$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/DA700744185511F09304D972C4F9AE02.roa File: DA700744185511F09304D972C4F9AE02.roa (raw, json) Hash identifier: AVDeCRqbZoyZl3fF1YnTf6HcDZbje6RSX9dEEeI1q44= Subject key identifier: DE:FF:3A:D8:37:0D:52:2E:96:7C:25:C4:DA:36:21:3F:35:D2:5A:C9 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 0D Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/DA700744185511F09304D972C4F9AE02.roa Signing time: Sun 13 Apr 2025 10:55:46 +0000 ROA not before: Sun 13 Apr 2025 10:55:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151964 IP address blocks: 163.223.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 07:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Apr 13 10:55:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fb9832-b274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:4b:36:ab:f7:5e:65:88:41:f3:55:7a:92: c1:6c:16:1a:2e:92:61:63:73:f5:9e:81:32:7d:c4: 48:71:dd:1b:23:8b:e7:59:15:0c:3c:5b:96:a3:73: 9a:2d:c3:47:4e:80:c4:bf:54:d4:b4:60:28:af:31: e6:f3:29:17:64:a7:b9:fb:32:e6:ec:26:5a:41:08: f8:21:a4:3d:04:af:d3:2b:26:ce:45:05:86:ef:9e: 1c:2c:b7:99:4e:47:0d:35:3e:34:e1:01:ad:45:82: 56:58:bc:6f:89:2d:48:25:68:00:79:f7:6e:c4:bc: c4:8e:a3:45:92:5f:23:18:cb:d0:a6:09:ab:b7:f8: 96:50:51:63:3c:91:e7:af:55:4a:54:08:91:66:5b: a9:ac:e7:c9:ee:d9:81:10:95:48:21:1b:41:f0:73: d2:78:5b:6a:e3:15:2d:ca:aa:c0:f3:a0:df:26:fd: d7:b4:47:8a:a4:59:32:ed:99:7d:ac:ba:aa:7b:e2: d8:8d:26:48:8b:17:7c:7d:09:2d:49:04:8e:59:14: 8d:82:cc:2e:47:2e:9a:0c:f1:82:bc:8a:fb:a2:96: bb:d1:ab:e0:51:8b:3b:bb:99:35:27:76:d7:50:bf: ca:58:f7:93:17:fa:97:a1:9a:43:ed:36:98:6c:3c: cf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FF:3A:D8:37:0D:52:2E:96:7C:25:C4:DA:36:21:3F:35:D2:5A:C9 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/DA700744185511F09304D972C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.216.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:c4:9c:cf:b6:e2:1c:71:05:f2:68:8a:46:2f:86:87:f5:00: d3:ae:e8:d7:5c:98:25:98:d6:ed:ee:ae:10:c9:7b:02:f8:aa: 0b:1d:6f:b0:a8:98:0e:d9:8d:6b:cc:5a:6d:72:3d:54:c2:2c: cc:2e:87:f9:fd:39:f2:b4:d9:b4:70:7f:55:c8:7f:14:cd:5c: fa:73:2c:c9:20:88:1b:ab:d9:5b:fd:23:22:f0:d6:0f:93:d3: 57:cc:c3:1e:67:18:1e:c7:e0:ce:20:1f:4c:a1:3b:34:b7:61: 0b:2e:2c:5a:62:ed:f7:da:6b:51:5c:2b:49:02:25:bd:52:f7: fc:2f:13:97:59:99:a8:d3:e4:18:e0:ee:ff:9f:e2:0a:d2:25: 82:ae:f0:76:ea:f6:c2:09:17:d1:38:ce:55:6d:11:f3:50:8a: 60:d2:da:fc:5e:a3:71:2d:1b:d1:83:5a:31:81:fd:10:60:5d: 42:5a:aa:b1:e0:c5:e9:20:34:00:71:77:5e:0e:08:04:95:37: 64:de:0b:9d:30:8f:67:e6:1b:b1:5a:63:84:9e:51:2b:1a:d2: 20:a2:70:94:03:02:ce:2b:9e:d2:b0:d4:e6:9f:b0:00:d7:7c: 0c:2f:2a:fc:e3:b5:5b:5f:8b:4b:76:c1:ce:7a:7a:c3:38:f9: 35:f0:a0:98 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTA0MTMxMDU1NDZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmI5ODMyLWIyNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgVEs2q/deZYhB81V6ksFsFhoukmFjc/WegTJ9xEhx3Rsji+dZFQw8W5ajc5ot w0dOgMS/VNS0YCivMebzKRdkp7n7MubsJlpBCPghpD0Er9MrJs5FBYbvnhwst5lO Rw01PjThAa1FglZYvG+JLUglaAB5927EvMSOo0WSXyMYy9CmCau3+JZQUWM8keev VUpUCJFmW6ms58nu2YEQlUghG0Hwc9J4W2rjFS3KqsDzoN8m/de0R4qkWTLtmX2s uqp74tiNJkiLF3x9CS1JBI5ZFI2CzC5HLpoM8YK8ivuilrvRq+BRizu7mTUndtdQ v8pY95MX+pehmkPtNphsPM8bAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3v862DcN Ui6WfCXE2jYhPzXSWskwHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVCOS81MjAyRDAyODBERjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9EQTcwMDc0NDE4 NTUxMUYwOTMwNEQ5NzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKPf2DANBgkqhkiG9w0BAQsFAAOCAQEAbMScz7biHHEF8miK Ri+Gh/UA067o11yYJZjW7e6uEMl7AviqCx1vsKiYDtmNa8xabXI9VMIszC6H+f05 8rTZtHB/Vch/FM1c+nMsySCIG6vZW/0jIvDWD5PTV8zDHmcYHsfgziAfTKE7NLdh Cy4sWmLt99prUVwrSQIlvVL3/C8Tl1mZqNPkGODu/5/iCtIlgq7wdur2wgkX0TjO VW0R81CKYNLa/F6jcS0b0YNaMYH9EGBdQlqqseDF6SA0AHF3Xg4IBJU3ZN4LnTCP Z+YbsVpjhJ5RKxrSIKJwlAMCziue0rDU5p+wANd8DC8q/OO1W1+LS3bBznp6wzj5 NfCgmA== -----END CERTIFICATE-----Generated at Sun Apr 20 14:26:46 2025 by rpki-client