$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F5F86ADA8C5611E792848B4AC4F9AE02.roa File: F5F86ADA8C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: ZQdD4QBAodxhPJDLvSXRmOQaG3cbzn75kTPxr7PdWwA= Subject key identifier: C5:36:ED:D6:6B:A5:3D:21:FD:AD:4A:11:BB:03:CB:2E:7A:D0:33:B7 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2797 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F5F86ADA8C5611E792848B4AC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:49 +0000 ROA not before: Tue 08 Apr 2025 15:53:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38483 IP address blocks: 210.14.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 15:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10135 (0x2797) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70 Validity Not Before: Apr 8 15:53:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5468d-bfc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:04:76:8d:e3:b5:1e:08:3b:9d:e3:f3:05:50: 88:51:70:c5:68:f6:f4:ba:b6:ce:8d:49:04:28:47: 0b:f5:ab:f0:c8:d3:52:bd:12:44:a0:3f:0c:b4:48: 00:65:ce:50:90:0a:53:01:80:08:a8:67:61:c6:77: 88:1d:e8:9a:cd:b8:0b:5a:db:77:ce:88:d2:53:22: f7:08:e2:b9:1c:fa:dd:69:ad:7c:7d:d7:dc:29:b9: 3f:ea:d5:66:c5:f1:4a:34:23:46:f1:7f:0f:95:4c: e3:53:af:3e:09:f8:26:83:e3:a9:c9:97:5f:ff:25: c9:0d:69:53:5b:f0:38:f2:32:cb:92:25:09:ef:6b: 5a:4d:e9:c5:fd:53:4d:23:b7:4d:3f:70:75:32:dc: d7:4c:4a:39:7c:b2:70:3d:2a:ca:c2:27:d7:bf:c8: 47:8b:76:74:8a:63:1e:69:7a:36:37:6f:1b:d6:b5: 2c:9e:5b:fc:9e:15:18:02:81:e7:c4:b0:05:aa:2d: 7c:68:2b:ba:bc:3c:18:ec:61:60:d7:21:79:ce:a8: c2:48:22:cc:83:d7:fb:6c:ca:39:c7:39:d5:c7:24: bc:a4:d9:9d:69:7f:c6:c4:95:52:16:13:ab:ed:3c: d4:be:12:b9:dc:3b:9a:06:6f:64:0b:54:5d:9f:51: f8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:36:ED:D6:6B:A5:3D:21:FD:AD:4A:11:BB:03:CB:2E:7A:D0:33:B7 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F5F86ADA8C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.14.21.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:29:2e:ee:f2:b8:5c:05:2b:e5:e9:6d:5a:de:e2:ca:c9:1b: 9c:b5:30:4c:9b:b3:9c:03:1c:52:a4:18:f5:f0:dc:14:1d:73: de:66:dd:6a:eb:a0:f2:64:ac:9b:0f:80:6f:19:e1:9b:39:02: 06:e2:cd:80:95:a6:a7:ff:05:21:46:93:01:0b:52:0d:60:b4: d1:1f:45:a4:34:0c:3e:f9:7f:7c:7b:fd:20:e1:ee:de:5c:cd: 4b:58:7f:af:5c:51:2a:da:3f:76:3a:1d:ef:a8:09:2c:f7:b8: b7:b1:06:39:f6:a7:3b:77:92:e4:b6:57:84:0e:2a:93:4a:85: 6c:68:dd:46:8f:70:d7:32:09:35:95:2d:7f:6f:52:16:d7:85: 5f:7c:b3:8c:3d:98:ce:6b:12:37:57:51:2a:bb:cd:9d:94:00: 93:3f:9c:6f:a9:ae:5b:10:fd:4b:e1:86:2d:8a:b5:57:52:68: c7:61:d1:01:8e:fa:b2:97:27:7e:86:e4:e1:5e:90:7e:46:43: 6c:92:0f:3e:be:8f:8e:5c:f2:02:0c:2c:4e:f0:ab:29:be:b4: 64:68:76:40:57:92:3e:e3:95:9f:87:7a:67:fb:2b:03:25:c6: 34:0e:33:86:52:10:a3:a7:f8:5c:3f:95:9d:0e:cc:86:84:44: 66:e0:29:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4ZC1iZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgR2jeO1Hgg7nePzBVCIUXDFaPb0urbOjUkEKEcL9avwyNNSvRJEoD8MtEgA Zc5QkApTAYAIqGdhxneIHeiazbgLWtt3zojSUyL3COK5HPrdaa18fdfcKbk/6tVm xfFKNCNG8X8PlUzjU68+Cfgmg+OpyZdf/yXJDWlTW/A48jLLkiUJ72taTenF/VNN I7dNP3B1MtzXTEo5fLJwPSrKwifXv8hHi3Z0imMeaXo2N28b1rUsnlv8nhUYAoHn xLAFqi18aCu6vDwY7GFg1yF5zqjCSCLMg9f7bMo5xznVxyS8pNmdaX/GxJVSFhOr 7TzUvhK53DuaBm9kC1Rdn1H4FwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMU27dZr pT0h/a1KEbsDyy560DO3MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjVGODZBREE4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSDhUwDQYJKoZIhvcNAQELBQADggEBAB0pLu7yuFwFK+Xp bVre4srJG5y1MEybs5wDHFKkGPXw3BQdc95m3WrroPJkrJsPgG8Z4Zs5AgbizYCV pqf/BSFGkwELUg1gtNEfRaQ0DD75f3x7/SDh7t5czUtYf69cUSraP3Y6He+oCSz3 uLexBjn2pzt3kuS2V4QOKpNKhWxo3UaPcNcyCTWVLX9vUhbXhV98s4w9mM5rEjdX USq7zZ2UAJM/nG+prlsQ/Uvhhi2KtVdSaMdh0QGO+rKXJ36G5OFekH5GQ2ySDz6+ j45c8gIMLE7wqym+tGRodkBXkj7jlZ+Hemf7KwMlxjQOM4ZSEKOn+Fw/lZ0OzIaE RGbgKZI= -----END CERTIFICATE-----Generated at Fri Apr 11 12:21:56 2025 by rpki-client