$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/A6C3D8721A9711EC88A50A2CC4F9AE02.roa File: A6C3D8721A9711EC88A50A2CC4F9AE02.roa (raw, json) Hash identifier: V99zGIESWxaCWwIsK3BcjNwowjB6iy3p26jrLpwkePQ= Subject key identifier: AC:37:77:13:0E:18:60:D2:70:BE:EB:9B:E4:37:F2:6B:A4:15:BB:DA Certificate issuer: /CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Certificate serial: 04DF Authority key identifier: 6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/A6C3D8721A9711EC88A50A2CC4F9AE02.roa Signing time: Wed 22 Jan 2025 23:22:37 +0000 ROA not before: Wed 22 Jan 2025 23:22:37 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4058 IP address blocks: 202.88.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623 Validity Not Before: Jan 22 23:22:37 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67917dbd-93f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:07:d9:a1:d6:53:3d:9b:a3:0b:b8:91:ae:8c: c0:1d:51:4d:bb:09:c4:e2:51:d4:8c:be:cc:8f:18: b5:de:8a:cf:43:4c:d2:8a:2d:28:82:5d:fd:8b:20: 1a:f6:2f:97:17:aa:d5:81:db:87:8a:03:78:b7:6a: c1:2d:a3:36:98:26:de:46:82:ea:5a:28:df:90:13: 68:7f:58:20:a9:f9:10:da:db:bc:7a:2c:93:25:6d: 3c:5f:2f:ad:c2:b3:34:8d:93:41:65:1e:3c:21:04: 30:76:cb:f0:fd:95:b3:41:78:49:df:ec:13:75:1b: f7:c4:ed:1e:5b:53:3c:95:6d:c5:76:01:59:6d:45: 1d:89:32:e6:1f:62:a8:32:6a:9e:0f:ad:d7:33:c9: 50:51:1d:ef:5d:0e:84:eb:91:e0:fe:85:88:77:70: de:74:65:b6:8f:15:5b:c2:66:55:56:b6:5c:cb:b8: d4:78:6b:1f:37:ab:6d:73:b9:fb:69:ca:50:29:e0: d0:10:2c:74:4a:ec:8f:9f:e8:97:75:f1:c4:22:6c: a4:ce:1f:c1:4a:b1:7d:8b:88:be:7e:05:2d:6f:1b: 80:ab:17:7e:72:30:c7:73:df:58:9c:51:4b:65:5f: 46:f4:46:3c:43:4c:f2:b3:24:e4:55:1e:82:d7:f7: 57:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:37:77:13:0E:18:60:D2:70:BE:EB:9B:E4:37:F2:6B:A4:15:BB:DA X509v3 Authority Key Identifier: keyid:6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/A6C3D8721A9711EC88A50A2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.88.8.0/22 Signature Algorithm: sha256WithRSAEncryption 17:7f:3c:c0:bb:0f:b1:ce:c9:3f:1b:b7:fe:e9:03:b0:ec:88: 18:d5:4b:f2:22:a1:7d:2c:2f:42:c4:ff:90:e3:2c:f5:b9:3e: 8a:70:07:0f:19:b1:7f:43:3d:87:11:b1:a4:3d:bb:37:7d:b8: 35:04:e9:6f:6e:0c:ec:40:da:2d:19:88:71:00:03:e2:4b:74: b7:1b:18:10:76:64:2b:92:92:4b:8e:05:fd:97:49:6f:e4:03: 25:2e:46:df:d0:e3:2e:01:0a:b4:6f:28:83:fb:e5:07:55:08: 3f:9f:47:a1:17:ff:15:63:dc:36:3f:3b:ba:e4:4e:fe:ed:76: 82:52:18:e7:0d:2b:f4:f9:6a:38:39:2e:dd:47:9b:a8:21:1c: bc:ab:cc:e2:e3:05:3d:27:34:38:cf:43:78:d9:34:b9:f4:b3: 15:06:fe:49:74:ab:ea:bc:92:96:df:b2:66:cf:4d:c3:3a:43: f3:ef:e6:c5:83:12:c1:81:05:88:64:2f:f6:6e:58:3d:5e:c1: 5d:80:03:0b:f8:58:fb:b4:3e:40:91:cd:12:99:15:51:db:45: ba:66:7b:b4:63:97:a2:f9:c8:83:81:89:41:6b:25:66:f6:e4: c3:39:d9:49:5d:66:31:e9:d1:7e:1f:cd:a4:fe:02:18:aa:b7: ca:aa:15:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKDZDQzM4NjBEQTk4Nzc4M0E1MDA1NUE1MTkzOTgzMEY3 Q0QxQzgyNkIwHhcNMjUwMTIyMjMyMjM3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxN2RiZC05M2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gfZodZTPZujC7iRrozAHVFNuwnE4lHUjL7Mjxi13orPQ0zSii0ogl39iyAa 9i+XF6rVgduHigN4t2rBLaM2mCbeRoLqWijfkBNof1ggqfkQ2tu8eiyTJW08Xy+t wrM0jZNBZR48IQQwdsvw/ZWzQXhJ3+wTdRv3xO0eW1M8lW3FdgFZbUUdiTLmH2Ko MmqeD63XM8lQUR3vXQ6E65Hg/oWId3DedGW2jxVbwmZVVrZcy7jUeGsfN6ttc7n7 acpQKeDQECx0SuyPn+iXdfHEImykzh/BSrF9i4i+fgUtbxuAqxd+cjDHc99YnFFL ZV9G9EY8Q0zysyTkVR6C1/dXjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKw3dxMO GGDScL7rm+Q38mukFbvaMB8GA1UdIwQYMBaAFGzDhg2ph3g6UAVaUZOYMPfNHIJr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9ERDZCNzUyODA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVEcFFCVnBSazVndzk4MGNn bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JNT0dEYW1IZURwUUJWcFJrNWd3OTgwY2dtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE2MjMvREQ2Qjc1MjgwNjBDMTFFQ0FGNjc1MDQzQzRGOUFFMDIvQTZDM0Q4NzIx QTk3MTFFQzg4QTUwQTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKWAgwDQYJKoZIhvcNAQELBQADggEBABd/PMC7D7HOyT8b t/7pA7DsiBjVS/IioX0sL0LE/5DjLPW5PopwBw8ZsX9DPYcRsaQ9uzd9uDUE6W9u DOxA2i0ZiHEAA+JLdLcbGBB2ZCuSkkuOBf2XSW/kAyUuRt/Q4y4BCrRvKIP75QdV CD+fR6EX/xVj3DY/O7rkTv7tdoJSGOcNK/T5ajg5Lt1Hm6ghHLyrzOLjBT0nNDjP Q3jZNLn0sxUG/kl0q+q8kpbfsmbPTcM6Q/Pv5sWDEsGBBYhkL/ZuWD1ewV2AAwv4 WPu0PkCRzRKZFVHbRbpme7Rjl6L5yIOBiUFrJWb25MM52UldZjHp0X4fzaT+Ahiq t8qqFbo= -----END CERTIFICATE-----Generated at Sat Apr 5 14:41:17 2025 by rpki-client