$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC532/DAA0D0B4037E11EF8520E758C4F9AE02/A0AD48EA083011EF82AFFD44C4F9AE02.roa File: A0AD48EA083011EF82AFFD44C4F9AE02.roa (raw, json) Hash identifier: E2oXK+nP7XuyH0hDSL1uq1DEWcq+1W48Rez3w3+1ppw= Subject key identifier: B7:1D:F9:15:F7:E5:B2:EE:A7:1D:C6:5B:58:61:FE:28:1A:50:B2:A0 Certificate issuer: /CN=A91AC532/serialNumber=BCAB3E76F84ED43742F2A081242708E799CE1B5F Certificate serial: D1 Authority key identifier: BC:AB:3E:76:F8:4E:D4:37:42:F2:A0:81:24:27:08:E7:99:CE:1B:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vKs-dvhO1DdC8qCBJCcI55nOG18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC532/DAA0D0B4037E11EF8520E758C4F9AE02/A0AD48EA083011EF82AFFD44C4F9AE02.roa Signing time: Thu 27 Mar 2025 05:42:48 +0000 ROA not before: Thu 27 Mar 2025 05:42:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 35908 IP address blocks: 43.252.120.0/22 maxlen: 24 103.233.80.0/22 maxlen: 24 110.34.128.0/17 maxlen: 24 2401:4a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC532/DAA0D0B4037E11EF8520E758C4F9AE02/vKs-dvhO1DdC8qCBJCcI55nOG18.crl rsync://rpki.apnic.net/member_repository/A91AC532/DAA0D0B4037E11EF8520E758C4F9AE02/vKs-dvhO1DdC8qCBJCcI55nOG18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vKs-dvhO1DdC8qCBJCcI55nOG18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 04:53:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC532 Validity Not Before: Mar 27 05:42:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e4e558-b8d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c1:be:4e:55:21:67:66:04:7b:84:32:8d:31: 37:08:71:f5:f8:77:86:ef:36:1e:f8:15:02:48:70: e2:c8:6f:6f:1c:05:55:ee:ee:1f:78:f1:b3:c7:04: 1f:6c:90:17:4f:5b:15:91:4c:59:7a:4b:4f:f5:7c: 8a:a6:2e:c7:6c:f2:12:df:49:52:a6:d5:66:b9:a0: 0e:ef:84:68:a3:58:1e:a2:6e:8d:d5:d7:dd:32:2c: e0:fd:2e:9e:c0:69:69:b3:ab:06:4b:b3:a1:54:6e: bf:80:4a:f8:8b:4d:39:9b:8e:df:75:1f:e1:6a:d3: 5e:f7:96:31:05:eb:55:90:7a:69:76:e0:75:54:85: dc:46:0e:a9:df:f0:cd:78:8b:6d:26:4d:f5:1e:a1: 48:5c:ee:c0:f5:69:fc:61:f8:a8:4b:72:30:dc:85: 55:4e:4f:db:58:69:ef:0d:54:22:61:2f:44:af:77: 08:01:72:bb:63:e0:e2:8d:8b:f1:c4:25:5e:8f:49: 77:53:c6:c3:60:d4:f1:3c:ea:8c:03:55:88:90:5a: a1:9d:dc:78:85:4b:73:83:8b:b0:f7:a3:15:2e:0d: bb:50:91:49:78:19:c4:26:ed:ac:00:4c:6c:f5:61: df:e8:5b:6e:bb:25:33:34:d4:f2:7d:81:cb:65:91: da:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1D:F9:15:F7:E5:B2:EE:A7:1D:C6:5B:58:61:FE:28:1A:50:B2:A0 X509v3 Authority Key Identifier: keyid:BC:AB:3E:76:F8:4E:D4:37:42:F2:A0:81:24:27:08:E7:99:CE:1B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC532/DAA0D0B4037E11EF8520E758C4F9AE02/vKs-dvhO1DdC8qCBJCcI55nOG18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vKs-dvhO1DdC8qCBJCcI55nOG18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC532/DAA0D0B4037E11EF8520E758C4F9AE02/A0AD48EA083011EF82AFFD44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.120.0/22 103.233.80.0/22 110.34.128.0/17 IPv6: 2401:4a40::/32 Signature Algorithm: sha256WithRSAEncryption 2b:d7:be:c9:9d:79:de:81:0c:97:2b:5e:e8:59:7c:b4:32:d4: 0f:ff:49:d9:1a:8d:1a:9b:20:5a:cb:49:8d:b0:c4:65:08:22: 63:1b:55:62:36:1b:6e:30:58:85:05:50:f3:f5:81:6f:bf:98: a5:ec:b6:1b:c7:a8:9e:51:4a:3e:35:2b:3b:5c:f5:5a:e7:35: de:d7:0a:56:2f:88:e6:93:a3:55:0e:b7:04:37:73:00:d9:47: bb:f1:a8:19:0d:c1:2c:8f:2e:6d:b5:d5:0d:ce:bd:7b:ba:7c: c0:d9:41:aa:21:2a:1f:1c:c6:79:a2:d8:13:f9:a5:1d:fb:b6: d2:3f:4b:0c:0c:d4:09:26:de:bc:bb:9b:53:9d:6d:00:36:37: 0e:9b:84:80:8d:0d:00:c0:82:f1:ea:60:27:4b:41:57:5e:f7: b8:37:fe:59:3a:98:ed:fb:86:77:d4:e1:5c:28:99:35:cf:b0: 64:af:13:77:8c:34:c5:de:8b:83:b5:88:eb:98:12:3a:36:9a: 12:e8:75:ae:a2:ce:99:8c:f8:4e:b7:1a:51:2c:e3:3d:68:13: e0:f3:8f:5a:fe:7f:02:45:d3:c1:64:cc:1d:1f:f5:7e:20:90: 6f:80:6c:06:b8:bf:38:dc:83:8f:96:8e:90:24:6f:d1:68:02: 38:70:87:89 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM1MzIxMTAvBgNVBAUTKEJDQUIzRTc2Rjg0RUQ0Mzc0MkYyQTA4MTI0MjcwOEU3 OTlDRTFCNUYwHhcNMjUwMzI3MDU0MjQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0ZTU1OC1iOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsG+TlUhZ2YEe4QyjTE3CHH1+HeG7zYe+BUCSHDiyG9vHAVV7u4fePGzxwQf bJAXT1sVkUxZektP9XyKpi7HbPIS30lSptVmuaAO74Roo1geom6N1dfdMizg/S6e wGlps6sGS7OhVG6/gEr4i005m47fdR/hatNe95YxBetVkHppduB1VIXcRg6p3/DN eIttJk31HqFIXO7A9Wn8YfioS3Iw3IVVTk/bWGnvDVQiYS9Er3cIAXK7Y+DijYvx xCVej0l3U8bDYNTxPOqMA1WIkFqhndx4hUtzg4uw96MVLg27UJFJeBnEJu2sAExs 9WHf6FtuuyUzNNTyfYHLZZHaYwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFLcd+RX3 5bLupx3GW1hh/igaULKgMB8GA1UdIwQYMBaAFLyrPnb4TtQ3QvKggSQnCOeZzhtf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzUzMi9EQUEwRDBCNDAz N0UxMUVGODUyMEU3NThDNEY5QUUwMi92S3MtZHZoTzFEZEM4cUNCSkNjSTU1bk9H MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZLcy1kdmhPMURkQzhxQ0JKQ2NJNTVuT0cxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM1MzIvREFBMEQwQjQwMzdFMTFFRjg1MjBFNzU4QzRGOUFFMDIvQTBBRDQ4RUEw ODMwMTFFRjgyQUZGRDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIr/HgDBAJn6VADBAduIoAwDQQCAAIwBwMFACQBSkAwDQYJ KoZIhvcNAQELBQADggEBACvXvsmded6BDJcrXuhZfLQy1A//SdkajRqbIFrLSY2w xGUIImMbVWI2G24wWIUFUPP1gW+/mKXsthvHqJ5RSj41Kztc9VrnNd7XClYviOaT o1UOtwQ3cwDZR7vxqBkNwSyPLm211Q3OvXu6fMDZQaohKh8cxnmi2BP5pR37ttI/ SwwM1Akm3ry7m1OdbQA2Nw6bhICNDQDAgvHqYCdLQVde97g3/lk6mO37hnfU4Vwo mTXPsGSvE3eMNMXei4O1iOuYEjo2mhLoda6izpmM+E63GlEs4z1oE+Dzj1r+fwJF 08FkzB0f9X4gkG+AbAa4vzjcg4+WjpAkb9FoAjhwh4k= -----END CERTIFICATE-----Generated at Tue Apr 8 15:42:57 2025 by rpki-client