$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/44A5887E974011EF8FD14F42C4F9AE02.roa File: 44A5887E974011EF8FD14F42C4F9AE02.roa (raw, json) Hash identifier: hQzBarqE7y1xhvVkKj4n1pe4CbqvYvdULHNvM+oOS2A= Subject key identifier: 25:AE:C0:CB:39:D6:B9:E5:BD:FC:5A:D0:28:83:AD:BB:FD:9C:B7:DC Certificate issuer: /CN=A91F6FC3/serialNumber=66025976B75F5C29F42C1D80CF4888F7D46058D7 Certificate serial: 3474 Authority key identifier: 66:02:59:76:B7:5F:5C:29:F4:2C:1D:80:CF:48:88:F7:D4:60:58:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/44A5887E974011EF8FD14F42C4F9AE02.roa Signing time: Fri 06 Dec 2024 15:00:47 +0000 ROA not before: Fri 06 Dec 2024 15:00:47 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 10083 IP address blocks: 122.200.172.0/24 maxlen: 24 122.200.175.0/24 maxlen: 24 203.5.127.0/24 maxlen: 24 203.33.71.0/24 maxlen: 24 203.55.18.0/24 maxlen: 24 203.57.78.0/24 maxlen: 24 2402:5600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.crl rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:45:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13428 (0x3474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6FC3 Validity Not Before: Dec 6 15:00:47 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6753119f-abc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:84:fe:76:1b:fa:51:87:ab:01:42:8e:ca:f1: 78:50:e7:ec:4a:09:19:e4:85:d9:ef:84:e2:71:55: 6e:7d:74:5f:94:a1:c5:ec:32:78:cb:a3:aa:be:e7: 0b:fd:0c:b8:56:20:29:d1:32:48:97:96:9b:d0:67: 5a:68:e2:72:c5:51:b2:0e:cd:44:c5:c2:11:36:e0: 12:7b:4c:66:c5:46:3d:8c:5a:73:58:46:d1:32:ea: da:04:4e:10:c3:84:3c:bb:04:c4:88:54:62:2d:ac: 07:2f:17:fe:fc:4f:b3:c1:aa:23:c7:28:c6:28:ab: 03:5e:92:b3:7d:6b:4a:58:73:7d:80:ff:6f:7a:c0: 83:b0:22:f7:cd:39:2b:92:fc:75:79:c0:1f:c6:31: 8d:d3:85:f3:b5:60:63:27:e0:6c:b9:a3:18:fc:3f: eb:e7:50:be:62:fa:d9:c0:4e:a5:ba:64:9d:b0:4a: 4c:ee:0b:85:0e:43:2f:f7:d1:d4:d8:52:f9:1f:3a: 05:b3:0d:4a:23:2f:78:f9:c0:7b:c5:62:6e:98:21: ca:86:5d:c3:10:4f:71:2c:e1:86:96:34:bc:12:a3: 48:2b:9c:cd:a7:9b:56:89:62:ef:03:fd:f6:4d:ea: 13:c0:42:24:48:77:c6:89:f3:73:e7:87:09:cb:ab: 23:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:AE:C0:CB:39:D6:B9:E5:BD:FC:5A:D0:28:83:AD:BB:FD:9C:B7:DC X509v3 Authority Key Identifier: keyid:66:02:59:76:B7:5F:5C:29:F4:2C:1D:80:CF:48:88:F7:D4:60:58:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/44A5887E974011EF8FD14F42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.200.172.0/24 122.200.175.0/24 203.5.127.0/24 203.33.71.0/24 203.55.18.0/24 203.57.78.0/24 IPv6: 2402:5600::/32 Signature Algorithm: sha256WithRSAEncryption 86:0e:dd:88:e2:08:13:48:6b:ed:e9:7e:76:ad:44:e8:10:67: 64:8c:0d:f9:57:6d:98:d8:97:29:a2:4d:21:70:eb:04:68:62: e2:2f:e1:5d:92:7d:53:0a:70:40:45:33:f8:79:09:07:6a:96: 89:e2:cb:a1:49:ea:b8:66:43:ce:7c:8c:e2:10:52:49:71:af: f5:22:f7:30:d8:0e:ac:31:a5:c6:0c:f9:6e:75:ee:e9:97:bb: 23:42:f5:c2:85:c4:c0:64:ca:ad:f2:3e:e6:60:ea:1d:ca:6c: be:92:07:c5:a0:45:28:31:98:21:fc:2b:1a:64:72:e9:40:02: b4:8c:65:ca:b5:3b:f2:27:2b:87:b3:c9:58:0b:13:77:61:28: 62:85:f1:3b:1b:98:10:4d:55:3c:75:3d:4b:fd:8d:e9:33:40: 24:22:25:b4:da:2d:96:ca:11:53:96:36:cd:62:20:6c:d1:40: 94:05:18:20:53:8f:89:9a:0b:e2:e6:4d:73:e4:95:27:1d:c4: 81:9a:59:00:4b:56:4a:52:31:c9:ab:6a:40:d3:a4:59:21:92: 50:72:8d:29:c6:e4:19:a7:e5:5a:28:fc:50:e8:67:2a:6f:aa: 74:12:9b:ad:a8:12:2e:aa:36:3f:0c:90:f8:0a:86:a2:e6:fc: bf:d7:22:69 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZGQzMxMTAvBgNVBAUTKDY2MDI1OTc2Qjc1RjVDMjlGNDJDMUQ4MENGNDg4OEY3 RDQ2MDU4RDcwHhcNMjQxMjA2MTUwMDQ3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzMTE5Zi1hYmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24T+dhv6UYerAUKOyvF4UOfsSgkZ5IXZ74TicVVufXRflKHF7DJ4y6OqvucL /Qy4ViAp0TJIl5ab0GdaaOJyxVGyDs1ExcIRNuASe0xmxUY9jFpzWEbRMuraBE4Q w4Q8uwTEiFRiLawHLxf+/E+zwaojxyjGKKsDXpKzfWtKWHN9gP9vesCDsCL3zTkr kvx1ecAfxjGN04XztWBjJ+BsuaMY/D/r51C+YvrZwE6lumSdsEpM7guFDkMv99HU 2FL5HzoFsw1KIy94+cB7xWJumCHKhl3DEE9xLOGGljS8EqNIK5zNp5tWiWLvA/32 TeoTwEIkSHfGifNz54cJy6sjEQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFCWuwMs5 1rnlvfxa0CiDrbv9nLfcMB8GA1UdIwQYMBaAFGYCWXa3X1wp9CwdgM9IiPfUYFjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkZDMy9GQzkwNzgwMjFE OTIxMUUyQjNCQzJDRjYwOEIwMkNEMi9aZ0paZHJkZlhDbjBMQjJBejBpSTk5UmdX TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnSlpkcmRmWENuMExCMkF6MGlJOTlSZ1dOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZGQzMvRkM5MDc4MDIxRDkyMTFFMkIzQkMyQ0Y2MDhCMDJDRDIvNDRBNTg4N0U5 NzQwMTFFRjhGRDE0RjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAB6yKwDBAB6yK8DBADLBX8DBADLIUcDBADLNxIDBADLOU4w DQQCAAIwBwMFACQCVgAwDQYJKoZIhvcNAQELBQADggEBAIYO3YjiCBNIa+3pfnat ROgQZ2SMDflXbZjYlymiTSFw6wRoYuIv4V2SfVMKcEBFM/h5CQdqloniy6FJ6rhm Q858jOIQUklxr/Ui9zDYDqwxpcYM+W517umXuyNC9cKFxMBkyq3yPuZg6h3KbL6S B8WgRSgxmCH8KxpkculAArSMZcq1O/InK4ezyVgLE3dhKGKF8TsbmBBNVTx1PUv9 jekzQCQiJbTaLZbKEVOWNs1iIGzRQJQFGCBTj4maC+LmTXPklScdxIGaWQBLVkpS McmrakDTpFkhklByjSnG5Bmn5Voo/FDoZypvqnQSm62oEi6qNj8MkPgKhqLm/L/X Imk= -----END CERTIFICATE-----Generated at Sun Apr 6 10:09:27 2025 by rpki-client