$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/4B6349ECD79011ED98D6CE6AC4F9AE02.roa File: 4B6349ECD79011ED98D6CE6AC4F9AE02.roa (raw, json) Hash identifier: RCl3n8cf8/rL7CwyNeKNhM1luahZCFrh9OM6hEsA3EE= Subject key identifier: 1B:DD:46:FD:9F:9B:80:EE:96:8E:40:A8:A3:F2:E6:C2:2F:1E:B5:C0 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1AB6 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/4B6349ECD79011ED98D6CE6AC4F9AE02.roa Signing time: Mon 24 Mar 2025 14:50:36 +0000 ROA not before: Mon 24 Mar 2025 14:50:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 393259 IP address blocks: 116.51.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6838 (0x1ab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D Validity Not Before: Mar 24 14:50:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e1713c-8f75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6d:ec:e1:2c:75:85:cf:f6:d0:35:dd:1b:eb: 3a:89:d5:3d:63:53:13:06:84:c8:71:17:c3:a4:53: 8c:d2:d1:bc:6e:95:02:4e:c6:de:30:dd:05:a1:4a: 3d:79:8c:da:92:f8:4a:bb:a0:77:11:2b:87:32:70: 60:55:0c:01:8c:ca:9f:e3:7b:ff:96:20:73:76:85: 2b:dd:46:33:5c:b2:dc:ce:f2:95:b9:c0:d7:41:4b: f3:5a:59:6a:6d:67:e6:e7:ec:86:90:3b:fc:42:ba: cf:64:a2:e5:36:58:4d:43:63:c9:ab:ad:a4:06:c1: 5f:81:7a:b8:9b:38:ac:ba:62:d1:bb:d2:80:c4:02: 83:78:fa:fb:5c:94:bd:40:bf:2a:87:a0:f4:6c:d8: 8b:46:5f:1b:b0:fd:47:60:f7:ea:32:c4:4a:82:d8: 87:04:40:74:d7:a9:78:3e:7d:db:e4:95:a8:b8:d5: 5d:6d:d8:da:a3:82:ab:38:dc:ba:f5:1e:54:e7:17: 7e:d8:fa:ad:16:8b:bf:b7:ca:cb:22:38:58:54:e5: 21:16:69:c8:d5:cd:64:2f:bf:7a:f8:4b:77:17:9a: 66:5f:a4:ad:2b:fb:9c:18:7c:c9:19:d4:d1:8c:67: ef:3c:2c:47:7c:4e:08:43:27:1e:df:a1:3a:75:39: 3c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:DD:46:FD:9F:9B:80:EE:96:8E:40:A8:A3:F2:E6:C2:2F:1E:B5:C0 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/4B6349ECD79011ED98D6CE6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.51.25.0/24 Signature Algorithm: sha256WithRSAEncryption 72:fa:fe:37:ee:53:4c:fe:a9:36:7d:d6:83:6e:0f:62:cf:83: 93:cd:bd:40:39:00:c5:c1:8f:05:9e:f9:f1:b2:e3:36:91:51: c8:1e:24:ce:5e:1c:b2:34:b6:6e:21:c2:d9:47:54:ac:10:e6: d1:c2:6e:49:9d:79:d0:dd:73:e8:9e:a6:82:9c:4e:20:9e:dd: 14:59:dd:40:8d:e4:6c:05:17:2e:c7:f8:13:20:dc:3a:4d:34: 0c:24:63:08:95:43:39:08:2f:2e:6a:ea:fe:ae:56:d1:98:53: 6f:fe:5b:5c:2f:c4:90:88:94:3f:9a:62:c3:5a:61:79:00:ff: e8:b3:a1:37:37:b5:e9:c9:75:d4:33:64:d2:ae:ae:4e:29:e4: a6:bb:1c:98:78:d4:5c:3f:dd:78:38:d3:a3:cc:bf:e8:ad:c5: d3:d4:1d:6f:ee:db:12:a1:64:a6:5a:31:9c:54:d4:91:72:fb: b1:4a:95:33:4a:37:f6:c6:bc:fd:08:d6:d9:9b:9e:3a:a5:c2: e2:ac:f0:ee:39:4d:76:a8:6d:9e:b4:4f:90:b6:13:f4:24:d7: b0:3f:92:03:cc:b5:89:3f:75:ec:e9:da:d2:23:16:73:98:69: 78:17:b0:ba:65:39:cc:4c:f2:cd:bf:29:04:47:25:a4:53:e5: 4f:2a:33:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwMzI0MTQ1MDM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxNzEzYy04Zjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy23s4Sx1hc/20DXdG+s6idU9Y1MTBoTIcRfDpFOM0tG8bpUCTsbeMN0FoUo9 eYzakvhKu6B3ESuHMnBgVQwBjMqf43v/liBzdoUr3UYzXLLczvKVucDXQUvzWllq bWfm5+yGkDv8QrrPZKLlNlhNQ2PJq62kBsFfgXq4mzisumLRu9KAxAKDePr7XJS9 QL8qh6D0bNiLRl8bsP1HYPfqMsRKgtiHBEB016l4Pn3b5JWouNVdbdjao4KrONy6 9R5U5xd+2PqtFou/t8rLIjhYVOUhFmnI1c1kL796+Et3F5pmX6StK/ucGHzJGdTR jGfvPCxHfE4IQyce36E6dTk8HQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBvdRv2f m4Dulo5AqKPy5sIvHrXAMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZENUQvOURDQjY4RTAxRDg4MTFFMjk0Qjk1NUUxMDhCMDJDRDIvNEI2MzQ5RUNE NzkwMTFFRDk4RDZDRTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0MxkwDQYJKoZIhvcNAQELBQADggEBAHL6/jfuU0z+qTZ9 1oNuD2LPg5PNvUA5AMXBjwWe+fGy4zaRUcgeJM5eHLI0tm4hwtlHVKwQ5tHCbkmd edDdc+iepoKcTiCe3RRZ3UCN5GwFFy7H+BMg3DpNNAwkYwiVQzkILy5q6v6uVtGY U2/+W1wvxJCIlD+aYsNaYXkA/+izoTc3tenJddQzZNKurk4p5Ka7HJh41Fw/3Xg4 06PMv+itxdPUHW/u2xKhZKZaMZxU1JFy+7FKlTNKN/bGvP0I1tmbnjqlwuKs8O45 TXaobZ60T5C2E/Qk17A/kgPMtYk/dezp2tIjFnOYaXgXsLplOcxM8s2/KQRHJaRT 5U8qM7I= -----END CERTIFICATE-----Generated at Sat Apr 5 05:53:55 2025 by rpki-client