$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/B9F56378335E11F082E02017C4F9AE02.roa File: B9F56378335E11F082E02017C4F9AE02.roa (raw, json) Hash identifier: yo5hJLh4AA+5sfpXxwTZqReBypoWLqvwry4RjDwk98g= Subject key identifier: A3:A3:25:24:11:B0:D7:42:A4:04:CD:9D:59:1A:9F:A6:E8:BB:E8:8C Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 6067 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/B9F56378335E11F082E02017C4F9AE02.roa Signing time: Sat 17 May 2025 20:37:19 +0000 ROA not before: Sat 17 May 2025 20:37:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38623 IP address blocks: 118.143.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24679 (0x6067) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: May 17 20:37:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6828f37f-c163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:22:3c:69:14:f2:cb:1e:10:58:9b:42:03:e9: 74:6b:67:4a:67:ee:51:f4:67:bb:19:6b:af:af:54: 3b:9c:fa:89:c1:80:9b:8c:23:4e:6c:1c:db:db:ce: 8e:0e:6d:02:d8:ce:ee:d3:9f:b5:07:1b:42:64:8b: ca:43:5a:11:3d:48:18:49:41:e2:a8:54:e5:41:3e: 59:ec:b1:49:07:b4:ef:ff:d7:c1:c0:f5:e1:9b:d2: c7:34:23:7a:7f:d6:af:4d:78:23:55:da:d2:5c:39: 42:ee:60:27:f3:a8:a0:73:52:33:81:8c:8d:c4:17: a3:51:0e:ff:d2:68:3d:99:8d:30:a8:b0:a5:23:b2: e7:b8:8e:ec:ce:00:41:68:32:2d:c7:b5:04:bc:98: 13:33:b4:30:ca:13:d5:d6:77:e5:a3:d2:9f:bc:bd: 46:f3:f7:99:37:e6:23:a5:28:d8:a6:64:87:ed:56: 88:be:de:b2:ac:05:a3:7a:6e:72:af:88:26:1d:34: 76:97:49:86:9b:a9:54:4b:46:d5:9f:68:83:ec:13: f4:d4:07:ef:0b:43:41:14:b7:27:09:53:f2:32:82: 42:7f:fb:6f:28:6e:6e:22:1b:6b:be:f6:73:94:36: df:8d:09:10:07:f5:29:fd:0b:5f:ae:23:4f:16:91: 26:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:A3:25:24:11:B0:D7:42:A4:04:CD:9D:59:1A:9F:A6:E8:BB:E8:8C X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/B9F56378335E11F082E02017C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.143.196.0/24 Signature Algorithm: sha256WithRSAEncryption af:28:58:06:44:75:3e:28:4c:fc:ac:3b:3a:50:72:ff:30:75: 5d:f4:42:43:27:ba:b2:1e:d0:75:ca:ca:2c:3f:23:e0:0e:b4: 76:23:5b:de:83:a3:c0:4e:ec:b1:d3:ce:82:a0:aa:a8:d2:b5: c3:f4:35:09:aa:f8:9f:cc:9c:5b:48:42:2e:76:a2:04:68:60: b1:ec:c7:fa:5b:70:09:10:8c:8e:2e:81:f6:78:47:c3:63:b8: f2:97:52:9e:43:36:63:a4:fa:c5:87:73:59:99:5d:89:42:3b: 4a:76:c0:d0:55:e4:b1:c9:71:5c:12:4f:38:00:b4:b3:de:fb: 2e:6c:9c:fb:2c:97:dd:70:23:c8:93:a1:e0:f4:9a:8a:74:9d: 12:1a:24:4e:c6:b2:06:9e:94:a7:90:42:66:8c:2a:47:02:e2: 0b:11:c8:4e:61:24:93:e7:af:33:d1:a8:9b:03:6c:be:df:83: 8d:8d:63:03:f4:ef:61:dd:e8:38:6c:8d:1c:37:fe:05:86:e6: b4:9d:0c:02:70:e5:7b:58:f0:ea:8a:5d:39:82:cf:d4:b0:32: 9a:b1:d1:85:45:2f:69:22:41:a2:d2:5a:1b:8b:9d:d4:d0:11: b9:d4:e8:dc:76:f8:77:69:2b:0a:fe:30:2a:bd:b1:0b:12:d4: 4a:5e:95:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICYGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNTE3MjAzNzE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI4ZjM3Zi1jMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CI8aRTyyx4QWJtCA+l0a2dKZ+5R9Ge7GWuvr1Q7nPqJwYCbjCNObBzb286O Dm0C2M7u05+1BxtCZIvKQ1oRPUgYSUHiqFTlQT5Z7LFJB7Tv/9fBwPXhm9LHNCN6 f9avTXgjVdrSXDlC7mAn86igc1IzgYyNxBejUQ7/0mg9mY0wqLClI7LnuI7szgBB aDItx7UEvJgTM7QwyhPV1nflo9KfvL1G8/eZN+YjpSjYpmSH7VaIvt6yrAWjem5y r4gmHTR2l0mGm6lUS0bVn2iD7BP01AfvC0NBFLcnCVPyMoJCf/tvKG5uIhtrvvZz lDbfjQkQB/Up/QtfriNPFpEm4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKOjJSQR sNdCpATNnVkan6bou+iMMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvQjlGNTYzNzgz MzVFMTFGMDgyRTAyMDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB2j8QwDQYJKoZIhvcNAQELBQADggEBAK8oWAZEdT4oTPys OzpQcv8wdV30QkMnurIe0HXKyiw/I+AOtHYjW96Do8BO7LHTzoKgqqjStcP0NQmq +J/MnFtIQi52ogRoYLHsx/pbcAkQjI4ugfZ4R8NjuPKXUp5DNmOk+sWHc1mZXYlC O0p2wNBV5LHJcVwSTzgAtLPe+y5snPssl91wI8iToeD0mop0nRIaJE7GsgaelKeQ QmaMKkcC4gsRyE5hJJPnrzPRqJsDbL7fg42NYwP072Hd6DhsjRw3/gWG5rSdDAJw 5XtY8OqKXTmCz9SwMpqx0YVFL2kiQaLSWhuLndTQEbnU6Nx2+HdpKwr+MCq9sQsS 1Epelaw= -----END CERTIFICATE-----Generated at Tue Jun 3 23:48:26 2025 by rpki-client