$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/4AE33318C91C11EFB0DEB92DC4F9AE02.roa File: 4AE33318C91C11EFB0DEB92DC4F9AE02.roa (raw, json) Hash identifier: smhXonMxctlF/fMtWQXaFUBBXx8Ym0WOVFbM4hK9hVk= Subject key identifier: AC:62:8A:51:32:64:4D:C1:C4:65:B5:E5:53:18:DE:4E:EF:55:D7:83 Certificate issuer: /CN=A91F08A5/serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Certificate serial: 38 Authority key identifier: 85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/4AE33318C91C11EFB0DEB92DC4F9AE02.roa Signing time: Thu 27 Mar 2025 07:13:32 +0000 ROA not before: Thu 27 Mar 2025 07:13:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17557 IP address blocks: 119.160.214.0/24 maxlen: 24 119.160.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08A5 Validity Not Before: Mar 27 07:13:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67e4fa9b-95a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a0:a5:9c:ab:f8:55:12:b1:3d:08:71:25:1d: f9:53:6e:4b:af:08:51:d7:6a:66:00:e8:cb:02:6e: 9d:81:af:cb:01:f6:04:f5:03:9a:97:92:0b:53:72: dd:49:5b:69:48:d7:f9:02:f2:f5:81:93:5e:82:30: e9:46:30:57:bc:39:85:bd:74:99:bd:5f:71:7d:43: 18:ff:25:df:37:68:07:40:1c:c8:7c:19:25:f0:3f: 3c:a9:a1:5b:ce:6d:50:a1:10:32:80:76:f3:d8:b3: d3:bd:33:b5:98:20:a9:ff:64:d3:0b:d3:c4:05:85: 7c:4d:35:e9:bc:9c:6b:eb:fe:c8:9a:b7:1d:b5:1f: 4d:1a:6a:7f:0a:a6:88:37:02:1a:e6:8c:d6:b1:6d: 94:4c:cf:29:ce:45:70:59:87:90:e7:7b:08:40:5e: cd:fe:29:bd:f2:5c:a1:9b:7b:70:f3:13:06:c6:81: 2e:fb:b0:88:e5:80:7e:1d:e2:5f:e2:b0:95:34:e6: 8c:0e:b5:fc:2d:ba:50:f7:d5:38:a5:0d:f3:c8:f7: 44:ab:5f:ea:e7:e6:26:e2:95:50:33:b4:02:79:a9: a1:60:6d:7e:88:66:41:2c:59:d8:b2:53:71:9e:94: 83:25:7f:42:f7:d3:01:fc:4a:4a:ed:37:d1:83:1e: 52:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:62:8A:51:32:64:4D:C1:C4:65:B5:E5:53:18:DE:4E:EF:55:D7:83 X509v3 Authority Key Identifier: keyid:85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/4AE33318C91C11EFB0DEB92DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.160.214.0/23 Signature Algorithm: sha256WithRSAEncryption 99:3f:1a:f4:5a:35:a8:52:34:26:40:58:a6:7f:5c:15:41:21: 92:9a:93:ba:e9:ba:8f:57:2c:b8:9a:5b:9f:7a:2e:9a:71:39: 0f:08:86:df:06:cf:d9:14:0b:11:5e:1c:4b:66:41:69:32:7b: d6:94:7f:fc:d2:91:98:e7:c9:ec:6d:fc:9d:64:9e:56:07:7b: 69:77:64:f0:ef:ea:6c:b6:96:55:2a:5a:e2:e4:a8:8f:7f:f4: 1c:de:ef:00:c9:40:7f:7a:96:0c:dc:e7:85:8a:6e:5f:86:cb: 8f:c7:92:29:6c:5c:f6:52:40:cc:80:f5:3a:03:de:e7:62:1e: 7a:d8:3d:74:bb:1f:ea:e9:55:d9:0f:ee:65:c0:b5:a9:5a:80: dd:df:ad:e2:da:ac:bb:0e:bd:a7:a2:28:83:30:6f:83:b0:39: 5a:28:7c:62:b4:44:d8:93:19:6b:da:dc:36:e6:ea:d6:c8:33: b5:82:ef:ad:95:90:36:2a:57:a1:5f:44:0c:02:4d:9a:20:10: 71:c1:12:bd:26:b2:24:e6:40:07:ea:fc:5d:d1:7c:f8:e9:50: 90:ae:89:55:b4:78:a8:3f:91:ac:6a:47:10:1d:b5:4f:6c:c4: 23:c1:35:3f:a3:13:3f:f4:a4:71:fb:58:e1:a3:93:28:ff:1d: d6:0f:e8:10 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhBNTExMC8GA1UEBRMoODVFOEVFOUE4RDMwNTI4NTk5MDYyRDA4Q0I5Q0I5RDUx M0RGNkJENzAeFw0yNTAzMjcwNzEzMzJaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTRmYTliLTk1YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3oKWcq/hVErE9CHElHflTbkuvCFHXamYA6MsCbp2Br8sB9gT1A5qXkgtTct1J W2lI1/kC8vWBk16CMOlGMFe8OYW9dJm9X3F9Qxj/Jd83aAdAHMh8GSXwPzypoVvO bVChEDKAdvPYs9O9M7WYIKn/ZNML08QFhXxNNem8nGvr/siatx21H00aan8Kpog3 AhrmjNaxbZRMzynORXBZh5DnewhAXs3+Kb3yXKGbe3DzEwbGgS77sIjlgH4d4l/i sJU05owOtfwtulD31TilDfPI90SrX+rn5ibilVAztAJ5qaFgbX6IZkEsWdiyU3Ge lIMlf0L30wH8SkrtN9GDHlITAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrGKKUTJk TcHEZbXlUxjeTu9V14MwHwYDVR0jBBgwFoAUhejumo0wUoWZBi0Iy5y51RPfa9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEE1L0QxNTAzMTM2Qzkx QjExRUY4ODdENkYyQ0M0RjlBRTAyL2hlanVtbzB3VW9XWkJpMEl5NXk1MVJQZmE5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVqdW1vMHdVb1daQmkwSXk1eTUxUlBmYTljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDhBNS9EMTUwMzEzNkM5MUIxMUVGODg3RDZGMkNDNEY5QUUwMi80QUUzMzMxOEM5 MUMxMUVGQjBERUI5MkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAXeg1jANBgkqhkiG9w0BAQsFAAOCAQEAmT8a9Fo1qFI0JkBY pn9cFUEhkpqTuum6j1csuJpbn3oumnE5DwiG3wbP2RQLEV4cS2ZBaTJ71pR//NKR mOfJ7G38nWSeVgd7aXdk8O/qbLaWVSpa4uSoj3/0HN7vAMlAf3qWDNznhYpuX4bL j8eSKWxc9lJAzID1OgPe52Ieetg9dLsf6ulV2Q/uZcC1qVqA3d+t4tqsuw69p6Io gzBvg7A5Wih8YrRE2JMZa9rcNubq1sgztYLvrZWQNipXoV9EDAJNmiAQccESvSay JOZAB+r8XdF8+OlQkK6JVbR4qD+RrGpHEB21T2zEI8E1P6MTP/SkcftY4aOTKP8d 1g/oEA== -----END CERTIFICATE-----Generated at Sat Apr 5 02:03:08 2025 by rpki-client