$ rpki-client -vvf rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/BA8DB662085911F082EDFD31C4F9AE02.roa File: BA8DB662085911F082EDFD31C4F9AE02.roa (raw, json) Hash identifier: +kDevtWz9Zb8E9hUtq+Uoh1dNdwrgx3ww0ByNbhsSc4= Subject key identifier: 0B:BE:F5:D4:54:31:37:07:2E:DB:23:D4:25:5B:AD:9D:8F:EF:B8:52 Certificate issuer: /CN=A91627F9/serialNumber=F375476F3235DC3D525171E2BE9211638E490847 Certificate serial: 42 Authority key identifier: F3:75:47:6F:32:35:DC:3D:52:51:71:E2:BE:92:11:63:8E:49:08:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/BA8DB662085911F082EDFD31C4F9AE02.roa Signing time: Tue 27 May 2025 07:45:56 +0000 ROA not before: Tue 27 May 2025 07:45:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153720 IP address blocks: 203.0.120.0/24 maxlen: 24 2001:df5:1bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.crl rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627F9, serialNumber=F375476F3235DC3D525171E2BE9211638E490847 Validity Not Before: May 27 07:45:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68356db4-2ae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:31:0a:61:c7:12:40:82:75:d2:45:0a:af:91: 22:30:5a:e0:fe:6b:4d:4e:f1:8c:4b:a9:57:98:b3: c7:b0:4b:b1:75:4c:84:01:53:d7:b5:17:22:a1:b0: 90:dc:8d:38:76:9a:da:fc:79:93:51:55:28:84:13: fe:b9:64:c8:2e:34:b2:e7:90:6e:b9:92:07:1c:70: a0:59:20:cd:3d:3d:57:60:fc:1c:5a:06:44:e0:fe: 5a:2c:66:d0:a3:2b:85:39:5e:53:bf:e5:5e:7c:e8: 14:09:96:0e:99:4a:91:66:83:92:c9:fb:91:3c:5b: b0:eb:29:b7:d1:88:cf:30:7f:21:a5:d7:9c:86:cd: aa:90:5b:93:b6:de:4e:72:65:4d:c7:16:20:5f:70: f3:e1:a5:f3:d1:f1:02:6b:1e:87:4c:e5:ae:95:6c: 86:c5:61:95:5d:ea:85:bd:3d:e2:ae:4c:d3:2d:97: 1c:87:96:ad:ac:6d:94:1d:da:da:36:7c:04:b5:d2: e8:93:60:ff:a6:7a:e8:05:f5:b5:a8:a7:2a:1a:33: 62:1b:7e:4f:44:f6:e5:ac:b5:7e:da:66:53:a7:15: 85:53:0e:4c:79:70:96:49:69:46:03:4f:4a:64:f1: 13:cf:2c:e7:5d:de:b4:32:cb:47:5d:1d:a8:8f:18: 7a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BE:F5:D4:54:31:37:07:2E:DB:23:D4:25:5B:AD:9D:8F:EF:B8:52 X509v3 Authority Key Identifier: keyid:F3:75:47:6F:32:35:DC:3D:52:51:71:E2:BE:92:11:63:8E:49:08:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/BA8DB662085911F082EDFD31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.0.120.0/24 IPv6: 2001:df5:1bc0::/48 Signature Algorithm: sha256WithRSAEncryption 94:25:f2:2c:0e:93:86:36:43:ee:9c:7f:46:22:ba:72:ea:3a: 91:a4:f8:df:51:8d:68:7d:22:ce:24:97:5f:8b:85:cc:27:16: 51:af:6a:93:c4:fb:ee:19:99:ae:e5:e9:6f:61:86:4e:08:2b: dd:45:f7:c9:d5:22:49:c3:cd:02:27:b7:77:50:02:f3:f2:29: fd:6c:4a:06:d4:9d:e5:10:4f:11:13:db:03:0b:1f:78:0d:7b: 28:5b:0c:14:28:a8:45:fe:d9:59:b3:00:4c:4c:18:32:f5:17: 6e:be:bd:c9:2d:88:62:7b:e5:98:3c:17:9f:00:19:ff:1b:76: 89:d9:98:07:ee:75:47:ee:a6:23:52:3c:41:30:18:9a:3b:67: c8:7b:92:c2:78:54:9d:85:8b:9d:8c:86:e7:37:bd:e3:b6:1d: 09:0a:04:cb:69:a4:66:5e:38:b3:06:3d:45:c9:7a:97:a6:2b: fc:6e:f7:0a:6a:8b:fe:02:50:df:ba:24:d6:19:05:83:88:da: 90:1a:6e:2d:5d:e3:2b:c7:23:3e:ec:5d:1b:84:92:a5:4b:a9: 28:21:15:1c:41:9b:82:b5:9a:5b:98:ad:84:a6:bb:65:b3:c3: bd:82:da:41:77:a5:6e:fc:05:0d:b1:7c:ac:98:3b:0f:7c:bc: 00:9c:e1:de -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjdGOTExMC8GA1UEBRMoRjM3NTQ3NkYzMjM1REMzRDUyNTE3MUUyQkU5MjExNjM4 RTQ5MDg0NzAeFw0yNTA1MjcwNzQ1NTZaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzU2ZGI0LTJhZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkMQphxxJAgnXSRQqvkSIwWuD+a01O8YxLqVeYs8ewS7F1TIQBU9e1FyKhsJDc jTh2mtr8eZNRVSiEE/65ZMguNLLnkG65kgcccKBZIM09PVdg/BxaBkTg/losZtCj K4U5XlO/5V586BQJlg6ZSpFmg5LJ+5E8W7DrKbfRiM8wfyGl15yGzaqQW5O23k5y ZU3HFiBfcPPhpfPR8QJrHodM5a6VbIbFYZVd6oW9PeKuTNMtlxyHlq2sbZQd2to2 fAS10uiTYP+meugF9bWopyoaM2Ibfk9E9uWstX7aZlOnFYVTDkx5cJZJaUYDT0pk 8RPPLOdd3rQyy0ddHaiPGHpBAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUC7711FQx Nwcu2yPUJVutnY/vuFIwHwYDVR0jBBgwFoAU83VHbzI13D1SUXHivpIRY45JCEcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyN0Y5LzI4OERGMTRBRTlD NDExRUY5OTIwOTMwQUM0RjlBRTAyLzgzVkhiekkxM0QxU1VYSGl2cElSWTQ1SkNF Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODNWSGJ6STEzRDFTVVhIaXZwSVJZNDVKQ0VjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdGOS8yODhERjE0QUU5QzQxMUVGOTkyMDkzMEFDNEY5QUUwMi9CQThEQjY2MjA4 NTkxMUYwODJFREZEMzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMsAeDAPBAIAAjAJAwcAIAEN9RvAMA0GCSqGSIb3DQEBCwUA A4IBAQCUJfIsDpOGNkPunH9GIrpy6jqRpPjfUY1ofSLOJJdfi4XMJxZRr2qTxPvu GZmu5elvYYZOCCvdRffJ1SJJw80CJ7d3UALz8in9bEoG1J3lEE8RE9sDCx94DXso WwwUKKhF/tlZswBMTBgy9Rduvr3JLYhie+WYPBefABn/G3aJ2ZgH7nVH7qYjUjxB MBiaO2fIe5LCeFSdhYudjIbnN73jth0JCgTLaaRmXjizBj1FyXqXpiv8bvcKaov+ AlDfuiTWGQWDiNqQGm4tXeMrxyM+7F0bhJKlS6koIRUcQZuCtZpbmK2Eprtls8O9 gtpBd6Vu/AUNsXysmDsPfLwAnOHe -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:08 2025 by rpki-client