$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/0861EEFA881A11EFA769B787C4F9AE02.roa File: 0861EEFA881A11EFA769B787C4F9AE02.roa (raw, json) Hash identifier: +i++W5mlqwk8JMjOGfpIrNWTZgaQE2QIy/eXdMEnYjg= Subject key identifier: EF:67:D7:F4:AC:A2:19:8B:EE:E3:25:D9:45:62:A0:1A:6E:A8:8C:BF Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 188D Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/0861EEFA881A11EFA769B787C4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:20 +0000 ROA not before: Tue 18 Feb 2025 17:35:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138475 IP address blocks: 49.255.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6285 (0x188d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D Validity Not Before: Feb 18 17:35:20 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4d7-c2a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:01:57:97:dc:0f:f7:a5:96:18:05:85:c5:4d: 31:f2:b7:5a:91:6e:89:c0:d4:7c:88:13:97:b0:22: e6:fa:43:ff:99:9c:f9:56:be:d1:7e:c2:22:a4:6b: 79:06:30:0a:a4:3c:80:87:fa:ee:ed:af:2e:81:69: 29:4e:32:f3:b2:b0:ca:71:ee:40:a4:a8:39:98:c2: cf:7d:44:55:49:11:05:84:ec:06:23:58:ee:93:96: bd:d3:23:c7:05:0d:70:52:50:42:80:3e:46:d7:da: 79:46:ed:bc:54:b9:db:27:c6:c3:27:6a:7f:ea:21: df:a4:09:20:90:88:a0:13:16:18:6f:be:b9:94:b3: 5f:70:3d:9b:ce:26:db:bf:e8:c7:75:a3:41:65:0f: a0:45:46:78:15:53:38:a6:26:d4:5b:1d:e2:9b:51: 53:89:23:b1:05:69:3a:bd:0f:02:16:d3:8a:b5:63: e1:96:df:bd:52:c6:21:37:0e:09:9d:2b:1d:a0:7e: 44:ea:b0:cc:fd:97:31:e6:25:61:b6:d7:ce:06:14: 4c:b8:bd:28:2d:3b:fd:a0:c1:05:26:67:f7:80:b7: 6e:27:45:c9:8e:ae:2e:c9:d7:95:d5:7b:5c:15:75: 1c:20:04:4f:31:a5:31:44:52:89:fd:5e:2b:73:c5: 8b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:67:D7:F4:AC:A2:19:8B:EE:E3:25:D9:45:62:A0:1A:6E:A8:8C:BF X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/0861EEFA881A11EFA769B787C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.255.74.0/24 Signature Algorithm: sha256WithRSAEncryption 76:f5:9b:9a:28:83:a6:e5:8f:86:ab:17:78:bd:4a:be:59:b2: ae:aa:e1:21:bc:f1:4f:a6:d3:e0:85:f0:d2:09:46:59:3c:55: d6:61:ed:97:06:50:df:e9:b8:5f:06:63:b7:ea:30:31:2a:2a: 87:2d:62:50:ff:c1:90:14:18:06:03:55:ad:e0:b5:01:ca:3f: eb:21:9b:58:a7:b7:0a:0e:f7:da:21:4d:6f:ac:3e:bb:82:a7: a2:13:84:f5:fe:af:d8:42:34:93:b6:ee:4b:4b:6a:53:93:31: 1c:ff:0b:62:9b:78:3f:01:f6:f1:c0:c2:00:30:81:83:fe:a6: 71:5d:e1:5f:ee:de:f6:a1:4f:a3:a0:a3:84:36:63:ee:d0:af: aa:4c:9e:e7:46:89:fd:37:4c:50:36:31:e7:1e:28:f0:f3:af: d8:36:81:5f:3c:0b:dc:05:1a:b8:8c:78:f5:26:e0:20:4e:e0: 91:16:92:a9:c1:0c:cc:73:44:0b:5e:12:52:16:11:b0:f5:66: 89:a1:01:5f:dd:5f:38:4d:5d:7d:fb:30:8d:3a:f7:17:ff:bc: 48:53:78:35:86:72:b0:0d:05:e0:cf:43:dc:c1:d2:3b:9d:8d: cb:89:b4:f2:c4:93:e4:bf:cf:b2:d1:95:da:03:be:3d:e8:a5: c5:aa:e0:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTIwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRkNy1jMmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwFXl9wP96WWGAWFxU0x8rdakW6JwNR8iBOXsCLm+kP/mZz5Vr7RfsIipGt5 BjAKpDyAh/ru7a8ugWkpTjLzsrDKce5ApKg5mMLPfURVSREFhOwGI1juk5a90yPH BQ1wUlBCgD5G19p5Ru28VLnbJ8bDJ2p/6iHfpAkgkIigExYYb765lLNfcD2bzibb v+jHdaNBZQ+gRUZ4FVM4pibUWx3im1FTiSOxBWk6vQ8CFtOKtWPhlt+9UsYhNw4J nSsdoH5E6rDM/Zcx5iVhttfOBhRMuL0oLTv9oMEFJmf3gLduJ0XJjq4uydeV1Xtc FXUcIARPMaUxRFKJ/V4rc8WL/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFO9n1/Ss ohmL7uMl2UVioBpuqIy/MB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMDg2MUVFRkE4 ODFBMTFFRkE3NjlCNzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAx/0owDQYJKoZIhvcNAQELBQADggEBAHb1m5oog6blj4ar F3i9Sr5Zsq6q4SG88U+m0+CF8NIJRlk8VdZh7ZcGUN/puF8GY7fqMDEqKoctYlD/ wZAUGAYDVa3gtQHKP+shm1intwoO99ohTW+sPruCp6IThPX+r9hCNJO27ktLalOT MRz/C2KbeD8B9vHAwgAwgYP+pnFd4V/u3vahT6Ogo4Q2Y+7Qr6pMnudGif03TFA2 MeceKPDzr9g2gV88C9wFGriMePUm4CBO4JEWkqnBDMxzRAteElIWEbD1ZomhAV/d XzhNXX37MI069xf/vEhTeDWGcrANBeDPQ9zB0judjcuJtPLEk+S/z7LRldoDvj3o pcWq4Fg= -----END CERTIFICATE-----Generated at Sun Apr 6 06:57:49 2025 by rpki-client