$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BBDA9B429E6311ECA6EC8071C4F9AE02.roa File: BBDA9B429E6311ECA6EC8071C4F9AE02.roa (raw, json) Hash identifier: WiSL38A4AfTZxujdbevnM0BHhlMtOQknr2QyeEfpbeg= Subject key identifier: 95:A3:94:50:8E:52:EC:7E:BB:BC:40:D2:39:22:72:F5:0B:47:33:E8 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 04E6 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BBDA9B429E6311ECA6EC8071C4F9AE02.roa Signing time: Sat 28 Dec 2024 23:32:35 +0000 ROA not before: Sat 28 Dec 2024 23:32:35 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 64267 IP address blocks: 202.43.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1254 (0x4e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72 Validity Not Before: Dec 28 23:32:35 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67708a93-c4ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:08:86:56:25:2b:e7:bf:c7:64:d0:70:67:41: 20:12:d1:e1:aa:b1:2e:31:dc:65:c6:60:8b:44:d8: 3a:db:01:ff:ed:cc:b2:26:df:37:fc:73:27:cd:e5: 78:15:eb:e5:b5:a0:eb:df:59:af:81:43:fa:8e:bb: cc:1e:f9:6c:9e:3b:19:ae:e4:48:3a:34:5e:ef:72: ab:dd:50:83:63:9c:33:38:ff:34:ca:98:e3:d7:a1: db:80:06:5a:2a:c7:4e:c0:ff:1f:15:a7:d2:f1:65: ee:0d:e8:fa:eb:1a:72:e0:4a:e5:65:e8:3c:b7:47: e6:1f:d2:84:c1:10:d1:ec:1c:e9:55:12:63:61:89: 68:17:0e:6e:c7:fd:e0:91:f4:eb:5d:09:0d:e7:10: 22:fd:77:4f:39:18:97:c6:bc:76:9a:e5:7a:83:a8: 04:09:1b:f9:12:37:57:04:2f:6e:97:e0:27:23:66: 64:b6:85:77:0a:df:66:7d:21:f3:d8:04:49:98:75: c3:0d:b8:6f:fe:aa:42:5b:9a:dd:e0:99:62:43:48: 0a:87:67:71:28:ee:bf:89:b3:7b:ed:9c:b4:90:f3: 68:6b:a4:2a:fe:2e:a5:53:bc:d2:61:f3:69:02:5b: 3e:bb:94:78:09:6f:90:73:07:ac:ff:0e:cb:ee:45: ff:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A3:94:50:8E:52:EC:7E:BB:BC:40:D2:39:22:72:F5:0B:47:33:E8 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BBDA9B429E6311ECA6EC8071C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.5.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:ca:95:b8:5d:b1:e8:3e:47:bb:db:42:29:ea:96:4b:bc:83: d6:91:42:8a:60:7c:23:0e:c1:82:d3:0a:ec:45:70:9f:0c:e2: 8b:ec:18:73:00:9e:bb:c5:30:6f:89:d2:92:bc:5a:d7:0b:91: 71:bb:b6:74:a8:ce:2a:05:16:a5:94:17:57:b7:82:47:c6:4f: 1a:ce:0b:dd:ec:e0:f0:a3:95:57:07:9c:59:ce:40:14:7a:34: 94:2a:9f:28:02:b1:8b:c7:39:2f:57:fb:7e:08:16:78:09:cf: 69:1f:f8:65:dd:74:e7:fb:2c:69:fb:f0:aa:d5:df:b1:d9:a9: 42:a7:94:3c:64:0e:a3:29:9f:77:9b:4f:77:dc:7d:09:d1:6d: 18:aa:d6:a5:e8:7c:48:4f:df:46:0c:db:1c:0b:45:8e:24:b4: cd:71:08:a5:ba:cc:f7:db:5a:61:f0:a9:79:e7:02:ab:61:fb: 87:c0:59:f7:55:e1:6b:f2:b0:5a:1d:56:e9:cb:c6:b2:09:29: 2e:5e:b1:7b:8b:96:4e:73:df:82:3c:cf:12:07:41:8f:77:62: 41:1d:e9:a1:42:f6:2d:13:3e:f2:97:ec:2c:28:57:74:2f:f3: e6:94:99:2a:53:37:75:4e:c2:08:bc:65:92:0e:45:41:91:30: 23:94:11:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjQxMjI4MjMzMjM1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcwOGE5My1jNGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugiGViUr57/HZNBwZ0EgEtHhqrEuMdxlxmCLRNg62wH/7cyyJt83/HMnzeV4 FevltaDr31mvgUP6jrvMHvlsnjsZruRIOjRe73Kr3VCDY5wzOP80ypjj16HbgAZa KsdOwP8fFafS8WXuDej66xpy4ErlZeg8t0fmH9KEwRDR7BzpVRJjYYloFw5ux/3g kfTrXQkN5xAi/XdPORiXxrx2muV6g6gECRv5EjdXBC9ul+AnI2ZktoV3Ct9mfSHz 2ARJmHXDDbhv/qpCW5rd4JliQ0gKh2dxKO6/ibN77Zy0kPNoa6Qq/i6lU7zSYfNp Als+u5R4CW+Qcwes/w7L7kX/qwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJWjlFCO Uux+u7xA0jkicvULRzPoMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvQkJEQTlCNDI5 RTYzMTFFQ0E2RUM4MDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKwUwDQYJKoZIhvcNAQELBQADggEBABrKlbhdseg+R7vb Qinqlku8g9aRQopgfCMOwYLTCuxFcJ8M4ovsGHMAnrvFMG+J0pK8WtcLkXG7tnSo zioFFqWUF1e3gkfGTxrOC93s4PCjlVcHnFnOQBR6NJQqnygCsYvHOS9X+34IFngJ z2kf+GXddOf7LGn78KrV37HZqUKnlDxkDqMpn3ebT3fcfQnRbRiq1qXofEhP30YM 2xwLRY4ktM1xCKW6zPfbWmHwqXnnAqth+4fAWfdV4WvysFodVunLxrIJKS5esXuL lk5z34I8zxIHQY93YkEd6aFC9i0TPvKX7CwoV3Qv8+aUmSpTN3VOwgi8ZZIORUGR MCOUEYk= -----END CERTIFICATE-----Generated at Wed Apr 9 22:39:07 2025 by rpki-client