$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/0F6980C0830711ECB472CA0AC4F9AE02.roa File: 0F6980C0830711ECB472CA0AC4F9AE02.roa (raw, json) Hash identifier: GSq2aTh4Ighs8Kd5WfNm9bR33IhLvfkn/9rz4nvZ37o= Subject key identifier: 95:00:D1:5C:D5:28:89:5B:2F:60:15:19:64:6F:04:CB:B2:17:CA:C4 Certificate issuer: /CN=A91F6D91/serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Certificate serial: 05FE Authority key identifier: F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/0F6980C0830711ECB472CA0AC4F9AE02.roa Signing time: Thu 02 Jan 2025 22:52:20 +0000 ROA not before: Thu 02 Jan 2025 22:52:20 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.175.0.0/24 maxlen: 24 203.175.1.0/24 maxlen: 24 203.175.2.0/24 maxlen: 24 203.175.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1534 (0x5fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D91 Validity Not Before: Jan 2 22:52:20 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677718a3-2265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:33:14:dd:79:8e:2b:02:2c:33:db:f7:42: 1f:d8:5b:dd:89:24:a1:a1:6c:d3:5b:4d:d4:74:e9: d8:6f:49:cf:e3:73:96:9c:c3:8a:93:35:80:23:ec: 69:e7:52:44:22:22:23:ac:49:0b:44:bf:ba:df:e6: 99:69:84:a6:bb:aa:7e:38:f6:e8:66:43:1f:e5:af: f6:a4:bb:ed:f6:d4:d2:bd:b7:c9:d6:37:c5:bb:40: f4:8e:0e:38:a6:1e:04:3b:e8:43:db:cb:a6:63:32: 1a:94:c7:8e:e4:60:64:a0:b6:b1:ca:64:77:ae:4e: b1:7c:0a:32:a9:65:da:e2:fc:3a:e3:b7:04:a7:1b: 65:5f:fc:02:bd:22:7d:63:da:68:ec:4e:9f:3f:bf: 70:ea:6d:74:66:ee:f0:dc:52:7d:d9:b4:35:b5:29: 63:27:f0:fe:7e:a8:e5:23:b4:5a:0a:cf:06:73:a8: 85:cb:a2:7d:3e:24:17:04:c3:06:a6:08:85:df:5a: 07:60:d1:fd:ef:b8:16:85:22:b7:d4:e3:76:8c:cb: 12:5c:07:da:7c:06:e8:1c:c3:82:ec:a2:e2:4d:84: 92:2a:a3:5f:14:74:cb:06:00:2e:83:7c:86:09:24: e4:3b:34:eb:59:61:d8:e8:bc:8d:ee:c2:e0:f5:e2: b5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:00:D1:5C:D5:28:89:5B:2F:60:15:19:64:6F:04:CB:B2:17:CA:C4 X509v3 Authority Key Identifier: keyid:F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/0F6980C0830711ECB472CA0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.175.0.0/22 Signature Algorithm: sha256WithRSAEncryption 91:e7:e5:2c:73:3a:0f:09:cf:b3:32:b3:c7:ff:5d:0f:76:fa: 0a:2d:15:a3:84:3c:93:e4:a6:86:e6:ed:11:77:7b:98:3a:ff: c8:17:6f:e2:4b:4d:93:52:77:ed:26:ce:d3:ad:97:6d:df:90: 43:84:ed:4d:4f:1e:4c:78:0b:9d:49:0b:16:2c:6b:ec:d4:37: 92:e8:a0:8e:2c:70:94:eb:fe:08:72:63:53:53:af:70:42:76: 0a:bd:02:46:8d:5c:62:c4:6e:d4:8d:c9:ed:56:7e:c4:4c:ab: 7b:5e:35:87:e2:96:00:a1:2d:21:44:9d:f5:f4:ce:65:01:ff: 6b:ef:cb:49:7d:2a:5e:54:b8:cb:ef:49:3c:02:35:28:85:55: cc:ce:72:db:7f:c5:fe:8c:de:cb:57:e0:c5:43:70:d5:de:d3: b9:fd:ca:bb:cd:2b:99:07:16:da:96:26:2b:9f:0b:2e:66:f7: a9:ec:28:ac:e1:71:a3:a6:62:dc:0f:32:74:5f:0c:14:fc:90: b6:de:13:34:f7:fa:a3:00:c9:f5:ba:21:67:54:10:ff:9c:10: af:8f:c8:70:2a:61:3c:85:ce:1e:44:04:05:85:3c:a0:c4:e1: 8b:9e:f6:84:9f:12:0b:b8:67:9b:88:38:db:09:fc:67:b6:a0: 38:65:ba:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZEOTExMTAvBgNVBAUTKEY2NzE4QTVFNUU0MkQwOEUyNTNBMkZCMzAwRkYwOUMz RjUzNTFEMzIwHhcNMjUwMTAyMjI1MjIwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3MThhMy0yMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC0zFN15jisCLDPb90If2FvdiSShoWzTW03UdOnYb0nP43OWnMOKkzWAI+xp 51JEIiIjrEkLRL+63+aZaYSmu6p+OPboZkMf5a/2pLvt9tTSvbfJ1jfFu0D0jg44 ph4EO+hD28umYzIalMeO5GBkoLaxymR3rk6xfAoyqWXa4vw647cEpxtlX/wCvSJ9 Y9po7E6fP79w6m10Zu7w3FJ92bQ1tSljJ/D+fqjlI7RaCs8Gc6iFy6J9PiQXBMMG pgiF31oHYNH977gWhSK31ON2jMsSXAfafAboHMOC7KLiTYSSKqNfFHTLBgAug3yG CSTkOzTrWWHY6LyN7sLg9eK1mwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJUA0VzV KIlbL2AVGWRvBMuyF8rEMB8GA1UdIwQYMBaAFPZxil5eQtCOJTovswD/CcP1NR0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ5MS9FNTE3RjJCNjlB RTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJNGxPaS16QVA4SndfVTFI VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzluR0tYbDVDMEk0bE9pLXpBUDhKd19VMUhUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZEOTEvRTUxN0YyQjY5QUU1MTFFQjgzN0YxMzVFQzRGOUFFMDIvMEY2OTgwQzA4 MzA3MTFFQ0I0NzJDQTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLrwAwDQYJKoZIhvcNAQELBQADggEBAJHn5SxzOg8Jz7My s8f/XQ92+gotFaOEPJPkpobm7RF3e5g6/8gXb+JLTZNSd+0mztOtl23fkEOE7U1P Hkx4C51JCxYsa+zUN5LooI4scJTr/ghyY1NTr3BCdgq9AkaNXGLEbtSNye1WfsRM q3teNYfilgChLSFEnfX0zmUB/2vvy0l9Kl5UuMvvSTwCNSiFVczOctt/xf6M3stX 4MVDcNXe07n9yrvNK5kHFtqWJiufCy5m96nsKKzhcaOmYtwPMnRfDBT8kLbeEzT3 +qMAyfW6IWdUEP+cEK+PyHAqYTyFzh5EBAWFPKDE4Yue9oSfEgu4Z5uIONsJ/Ge2 oDhlutU= -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:35 2025 by rpki-client