$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2C0D015EABA211EAB7C51982C4F9AE02.roa File: 2C0D015EABA211EAB7C51982C4F9AE02.roa (raw, json) Hash identifier: O1uLgY2Yilnqn6pFCenqqz8QiGlXjYq4srbwfo9+hUc= Subject key identifier: EE:94:0B:1F:E2:6C:74:81:5F:09:8B:CD:53:B3:D3:3B:59:8D:AE:24 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 188A Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2C0D015EABA211EAB7C51982C4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:17 +0000 ROA not before: Tue 18 Feb 2025 17:35:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132433 IP address blocks: 121.54.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6282 (0x188a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D Validity Not Before: Feb 18 17:35:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4d4-03b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:09:50:06:25:b8:63:5c:da:38:95:d5:a4:db: 8f:b4:71:c2:1a:f4:3e:d4:8c:36:fa:98:1a:0a:5d: 7e:a0:af:9a:6b:50:f7:17:5c:6d:61:6a:9a:b0:85: aa:04:a2:17:63:e3:45:de:30:3d:67:4c:8a:4f:cb: 7c:78:cf:ae:c2:34:03:b3:00:2d:84:9e:f6:5c:90: 04:35:0a:df:3b:c5:6a:f7:ed:dd:41:ea:dd:b4:7d: cc:47:03:09:8c:e3:f7:01:42:91:bc:58:4f:6e:e5: ff:50:34:44:5d:32:53:a6:6d:50:85:a5:cc:e6:dd: 3b:38:6a:82:a5:12:0b:46:0c:60:cf:2d:e0:3e:37: da:21:14:24:b0:c0:61:20:5a:5d:b9:e0:a3:81:7a: 1c:1e:ed:1d:51:b1:9f:a8:79:9d:1e:f2:4a:48:49: 05:b1:46:a4:36:75:10:ce:d8:83:d7:ea:4e:be:2a: d1:3b:a4:63:6e:a4:01:88:e6:3a:1c:1c:3e:7b:8b: b4:8f:d5:97:78:c8:67:c9:bc:16:04:14:93:76:f8: 07:eb:2a:95:03:17:5e:5e:3e:32:3a:6a:da:d1:c1: 0c:9b:c2:e9:86:e5:57:aa:a4:19:e8:dd:9b:e6:e5: 7b:28:ec:69:f2:85:47:7f:84:4c:8b:0d:fc:92:63: 41:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:94:0B:1F:E2:6C:74:81:5F:09:8B:CD:53:B3:D3:3B:59:8D:AE:24 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2C0D015EABA211EAB7C51982C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.54.140.0/24 Signature Algorithm: sha256WithRSAEncryption a6:cb:5c:87:ea:b7:9d:2e:62:d5:7d:7a:3f:3b:2b:58:50:55: 1b:e2:ea:5d:e1:f9:93:77:47:96:75:05:e6:5b:95:9b:d6:21: 36:c6:21:9b:33:a1:6c:44:b1:9a:8c:40:e9:c6:f4:62:f2:a3: dd:4e:8e:4c:e6:72:aa:58:50:52:da:3e:b0:c4:b5:14:50:83: 52:1f:36:da:83:67:3f:86:22:4a:88:4a:b4:ca:3e:2a:87:65: 91:1c:75:ec:1f:30:1a:25:02:4c:f2:b2:e9:35:f4:ae:d7:8c: 87:08:a0:20:5f:92:06:fc:36:84:f0:d0:c1:01:57:5f:80:d0: f9:e6:f4:b7:88:0e:b2:90:8b:3e:dd:91:a3:2f:d2:9f:26:35: 71:6a:c1:b1:e1:fe:81:51:61:fa:ae:aa:d9:d0:87:4e:1c:61: df:90:0c:56:30:74:7a:e5:33:16:98:d5:fc:42:0c:30:4d:be: 39:ed:51:e7:39:e9:0b:27:5b:f9:68:9c:a0:a3:f9:00:75:c3: 3d:d8:98:bd:73:ec:39:a7:25:93:8e:fc:7b:4a:39:49:16:2d: f4:59:54:50:83:45:95:11:9e:77:97:91:59:4f:a4:1d:57:c7: 99:13:f1:00:8a:45:95:0d:de:ce:d4:a2:1c:76:0d:4a:a5:89: a5:dd:39:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRkNC0wM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QlQBiW4Y1zaOJXVpNuPtHHCGvQ+1Iw2+pgaCl1+oK+aa1D3F1xtYWqasIWq BKIXY+NF3jA9Z0yKT8t8eM+uwjQDswAthJ72XJAENQrfO8Vq9+3dQerdtH3MRwMJ jOP3AUKRvFhPbuX/UDREXTJTpm1QhaXM5t07OGqCpRILRgxgzy3gPjfaIRQksMBh IFpdueCjgXocHu0dUbGfqHmdHvJKSEkFsUakNnUQztiD1+pOvirRO6RjbqQBiOY6 HBw+e4u0j9WXeMhnybwWBBSTdvgH6yqVAxdeXj4yOmra0cEMm8LphuVXqqQZ6N2b 5uV7KOxp8oVHf4RMiw38kmNBqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO6UCx/i bHSBXwmLzVOz0ztZja4kMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMkMwRDAxNUVB QkEyMTFFQUI3QzUxOTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB5NowwDQYJKoZIhvcNAQELBQADggEBAKbLXIfqt50uYtV9 ej87K1hQVRvi6l3h+ZN3R5Z1BeZblZvWITbGIZszoWxEsZqMQOnG9GLyo91Ojkzm cqpYUFLaPrDEtRRQg1IfNtqDZz+GIkqISrTKPiqHZZEcdewfMBolAkzysuk19K7X jIcIoCBfkgb8NoTw0MEBV1+A0Pnm9LeIDrKQiz7dkaMv0p8mNXFqwbHh/oFRYfqu qtnQh04cYd+QDFYwdHrlMxaY1fxCDDBNvjntUec56QsnW/lonKCj+QB1wz3YmL1z 7DmnJZOO/HtKOUkWLfRZVFCDRZURnneXkVlPpB1Xx5kT8QCKRZUN3s7Uohx2DUql iaXdOcU= -----END CERTIFICATE-----Generated at Sun Apr 6 16:44:14 2025 by rpki-client