$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/43441626860111EF8B4DF50DC4F9AE02.roa File: 43441626860111EF8B4DF50DC4F9AE02.roa (raw, json) Hash identifier: mfBAlHBLtaChfMT6zfmbBV23T4d13rPLxjMmrWBPL0E= Subject key identifier: EE:19:FB:C9:D8:77:02:B1:1F:9D:8A:36:0F:DE:CB:1D:5D:8D:FD:25 Certificate issuer: /CN=A91E1F31/serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Certificate serial: CE Authority key identifier: 69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/43441626860111EF8B4DF50DC4F9AE02.roa Signing time: Thu 27 Mar 2025 05:12:12 +0000 ROA not before: Thu 27 Mar 2025 05:12:12 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152304 IP address blocks: 202.37.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1F31 Validity Not Before: Mar 27 05:12:12 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e4de2c-b242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:42:55:73:9d:10:42:c7:83:f7:41:7f:cb:00: 9d:3c:64:0c:f8:10:49:00:55:c2:0c:52:f7:1a:95: 18:88:d8:e8:10:53:70:ec:75:66:30:61:f8:3c:41: d8:3e:4f:7a:5e:8d:9a:36:74:2d:6a:8e:ba:c1:a2: 1d:41:6e:2d:57:23:bf:37:3d:e5:22:20:63:71:10: 90:53:ca:b3:05:33:cc:df:e8:9f:a4:7b:d1:5b:97: 2b:c4:03:0d:4b:ba:8c:90:17:5b:9a:7e:1a:c3:4a: cc:6b:9a:aa:47:38:f7:bc:34:67:17:5a:b0:12:99: 85:b4:5c:03:1a:75:0d:ae:03:e2:54:57:6b:e1:0b: d2:49:1a:3c:01:5b:fd:39:34:80:0c:5c:61:e8:a2: 4c:f1:1b:71:f5:70:10:fb:09:f4:10:38:c2:f6:4b: 49:3c:1f:54:2b:b9:16:e2:12:b0:ff:63:b9:f4:e1: 12:f1:12:d9:92:81:dd:15:04:b2:58:fd:09:0f:8c: 13:0e:90:64:af:d0:12:4c:11:3d:ab:3c:c3:df:69: 77:7e:a5:83:bd:14:4b:f6:16:96:50:d3:d3:05:57: 23:d4:16:0c:43:e2:40:fb:d8:14:0a:99:95:4a:a3: 30:77:eb:9d:50:0d:bc:4b:4b:cc:d7:6c:a7:e2:e4: 85:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:19:FB:C9:D8:77:02:B1:1F:9D:8A:36:0F:DE:CB:1D:5D:8D:FD:25 X509v3 Authority Key Identifier: keyid:69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/43441626860111EF8B4DF50DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.47.0/24 Signature Algorithm: sha256WithRSAEncryption c2:67:6b:6c:9a:7d:66:a2:4c:2a:cc:91:98:f0:93:76:61:1a: f8:73:48:b4:12:f6:19:34:36:1f:81:fd:dc:64:8c:43:b1:fa: b4:97:23:1f:6e:24:97:de:a6:1c:5d:43:e1:01:a6:3b:43:79: 2b:8e:5d:96:5e:05:92:4b:18:c4:da:a7:5f:94:d0:36:71:0c: d4:63:c2:e4:5b:26:13:11:ee:f8:11:3d:22:c9:cb:c1:7a:39: 81:39:69:84:34:e7:1f:4e:dc:51:14:43:70:d4:7a:8c:be:b1: e5:b5:df:74:0a:59:6c:2a:a8:08:38:4c:6a:b2:b8:91:78:86: f0:60:af:55:11:72:a8:c5:84:88:a8:95:3f:d2:8b:ac:3a:e0: ad:17:66:64:5d:59:68:09:df:f9:0d:11:f0:9a:e7:36:43:63: d3:18:98:cb:c3:6c:3e:71:f7:86:34:84:e4:2e:8c:02:f3:a7: 83:b5:55:1b:a9:34:0e:f7:2b:c5:e0:20:a0:86:a4:bb:ff:97: bb:f2:6b:31:17:db:99:3b:54:fa:9a:a6:9c:b4:67:c6:bf:0f: 11:35:0a:61:93:1a:23:77:3b:a4:70:ca:85:cb:46:38:9f:ef: 69:2c:6d:ef:d9:3a:e6:83:bf:25:e0:32:3a:58:f1:24:00:75: 65:e2:6a:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFGMzExMTAvBgNVBAUTKDY5QTMyRDczRTAzOEEzMEQ0N0FDQUNFQjgxQ0Q3MzEy QUY3NTNBQjkwHhcNMjUwMzI3MDUxMjEyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0ZGUyYy1iMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEJVc50QQseD90F/ywCdPGQM+BBJAFXCDFL3GpUYiNjoEFNw7HVmMGH4PEHY Pk96Xo2aNnQtao66waIdQW4tVyO/Nz3lIiBjcRCQU8qzBTPM3+ifpHvRW5crxAMN S7qMkBdbmn4aw0rMa5qqRzj3vDRnF1qwEpmFtFwDGnUNrgPiVFdr4QvSSRo8AVv9 OTSADFxh6KJM8Rtx9XAQ+wn0EDjC9ktJPB9UK7kW4hKw/2O59OES8RLZkoHdFQSy WP0JD4wTDpBkr9ASTBE9qzzD32l3fqWDvRRL9haWUNPTBVcj1BYMQ+JA+9gUCpmV SqMwd+udUA28S0vM12yn4uSFYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO4Z+8nY dwKxH52KNg/eyx1djf0lMB8GA1UdIwQYMBaAFGmjLXPgOKMNR6ys64HNcxKvdTq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUYzMS9BMEY0RTBEMEUx QkUxMUVFQjA0NUVCMjZDNEY5QUUwMi9hYU10Yy1BNG93MUhyS3pyZ2MxekVxOTFP cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhTXRjLUE0b3cxSHJLenJnYzF6RXE5MU9yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFGMzEvQTBGNEUwRDBFMUJFMTFFRUIwNDVFQjI2QzRGOUFFMDIvNDM0NDE2MjY4 NjAxMTFFRjhCNERGNTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJS8wDQYJKoZIhvcNAQELBQADggEBAMJna2yafWaiTCrM kZjwk3ZhGvhzSLQS9hk0Nh+B/dxkjEOx+rSXIx9uJJfephxdQ+EBpjtDeSuOXZZe BZJLGMTap1+U0DZxDNRjwuRbJhMR7vgRPSLJy8F6OYE5aYQ05x9O3FEUQ3DUeoy+ seW133QKWWwqqAg4TGqyuJF4hvBgr1URcqjFhIiolT/Si6w64K0XZmRdWWgJ3/kN EfCa5zZDY9MYmMvDbD5x94Y0hOQujALzp4O1VRupNA73K8XgIKCGpLv/l7vyazEX 25k7VPqappy0Z8a/DxE1CmGTGiN3O6RwyoXLRjif72ksbe/ZOuaDvyXgMjpY8SQA dWXiaiQ= -----END CERTIFICATE-----Generated at Sat Apr 5 03:34:43 2025 by rpki-client