$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa File: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (raw, json) Hash identifier: VrbZ7ZecbNcImk9iVkkzXLKwbDb+F2iSfzr14g+V7aQ= Subject key identifier: 70:AD:06:7B:7C:CF:3E:88:B9:5A:0E:9D:4D:B6:FE:CD:AA:12:DA:07 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36B4 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa Signing time: Sat 22 Mar 2025 15:00:54 +0000 ROA not before: Sat 22 Mar 2025 15:00:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132165 IP address blocks: 39.34.128.0/18 maxlen: 24 59.103.138.0/23 maxlen: 24 59.103.140.0/22 maxlen: 24 59.103.192.0/19 maxlen: 24 119.152.224.0/20 maxlen: 24 119.157.64.0/20 maxlen: 24 119.157.80.0/20 maxlen: 24 119.158.64.0/24 maxlen: 24 182.189.0.0/17 maxlen: 24 182.189.192.0/18 maxlen: 24 182.190.96.0/20 maxlen: 24 182.190.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 14:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14004 (0x36b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832 Validity Not Before: Mar 22 15:00:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0a6-f487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3b:e7:45:82:04:a7:ed:56:7c:97:aa:e4:1b: b2:ba:19:1c:af:7b:24:c1:5f:cf:5c:5e:20:d2:8f: 84:3f:82:e4:17:d4:aa:99:50:95:f4:06:28:1a:d3: da:4d:23:ad:b2:1e:e2:26:60:69:aa:a8:23:69:8f: c5:2c:c5:60:22:43:23:b8:40:4b:fc:b8:c9:96:b8: 3a:22:ad:a7:91:1c:f8:0d:0f:8b:d8:2a:49:93:99: 2f:a9:2f:40:9f:af:2e:6e:a9:30:a8:92:1e:f7:ce: 6e:d8:d4:8e:7c:f3:cd:ed:dd:44:e3:39:2d:87:b3: ca:6b:3c:d5:8f:f5:84:6a:fe:06:50:24:7b:0e:d2: 9a:5e:27:ea:f5:55:1e:c6:03:20:83:25:93:41:c9: 8d:03:45:46:2e:ee:e1:bd:a9:7b:fd:a8:93:fd:3f: 5a:26:2a:9b:93:94:1d:4a:7c:79:0b:9f:2e:e1:e3: ac:83:0b:4d:23:5d:f6:6d:d8:43:e5:c7:c7:94:36: a0:8b:64:75:56:2f:ee:7e:d0:38:75:cc:3e:df:c1: dd:8f:43:76:73:b7:80:8d:b0:4b:c6:62:d1:e5:75: c7:cf:bd:d5:c7:4a:c0:9e:25:93:47:f8:f1:60:f0: 59:89:9d:e9:13:ab:e4:6f:d8:3d:01:86:b6:58:5c: 11:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AD:06:7B:7C:CF:3E:88:B9:5A:0E:9D:4D:B6:FE:CD:AA:12:DA:07 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.34.128.0/18 59.103.138.0-59.103.143.255 59.103.192.0/19 119.152.224.0/20 119.157.64.0/19 119.158.64.0/24 182.189.0.0/17 182.189.192.0/18 182.190.96.0/20 182.190.192.0/19 Signature Algorithm: sha256WithRSAEncryption 4f:b1:e3:79:98:95:8b:d8:a6:43:b1:6f:8e:53:11:66:55:0e: 76:a1:f9:81:d2:42:b0:1f:e3:bf:cb:fb:2d:c3:a8:28:4b:08: dc:d5:40:0d:7f:7d:a9:f1:43:7b:04:f9:40:0a:63:45:ee:cd: 1d:99:0c:46:60:28:03:3d:6b:28:f8:9e:a6:4e:cc:de:28:1a: 40:6f:a4:64:8c:03:1c:55:16:c3:63:cc:89:52:e0:ef:e7:6c: 56:4f:4b:6a:14:e7:fc:26:0b:a3:0f:97:f8:27:6a:5d:ff:0c: 7e:64:54:a8:ed:cb:2c:1d:b8:ea:2d:eb:78:a2:3c:10:fa:91: 99:28:01:32:0c:31:ce:23:c0:31:0a:bc:8f:cd:9d:b6:fd:ec: cc:15:20:45:39:e0:12:06:0b:c3:25:b1:ad:01:c6:d2:34:32: 8c:65:0f:9c:bd:04:fc:c0:3f:28:af:48:81:97:c7:43:73:b0: 60:4f:dc:64:ac:5a:28:c7:07:37:17:c7:34:c4:8b:f3:1c:73: 63:9d:7b:72:f8:db:20:2e:ae:b9:e9:51:4c:4f:fa:bf:9f:8c: 77:59:58:6f:80:44:5c:42:56:1a:44:f0:50:5d:9b:00:1d:83: 20:1c:39:8f:31:11:7c:b1:bb:11:c8:1c:84:54:ff:3f:53:7f: c3:6b:80:2f -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgICNrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMDU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBhNi1mNDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DvnRYIEp+1WfJeq5Buyuhkcr3skwV/PXF4g0o+EP4LkF9SqmVCV9AYoGtPa TSOtsh7iJmBpqqgjaY/FLMVgIkMjuEBL/LjJlrg6Iq2nkRz4DQ+L2CpJk5kvqS9A n68ubqkwqJIe985u2NSOfPPN7d1E4zkth7PKazzVj/WEav4GUCR7DtKaXifq9VUe xgMggyWTQcmNA0VGLu7hval7/aiT/T9aJiqbk5QdSnx5C58u4eOsgwtNI132bdhD 5cfHlDagi2R1Vi/uftA4dcw+38Hdj0N2c7eAjbBLxmLR5XXHz73Vx0rAniWTR/jx YPBZiZ3pE6vkb9g9AYa2WFwRFQIDAQABo4IC0zCCAs8wHQYDVR0OBBYEFHCtBnt8 zz6IuVoOnU22/s2qEtoHMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvN0E1OEM4RDZC QkVBMTFFQThERjQ2Nzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXQYIKwYBBQUHAQcBAf8E TjBMMEoEAgABMEQDBAYnIoAwDAMEATtnigMEBDtngAMEBTtnwAMEBHeY4AMEBXed QAMEAHeeQAMEB7a9AAMEBra9wAMEBLa+YAMEBba+wDANBgkqhkiG9w0BAQsFAAOC AQEAT7HjeZiVi9imQ7FvjlMRZlUOdqH5gdJCsB/jv8v7LcOoKEsI3NVADX99qfFD ewT5QApjRe7NHZkMRmAoAz1rKPiepk7M3igaQG+kZIwDHFUWw2PMiVLg7+dsVk9L ahTn/CYLow+X+CdqXf8MfmRUqO3LLB246i3reKI8EPqRmSgBMgwxziPAMQq8j82d tv3szBUgRTngEgYLwyWxrQHG0jQyjGUPnL0E/MA/KK9IgZfHQ3OwYE/cZKxaKMcH NxfHNMSL8xxzY517cvjbIC6uuelRTE/6v5+Md1lYb4BEXEJWGkTwUF2bAB2DIBw5 jzERfLG7EcgchFT/P1N/w2uALw== -----END CERTIFICATE-----Generated at Thu Apr 10 07:04:14 2025 by rpki-client