$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa File: C2B5BE908CAF11EBBADF6F60C4F9AE02.roa (raw, json) Hash identifier: Tp6yV6aNCHUMLxFxEsezUBZI5iOsrCF8OtHjSK1vpw0= Subject key identifier: 0F:8B:47:9F:5D:E0:6F:B0:89:7D:60:9E:60:6F:D8:99:3B:9C:E5:78 Certificate issuer: /CN=A91E4519/serialNumber=A9A75555ED70672F71D52F6593B91B4420BAA70B Certificate serial: 062E Authority key identifier: A9:A7:55:55:ED:70:67:2F:71:D5:2F:65:93:B9:1B:44:20:BA:A7:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa Signing time: Wed 02 Apr 2025 22:54:23 +0000 ROA not before: Wed 02 Apr 2025 22:54:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142011 IP address blocks: 203.89.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.crl rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1582 (0x62e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4519 Validity Not Before: Apr 2 22:54:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67edc01f-b131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:51:c8:bd:37:cb:16:88:ba:29:a0:ce:53:4c: f8:e1:e0:99:96:c0:10:43:9b:59:a3:a4:2a:e8:fc: bd:24:bf:a3:4a:6c:f9:e7:78:bb:92:80:57:57:ae: 76:d0:aa:6b:d3:2f:64:80:b2:9f:0c:9e:46:fc:ad: 8e:6b:dd:4d:98:8b:2d:6c:11:c6:ef:50:ca:ee:2e: 82:40:b6:b1:8a:b1:47:5a:b6:e3:0d:d8:01:56:a2: ae:df:6d:72:f7:8b:34:c0:da:07:27:da:21:ea:87: ef:3d:b2:b3:41:df:b3:ef:12:8b:08:98:b6:c9:25: 12:d0:da:c5:22:91:c6:88:b2:98:95:5a:0b:7e:ad: d4:28:16:e0:4d:01:6b:aa:7b:10:a6:f4:04:23:0b: 37:97:29:60:a7:b0:45:d8:ac:ce:ca:25:86:79:1f: 38:06:2c:36:dc:83:f8:fc:2e:a7:01:1a:bf:00:85: 10:4f:d3:8c:40:cc:6d:6d:70:de:1f:4e:c1:9e:43: 7b:6e:6e:48:d4:41:af:a4:e9:94:63:96:c3:ad:02: f5:b8:fe:6b:37:18:ab:89:b2:47:f1:d2:4e:f0:a8: e5:ce:78:6b:9a:bd:11:8d:54:57:ae:3a:6a:dc:73: 23:91:b8:1f:b1:06:b9:c5:76:2f:16:2e:ba:9f:7e: ba:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8B:47:9F:5D:E0:6F:B0:89:7D:60:9E:60:6F:D8:99:3B:9C:E5:78 X509v3 Authority Key Identifier: keyid:A9:A7:55:55:ED:70:67:2F:71:D5:2F:65:93:B9:1B:44:20:BA:A7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.89.151.0/24 Signature Algorithm: sha256WithRSAEncryption a9:39:d3:d9:82:b3:3d:2e:52:5d:31:dc:40:f3:41:e3:6e:da: 0e:cf:86:78:7b:ee:d8:c1:2e:27:fa:f1:2e:cf:aa:cd:f8:cb: 59:92:80:4b:17:34:12:71:21:97:ea:41:8a:87:e8:56:dd:29: 11:35:2a:54:b6:b2:53:1d:c3:89:ba:b6:e6:ea:da:79:27:02: d1:0f:27:1d:ef:8e:22:87:6d:04:4d:14:3f:1a:62:2c:e4:4f: 6e:d3:31:46:50:55:5c:2c:81:3e:ff:df:e9:b7:ee:aa:14:f1: 08:0c:c5:75:3c:c1:0d:bf:6b:75:f6:2c:af:dc:5a:7e:91:da: c6:3e:91:2f:33:ae:52:b3:bf:a8:19:56:34:6c:9d:92:90:4f: a2:41:1c:ce:66:3a:54:de:5e:8b:b2:cc:0a:cf:dd:f0:2e:05: d8:8f:6c:f9:32:86:12:53:e8:73:46:0d:2d:b4:2b:6b:0c:c5: 50:81:ac:b2:d8:73:3a:8e:96:6d:43:57:aa:6f:7f:d9:3a:bb: d1:5b:65:96:6f:65:63:8c:36:46:a7:ff:bf:d8:a1:a8:a3:1f: 03:be:c6:94:12:99:e0:06:01:d6:14:01:6f:eb:94:88:b7:59: a8:75:2e:df:da:77:f6:c9:94:9e:38:46:6d:2b:e5:f4:06:e4: c3:d1:48:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ1MTkxMTAvBgNVBAUTKEE5QTc1NTU1RUQ3MDY3MkY3MUQ1MkY2NTkzQjkxQjQ0 MjBCQUE3MEIwHhcNMjUwNDAyMjI1NDIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYzAxZi1iMTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FHIvTfLFoi6KaDOU0z44eCZlsAQQ5tZo6Qq6Py9JL+jSmz553i7koBXV652 0Kpr0y9kgLKfDJ5G/K2Oa91NmIstbBHG71DK7i6CQLaxirFHWrbjDdgBVqKu321y 94s0wNoHJ9oh6ofvPbKzQd+z7xKLCJi2ySUS0NrFIpHGiLKYlVoLfq3UKBbgTQFr qnsQpvQEIws3lylgp7BF2KzOyiWGeR84Biw23IP4/C6nARq/AIUQT9OMQMxtbXDe H07BnkN7bm5I1EGvpOmUY5bDrQL1uP5rNxiribJH8dJO8Kjlznhrmr0RjVRXrjpq 3HMjkbgfsQa5xXYvFi66n366IwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA+LR59d 4G+wiX1gnmBv2Jk7nOV4MB8GA1UdIwQYMBaAFKmnVVXtcGcvcdUvZZO5G0QguqcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDUxOS8wNDI2NDkxRThD QUUxMUVCQUExQjFGNUVDNEY5QUUwMi9xYWRWVmUxd1p5OXgxUzlsazdrYlJDQzZw d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZFZWZTF3Wnk5eDFTOWxrN2tiUkNDNnB3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ1MTkvMDQyNjQ5MUU4Q0FFMTFFQkFBMUIxRjVFQzRGOUFFMDIvQzJCNUJFOTA4 Q0FGMTFFQkJBREY2RjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLWZcwDQYJKoZIhvcNAQELBQADggEBAKk509mCsz0uUl0x 3EDzQeNu2g7Phnh77tjBLif68S7Pqs34y1mSgEsXNBJxIZfqQYqH6FbdKRE1KlS2 slMdw4m6tubq2nknAtEPJx3vjiKHbQRNFD8aYizkT27TMUZQVVwsgT7/3+m37qoU 8QgMxXU8wQ2/a3X2LK/cWn6R2sY+kS8zrlKzv6gZVjRsnZKQT6JBHM5mOlTeXouy zArP3fAuBdiPbPkyhhJT6HNGDS20K2sMxVCBrLLYczqOlm1DV6pvf9k6u9FbZZZv ZWOMNkan/7/YoaijHwO+xpQSmeAGAdYUAW/rlIi3Wah1Lt/ad/bJlJ44Rm0r5fQG 5MPRSCw= -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:48 2025 by rpki-client