8OGSPA0tzzmOxKdMEs u0LIYEzMPhsOT7EENstkaIOgm7ffw8HS5TQJ35eWX9wBbsOpn00eMLpt8Eozw2nV Vm3Ag+r6NfUqcMHNGsICcVueJjwhZ041uDh6jclcx9fwWINKDqu6aVsWyxDyz88+ /3tcBJEG1FCzNxhtN+ySD2ief8GtihXEK+zU3HkxVddceB8XbgkepMUjzyRIHGL2 y85MoGfQX1w4Y7MGQ7hC5J2VmbyO2XiLYxQga0uan/Xwxdgcilitcg7Ue7oMEsxS F71aI3r9mt9SqSNcjg== -----END CERTIFICATE-----Generated at Sun Apr 6 12:47:29 2025 by rpki-client