$ rpki-client -vvf rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/310E8C36A30A11EFB999C96CC4F9AE02.roa File: 310E8C36A30A11EFB999C96CC4F9AE02.roa (raw, json) Hash identifier: pFRSFI6h6cepGXA89QRHkbEToNAY1QtSMdW9gUz8rz8= Subject key identifier: B5:CF:A4:6A:CA:62:79:9E:90:A9:FF:31:22:05:27:1B:91:CA:4F:40 Certificate issuer: /CN=A916F7BE/serialNumber=0F9AA8DE53F085EE865A1E3DD2A2344E2130AF14 Certificate serial: 45 Authority key identifier: 0F:9A:A8:DE:53:F0:85:EE:86:5A:1E:3D:D2:A2:34:4E:21:30:AF:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/310E8C36A30A11EFB999C96CC4F9AE02.roa Signing time: Fri 07 Mar 2025 06:24:04 +0000 ROA not before: Fri 07 Mar 2025 06:24:04 +0000 ROA not after: Sat 01 Jul 2028 00:00:00 +0000 asID: 38058 IP address blocks: 202.91.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.crl rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F7BE Validity Not Before: Mar 7 06:24:04 2025 GMT Not After : Jul 1 00:00:00 2028 GMT Subject: CN=67ca9103-8532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:26:26:8b:1a:c8:cc:40:75:a5:ae:e1:c4:fb: e9:4e:3e:c0:df:0d:89:bd:ad:c2:6f:15:a9:7c:e4: 0a:19:b5:26:5f:77:68:0a:75:9d:cd:a5:5c:6c:dd: 96:c4:1d:a7:94:52:81:49:f3:2c:87:9a:9c:19:24: 54:00:43:c3:16:e9:21:3b:23:88:13:fc:d7:9d:bb: 8c:5a:cf:3b:82:53:a6:6d:e6:41:73:85:1f:d1:31: 6a:f3:13:77:15:70:cc:0d:b5:f1:4f:01:39:04:7b: f2:d9:7f:51:18:b8:2a:9a:34:59:f3:0b:99:b6:02: 8a:85:2a:41:16:e5:2c:99:5e:35:58:bf:b0:8a:5a: 16:3a:b1:44:a1:1e:27:b9:27:4e:f2:b8:62:66:0b: 35:20:e0:2b:1b:20:5e:01:1c:62:57:37:26:d0:13: c4:f9:d0:f1:51:66:fc:91:de:7c:5e:6d:10:74:b9: 16:8c:01:36:76:1c:b2:15:67:1b:0b:90:fa:7b:98: ee:87:42:5d:6f:1a:0a:4d:bc:a6:8b:27:32:69:d1: 9b:fc:5b:ac:c1:c3:4f:03:f0:4e:87:1b:e5:e3:74: 16:ae:f4:a4:79:4f:13:0e:7e:83:f1:61:8d:53:4d: cb:b8:84:cc:eb:b9:b0:28:b4:6c:41:1e:ae:0a:3b: 06:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CF:A4:6A:CA:62:79:9E:90:A9:FF:31:22:05:27:1B:91:CA:4F:40 X509v3 Authority Key Identifier: keyid:0F:9A:A8:DE:53:F0:85:EE:86:5A:1E:3D:D2:A2:34:4E:21:30:AF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/310E8C36A30A11EFB999C96CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.91.132.0/22 Signature Algorithm: sha256WithRSAEncryption 94:0d:60:51:f0:18:7b:88:45:29:8c:97:a7:42:28:6d:a0:e6: c8:f6:d0:42:36:c1:e4:09:2c:d8:a5:1c:eb:14:ee:54:12:0b: 5d:4c:ee:dd:96:f7:91:be:e6:b3:62:52:e0:06:36:73:02:75: 91:2c:e6:ea:0f:8c:9b:5b:bf:4e:03:67:c1:e8:de:a4:b8:95: 47:92:e6:21:db:93:c6:99:b4:ca:1e:1e:0f:3f:20:76:fc:e8: 91:8c:77:45:28:70:3b:b2:98:01:25:8a:91:c7:0b:74:92:32: ab:9f:57:e6:ee:89:ea:c8:bb:14:09:a7:ed:6a:78:4d:6f:92: 82:58:eb:16:9b:f3:37:a2:35:bc:57:a5:e6:1c:f7:49:25:41: f8:cd:f6:2d:45:92:0e:af:fa:7b:b1:a5:ea:23:63:6b:69:0b: ab:2f:29:47:b5:bc:5e:58:92:30:30:08:66:c4:67:6d:5a:00: 85:ae:f1:a5:5c:37:0f:10:1e:fa:48:8f:5c:f4:cb:56:19:87: ce:14:cc:bd:ef:ff:3f:da:40:6a:72:60:22:35:28:77:28:02: 4a:a2:90:a8:31:f5:82:7d:f7:07:1f:fb:0c:91:54:2c:b3:ff: 2f:95:93:6e:a9:29:3b:55:60:10:a1:6a:46:d0:c7:57:d3:37: e1:9c:26:d3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RjdCRTExMC8GA1UEBRMoMEY5QUE4REU1M0YwODVFRTg2NUExRTNERDJBMjM0NEUy MTMwQUYxNDAeFw0yNTAzMDcwNjI0MDRaFw0yODA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Y2E5MTAzLTg1MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiJiaLGsjMQHWlruHE++lOPsDfDYm9rcJvFal85AoZtSZfd2gKdZ3NpVxs3ZbE HaeUUoFJ8yyHmpwZJFQAQ8MW6SE7I4gT/Nedu4xazzuCU6Zt5kFzhR/RMWrzE3cV cMwNtfFPATkEe/LZf1EYuCqaNFnzC5m2AoqFKkEW5SyZXjVYv7CKWhY6sUShHie5 J07yuGJmCzUg4CsbIF4BHGJXNybQE8T50PFRZvyR3nxebRB0uRaMATZ2HLIVZxsL kPp7mO6HQl1vGgpNvKaLJzJp0Zv8W6zBw08D8E6HG+XjdBau9KR5TxMOfoPxYY1T Tcu4hMzrubAotGxBHq4KOwZ5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUtc+kaspi eZ6Qqf8xIgUnG5HKT0AwHwYDVR0jBBgwFoAUD5qo3lPwhe6GWh490qI0TiEwrxQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZGN0JFLzA5Q0UzMjY0OUNG RTExRUY4RUVDOTA0QUM0RjlBRTAyL0Q1cW8zbFB3aGU2R1doNDkwcUkwVGlFd3J4 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDVxbzNsUHdoZTZHV2g0OTBxSTBUaUV3cnhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjdCRS8wOUNFMzI2NDlDRkUxMUVGOEVFQzkwNEFDNEY5QUUwMi8zMTBFOEMzNkEz MEExMUVGQjk5OUM5NkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAspbhDANBgkqhkiG9w0BAQsFAAOCAQEAlA1gUfAYe4hFKYyX p0IobaDmyPbQQjbB5Aks2KUc6xTuVBILXUzu3Zb3kb7ms2JS4AY2cwJ1kSzm6g+M m1u/TgNnwejepLiVR5LmIduTxpm0yh4eDz8gdvzokYx3RShwO7KYASWKkccLdJIy q59X5u6J6si7FAmn7Wp4TW+SgljrFpvzN6I1vFel5hz3SSVB+M32LUWSDq/6e7Gl 6iNja2kLqy8pR7W8XliSMDAIZsRnbVoAha7xpVw3DxAe+kiPXPTLVhmHzhTMve// P9pAanJgIjUodygCSqKQqDH1gn33Bx/7DJFULLP/L5WTbqkpO1VgEKFqRtDHV9M3 4Zwm0w== -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:40 2025 by rpki-client