$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/31DEDB2CDAAE11E9A0D2D77BC4F9AE02.roa File: 31DEDB2CDAAE11E9A0D2D77BC4F9AE02.roa (raw, json) Hash identifier: +zHWe7K4sl8FHAMnM2ZsIgre4S6LiScoBQqJprb1EOY= Subject key identifier: C2:42:A1:CA:C3:A6:10:B4:08:5A:12:28:C6:F9:8B:BC:EA:7D:9A:5C Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1899 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/31DEDB2CDAAE11E9A0D2D77BC4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:33 +0000 ROA not before: Tue 18 Feb 2025 17:35:33 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45881 IP address blocks: 202.80.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6297 (0x1899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D Validity Not Before: Feb 18 17:35:33 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4e5-58d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:61:10:6e:8c:51:db:a9:af:0b:e7:14:0f:4f: d9:48:6d:cb:28:63:9f:bf:7a:bf:a2:49:f3:62:03: 72:db:41:3a:77:c6:5e:80:de:0d:22:76:c7:49:44: 33:ba:5f:2f:c7:08:3e:67:bb:dc:92:20:f0:49:85: e5:c9:b2:ba:ab:54:cb:14:6a:ac:32:c3:67:11:fa: 36:ff:75:ae:1a:f4:25:43:0f:ff:8c:d7:c5:ea:28: f7:25:42:f9:95:1f:37:98:d4:81:9b:0f:e6:98:a2: f5:6c:ae:15:5e:95:3a:cb:f7:bc:a6:13:69:5a:f6: e1:10:d3:df:ad:b7:92:59:b7:49:d4:90:2f:b9:18: cb:b0:8e:d5:ad:f6:40:c8:87:33:80:5d:15:49:c7: 96:ba:5b:60:1f:79:2b:3d:99:7f:15:30:15:05:03: b4:5b:da:3a:84:b3:98:89:5b:27:d4:db:b8:59:71: e5:cc:8b:87:2a:66:d2:a4:30:36:46:78:5d:14:0e: 1d:f9:00:af:f8:cd:fc:c5:ac:ed:b3:82:83:c6:09: 49:4e:d6:e0:b3:02:e1:e8:30:7a:98:2b:fb:0f:a2: 93:bc:94:0d:4e:d2:0d:f4:b7:73:f9:ab:7e:6e:65: 3a:6c:6b:eb:c1:0f:21:d1:0f:88:da:48:65:20:a9: d5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:42:A1:CA:C3:A6:10:B4:08:5A:12:28:C6:F9:8B:BC:EA:7D:9A:5C X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/31DEDB2CDAAE11E9A0D2D77BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.80.186.0/24 Signature Algorithm: sha256WithRSAEncryption 96:d9:ed:cf:24:55:8a:ac:99:91:2f:37:f8:8b:00:b9:d9:51: db:60:13:92:06:32:9a:9c:4f:a5:e4:52:d1:b3:57:bc:05:8b: 18:91:6a:ba:cc:9f:f8:41:3c:99:80:f4:91:58:96:90:5e:de: 23:87:82:04:fe:6d:d9:83:02:f4:d6:8d:4d:ee:6a:27:c6:ee: 8b:c6:48:20:89:d4:c2:6b:48:69:55:da:b6:53:68:d5:d5:70: 5d:cf:ad:a4:95:59:ad:ce:5b:18:2b:a7:6f:8d:37:91:15:e2: 7c:06:1d:e7:02:56:1a:bb:4a:52:71:7b:43:0d:4f:eb:e2:c5: b6:5e:16:29:a1:5e:a6:6d:fb:0e:1a:db:ee:71:f1:06:1e:2b: b1:da:d9:97:13:22:a5:fa:f0:fc:73:f5:f8:0d:1e:8e:f0:e1: fe:1f:7f:3e:c3:88:29:bc:ac:0d:fd:1e:a9:7f:1e:0b:f7:e7: 4d:d3:8c:7a:cc:b5:cf:2d:f8:4d:d4:7b:a7:39:93:36:b3:d9: 38:c1:7c:c9:bd:19:e0:a1:fc:7e:e4:c1:87:63:b7:6e:7f:36: a1:2b:93:b1:7c:54:7f:b7:71:0e:f4:c0:16:f3:07:8d:0a:a8: 3a:78:54:78:0c:3f:15:13:ac:ef:11:c1:db:f6:70:a3:48:87: 2c:21:6a:a6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTMzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRlNS01OGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGEQboxR26mvC+cUD0/ZSG3LKGOfv3q/oknzYgNy20E6d8ZegN4NInbHSUQz ul8vxwg+Z7vckiDwSYXlybK6q1TLFGqsMsNnEfo2/3WuGvQlQw//jNfF6ij3JUL5 lR83mNSBmw/mmKL1bK4VXpU6y/e8phNpWvbhENPfrbeSWbdJ1JAvuRjLsI7VrfZA yIczgF0VSceWultgH3krPZl/FTAVBQO0W9o6hLOYiVsn1Nu4WXHlzIuHKmbSpDA2 RnhdFA4d+QCv+M38xazts4KDxglJTtbgswLh6DB6mCv7D6KTvJQNTtIN9Ldz+at+ bmU6bGvrwQ8h0Q+I2khlIKnV2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMJCocrD phC0CFoSKMb5i7zqfZpcMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMzFERURCMkNE QUFFMTFFOUEwRDJENzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKULowDQYJKoZIhvcNAQELBQADggEBAJbZ7c8kVYqsmZEv N/iLALnZUdtgE5IGMpqcT6XkUtGzV7wFixiRarrMn/hBPJmA9JFYlpBe3iOHggT+ bdmDAvTWjU3uaifG7ovGSCCJ1MJrSGlV2rZTaNXVcF3PraSVWa3OWxgrp2+NN5EV 4nwGHecCVhq7SlJxe0MNT+vixbZeFimhXqZt+w4a2+5x8QYeK7Ha2ZcTIqX68Pxz 9fgNHo7w4f4ffz7DiCm8rA39Hql/Hgv3503TjHrMtc8t+E3Ue6c5kzaz2TjBfMm9 GeCh/H7kwYdjt25/NqErk7F8VH+3cQ70wBbzB40KqDp4VHgMPxUTrO8Rwdv2cKNI hywhaqY= -----END CERTIFICATE-----Generated at Sun Apr 6 04:00:10 2025 by rpki-client