$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/68B97AE8169F11F0BE8F3B6DC4F9AE02.roa File: 68B97AE8169F11F0BE8F3B6DC4F9AE02.roa (raw, json) Hash identifier: i91a9srZiG6Rz2DOuEYvMmjIb7WvdfiXPcPrJKIIVkk= Subject key identifier: 3C:CE:74:F7:BA:D8:AD:68:2E:E6:1F:0C:E3:6C:1E:95:AE:6F:80:27 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 25AC Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/68B97AE8169F11F0BE8F3B6DC4F9AE02.roa Signing time: Fri 11 Apr 2025 06:37:16 +0000 ROA not before: Fri 11 Apr 2025 06:37:16 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 396073 IP address blocks: 115.167.122.0/24 maxlen: 24 223.29.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9644 (0x25ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Apr 11 06:37:16 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67f8b89c-8c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:87:47:16:f0:ab:f8:54:b0:e6:1d:f4:b3:20: 3e:0e:8c:ab:20:69:96:8b:13:2f:11:3e:b7:95:19: db:e1:15:28:31:c3:d5:2d:88:66:fe:9e:5d:d6:f8: a9:6a:91:f2:6d:f4:4e:b8:ec:29:35:6c:f2:37:7c: a8:69:04:2f:b2:8e:2c:30:83:0c:14:3b:07:8c:50: a2:e0:75:58:5a:ff:ab:59:4c:b4:22:77:21:b4:69: 37:5a:d1:c4:45:15:71:ae:fa:d2:ee:62:e3:07:14: 6b:e0:bf:d1:74:cd:f4:48:2d:29:d2:78:3b:29:2d: 68:6f:98:10:2a:b3:9b:c9:0e:a1:80:0e:ca:58:f7: c8:18:f4:29:fe:27:cd:e4:11:1e:75:e6:59:e6:79: 28:29:aa:c2:4c:83:fc:45:0c:f8:e8:da:3c:c8:41: 06:a8:d1:75:c1:ef:6a:18:3d:75:8d:21:01:c1:04: e6:97:86:9d:54:d0:64:4f:ab:a6:19:a5:da:e3:96: c8:d7:1f:1a:63:d1:d9:37:30:a0:c5:56:29:e5:cb: 1f:a5:7d:c5:82:7d:79:7a:26:a1:06:83:74:bb:9a: d5:5f:27:0c:ee:9e:1b:a8:ea:60:14:63:55:c8:bc: 76:d8:53:11:b5:94:74:7e:5e:f7:bc:73:cf:69:bb: bc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CE:74:F7:BA:D8:AD:68:2E:E6:1F:0C:E3:6C:1E:95:AE:6F:80:27 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/68B97AE8169F11F0BE8F3B6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.122.0/24 223.29.237.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:2f:a0:86:95:f5:75:53:4c:c1:26:45:73:dd:7c:b3:63:ab: b9:b9:6a:ae:77:11:0c:f4:04:5c:26:10:63:5a:e7:9b:be:02: f6:9c:f0:4a:e4:01:82:68:2f:b9:e0:bf:e3:68:0c:f4:7d:b5: 35:42:cf:30:b1:ad:bc:82:a0:44:db:34:5c:40:32:67:c4:c9: 73:f8:53:03:bb:8f:8b:c3:32:aa:e3:e2:1a:9f:b5:59:d9:8e: 23:97:5a:a3:8c:e6:0c:c6:b4:19:f0:20:41:7a:ef:db:0f:46: ec:f7:99:dc:15:f0:ec:b1:1b:c8:56:86:a4:e6:3c:f2:89:23: f3:91:03:8d:f9:cf:6b:62:11:54:f5:92:50:51:09:e6:02:a7: 7f:e0:eb:80:73:61:c9:75:1c:0b:23:b4:39:b2:54:90:ec:51: 32:39:89:df:ff:80:0d:b7:35:b3:32:89:12:a3:01:9c:64:df: e9:04:94:3d:b4:0f:fb:61:c6:48:5f:f7:9b:02:0e:51:a3:a6: f8:ff:d0:29:ed:88:65:b1:92:bb:fb:d3:2f:71:49:2a:ea:5c: 19:5c:26:35:04:6c:94:f5:5f:e0:84:21:aa:f0:10:ef:34:e7: ee:bd:9e:65:10:a2:32:91:b4:fc:15:20:a0:9a:8b:d7:e3:c2: 6b:b6:86:30 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwNDExMDYzNzE2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4Yjg5Yy04YzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYdHFvCr+FSw5h30syA+DoyrIGmWixMvET63lRnb4RUoMcPVLYhm/p5d1vip apHybfROuOwpNWzyN3yoaQQvso4sMIMMFDsHjFCi4HVYWv+rWUy0InchtGk3WtHE RRVxrvrS7mLjBxRr4L/RdM30SC0p0ng7KS1ob5gQKrObyQ6hgA7KWPfIGPQp/ifN 5BEedeZZ5nkoKarCTIP8RQz46No8yEEGqNF1we9qGD11jSEBwQTml4adVNBkT6um GaXa45bI1x8aY9HZNzCgxVYp5csfpX3Fgn15eiahBoN0u5rVXycM7p4bqOpgFGNV yLx22FMRtZR0fl73vHPPabu8UwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDzOdPe6 2K1oLuYfDONsHpWub4AnMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNjhCOTdBRTgx NjlGMTFGMEJFOEYzQjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABzp3oDBADfHe0wDQYJKoZIhvcNAQELBQADggEBAA4voIaV 9XVTTMEmRXPdfLNjq7m5aq53EQz0BFwmEGNa55u+Avac8ErkAYJoL7ngv+NoDPR9 tTVCzzCxrbyCoETbNFxAMmfEyXP4UwO7j4vDMqrj4hqftVnZjiOXWqOM5gzGtBnw IEF679sPRuz3mdwV8OyxG8hWhqTmPPKJI/ORA435z2tiEVT1klBRCeYCp3/g64Bz Ycl1HAsjtDmyVJDsUTI5id//gA23NbMyiRKjAZxk3+kElD20D/thxkhf95sCDlGj pvj/0CntiGWxkrv70y9xSSrqXBlcJjUEbJT1X+CEIarwEO805+69nmUQojKRtPwV IKCai9fjwmu2hjA= -----END CERTIFICATE-----Generated at Sun Apr 13 01:53:22 2025 by rpki-client