$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa File: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (raw, json) Hash identifier: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU= Subject key identifier: 20:D1:04:7F:AF:B7:01:5E:F7:09:E9:8C:D0:7C:A5:69:5D:1C:E3:C3 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1AB8 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa Signing time: Mon 24 Mar 2025 14:50:38 +0000 ROA not before: Mon 24 Mar 2025 14:50:38 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 3949 IP address blocks: 116.51.19.0/24 maxlen: 24 116.51.20.0/24 maxlen: 24 116.51.22.240/28 maxlen: 32 116.51.23.192/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 14:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6840 (0x1ab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Mar 24 14:50:38 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e1713e-fc45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0a:5f:c6:3b:af:f8:f5:7e:07:75:bf:d1:2c: c5:bb:51:dc:5f:ea:bb:51:5f:aa:b4:52:da:a5:0e: 9c:c0:d4:5c:5a:cf:fe:2f:87:00:f8:46:42:2b:87: dc:f0:74:5d:98:33:a1:ef:4a:ef:a7:d9:f9:7a:87: 25:ea:e1:a3:9d:61:b2:7b:ed:28:14:e0:fa:61:8f: de:2f:f5:56:4d:0f:8e:73:c4:c4:92:31:6b:44:85: 0c:02:8f:ee:fa:02:1d:5a:a9:c1:df:0d:07:72:cc: b1:47:1b:9d:6a:af:31:7f:3c:6a:a4:6a:f4:a9:43: a2:47:21:f3:19:95:8d:d3:de:7a:31:f4:d6:37:9f: 48:18:61:55:b5:9d:69:75:3b:1d:46:8c:63:8d:20: 92:55:ed:fd:bd:34:02:c5:0f:47:23:85:12:7e:c6: 0d:e1:10:27:ba:31:24:c5:50:b1:8a:05:48:95:04: 5f:9a:f5:81:93:19:56:69:de:01:b7:dc:cb:d3:39: 84:d7:05:1b:1a:db:0d:4c:c2:44:02:a2:8e:7e:1b: d7:dd:6c:72:fb:8d:cc:c6:6f:12:a0:ff:b9:69:c8: 16:bd:26:c3:37:dd:e4:8c:ce:1f:96:3b:c4:a9:7b: 6d:36:1e:88:4e:39:c5:56:15:b8:47:da:58:c5:d6: 1c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D1:04:7F:AF:B7:01:5E:F7:09:E9:8C:D0:7C:A5:69:5D:1C:E3:C3 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.51.19.0-116.51.20.255 116.51.22.240/28 116.51.23.192/27 Signature Algorithm: sha256WithRSAEncryption 70:e5:66:f3:7f:3b:cc:6b:20:70:f2:0e:ab:e0:13:0a:f9:f4: 9f:f0:bb:bf:5c:54:90:be:af:47:f8:03:91:e5:24:61:d2:86: e0:b7:53:ed:ee:89:a1:6d:75:1b:97:7d:94:d6:c8:b2:ab:35: 5b:0f:80:75:00:7b:b9:07:57:99:85:12:78:cc:25:f8:f8:5f: 8f:be:fe:d7:0b:5e:a1:f0:0f:9f:7e:a4:e3:a4:e9:c2:a7:0d: a6:fa:38:92:4d:f6:5e:de:09:40:e6:a0:a8:ee:bd:a9:c8:be: 18:a2:60:35:8e:59:05:16:2a:d0:b9:6f:c9:e9:97:1e:bd:b4: ef:14:bb:46:1e:ab:6d:6f:e8:f1:94:b9:d6:5e:5d:be:7b:d0: 58:24:61:52:91:9c:f8:07:50:59:44:f2:db:52:75:93:58:af: a1:f5:4c:84:88:a3:d2:1b:aa:25:89:65:11:8c:bb:c2:38:3a: e5:22:c9:a8:63:3b:41:08:e8:a4:4d:f3:54:90:8a:9f:04:61: 9c:59:30:0c:c3:23:74:a1:cf:72:fe:8c:5c:fa:53:9d:6d:2d: 58:a8:92:1b:5b:63:cd:14:cc:d7:78:3f:d8:a7:1f:2f:e4:68: a9:7b:96:eb:da:90:ce:35:de:bc:20:e3:c8:cf:62:42:de:7f: ae:49:dc:27 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICGrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwMzI0MTQ1MDM4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxNzEzZS1mYzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwpfxjuv+PV+B3W/0SzFu1HcX+q7UV+qtFLapQ6cwNRcWs/+L4cA+EZCK4fc 8HRdmDOh70rvp9n5eocl6uGjnWGye+0oFOD6YY/eL/VWTQ+Oc8TEkjFrRIUMAo/u +gIdWqnB3w0HcsyxRxudaq8xfzxqpGr0qUOiRyHzGZWN0956MfTWN59IGGFVtZ1p dTsdRoxjjSCSVe39vTQCxQ9HI4USfsYN4RAnujEkxVCxigVIlQRfmvWBkxlWad4B t9zL0zmE1wUbGtsNTMJEAqKOfhvX3Wxy+43Mxm8SoP+5acgWvSbDN93kjM4fljvE qXttNh6ITjnFVhW4R9pYxdYcFQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFCDRBH+v twFe9wnpjNB8pWldHOPDMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZENUQvOURDQjY4RTAxRDg4MTFFMjk0Qjk1NUUxMDhCMDJDRDIvOTkwN0RDNDZE NEJDMTFFRjlCRERBRjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAHQzEwMEAHQzFAMFBHQzFvADBQV0MxfAMA0GCSqGSIb3 DQEBCwUAA4IBAQBw5WbzfzvMayBw8g6r4BMK+fSf8Lu/XFSQvq9H+AOR5SRh0obg t1Pt7omhbXUbl32U1siyqzVbD4B1AHu5B1eZhRJ4zCX4+F+Pvv7XC16h8A+ffqTj pOnCpw2m+jiSTfZe3glA5qCo7r2pyL4YomA1jlkFFirQuW/J6ZcevbTvFLtGHqtt b+jxlLnWXl2+e9BYJGFSkZz4B1BZRPLbUnWTWK+h9UyEiKPSG6oliWURjLvCODrl IsmoYztBCOikTfNUkIqfBGGcWTAMwyN0oc9y/oxc+lOdbS1YqJIbW2PNFMzXeD/Y px8v5Gipe5br2pDONd68IOPIz2JC3n+uSdwn -----END CERTIFICATE-----Generated at Tue Apr 22 01:31:30 2025 by rpki-client