$ rpki-client -vvf rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/7ECAB97A5F3711EFA2A15F6DC4F9AE02.roa File: 7ECAB97A5F3711EFA2A15F6DC4F9AE02.roa (raw, json) Hash identifier: 47ro9pNe8tomss9aZ4VtGmmUiA4dH1RHfELIkfLkMBU= Subject key identifier: 10:77:51:4D:70:87:54:7F:FA:97:8E:F9:21:85:41:1F:DE:8E:9E:74 Certificate issuer: /CN=A91883D3/serialNumber=EB3C8F24BBADC94134871D6E5FD0B7C58B49D3C9 Certificate serial: 6C Authority key identifier: EB:3C:8F:24:BB:AD:C9:41:34:87:1D:6E:5F:D0:B7:C5:8B:49:D3:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/7ECAB97A5F3711EFA2A15F6DC4F9AE02.roa Signing time: Tue 25 Feb 2025 08:19:15 +0000 ROA not before: Tue 25 Feb 2025 08:19:15 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 14618 IP address blocks: 64.251.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.crl rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91883D3 Validity Not Before: Feb 25 08:19:15 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67bd7d03-2553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ce:03:8a:8d:1a:e6:fc:9d:93:13:24:93:77: 02:af:6f:14:4e:d8:0e:fa:2c:0d:52:1c:e2:7d:ca: f1:09:e0:db:b8:6c:76:b8:c2:f0:2f:9c:8e:aa:6d: a8:aa:c3:b1:d8:d9:cf:a6:64:47:67:d9:b1:1d:68: 03:e0:ff:8c:03:be:dc:1d:55:c7:cc:35:5f:6b:45: 9e:73:cf:b6:f3:98:5f:fb:6f:cf:10:e4:df:e6:7b: c2:4c:68:1e:83:e4:8d:1f:06:03:a5:d1:a0:b7:20: b7:71:25:0e:5b:05:a2:18:5d:23:80:a5:b2:22:b1: 75:d5:a4:9d:1d:31:f3:99:78:0e:ec:d7:64:3c:8b: 1e:eb:e1:b5:31:6b:2d:95:cd:5c:1c:5f:ef:21:c2: cd:42:4e:54:f0:f2:33:93:2d:24:8f:d8:6d:1c:f9: d6:5b:6a:cc:ae:c3:93:32:1e:5c:48:ad:71:2c:6b: b2:3e:34:61:8d:c2:01:0c:b9:71:fc:0c:92:60:f7: 85:bd:3e:e4:cc:90:96:f7:e0:d9:bd:10:69:77:88: f8:e1:1b:63:c9:57:7c:9b:fa:99:60:2d:f8:74:29: 08:65:df:da:8a:16:9f:34:7a:58:71:2b:8c:ca:4a: 3f:a3:6a:11:16:6f:fc:14:9f:34:67:14:11:d1:cb: 23:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:77:51:4D:70:87:54:7F:FA:97:8E:F9:21:85:41:1F:DE:8E:9E:74 X509v3 Authority Key Identifier: keyid:EB:3C:8F:24:BB:AD:C9:41:34:87:1D:6E:5F:D0:B7:C5:8B:49:D3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/7ECAB97A5F3711EFA2A15F6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.251.192.0/21 Signature Algorithm: sha256WithRSAEncryption 19:62:25:60:ac:91:a4:d1:be:18:7a:9e:f2:ca:1c:3e:a5:29: 6c:dd:ad:7c:2f:3c:f6:89:d7:f0:8f:d6:8a:24:d1:37:a3:c8: 62:84:8e:26:c5:70:d3:f0:a8:cd:15:16:7d:59:5d:68:ef:fc: 3b:5a:fd:73:73:3b:db:4d:00:81:a6:47:ff:5a:79:73:6d:b4: e6:3d:08:90:22:54:1a:9d:50:a4:c1:08:b8:6f:71:9a:ff:9c: b2:96:63:36:f1:8b:24:f8:e5:82:1a:f9:3f:1e:01:c7:fc:af: 60:a9:5b:9c:7a:3c:87:03:c6:27:5b:32:c1:9b:23:90:17:b5: 51:90:ee:93:5d:0e:6b:0b:b8:4c:d4:82:ad:11:6f:9c:07:43: 34:d8:a0:cf:1b:d3:3c:c5:b9:03:32:74:e1:2d:b8:6f:58:8c: 8e:20:44:86:d0:8e:a2:d1:48:6b:43:fb:93:1d:49:f2:3f:13: 3a:e1:1f:ee:9e:7d:89:4f:cc:c6:ad:54:1d:a7:d4:5e:da:d5: 25:2b:83:bc:37:09:f4:8c:bb:bf:25:2c:6f:0d:0d:d5:d8:e7: a2:e8:67:24:05:07:7e:03:a3:76:20:4b:c6:84:ea:3f:f1:ab: ab:6b:2f:3d:65:57:87:1e:be:40:bf:59:aa:bc:3d:8f:19:33: b0:d6:52:8f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 ODNEMzExMC8GA1UEBRMoRUIzQzhGMjRCQkFEQzk0MTM0ODcxRDZFNUZEMEI3QzU4 QjQ5RDNDOTAeFw0yNTAyMjUwODE5MTVaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YmQ3ZDAzLTI1NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfzgOKjRrm/J2TEySTdwKvbxRO2A76LA1SHOJ9yvEJ4Nu4bHa4wvAvnI6qbaiq w7HY2c+mZEdn2bEdaAPg/4wDvtwdVcfMNV9rRZ5zz7bzmF/7b88Q5N/me8JMaB6D 5I0fBgOl0aC3ILdxJQ5bBaIYXSOApbIisXXVpJ0dMfOZeA7s12Q8ix7r4bUxay2V zVwcX+8hws1CTlTw8jOTLSSP2G0c+dZbasyuw5MyHlxIrXEsa7I+NGGNwgEMuXH8 DJJg94W9PuTMkJb34Nm9EGl3iPjhG2PJV3yb+plgLfh0KQhl39qKFp80elhxK4zK Sj+jahEWb/wUnzRnFBHRyyMrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEHdRTXCH VH/6l475IYVBH96OnnQwHwYDVR0jBBgwFoAU6zyPJLutyUE0hx1uX9C3xYtJ08kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4M0QzLzhEMDNFRjM2NUUz NjExRUZBQzkyRDMxNEM0RjlBRTAyLzZ6eVBKTHV0eVVFMGh4MXVYOUMzeFl0SjA4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNnp5UEpMdXR5VUUwaHgxdVg5QzN4WXRKMDhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODNEMy84RDAzRUYzNjVFMzYxMUVGQUM5MkQzMTRDNEY5QUUwMi83RUNBQjk3QTVG MzcxMUVGQTJBMTVGNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA0D7wDANBgkqhkiG9w0BAQsFAAOCAQEAGWIlYKyRpNG+GHqe 8socPqUpbN2tfC889onX8I/WiiTRN6PIYoSOJsVw0/CozRUWfVldaO/8O1r9c3M7 200AgaZH/1p5c2205j0IkCJUGp1QpMEIuG9xmv+cspZjNvGLJPjlghr5Px4Bx/yv YKlbnHo8hwPGJ1sywZsjkBe1UZDuk10Oawu4TNSCrRFvnAdDNNigzxvTPMW5AzJ0 4S24b1iMjiBEhtCOotFIa0P7kx1J8j8TOuEf7p59iU/Mxq1UHafUXtrVJSuDvDcJ 9Iy7vyUsbw0N1djnouhnJAUHfgOjdiBLxoTqP/Grq2svPWVXhx6+QL9Zqrw9jxkz sNZSjw== -----END CERTIFICATE-----Generated at Sat Apr 5 00:02:23 2025 by rpki-client