$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/D2CA53BCAF8E11EAA40B786BC4F9AE02.roa File: D2CA53BCAF8E11EAA40B786BC4F9AE02.roa (raw, json) Hash identifier: kt/QhS+HSuW1mGGcNlDLEIbcQB0nMoMkqkgVwo38aaQ= Subject key identifier: BB:AC:89:32:40:34:BF:A0:3B:47:ED:3D:7B:04:64:B5:C4:25:E8:5C Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0F71 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/D2CA53BCAF8E11EAA40B786BC4F9AE02.roa Signing time: Fri 28 Feb 2025 19:29:42 +0000 ROA not before: Fri 28 Feb 2025 19:29:42 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 16509 IP address blocks: 119.161.49.0/24 maxlen: 24 2001:dcd:22::/48 maxlen: 48 2001:dcd:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 18:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3953 (0xf71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA Validity Not Before: Feb 28 19:29:42 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c20ea6-73e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:66:5d:91:54:86:bf:47:56:f2:a0:cb:a6: 4b:e5:76:da:92:90:6a:c9:d4:25:19:84:35:bd:3e: 55:52:96:0e:4b:0c:88:da:6f:73:05:21:a8:82:a1: ae:fa:aa:1d:36:50:74:c4:ce:40:d1:8a:91:a9:95: d5:92:f7:fa:1a:7e:7e:f2:29:a0:7a:2d:a5:61:e3: 7d:d2:f6:83:00:64:6c:30:42:3c:d3:3d:b2:39:43: 9c:4c:f5:de:f1:a4:4e:b2:52:2d:48:72:4b:db:f8: a6:36:80:b9:62:f4:47:9e:b0:4a:aa:7c:a1:06:22: 90:b7:3a:87:49:dc:fa:29:44:e9:57:96:6d:eb:b8: 5a:86:8f:5d:be:f6:fa:08:f9:d3:ae:05:34:3b:00: 55:32:42:34:59:50:02:74:f7:1d:17:a8:dd:6b:53: f6:fc:54:38:70:34:94:ff:fe:48:0b:21:cf:4f:80: b0:85:b1:1d:e2:d0:3c:b6:c9:0d:7f:c8:70:4d:e5: 25:d0:34:51:1f:7a:84:a1:8a:59:69:f2:5f:a3:d3: 65:b5:4d:c9:3d:43:ed:61:8b:4b:39:a1:78:01:a2: f9:69:dd:26:e6:7e:0c:d6:f6:25:50:a0:63:4d:77: 5c:7f:74:03:88:4c:96:e6:3b:f6:53:d3:ba:dd:8a: a3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AC:89:32:40:34:BF:A0:3B:47:ED:3D:7B:04:64:B5:C4:25:E8:5C X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/D2CA53BCAF8E11EAA40B786BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.161.49.0/24 IPv6: 2001:dcd:22::/47 Signature Algorithm: sha256WithRSAEncryption 2e:3e:64:14:48:87:90:03:b7:6c:31:40:ac:a5:13:b1:1b:d7: b1:48:19:b6:a5:04:f4:91:61:ae:19:79:ba:4f:90:75:a8:77: ea:3a:3e:29:8e:64:7a:d5:d2:ac:6e:f4:9d:d5:52:51:54:eb: 2c:ff:2a:e7:16:d7:8c:e5:84:21:f6:fa:45:0f:64:f4:72:e0: d4:19:d3:0c:f5:3f:8b:60:e1:9f:11:f3:f7:bd:f7:60:4e:46: 9a:48:c3:39:3d:8f:4a:c4:83:20:b2:27:67:4b:93:1c:ca:de: 00:95:8d:b9:83:27:ca:a9:cc:3b:3a:0d:a7:b9:e1:92:a6:23: 55:e2:a0:40:c2:04:66:a8:22:d2:4d:e2:c7:8b:b7:b2:37:8e: e3:e4:c1:b1:23:e4:3f:cd:06:e5:57:67:fb:9f:c7:97:71:a2: 92:5e:4f:4c:af:12:61:60:b5:41:b3:be:5e:7f:1d:a5:e0:d2: 53:4c:d1:dc:dd:3c:69:91:19:be:ec:01:cf:4f:f0:74:42:33: f5:5f:b3:c8:72:7e:09:67:e3:2d:03:fa:f0:06:3b:65:2d:78: 32:d9:c3:f7:83:0e:bd:d0:09:6a:74:cf:17:20:b7:87:b0:a8: 41:7c:21:b3:88:32:8c:05:ee:e7:58:05:ed:2f:b1:ca:5d:f8: 9d:4c:db:35 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICD3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTQyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyMGVhNi03M2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs05mXZFUhr9HVvKgy6ZL5XbakpBqydQlGYQ1vT5VUpYOSwyI2m9zBSGogqGu +qodNlB0xM5A0YqRqZXVkvf6Gn5+8imgei2lYeN90vaDAGRsMEI80z2yOUOcTPXe 8aROslItSHJL2/imNoC5YvRHnrBKqnyhBiKQtzqHSdz6KUTpV5Zt67haho9dvvb6 CPnTrgU0OwBVMkI0WVACdPcdF6jda1P2/FQ4cDSU//5ICyHPT4CwhbEd4tA8tskN f8hwTeUl0DRRH3qEoYpZafJfo9NltU3JPUPtYYtLOaF4AaL5ad0m5n4M1vYlUKBj TXdcf3QDiEyW5jv2U9O63YqjEQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLusiTJA NL+gO0ftPXsEZLXEJehcMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRDJDQTUzQkNB RjhFMTFFQUE0MEI3ODZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAB3oTEwDwQCAAIwCQMHASABDc0AIjANBgkqhkiG9w0BAQsF AAOCAQEALj5kFEiHkAO3bDFArKUTsRvXsUgZtqUE9JFhrhl5uk+Qdah36jo+KY5k etXSrG70ndVSUVTrLP8q5xbXjOWEIfb6RQ9k9HLg1BnTDPU/i2DhnxHz9733YE5G mkjDOT2PSsSDILInZ0uTHMreAJWNuYMnyqnMOzoNp7nhkqYjVeKgQMIEZqgi0k3i x4u3sjeO4+TBsSPkP80G5Vdn+5/Hl3Gikl5PTK8SYWC1QbO+Xn8dpeDSU0zR3N08 aZEZvuwBz0/wdEIz9V+zyHJ+CWfjLQP68AY7ZS14MtnD94MOvdAJanTPFyC3h7Co QXwhs4gyjAXu51gF7S+xyl34nUzbNQ== -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:13 2025 by rpki-client