$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9F2B1EB0892C11EBB29AFF50C4F9AE02.roa File: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (raw, json) Hash identifier: C9sOI6EfTgRnMQGNjlrtl3KFe7JPwkVRiva430VVNhg= Subject key identifier: 22:0F:A0:51:CF:33:59:34:8F:03:D7:37:AE:0A:7B:4E:71:14:21:40 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36C9 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9F2B1EB0892C11EBB29AFF50C4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:18 +0000 ROA not before: Sat 22 Mar 2025 15:01:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4661 IP address blocks: 58.181.96.0/20 maxlen: 24 58.181.112.0/20 maxlen: 24 103.28.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 14:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14025 (0x36c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832 Validity Not Before: Mar 22 15:01:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0be-2018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e9:0b:c0:de:a0:d0:fd:d8:3e:a1:53:e5:ee: 3a:a2:98:91:d5:84:64:32:db:a8:a7:8e:ad:17:12: 97:c5:b8:78:30:e4:4c:ac:04:8e:ec:b7:5c:44:0e: 66:ad:97:b7:6a:10:e8:58:03:a4:41:88:f4:6e:e6: 52:59:9a:6e:b3:2e:62:1d:3b:bb:0c:02:17:67:f7: 29:b8:69:a1:02:57:52:bb:d6:ec:10:2b:18:4e:e2: 94:f8:57:eb:1f:d0:24:22:54:16:ad:01:e5:31:56: 1b:d5:da:4b:40:d7:9f:21:89:4e:e4:9e:92:e5:2b: ec:55:a8:a2:ef:2d:67:ee:da:58:a5:73:a1:20:2e: b3:85:74:97:81:97:63:04:e8:f6:65:cd:ac:78:a9: 03:d0:58:f1:a9:e0:a8:dd:b8:21:63:46:0e:4a:e6: 5a:a9:e5:c8:c8:ed:a2:4d:b4:d6:45:04:94:9c:36: b4:55:82:c5:57:50:4e:80:50:dc:a7:1d:61:e7:65: f3:e1:1c:81:55:69:cf:33:85:7a:a8:40:1a:77:bb: 9c:da:a9:b8:fb:76:0b:1f:52:cb:1a:c6:f9:bc:d1: 8d:8d:89:b5:c7:9b:5d:02:1f:69:2d:41:ce:ff:ad: d4:0a:25:fa:ad:9d:30:a6:ae:10:54:06:cd:22:29: e4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0F:A0:51:CF:33:59:34:8F:03:D7:37:AE:0A:7B:4E:71:14:21:40 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9F2B1EB0892C11EBB29AFF50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.96.0/19 103.28.153.0/24 Signature Algorithm: sha256WithRSAEncryption 38:05:1c:13:01:d4:ea:41:72:5c:97:db:dc:40:a6:f8:2d:df: c7:da:55:af:fb:a0:02:55:1d:eb:cd:dc:ab:a3:a8:57:46:82: 2e:0c:64:d5:7a:06:b9:fd:cc:c2:cd:87:a7:36:d6:95:68:e5: 59:e4:9c:e2:3c:67:8a:95:52:43:c1:13:48:72:e5:9b:60:ab: d3:2e:d5:ef:e6:81:a4:73:5a:03:b4:a3:3c:ab:67:7b:4e:6a: d0:8c:39:4c:dc:f9:eb:96:0a:a6:6b:10:94:c5:b0:2c:64:9a: 53:06:6f:52:c3:f5:6f:60:6b:15:06:6c:ad:99:39:04:63:7c: 75:05:75:d2:83:f0:71:92:fb:a0:8d:d5:ef:92:36:23:c6:e4: 2c:ca:a2:ef:a0:cd:ad:1e:98:c8:b1:97:55:df:94:9c:d7:7e: c3:96:c6:e5:c0:b6:d7:cd:e1:49:a2:1f:87:25:7e:11:15:4f: a9:62:6a:41:fe:b9:50:26:99:89:22:8f:8b:c4:1c:1e:8c:6e: be:15:90:f8:4e:2f:6c:0d:44:f3:6c:be:66:37:0c:62:48:a4: 56:7b:15:9b:d3:ef:5a:58:5e:2a:43:35:68:81:49:f1:38:32: ba:f6:59:fb:76:da:1c:99:4b:30:23:5b:51:f2:73:fd:77:b5: 51:aa:ed:88 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBiZS0yMDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOkLwN6g0P3YPqFT5e46opiR1YRkMtuop46tFxKXxbh4MORMrASO7LdcRA5m rZe3ahDoWAOkQYj0buZSWZpusy5iHTu7DAIXZ/cpuGmhAldSu9bsECsYTuKU+Ffr H9AkIlQWrQHlMVYb1dpLQNefIYlO5J6S5SvsVaii7y1n7tpYpXOhIC6zhXSXgZdj BOj2Zc2seKkD0FjxqeCo3bghY0YOSuZaqeXIyO2iTbTWRQSUnDa0VYLFV1BOgFDc px1h52Xz4RyBVWnPM4V6qEAad7uc2qm4+3YLH1LLGsb5vNGNjYm1x5tdAh9pLUHO /63UCiX6rZ0wpq4QVAbNIinkiQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCIPoFHP M1k0jwPXN64Ke05xFCFAMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvOUYyQjFFQjA4 OTJDMTFFQkIyOUFGRjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAU6tWADBABnHJkwDQYJKoZIhvcNAQELBQADggEBADgFHBMB 1OpBclyX29xApvgt38faVa/7oAJVHevN3KujqFdGgi4MZNV6Brn9zMLNh6c21pVo 5VnknOI8Z4qVUkPBE0hy5Ztgq9Mu1e/mgaRzWgO0ozyrZ3tOatCMOUzc+euWCqZr EJTFsCxkmlMGb1LD9W9gaxUGbK2ZOQRjfHUFddKD8HGS+6CN1e+SNiPG5CzKou+g za0emMixl1XflJzXfsOWxuXAttfN4UmiH4clfhEVT6liakH+uVAmmYkij4vEHB6M br4VkPhOL2wNRPNsvmY3DGJIpFZ7FZvT71pYXipDNWiBSfE4Mrr2Wft22hyZSzAj W1Hyc/13tVGq7Yg= -----END CERTIFICATE-----Generated at Thu Apr 10 07:06:36 2025 by rpki-client