$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3A4C4938169F11F0824A5A6CC4F9AE02.roa File: 3A4C4938169F11F0824A5A6CC4F9AE02.roa (raw, json) Hash identifier: 3saw+DlRk+cCqJs0cq8Afetz6s7YdzYR16ON6iFH9p0= Subject key identifier: AD:29:86:73:51:B5:3E:DC:9E:DE:71:03:74:FA:FC:B8:D1:D9:8D:BD Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 25A9 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3A4C4938169F11F0824A5A6CC4F9AE02.roa Signing time: Fri 11 Apr 2025 06:35:58 +0000 ROA not before: Fri 11 Apr 2025 06:35:58 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 60721 IP address blocks: 115.167.9.0/24 maxlen: 24 115.167.62.0/24 maxlen: 24 115.167.76.0/24 maxlen: 24 202.92.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9641 (0x25a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Apr 11 06:35:58 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67f8b84e-a506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:87:20:42:db:45:37:72:11:90:de:b2:dd:a8: d6:a1:71:42:2b:84:27:6d:e3:25:88:1e:18:9b:35: bc:9d:d9:9f:23:70:09:11:45:ea:24:79:f6:08:a5: 1d:c8:6d:1c:b4:84:42:63:f3:f4:db:1d:4e:44:8e: c0:3d:7b:93:4b:74:0f:5c:d4:b8:f4:d1:79:79:be: 62:96:8f:e6:ee:5d:24:da:3b:0c:1a:3c:27:82:f1: d0:4b:95:32:0f:c0:43:7c:c0:25:6b:98:df:30:c3: a5:77:9a:20:3f:19:73:32:a4:65:de:d4:2e:9a:60: a3:27:36:8a:19:32:3e:3f:72:d0:7e:b2:db:19:80: 61:c5:9c:d4:f2:55:01:ca:ba:74:04:71:5b:64:3f: 9f:5a:e4:4a:dd:e2:ee:a7:09:58:01:22:0f:42:fd: 06:20:e0:64:1d:93:bd:98:fb:70:56:5b:0b:0c:0c: 03:94:69:09:b6:d5:56:ac:10:89:77:5e:9e:55:2c: c9:30:3a:61:ac:ab:9d:2c:22:7a:23:cd:fa:73:e4: a4:b8:75:b4:83:17:5a:67:16:84:0a:3e:13:ed:47: cb:14:94:aa:23:0e:ad:6f:b2:c3:1b:3a:ab:bd:c0: ee:12:14:83:94:d0:1c:99:27:ae:ae:7f:42:1c:37: a6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:29:86:73:51:B5:3E:DC:9E:DE:71:03:74:FA:FC:B8:D1:D9:8D:BD X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3A4C4938169F11F0824A5A6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.9.0/24 115.167.62.0/24 115.167.76.0/24 202.92.18.0/24 Signature Algorithm: sha256WithRSAEncryption 59:f3:6a:b3:da:d9:de:e6:93:12:a3:39:43:30:43:3b:41:5e: 31:a1:9f:cb:9c:8d:96:31:61:b8:34:56:9f:05:df:b5:e1:df: a5:86:dd:1f:d7:cd:2d:6f:c9:43:59:03:91:f0:c5:64:da:f3: 87:06:78:b4:1f:8f:b6:5d:15:5d:91:84:0b:8f:37:4b:28:84: 85:fa:83:ec:c8:92:e9:d6:57:03:bf:32:8f:f3:67:7f:c5:d4: bf:51:37:c7:46:e9:02:1b:27:87:5f:b5:83:30:14:18:fe:23: 76:e7:25:18:50:1b:a0:96:05:44:b4:33:3a:f4:28:8c:df:a0: 02:5b:e2:89:cf:ae:df:c4:30:34:03:32:43:1c:7c:51:4e:12: 77:ab:d4:d6:8e:f3:ab:da:15:a6:bb:47:52:4f:90:b2:c5:46: ea:ae:43:64:41:3b:e6:33:9f:df:d6:20:b2:10:ac:93:e3:1f: fe:7a:f1:0a:d8:a4:75:c4:7f:d4:d9:53:8f:93:ca:6d:64:f5: 00:25:82:2b:4f:cb:40:40:d5:45:f4:66:93:07:54:38:6d:b0: c3:fd:39:be:58:55:da:60:2c:c4:50:5a:4a:e7:0a:ff:a5:20: 96:c1:50:78:e4:54:b2:02:f7:6f:88:74:79:02:a2:a2:e9:ea: e6:55:05:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICJakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwNDExMDYzNTU4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4Yjg0ZS1hNTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IcgQttFN3IRkN6y3ajWoXFCK4QnbeMliB4YmzW8ndmfI3AJEUXqJHn2CKUd yG0ctIRCY/P02x1ORI7APXuTS3QPXNS49NF5eb5ilo/m7l0k2jsMGjwngvHQS5Uy D8BDfMAla5jfMMOld5ogPxlzMqRl3tQummCjJzaKGTI+P3LQfrLbGYBhxZzU8lUB yrp0BHFbZD+fWuRK3eLupwlYASIPQv0GIOBkHZO9mPtwVlsLDAwDlGkJttVWrBCJ d16eVSzJMDphrKudLCJ6I836c+SkuHW0gxdaZxaECj4T7UfLFJSqIw6tb7LDGzqr vcDuEhSDlNAcmSeurn9CHDemIQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFK0phnNR tT7cnt5xA3T6/LjR2Y29MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvM0E0QzQ5Mzgx NjlGMTFGMDgyNEE1QTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABzpwkDBABzpz4DBABzp0wDBADKXBIwDQYJKoZIhvcNAQEL BQADggEBAFnzarPa2d7mkxKjOUMwQztBXjGhn8ucjZYxYbg0Vp8F37Xh36WG3R/X zS1vyUNZA5HwxWTa84cGeLQfj7ZdFV2RhAuPN0sohIX6g+zIkunWVwO/Mo/zZ3/F 1L9RN8dG6QIbJ4dftYMwFBj+I3bnJRhQG6CWBUS0Mzr0KIzfoAJb4onPrt/EMDQD MkMcfFFOEner1NaO86vaFaa7R1JPkLLFRuquQ2RBO+Yzn9/WILIQrJPjH/568QrY pHXEf9TZU4+Tym1k9QAlgitPy0BA1UX0ZpMHVDhtsMP9Ob5YVdpgLMRQWkrnCv+l IJbBUHjkVLIC92+IdHkCoqLp6uZVBV0= -----END CERTIFICATE-----Generated at Sun Apr 13 02:07:27 2025 by rpki-client