$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/153EBE3ADEF711EF84C57421C4F9AE02.roa File: 153EBE3ADEF711EF84C57421C4F9AE02.roa (raw, json) Hash identifier: f6YvpcInK7aMZI/gTlnIjzNzS2LMqoG/bSzJ7lAf9V4= Subject key identifier: 44:10:ED:B4:2F:71:04:58:17:44:2A:30:D8:D9:2C:38:DA:65:58:FC Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 01B7 Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/153EBE3ADEF711EF84C57421C4F9AE02.roa Signing time: Thu 30 Jan 2025 10:44:09 +0000 ROA not before: Thu 30 Jan 2025 10:44:09 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55636 IP address blocks: 27.116.60.0/22 maxlen: 24 103.73.164.0/22 maxlen: 24 202.172.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4 Validity Not Before: Jan 30 10:44:09 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=679b57f8-f040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:0a:1f:b6:06:ef:72:59:2e:cd:a4:20:b8: 22:71:a3:1b:2e:22:39:c5:3b:b0:8a:5c:30:1c:47: d4:43:7d:9b:61:44:aa:0a:c6:f1:64:84:eb:2f:db: eb:e8:3c:0b:83:d7:6d:57:03:59:01:83:29:d2:86: 73:46:b3:4b:c1:46:f6:00:5d:3b:7d:92:2a:f8:ac: 61:01:99:54:59:3e:06:0d:55:ef:1c:18:cd:70:9d: 7e:0d:34:7a:74:00:40:45:3b:92:3f:28:8c:a5:6f: b2:c6:aa:ec:b3:a1:2a:a0:58:ca:1b:aa:ef:be:b5: 69:30:b4:98:27:ab:ae:f3:8f:d5:fc:b9:f8:12:ae: f0:c3:f9:a0:4f:6a:80:e8:80:dd:fb:d4:f4:37:8c: d1:6c:8d:bb:92:fb:7e:03:7b:19:8d:a8:c6:99:3a: 51:33:a2:d7:55:5d:62:fb:25:43:b3:36:38:32:c8: ff:07:ff:c6:9e:88:3a:36:fa:5e:3e:9a:ef:52:77: c5:f6:15:02:11:b1:0a:9f:4d:e6:83:d0:c7:57:2f: b4:2d:3b:64:b1:f0:a8:25:0b:67:14:3c:55:1e:ce: d7:47:69:78:7c:1c:05:0c:49:9a:e6:56:ce:23:f3: 8f:d5:ce:c1:e5:43:1f:b9:c4:06:e7:20:88:ef:61: 00:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:10:ED:B4:2F:71:04:58:17:44:2A:30:D8:D9:2C:38:DA:65:58:FC X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/153EBE3ADEF711EF84C57421C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.116.60.0/22 103.73.164.0/22 202.172.20.0/22 Signature Algorithm: sha256WithRSAEncryption 17:9c:8f:f9:5b:f9:cd:fa:87:a9:ed:39:eb:04:01:67:6a:78: a9:25:1d:ae:04:e3:4a:80:9e:b7:c2:ff:9e:76:db:36:fe:97: 4e:1b:b5:83:83:03:a8:70:c1:35:c1:f7:cd:1b:73:f7:ac:dd: 17:fe:5b:3b:0b:8b:49:d8:0e:01:47:d3:09:fc:ae:1a:de:7e: 9f:c1:14:16:67:2a:18:e5:54:09:df:c8:fb:5a:4f:57:55:b2: 78:b7:3a:47:1c:73:a2:25:4f:b1:16:9d:e8:70:54:de:fd:32: 05:d8:8b:52:17:82:52:0d:b4:a5:76:86:82:52:85:1c:ee:70: 95:83:64:e2:f2:d3:01:5e:40:e5:e4:81:bf:d6:13:09:01:32: d1:b9:05:ed:31:fd:c1:c9:a2:eb:52:3f:ca:d7:7d:77:72:c4: 58:11:cb:2e:ba:ce:1b:8c:c3:c5:d9:1b:c7:c0:a0:ae:ad:56: 8e:83:88:2f:0c:e0:e0:5d:32:2c:30:e4:ff:26:38:bb:b2:ac: 53:ce:03:54:a1:7c:45:de:ec:e0:c4:d2:7f:42:6a:53:43:6e: c1:95:27:ef:77:9e:ca:e7:da:dc:51:75:20:5d:b1:ab:81:0e: 88:fa:43:cd:91:7e:fe:a0:45:0a:d0:64:08:e9:6c:3c:34:d7: 82:a9:f9:da -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUwMTMwMTA0NDA5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliNTdmOC1mMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvogKH7YG73JZLs2kILgicaMbLiI5xTuwilwwHEfUQ32bYUSqCsbxZITrL9vr 6DwLg9dtVwNZAYMp0oZzRrNLwUb2AF07fZIq+KxhAZlUWT4GDVXvHBjNcJ1+DTR6 dABARTuSPyiMpW+yxqrss6EqoFjKG6rvvrVpMLSYJ6uu84/V/Ln4Eq7ww/mgT2qA 6IDd+9T0N4zRbI27kvt+A3sZjajGmTpRM6LXVV1i+yVDszY4Msj/B//Gnog6Nvpe PprvUnfF9hUCEbEKn03mg9DHVy+0LTtksfCoJQtnFDxVHs7XR2l4fBwFDEma5lbO I/OP1c7B5UMfucQG5yCI72EALQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEQQ7bQv cQRYF0QqMNjZLDjaZVj8MB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM5QzQvMUE3MERDODY0RTkzMTFFREE3MzBFRDMyQzRGOUFFMDIvMTUzRUJFM0FE RUY3MTFFRjg0QzU3NDIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIbdDwDBAJnSaQDBALKrBQwDQYJKoZIhvcNAQELBQADggEB ABecj/lb+c36h6ntOesEAWdqeKklHa4E40qAnrfC/5522zb+l04btYODA6hwwTXB 980bc/es3Rf+WzsLi0nYDgFH0wn8rhrefp/BFBZnKhjlVAnfyPtaT1dVsni3Okcc c6IlT7EWnehwVN79MgXYi1IXglINtKV2hoJShRzucJWDZOLy0wFeQOXkgb/WEwkB MtG5Be0x/cHJoutSP8rXfXdyxFgRyy66zhuMw8XZG8fAoK6tVo6DiC8M4OBdMiww 5P8mOLuyrFPOA1ShfEXe7ODE0n9CalNDbsGVJ+93nsrn2txRdSBdsauBDoj6Q82R fv6gRQrQZAjpbDw014Kp+do= -----END CERTIFICATE-----Generated at Sat Apr 5 19:13:05 2025 by rpki-client