$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/05BB736E056111F091871F1DC4F9AE02.roa File: 05BB736E056111F091871F1DC4F9AE02.roa (raw, json) Hash identifier: ghAEwjNVcPY8bcCc6ixvPsUCodsmKPJ49R/yx/Rhaxw= Subject key identifier: E1:00:C9:09:CC:DD:80:BF:9A:4C:36:5A:F2:F0:00:54:4F:1B:C3:4C Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 24D3 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/05BB736E056111F091871F1DC4F9AE02.roa Signing time: Thu 20 Mar 2025 07:57:52 +0000 ROA not before: Thu 20 Mar 2025 07:57:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9009 IP address blocks: 115.167.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9427 (0x24d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134 Validity Not Before: Mar 20 07:57:52 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67dbca7f-5ad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:93:e2:01:7a:1d:80:9f:c7:e9:77:9a:4d:79: 0d:bb:ba:2b:25:58:65:31:a5:80:de:11:00:be:8f: 24:7d:1f:6b:e3:c5:c6:fa:28:6c:84:d2:b1:69:0c: 9c:44:70:23:39:64:a9:b3:5b:fb:26:6b:cb:3c:cc: 91:1b:60:36:85:55:93:0e:cd:f8:0c:06:c9:23:c3: e7:14:07:01:f3:79:52:1c:f9:1a:96:a9:0c:19:e5: 3f:b8:f5:68:b6:21:aa:62:52:84:a5:de:1f:ee:36: 71:21:f4:40:e0:ce:c0:4d:53:41:70:61:2a:0a:c2: c4:62:e0:a8:82:18:ef:fe:a7:ef:54:d2:72:02:2d: 09:ef:9b:c2:b9:01:3c:c4:44:9b:69:1e:54:e6:ba: 97:fb:42:8b:94:f5:da:de:93:4b:d9:2e:b5:3f:f1: 7d:ea:3e:37:59:b6:b8:01:3a:35:d1:bc:f8:0c:d3: 8a:f1:80:3b:10:08:54:ba:1f:77:28:30:45:c2:f3: 41:1e:a0:ec:1e:ad:79:5c:ba:12:88:2d:49:cd:a8: d6:25:85:46:e2:83:04:f4:4f:45:43:a3:f6:40:29: ee:e1:cb:b4:40:2c:69:a9:f0:77:31:85:44:d4:07: 59:01:28:86:61:fd:ef:d5:b7:75:a3:d3:4c:9b:44: fb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:00:C9:09:CC:DD:80:BF:9A:4C:36:5A:F2:F0:00:54:4F:1B:C3:4C X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/05BB736E056111F091871F1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.20.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:61:73:a5:46:a5:1b:ea:c3:48:69:a4:06:0f:17:f6:05:9b: 24:eb:fb:f7:4a:b6:bd:b4:50:02:c2:b9:34:04:9d:c1:c4:b7: 67:87:e5:d4:2b:99:69:78:4e:dd:3a:35:4e:d4:f5:61:df:cb: aa:23:0a:e7:75:af:c4:6a:16:88:6d:59:5c:45:d5:0e:4c:d2: 65:19:0a:24:28:b2:a3:dd:a3:9e:9b:6a:67:76:7e:c9:a5:b1: dc:8a:09:c0:85:ce:ce:2a:68:ba:22:9f:37:50:cd:b9:33:bd: 22:43:05:43:30:4a:77:80:9c:c6:81:c3:5b:33:8c:e9:f1:3e: 83:f3:7c:db:e9:24:0c:a0:7c:b2:6d:47:82:01:5c:92:ba:a9: 89:5f:2a:e6:b4:80:83:f7:d7:8c:a6:cb:31:7b:66:f4:8a:01: 9a:07:da:d0:3e:d7:19:35:4b:aa:8a:f8:bf:50:3d:68:cf:08: 87:c0:89:a4:81:c0:da:bc:c7:d3:ec:59:8e:90:4e:82:52:c6: d0:0f:23:ff:21:6b:b7:7f:0a:24:70:41:05:69:fb:9d:76:75: e6:81:88:e5:f1:44:3d:85:f0:4f:c5:da:74:2a:95:3e:a9:df: e1:5f:7f:b7:14:8d:1c:51:ee:f0:e3:51:c3:29:e2:06:e7:19: 99:58:b3:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwMzIwMDc1NzUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RiY2E3Zi01YWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpPiAXodgJ/H6XeaTXkNu7orJVhlMaWA3hEAvo8kfR9r48XG+ihshNKxaQyc RHAjOWSps1v7JmvLPMyRG2A2hVWTDs34DAbJI8PnFAcB83lSHPkalqkMGeU/uPVo tiGqYlKEpd4f7jZxIfRA4M7ATVNBcGEqCsLEYuCoghjv/qfvVNJyAi0J75vCuQE8 xESbaR5U5rqX+0KLlPXa3pNL2S61P/F96j43Wba4ATo10bz4DNOK8YA7EAhUuh93 KDBFwvNBHqDsHq15XLoSiC1JzajWJYVG4oME9E9FQ6P2QCnu4cu0QCxpqfB3MYVE 1AdZASiGYf3v1bd1o9NMm0T7QwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOEAyQnM 3YC/mkw2WvLwAFRPG8NMMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMDVCQjczNkUw NTYxMTFGMDkxODcxRjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJzpxQwDQYJKoZIhvcNAQELBQADggEBAFxhc6VGpRvqw0hp pAYPF/YFmyTr+/dKtr20UALCuTQEncHEt2eH5dQrmWl4Tt06NU7U9WHfy6ojCud1 r8RqFohtWVxF1Q5M0mUZCiQosqPdo56bamd2fsmlsdyKCcCFzs4qaLoinzdQzbkz vSJDBUMwSneAnMaBw1szjOnxPoPzfNvpJAygfLJtR4IBXJK6qYlfKua0gIP314ym yzF7ZvSKAZoH2tA+1xk1S6qK+L9QPWjPCIfAiaSBwNq8x9PsWY6QToJSxtAPI/8h a7d/CiRwQQVp+512deaBiOXxRD2F8E/F2nQqlT6p3+Fff7cUjRxR7vDjUcMp4gbn GZlYs6k= -----END CERTIFICATE-----Generated at Mon Apr 7 00:11:57 2025 by rpki-client