$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa File: 37D72D7CC17C11EE8391A218C4F9AE02.roa (raw, json) Hash identifier: coWHQK+5srkvJCmtuWOSC8KHDobmPnetCsZNTnS3ZsU= Subject key identifier: 70:3E:82:C2:7E:A8:9E:2F:37:60:B7:E8:75:43:3A:38:B7:2B:FD:C6 Certificate issuer: /CN=A91E9F31/serialNumber=DCDA069E3EFF8956C01572816A70235195F06725 Certificate serial: EA Authority key identifier: DC:DA:06:9E:3E:FF:89:56:C0:15:72:81:6A:70:23:51:95:F0:67:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa Signing time: Wed 16 Apr 2025 07:27:09 +0000 ROA not before: Wed 16 Apr 2025 07:27:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 141746 IP address blocks: 36.50.196.0/24 maxlen: 24 163.223.226.0/24 maxlen: 24 2001:df3:4e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.crl rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 04:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F31, serialNumber=DCDA069E3EFF8956C01572816A70235195F06725 Validity Not Before: Apr 16 07:27:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ff5bcd-2e23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6b:5e:3a:0b:c2:2d:4b:b6:fc:7b:33:81:92: e4:da:69:52:1f:91:6f:d1:e3:da:8f:f0:43:43:31: 5a:7c:8d:2c:de:c7:4c:49:79:d0:92:d2:ee:ec:4d: 63:e9:e2:3c:e2:53:49:38:01:23:fd:34:e8:9e:8d: 30:78:18:65:74:c2:41:fe:a0:4a:4e:cd:2c:a0:b9: bc:73:69:cb:bb:3a:0f:83:0b:42:00:4c:d2:81:10: 85:b0:ec:a8:bc:cf:4d:8a:a8:4a:33:9b:53:0f:55: 0d:c3:c1:f8:7a:f4:64:07:9c:7e:aa:c4:2b:d1:0e: 96:3d:fe:85:86:ad:22:24:6e:fe:d5:7b:e5:a0:1c: cb:9d:be:5f:6f:fd:fe:76:db:e6:e2:ac:37:25:0c: cf:97:8d:76:36:a9:48:10:82:33:20:1e:cf:c3:38: 10:2e:9c:5d:88:61:3c:b8:d6:2d:df:7d:cf:3a:7d: 66:28:14:f5:8a:51:fd:50:8e:11:1d:fa:7d:3e:09: 89:16:5a:9d:46:f8:01:b2:b3:ef:ff:4a:c8:b6:01: c8:01:35:2f:b1:1a:c3:8d:34:63:f0:a9:53:28:35: 17:e3:5e:a0:08:a2:7b:a3:2f:e5:e4:99:eb:88:29: b3:a8:42:8c:c2:5b:65:6e:a7:51:b7:82:3c:46:4a: 50:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3E:82:C2:7E:A8:9E:2F:37:60:B7:E8:75:43:3A:38:B7:2B:FD:C6 X509v3 Authority Key Identifier: keyid:DC:DA:06:9E:3E:FF:89:56:C0:15:72:81:6A:70:23:51:95:F0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.196.0/24 163.223.226.0/24 IPv6: 2001:df3:4e40::/48 Signature Algorithm: sha256WithRSAEncryption 8e:4f:c8:03:0b:a0:0c:2d:27:29:fc:87:08:17:f2:f9:77:85: 8e:cc:c4:4e:e1:4e:15:3b:72:55:7c:d0:ff:70:7e:cd:aa:91: 8d:f9:55:0b:79:eb:2d:2a:9f:01:fa:bb:96:a6:72:96:ac:b5: 1c:90:ec:bf:c1:48:99:1e:66:10:ae:a6:a5:50:9d:49:d1:04: 50:20:a4:2d:45:52:67:d1:b9:b0:b4:0e:bb:55:bd:d4:c8:a8: b4:cb:f4:d2:dc:b9:13:42:4b:fd:68:30:be:e2:d4:44:9e:8b: 26:76:4c:bf:9d:99:80:d3:cc:66:9e:1a:e6:53:cc:68:6b:49: 64:fb:b0:9b:a5:1e:09:fd:57:49:4a:90:55:c1:12:d7:2d:aa: 35:0b:0a:49:fb:1e:02:51:f6:fa:14:db:86:99:3e:a7:27:1c: fa:fd:65:63:5c:2e:ba:22:78:95:c6:06:af:d4:4c:55:ec:10: f2:6f:fc:66:c4:56:8e:eb:68:31:7b:b2:e4:af:4d:7c:aa:19: 6e:9d:90:2d:66:13:a9:83:3e:31:5d:5f:94:4f:8d:39:b2:e3: e5:1b:18:53:cc:da:5d:08:87:f8:29:d9:a6:53:77:fa:94:d5: 88:27:d3:83:e1:b2:6b:72:43:a8:64:17:6a:3b:bf:0b:10:1a: 5d:5b:20:31 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGMzExMTAvBgNVBAUTKERDREEwNjlFM0VGRjg5NTZDMDE1NzI4MTZBNzAyMzUx OTVGMDY3MjUwHhcNMjUwNDE2MDcyNzA5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZmNWJjZC0yZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmteOgvCLUu2/HszgZLk2mlSH5Fv0ePaj/BDQzFafI0s3sdMSXnQktLu7E1j 6eI84lNJOAEj/TTono0weBhldMJB/qBKTs0soLm8c2nLuzoPgwtCAEzSgRCFsOyo vM9NiqhKM5tTD1UNw8H4evRkB5x+qsQr0Q6WPf6Fhq0iJG7+1XvloBzLnb5fb/3+ dtvm4qw3JQzPl412NqlIEIIzIB7PwzgQLpxdiGE8uNYt333POn1mKBT1ilH9UI4R Hfp9PgmJFlqdRvgBsrPv/0rItgHIATUvsRrDjTRj8KlTKDUX416gCKJ7oy/l5Jnr iCmzqEKMwltlbqdRt4I8RkpQ4QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHA+gsJ+ qJ4vN2C36HVDOji3K/3GMB8GA1UdIwQYMBaAFNzaBp4+/4lWwBVygWpwI1GV8Gcl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUYzMS8wOTJEMjUxNkJF NjIxMUVFOEMzN0NCM0JDNEY5QUUwMi8zTm9Hbmo3X2lWYkFGWEtCYW5BalVaWHda eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNOb0duajdfaVZiQUZYS0JhbkFqVVpYd1p5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlGMzEvMDkyRDI1MTZCRTYyMTFFRThDMzdDQjNCQzRGOUFFMDIvMzdENzJEN0ND MTdDMTFFRTgzOTFBMjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAAkMsQDBACj3+IwDwQCAAIwCQMHACABDfNOQDANBgkqhkiG 9w0BAQsFAAOCAQEAjk/IAwugDC0nKfyHCBfy+XeFjszETuFOFTtyVXzQ/3B+zaqR jflVC3nrLSqfAfq7lqZylqy1HJDsv8FImR5mEK6mpVCdSdEEUCCkLUVSZ9G5sLQO u1W91MiotMv00ty5E0JL/WgwvuLURJ6LJnZMv52ZgNPMZp4a5lPMaGtJZPuwm6Ue Cf1XSUqQVcES1y2qNQsKSfseAlH2+hTbhpk+pycc+v1lY1wuuiJ4lcYGr9RMVewQ 8m/8ZsRWjutoMXuy5K9NfKoZbp2QLWYTqYM+MV1flE+NObLj5RsYU8zaXQiH+CnZ plN3+pTViCfTg+Gya3JDqGQXaju/CxAaXVsgMQ== -----END CERTIFICATE-----Generated at Sat Apr 19 02:09:02 2025 by rpki-client