$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/30CB9694A28911ECBC355360C4F9AE02.roa File: 30CB9694A28911ECBC355360C4F9AE02.roa (raw, json) Hash identifier: iacyWEeXTvXTILxRcADZ+9lCVjiDHQnMplIMRt/73Xk= Subject key identifier: BC:5A:05:E4:EC:65:17:4F:36:AC:0B:E9:82:8F:C2:5C:AE:F7:74:F0 Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Certificate serial: 06DD Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/30CB9694A28911ECBC355360C4F9AE02.roa Signing time: Fri 24 Jan 2025 22:32:03 +0000 ROA not before: Fri 24 Jan 2025 22:32:03 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4755 IP address blocks: 166.81.51.0/24 maxlen: 24 166.81.52.0/24 maxlen: 24 166.81.54.0/24 maxlen: 24 166.81.55.0/24 maxlen: 24 166.81.56.0/24 maxlen: 24 166.81.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1757 (0x6dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC31B Validity Not Before: Jan 24 22:32:03 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679414e3-4279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b1:39:41:df:37:af:ac:51:1e:20:aa:55:07: e6:a7:07:02:75:91:f6:90:dc:ad:5e:e2:fb:1c:7c: cc:7f:d4:5b:c5:cc:ea:00:25:29:95:44:c7:a0:b4: 2b:c4:6a:e8:33:2a:9a:e2:e8:5e:08:a3:4a:36:0b: 45:15:b1:fd:3f:30:15:83:98:c4:3b:d3:72:66:ec: 68:86:20:7c:a4:9a:5a:fb:8f:14:97:2f:85:70:51: 05:f7:62:d4:2c:0d:c7:e3:be:5f:07:c9:81:7e:98: 94:f6:eb:08:22:1d:04:52:cf:5b:04:12:2c:38:c6: 23:f2:c0:89:90:b7:68:70:0d:63:0e:db:ff:91:58: 2c:d1:fa:89:4a:fa:68:59:65:46:98:33:3a:ed:f6: 9c:a2:d9:38:d2:a4:5c:51:15:cd:42:1a:36:16:e8: 53:f8:2d:97:b9:7e:5b:32:0c:37:c0:d4:92:d3:44: 18:f0:5b:79:68:e6:44:f8:98:d1:70:7e:a0:86:60: 59:07:4e:eb:be:f6:39:d3:e3:d8:26:71:0c:3a:f9: 01:cc:d2:18:72:f1:4d:db:9f:b7:47:6f:2e:71:39: fa:7a:64:fc:d4:75:a9:ed:80:93:f2:6c:5b:09:b9: 6a:38:29:b8:db:0c:39:c3:49:5d:19:8d:8d:00:5a: 6f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5A:05:E4:EC:65:17:4F:36:AC:0B:E9:82:8F:C2:5C:AE:F7:74:F0 X509v3 Authority Key Identifier: keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/30CB9694A28911ECBC355360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.81.51.0-166.81.52.255 166.81.54.0-166.81.57.255 Signature Algorithm: sha256WithRSAEncryption 61:ba:d7:f7:15:08:3b:0d:97:51:30:8b:70:06:2f:57:e7:56: fa:af:b9:83:c2:19:c1:f2:b9:4d:df:5a:be:fe:05:64:92:bb: 43:b7:2d:31:82:8b:c8:80:10:85:76:e3:88:6d:77:5b:68:a7: 9e:5d:92:1b:a5:2a:a3:b0:db:c9:de:d9:e5:c1:73:c4:b1:cc: c9:6c:aa:22:e4:d5:77:c4:30:cc:7a:e3:bb:9c:78:fd:de:ad: 78:39:54:61:de:7f:c0:0c:58:4c:81:6f:f9:86:7a:1f:c3:41: 15:91:18:44:4f:76:bb:a9:d0:ec:05:42:38:dd:04:0c:5b:ca: c8:77:db:32:31:31:a6:cf:87:2c:3d:97:e9:3c:dd:eb:53:ae: 8a:50:e7:a5:8b:03:ae:9e:43:82:2d:a5:56:21:8b:4e:33:c4: 57:fa:b9:6c:d6:18:fc:86:69:4c:a3:90:65:e2:ab:78:fa:12: 30:01:aa:42:b9:5c:28:26:b4:01:94:7d:74:2f:d1:0b:c0:9b: 5a:fb:2a:6c:4e:7b:5c:b8:61:5a:a3:e0:3d:96:d0:16:bd:f5: 45:9c:02:9a:33:09:64:e6:59:e4:61:91:b9:fa:0c:e9:f7:f0: 12:28:74:3f:c3:36:aa:f5:47:e4:41:8d:db:ac:2b:65:33:a8: 2d:ad:57:5b -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICBt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMUIxMTAvBgNVBAUTKDhCOEFENUNBMUMzRThCOENGNDY4QjVGNDk2QTkxQUJC MEU0OENGQTgwHhcNMjUwMTI0MjIzMjAzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MTRlMy00Mjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7E5Qd83r6xRHiCqVQfmpwcCdZH2kNytXuL7HHzMf9RbxczqACUplUTHoLQr xGroMyqa4uheCKNKNgtFFbH9PzAVg5jEO9NyZuxohiB8pJpa+48Uly+FcFEF92LU LA3H475fB8mBfpiU9usIIh0EUs9bBBIsOMYj8sCJkLdocA1jDtv/kVgs0fqJSvpo WWVGmDM67facotk40qRcURXNQho2FuhT+C2XuX5bMgw3wNSS00QY8Ft5aOZE+JjR cH6ghmBZB07rvvY50+PYJnEMOvkBzNIYcvFN25+3R28ucTn6emT81HWp7YCT8mxb CblqOCm42ww5w0ldGY2NAFpvdQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFLxaBeTs ZRdPNqwL6YKPwlyu93TwMB8GA1UdIwQYMBaAFIuK1cocPouM9Gi19JapGrsOSM+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMxQi9EMEVDQ0Q0ODg5 M0QxMUVCOTE2REYwMjJDNEY5QUUwMi9pNHJWeWh3LWk0ejBhTFgwbHFrYXV3NUl6 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2k0clZ5aHctaTR6MGFMWDBscWthdXc1SXo2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMUIvRDBFQ0NENDg4OTNEMTFFQjkxNkRGMDIyQzRGOUFFMDIvMzBDQjk2OTRB Mjg5MTFFQ0JDMzU1MzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAKZRMwMEAKZRNDAMAwQBplE2AwQBplE4MA0GCSqGSIb3 DQEBCwUAA4IBAQBhutf3FQg7DZdRMItwBi9X51b6r7mDwhnB8rlN31q+/gVkkrtD ty0xgovIgBCFduOIbXdbaKeeXZIbpSqjsNvJ3tnlwXPEsczJbKoi5NV3xDDMeuO7 nHj93q14OVRh3n/ADFhMgW/5hnofw0EVkRhET3a7qdDsBUI43QQMW8rId9syMTGm z4csPZfpPN3rU66KUOeliwOunkOCLaVWIYtOM8RX+rls1hj8hmlMo5Bl4qt4+hIw AapCuVwoJrQBlH10L9ELwJta+ypsTntcuGFao+A9ltAWvfVFnAKaMwlk5lnkYZG5 +gzp9/ASKHQ/wzaq9UfkQY3brCtlM6gtrVdb -----END CERTIFICATE-----Generated at Sun Apr 6 00:20:26 2025 by rpki-client