$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/B991BA26335E11F082E02017C4F9AE02.roa File: B991BA26335E11F082E02017C4F9AE02.roa (raw, json) Hash identifier: afqNgsCQ7dL16qva3H7gH+BXGgyFTvhRNJGWbw3tcyY= Subject key identifier: B0:5C:F0:DA:DE:81:95:F3:8B:51:21:86:35:9E:79:7C:F8:A6:BC:21 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 6066 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/B991BA26335E11F082E02017C4F9AE02.roa Signing time: Sat 17 May 2025 20:37:18 +0000 ROA not before: Sat 17 May 2025 20:37:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140881 IP address blocks: 118.143.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24678 (0x6066) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: May 17 20:37:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6828f37e-f8ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6b:35:13:08:03:87:b0:e6:c6:fd:38:8d:5f: 8d:49:ff:87:ef:cf:99:db:ef:0c:e7:5e:f6:c6:8e: 33:04:57:3a:d9:2d:00:80:e8:5b:cd:9f:89:15:01: b8:b4:00:14:1c:18:91:4f:85:08:ae:c1:96:de:56: f3:03:7e:b7:7c:d0:bc:01:ff:c4:7f:43:ad:8a:ae: 7a:77:15:e7:ed:00:c7:8f:22:ba:78:44:98:ea:a8: 13:0b:04:de:43:8a:46:e6:e3:c5:04:94:e0:a8:b5: cb:ca:7b:b7:69:bf:71:b9:16:ae:2e:e2:61:75:3f: 97:f5:92:41:8d:ef:c3:d4:6a:ab:bf:08:41:0d:c5: f1:7e:45:1c:6c:97:e0:bb:ca:8e:a3:97:9c:57:ff: 28:46:05:01:22:25:ce:67:1a:2f:37:c1:11:be:10: 85:8a:45:a6:67:92:e7:2c:d9:1e:50:59:ec:43:c6: 1f:ec:19:8d:62:39:08:57:8e:f1:73:5b:5c:40:b2: f4:7f:4c:8c:b4:47:d8:5e:2d:11:91:bd:17:fe:7f: cc:d1:80:aa:5e:aa:4c:4f:08:67:8d:74:b2:0e:6d: c6:f5:56:20:4e:84:f1:d5:55:41:c2:d5:2f:fb:6f: 9a:47:ca:eb:0f:9a:18:78:5d:b6:d5:66:6b:6b:30: c2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5C:F0:DA:DE:81:95:F3:8B:51:21:86:35:9E:79:7C:F8:A6:BC:21 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/B991BA26335E11F082E02017C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.143.172.0/24 Signature Algorithm: sha256WithRSAEncryption 70:70:48:59:0d:7b:c4:8c:aa:81:3d:3f:99:10:9a:14:58:ad: d1:8b:17:76:74:63:fb:fe:64:47:fe:99:d9:be:78:8c:a7:b7: 36:27:78:83:22:22:f9:42:c1:95:47:42:88:b6:79:e6:75:52: 7d:0d:bd:a9:f9:d6:fd:73:a0:e3:20:9e:00:d1:a0:f7:ce:bf: 10:e0:3c:fb:ea:94:76:17:78:16:c0:c6:c7:78:e0:2b:b5:e5: 5c:36:f0:d0:75:db:89:bf:f4:3f:c6:47:cb:58:8b:ca:2a:56: 89:e7:69:39:5d:30:25:4c:1a:dd:cd:13:f8:47:a4:4e:64:36: 8b:48:f0:a2:67:c3:d1:92:03:bc:2d:c6:1a:d0:ba:a8:83:38: 80:da:48:45:06:c1:58:50:8f:14:b4:d7:21:01:36:47:a8:e9: f9:d7:fa:26:b5:cb:de:dd:df:4e:a9:27:42:d6:3e:ee:2f:3a: 3a:ae:7e:32:59:d7:68:5d:d3:e3:71:91:16:bc:9e:9a:b0:c2: 27:fd:6d:3e:74:12:7e:45:28:f4:d4:aa:a8:3e:60:37:94:ce: 22:5d:a4:cd:32:d2:81:0f:26:02:dd:9b:79:02:2e:31:b7:18: 29:75:3d:07:d0:4a:98:d1:09:40:15:b7:67:46:4b:3a:2f:79: 76:9c:cc:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICYGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNTE3MjAzNzE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI4ZjM3ZS1mOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWs1EwgDh7Dmxv04jV+NSf+H78+Z2+8M5172xo4zBFc62S0AgOhbzZ+JFQG4 tAAUHBiRT4UIrsGW3lbzA363fNC8Af/Ef0Otiq56dxXn7QDHjyK6eESY6qgTCwTe Q4pG5uPFBJTgqLXLynu3ab9xuRauLuJhdT+X9ZJBje/D1GqrvwhBDcXxfkUcbJfg u8qOo5ecV/8oRgUBIiXOZxovN8ERvhCFikWmZ5LnLNkeUFnsQ8Yf7BmNYjkIV47x c1tcQLL0f0yMtEfYXi0Rkb0X/n/M0YCqXqpMTwhnjXSyDm3G9VYgToTx1VVBwtUv +2+aR8rrD5oYeF221WZrazDC4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLBc8Nre gZXzi1EhhjWeeXz4prwhMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvQjk5MUJBMjYz MzVFMTFGMDgyRTAyMDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB2j6wwDQYJKoZIhvcNAQELBQADggEBAHBwSFkNe8SMqoE9 P5kQmhRYrdGLF3Z0Y/v+ZEf+mdm+eIyntzYneIMiIvlCwZVHQoi2eeZ1Un0Nvan5 1v1zoOMgngDRoPfOvxDgPPvqlHYXeBbAxsd44Cu15Vw28NB124m/9D/GR8tYi8oq VonnaTldMCVMGt3NE/hHpE5kNotI8KJnw9GSA7wtxhrQuqiDOIDaSEUGwVhQjxS0 1yEBNkeo6fnX+ia1y97d306pJ0LWPu4vOjqufjJZ12hd0+NxkRa8npqwwif9bT50 En5FKPTUqqg+YDeUziJdpM0y0oEPJgLdm3kCLjG3GCl1PQfQSpjRCUAVt2dGSzov eXaczCY= -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:09 2025 by rpki-client