$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5E108A62113311F0BDA4244DC4F9AE02.roa File: 5E108A62113311F0BDA4244DC4F9AE02.roa (raw, json) Hash identifier: TAC+O8Um8McjwxfD60X0Izt0d/Si0WO/PAsPL0HRDyM= Subject key identifier: 97:62:18:5D:C9:3E:B1:14:24:E5:4F:D0:2E:69:C7:C1:AD:8F:A7:CC Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 2539 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5E108A62113311F0BDA4244DC4F9AE02.roa Signing time: Fri 04 Apr 2025 09:05:51 +0000 ROA not before: Fri 04 Apr 2025 09:05:51 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 43260 IP address blocks: 113.203.227.0/24 maxlen: 24 113.203.243.0/24 maxlen: 24 113.203.245.0/24 maxlen: 24 115.167.15.0/24 maxlen: 24 115.167.28.0/24 maxlen: 24 115.167.118.0/24 maxlen: 24 115.167.119.0/24 maxlen: 24 175.110.91.0/24 maxlen: 24 175.110.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9529 (0x2539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134 Validity Not Before: Apr 4 09:05:51 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67efa0ef-d4ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:41:4d:c1:b6:10:80:95:32:74:45:5a:67:67: e8:84:29:19:1f:48:18:e9:af:2a:f7:3e:9b:cc:a4: 7b:9d:2d:a8:ec:a3:aa:a6:ad:87:95:59:12:70:cc: f1:6e:a9:f8:84:e4:43:11:85:5c:ef:a8:90:79:90: 00:ac:b2:59:ab:63:b2:8f:55:ed:b9:26:56:13:ae: f7:a3:d5:78:b4:b5:d5:02:7f:a6:62:a1:7f:2e:81: 89:7c:8f:5f:89:20:ed:18:6b:a4:0d:29:63:30:cf: 2c:d7:ea:16:fa:9e:39:05:a7:32:a8:2b:38:82:46: f6:3a:d3:b0:ab:c9:40:a2:0e:eb:cd:78:63:e1:cf: 76:f7:59:e9:d1:10:66:5f:95:d7:2b:11:c8:ed:1d: be:39:6c:5b:7d:13:4b:33:f7:c6:68:2b:59:14:2b: ed:00:0b:07:c1:3e:a4:f0:e5:47:77:fd:3d:2f:6d: 4a:65:c5:8f:f1:97:1b:c7:04:c2:4a:dd:20:38:59: 81:bc:89:62:b7:c0:93:14:af:6c:e1:63:14:a6:67: ca:0d:8a:6c:07:c1:2f:1b:55:fc:73:59:c2:86:cd: ad:58:b1:44:a9:e6:2a:7f:df:41:f2:40:b3:d8:b4: ad:be:46:7c:49:9c:8b:95:c8:41:87:6a:33:4e:f5: e1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:62:18:5D:C9:3E:B1:14:24:E5:4F:D0:2E:69:C7:C1:AD:8F:A7:CC X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5E108A62113311F0BDA4244DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.203.227.0/24 113.203.243.0/24 113.203.245.0/24 115.167.15.0/24 115.167.28.0/24 115.167.118.0/23 175.110.91.0/24 175.110.108.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:6e:fb:15:7a:38:74:19:a5:bd:77:e9:52:d6:2a:ad:1b:10: f9:6f:c6:0e:6d:aa:78:7f:fb:c0:23:03:b8:c5:49:c9:b0:57: 7a:df:ef:c1:14:61:94:10:ec:0b:14:9d:28:5a:a6:e5:4d:33: 6a:8c:3e:5b:da:1d:e0:b0:81:92:11:0c:60:43:e0:0c:0a:9c: f4:f1:c6:33:b9:01:b9:d1:34:cd:00:58:d0:e1:81:74:4b:78: d1:2a:59:ba:3b:83:7e:72:71:14:47:14:91:35:37:b1:36:36: ca:b0:9b:bd:6d:95:49:97:1d:8a:ff:18:08:df:62:02:b9:bb: 18:a3:8d:5e:ee:7a:ff:57:ad:12:13:0b:79:b8:57:7d:47:71: 85:3d:06:57:14:46:7c:67:d4:9e:a8:87:e9:f8:57:c0:96:88: 21:89:e0:6f:8c:44:01:55:5e:78:d2:ed:0e:28:1c:e2:48:26: 19:e3:2f:a3:4c:68:97:fc:60:31:fa:2f:02:db:a0:4c:ac:bb: 47:45:ae:ba:e7:fa:df:b3:ff:c2:1e:a1:c7:c7:7b:47:20:52: b4:59:8a:85:45:18:55:67:c1:e3:88:1c:bb:3a:3b:07:2b:e7: 54:f0:13:53:eb:47:97:2b:5c:c8:30:48:cd:81:4c:23:37:60: 5a:ca:7f:44 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICJTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwNDA0MDkwNTUxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VmYTBlZi1kNGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUFNwbYQgJUydEVaZ2fohCkZH0gY6a8q9z6bzKR7nS2o7KOqpq2HlVkScMzx bqn4hORDEYVc76iQeZAArLJZq2Oyj1XtuSZWE673o9V4tLXVAn+mYqF/LoGJfI9f iSDtGGukDSljMM8s1+oW+p45BacyqCs4gkb2OtOwq8lAog7rzXhj4c9291np0RBm X5XXKxHI7R2+OWxbfRNLM/fGaCtZFCvtAAsHwT6k8OVHd/09L21KZcWP8ZcbxwTC St0gOFmBvIlit8CTFK9s4WMUpmfKDYpsB8EvG1X8c1nChs2tWLFEqeYqf99B8kCz 2LStvkZ8SZyLlchBh2ozTvXhPQIDAQABo4ICvzCCArswHQYDVR0OBBYEFJdiGF3J PrEUJOVP0C5px8Gtj6fMMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNUUxMDhBNjIx MTMzMTFGMEJEQTQyNDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBABxy+MDBABxy/MDBABxy/UDBABzpw8DBABzpxwDBAFzp3YD BACvblsDBACvbmwwDQYJKoZIhvcNAQELBQADggEBAJ5u+xV6OHQZpb136VLWKq0b EPlvxg5tqnh/+8AjA7jFScmwV3rf78EUYZQQ7AsUnShapuVNM2qMPlvaHeCwgZIR DGBD4AwKnPTxxjO5AbnRNM0AWNDhgXRLeNEqWbo7g35ycRRHFJE1N7E2Nsqwm71t lUmXHYr/GAjfYgK5uxijjV7uev9XrRITC3m4V31HcYU9BlcURnxn1J6oh+n4V8CW iCGJ4G+MRAFVXnjS7Q4oHOJIJhnjL6NMaJf8YDH6LwLboEysu0dFrrrn+t+z/8Ie ocfHe0cgUrRZioVFGFVnweOIHLs6Owcr51TwE1PrR5crXMgwSM2BTCM3YFrKf0Q= -----END CERTIFICATE-----Generated at Sun Apr 6 14:53:26 2025 by rpki-client