$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/B9C587ACA61911EFAD319873C4F9AE02.roa File: B9C587ACA61911EFAD319873C4F9AE02.roa (raw, json) Hash identifier: UVNnVE482CTuury1gOUSOm7uwVR741BfWPntovKeG3A= Subject key identifier: 9B:26:14:42:58:FA:73:4E:6A:71:04:FB:DD:AD:05:98:66:A5:C8:61 Certificate issuer: /CN=A91A55C9/serialNumber=7839A1FC0174024BCBA84D012D3EC4CA4679AC71 Certificate serial: C9 Authority key identifier: 78:39:A1:FC:01:74:02:4B:CB:A8:4D:01:2D:3E:C4:CA:46:79:AC:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDmh_AF0AkvLqE0BLT7EykZ5rHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/B9C587ACA61911EFAD319873C4F9AE02.roa Signing time: Mon 03 Mar 2025 07:29:26 +0000 ROA not before: Mon 03 Mar 2025 07:29:26 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 203.3.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/eDmh_AF0AkvLqE0BLT7EykZ5rHE.crl rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/eDmh_AF0AkvLqE0BLT7EykZ5rHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDmh_AF0AkvLqE0BLT7EykZ5rHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9 Validity Not Before: Mar 3 07:29:26 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c55a56-ac08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ee:e3:be:7e:77:6f:fb:d5:16:7c:aa:fa:59: 20:ac:c5:a7:ff:f3:29:17:d3:68:e9:c5:29:7b:a7: 19:24:d5:1b:36:91:cd:20:b8:a7:0a:d4:17:a3:ae: fd:e8:7a:35:41:fb:cb:4b:4e:7c:36:55:34:41:3f: 11:63:f5:c7:ca:0b:fe:89:f2:6c:58:94:ed:72:a6: dc:4d:13:2f:d5:2d:36:ad:a5:3b:29:f1:4a:69:e2: 67:26:fe:03:53:cf:57:02:6d:bf:43:bc:5a:97:b0: eb:76:3b:17:98:67:27:35:c7:e8:9b:2c:11:c0:fb: 8c:51:7b:ee:48:8c:a7:49:34:cd:59:6a:11:04:c8: 10:49:fc:2e:67:71:68:9f:c8:15:b1:5d:96:32:cb: 74:c9:1c:65:b2:e9:90:8c:e2:02:5a:1c:e1:d2:50: d3:dc:04:aa:90:b7:5a:58:64:46:0b:3e:5f:ac:22: 3a:48:d5:60:e4:bc:38:90:40:6f:30:f4:ce:6c:4a: db:c0:2d:63:fd:c7:f8:57:04:11:93:a3:b3:c9:b6: c8:21:c5:7d:f1:7e:33:13:7f:4b:aa:38:93:d3:e8: a1:67:b4:d9:59:46:ea:22:3e:89:60:f3:4a:bf:9f: a4:de:6b:a8:b9:50:31:13:1d:90:cf:32:b1:f7:c7: 16:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:26:14:42:58:FA:73:4E:6A:71:04:FB:DD:AD:05:98:66:A5:C8:61 X509v3 Authority Key Identifier: keyid:78:39:A1:FC:01:74:02:4B:CB:A8:4D:01:2D:3E:C4:CA:46:79:AC:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/eDmh_AF0AkvLqE0BLT7EykZ5rHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDmh_AF0AkvLqE0BLT7EykZ5rHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/882F2320C9EB11EE8B857B0CC4F9AE02/B9C587ACA61911EFAD319873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.236.0/24 Signature Algorithm: sha256WithRSAEncryption 88:59:3f:ee:b9:b8:9d:9f:ac:c1:94:05:fa:fa:4a:26:70:66: 92:32:a5:06:ce:8e:45:b4:af:44:63:a1:4e:c3:d3:00:c6:35: c9:3c:f4:2c:f2:8c:80:4f:ac:07:f9:fe:11:52:fd:9e:e0:75: 38:7b:3e:2f:5a:d8:1c:9c:3b:6d:d3:ae:64:b1:d2:32:54:e1: 30:4e:02:4e:c4:08:01:61:9d:3a:c2:85:53:0c:2d:13:36:c0: df:58:c0:03:53:0c:a8:96:27:32:4f:13:10:a6:e4:26:6b:bb: de:eb:16:0e:1f:f2:d6:8f:8c:b8:eb:76:25:85:9d:fa:17:11: 07:19:69:10:3b:93:27:3d:47:28:93:0b:ef:cd:11:b1:68:f6: 43:05:d4:21:d0:89:bd:80:6e:8d:03:b6:0b:30:03:86:62:38: 3d:57:fa:dd:02:bd:a6:ce:5a:3d:bc:2f:7a:f0:74:ad:cf:cb: e8:b2:2d:80:14:1d:40:53:b0:84:43:f4:1a:8c:55:11:7a:c5: d9:e5:f6:04:e0:e1:8a:76:48:bb:f0:6e:a0:a5:6a:3d:79:98: ed:bd:52:ff:18:75:b3:c1:de:90:6a:29:4e:2b:45:f1:79:bb: 5a:e1:b2:8d:c6:23:26:83:77:02:44:9a:61:3a:74:2f:f5:d3: e8:aa:fa:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKDc4MzlBMUZDMDE3NDAyNEJDQkE4NEQwMTJEM0VDNENB NDY3OUFDNzEwHhcNMjUwMzAzMDcyOTI2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1NWE1Ni1hYzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwu7jvn53b/vVFnyq+lkgrMWn//MpF9No6cUpe6cZJNUbNpHNILinCtQXo679 6Ho1QfvLS058NlU0QT8RY/XHygv+ifJsWJTtcqbcTRMv1S02raU7KfFKaeJnJv4D U89XAm2/Q7xal7DrdjsXmGcnNcfomywRwPuMUXvuSIynSTTNWWoRBMgQSfwuZ3Fo n8gVsV2WMst0yRxlsumQjOICWhzh0lDT3ASqkLdaWGRGCz5frCI6SNVg5Lw4kEBv MPTObErbwC1j/cf4VwQRk6OzybbIIcV98X4zE39LqjiT0+ihZ7TZWUbqIj6JYPNK v5+k3muouVAxEx2QzzKx98cW2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJsmFEJY +nNOanEE+92tBZhmpchhMB8GA1UdIwQYMBaAFHg5ofwBdAJLy6hNAS0+xMpGeaxx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS84ODJGMjMyMEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi9lRG1oX0FGMEFrdkxxRTBCTFQ3RXlrWjVy SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VEbWhfQUYwQWt2THFFMEJMVDdFeWtaNXJIRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1QzkvODgyRjIzMjBDOUVCMTFFRThCODU3QjBDQzRGOUFFMDIvQjlDNTg3QUNB NjE5MTFFRkFEMzE5ODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLA+wwDQYJKoZIhvcNAQELBQADggEBAIhZP+65uJ2frMGU Bfr6SiZwZpIypQbOjkW0r0RjoU7D0wDGNck89CzyjIBPrAf5/hFS/Z7gdTh7Pi9a 2BycO23TrmSx0jJU4TBOAk7ECAFhnTrChVMMLRM2wN9YwANTDKiWJzJPExCm5CZr u97rFg4f8taPjLjrdiWFnfoXEQcZaRA7kyc9RyiTC+/NEbFo9kMF1CHQib2Abo0D tgswA4ZiOD1X+t0CvabOWj28L3rwdK3Py+iyLYAUHUBTsIRD9BqMVRF6xdnl9gTg 4Yp2SLvwbqClaj15mO29Uv8YdbPB3pBqKU4rRfF5u1rhso3GIyaDdwJEmmE6dC/1 0+iq+lQ= -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:54 2025 by rpki-client