$ rpki-client -vvf rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/9AEE04EAA30C11EFB8323D14C4F9AE02.roa File: 9AEE04EAA30C11EFB8323D14C4F9AE02.roa (raw, json) Hash identifier: Zk4O88j1RIZ+Ku3IeZORoghBRdg89wRXcbXPFK1V55c= Subject key identifier: BA:FA:94:5D:04:5C:1A:47:B5:EE:F5:6A:B9:03:78:30:C9:F7:E3:7A Certificate issuer: /CN=A916F7BE/serialNumber=0F9AA8DE53F085EE865A1E3DD2A2344E2130AF14 Certificate serial: 46 Authority key identifier: 0F:9A:A8:DE:53:F0:85:EE:86:5A:1E:3D:D2:A2:34:4E:21:30:AF:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/9AEE04EAA30C11EFB8323D14C4F9AE02.roa Signing time: Fri 07 Mar 2025 06:24:06 +0000 ROA not before: Fri 07 Mar 2025 06:24:06 +0000 ROA not after: Sat 01 Jul 2028 00:00:00 +0000 asID: 8075 IP address blocks: 202.91.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.crl rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F7BE Validity Not Before: Mar 7 06:24:06 2025 GMT Not After : Jul 1 00:00:00 2028 GMT Subject: CN=67ca9106-4031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:37:a2:d5:3d:b1:74:f8:fc:85:53:e4:a8:32: 56:04:8e:ca:4e:fa:6e:20:ba:f6:96:0d:79:3f:a4: 5a:57:0c:d4:4b:ee:ea:28:47:81:93:94:56:70:44: 6d:7f:d5:e6:17:16:59:81:b6:60:5e:84:b6:99:ea: 98:07:0d:87:82:44:98:72:20:97:54:06:4f:98:1d: f3:55:10:7c:3b:4a:a3:4d:dc:b3:e0:79:ae:50:83: 20:15:11:4b:74:33:b2:37:b6:ea:3a:4c:5e:c0:19: 4c:02:81:07:d6:76:2c:d2:e2:1a:2a:4a:cc:fb:bf: a8:81:6b:b5:59:9c:82:f1:b2:b7:8e:c9:1c:24:fb: c2:f7:2b:9d:38:ab:1b:af:c4:10:ec:27:43:a6:21: e7:b7:b2:10:07:e9:29:ac:7f:3b:da:a2:3c:03:cc: 86:10:fd:49:b9:2e:ea:ad:0c:b8:a6:4b:56:9d:c2: b5:d0:33:14:c6:f4:b9:4a:ad:e0:e1:31:7d:b5:2c: bb:0e:26:6f:04:ac:d7:87:a1:53:c9:4e:d7:59:98: fc:5e:26:ce:2f:e4:26:45:ed:97:1b:db:0b:15:b4: f3:20:1e:b2:45:ef:f7:3f:b8:37:84:d9:7f:73:22: 3c:b7:de:38:1b:62:df:30:63:54:a9:22:86:22:87: 3e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FA:94:5D:04:5C:1A:47:B5:EE:F5:6A:B9:03:78:30:C9:F7:E3:7A X509v3 Authority Key Identifier: keyid:0F:9A:A8:DE:53:F0:85:EE:86:5A:1E:3D:D2:A2:34:4E:21:30:AF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/D5qo3lPwhe6GWh490qI0TiEwrxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5qo3lPwhe6GWh490qI0TiEwrxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F7BE/09CE32649CFE11EF8EEC904AC4F9AE02/9AEE04EAA30C11EFB8323D14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.91.132.0/22 Signature Algorithm: sha256WithRSAEncryption 35:13:f7:99:d2:cf:9d:d8:de:9d:d6:a5:f0:3b:3a:81:8e:3c: ca:38:6b:f4:12:31:8d:18:dd:1a:fa:34:7d:9e:04:b0:62:57: 26:1b:79:8a:db:c4:ef:65:e1:fa:44:52:7d:0a:f1:9b:e6:e5: af:6b:9f:b1:94:d1:34:f9:f4:8e:09:fa:7e:fb:71:bf:87:8d: 5e:7c:dd:73:4a:c6:0f:84:d4:12:7f:f4:0c:5a:00:78:8f:e9: 5a:7c:c6:3e:98:1b:bb:75:8f:d2:46:b3:21:a6:0b:af:dc:0d: e4:e7:bf:e0:52:13:a4:28:f8:02:f4:be:3f:a5:f2:34:23:7a: 97:04:2b:8f:b2:32:a8:8f:65:8c:93:9e:ca:a0:06:9f:c6:45: 26:7c:75:d2:7d:f9:9f:8b:f0:3c:a6:cb:f2:cf:b8:99:00:99: f2:04:59:29:c2:c7:f2:ec:8d:00:a9:70:00:e6:cd:ac:f7:46: d1:e9:6a:d9:d1:51:f4:ec:20:38:c2:3a:ef:1f:80:32:43:d9: 4f:6f:91:db:c8:53:4a:a4:46:00:18:f8:b0:9c:05:e5:f0:8a: cd:21:85:de:92:60:ba:15:0c:b3:df:2d:42:d7:64:f3:af:d6: ae:49:29:d8:22:ee:19:03:43:f8:27:2c:ba:bb:cc:4f:47:30: 69:c1:fa:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RjdCRTExMC8GA1UEBRMoMEY5QUE4REU1M0YwODVFRTg2NUExRTNERDJBMjM0NEUy MTMwQUYxNDAeFw0yNTAzMDcwNjI0MDZaFw0yODA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Y2E5MTA2LTQwMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRN6LVPbF0+PyFU+SoMlYEjspO+m4guvaWDXk/pFpXDNRL7uooR4GTlFZwRG1/ 1eYXFlmBtmBehLaZ6pgHDYeCRJhyIJdUBk+YHfNVEHw7SqNN3LPgea5QgyAVEUt0 M7I3tuo6TF7AGUwCgQfWdizS4hoqSsz7v6iBa7VZnILxsreOyRwk+8L3K504qxuv xBDsJ0OmIee3shAH6SmsfzvaojwDzIYQ/Um5LuqtDLimS1adwrXQMxTG9LlKreDh MX21LLsOJm8ErNeHoVPJTtdZmPxeJs4v5CZF7Zcb2wsVtPMgHrJF7/c/uDeE2X9z Ijy33jgbYt8wY1SpIoYihz5xAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuvqUXQRc Gke17vVquQN4MMn343owHwYDVR0jBBgwFoAUD5qo3lPwhe6GWh490qI0TiEwrxQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZGN0JFLzA5Q0UzMjY0OUNG RTExRUY4RUVDOTA0QUM0RjlBRTAyL0Q1cW8zbFB3aGU2R1doNDkwcUkwVGlFd3J4 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDVxbzNsUHdoZTZHV2g0OTBxSTBUaUV3cnhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjdCRS8wOUNFMzI2NDlDRkUxMUVGOEVFQzkwNEFDNEY5QUUwMi85QUVFMDRFQUEz MEMxMUVGQjgzMjNEMTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAspbhDANBgkqhkiG9w0BAQsFAAOCAQEANRP3mdLPndjendal 8Ds6gY48yjhr9BIxjRjdGvo0fZ4EsGJXJht5itvE72Xh+kRSfQrxm+blr2ufsZTR NPn0jgn6fvtxv4eNXnzdc0rGD4TUEn/0DFoAeI/pWnzGPpgbu3WP0kazIaYLr9wN 5Oe/4FITpCj4AvS+P6XyNCN6lwQrj7IyqI9ljJOeyqAGn8ZFJnx10n35n4vwPKbL 8s+4mQCZ8gRZKcLH8uyNAKlwAObNrPdG0elq2dFR9OwgOMI67x+AMkPZT2+R28hT SqRGABj4sJwF5fCKzSGF3pJguhUMs98tQtdk86/Wrkkp2CLuGQND+CcsurvMT0cw acH6gA== -----END CERTIFICATE-----Generated at Fri Apr 4 23:20:48 2025 by rpki-client