$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5B2236E6FD6D11EE951DE436C4F9AE02.roa File: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (raw, json) Hash identifier: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw= Subject key identifier: 1A:D4:59:F7:F0:17:2C:46:B9:3B:4B:84:9D:AD:33:30:93:26:F3:0F Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0800 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5B2236E6FD6D11EE951DE436C4F9AE02.roa Signing time: Tue 04 Feb 2025 21:41:25 +0000 ROA not before: Tue 04 Feb 2025 21:41:25 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 14618 IP address blocks: 203.27.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2048 (0x800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB Validity Not Before: Feb 4 21:41:25 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a28985-3d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ff:e4:b4:5f:74:bc:9a:2f:81:ef:99:44:d3: d4:33:7c:ea:46:31:62:9d:24:29:b1:6d:66:3d:45: 72:0a:ca:39:73:b2:5a:44:a5:3d:b4:4c:26:08:78: 93:87:70:70:60:a9:0e:79:85:1a:83:84:05:35:e5: 89:86:59:f4:46:32:88:8f:42:00:99:06:11:e4:0d: 13:7e:41:9c:7d:cf:1a:1c:98:42:37:cf:dc:42:ef: d3:ef:97:08:7f:20:82:c8:65:4c:03:ef:f4:d7:98: be:da:7a:ea:c1:3e:15:3a:a1:57:d2:ff:8c:47:9e: d5:73:67:fe:78:88:1b:65:d0:8b:cf:e3:a4:d1:92: 34:9c:3c:9f:3a:2d:f0:ca:76:63:5d:87:f0:a5:bf: 70:d3:00:02:e1:aa:fa:ce:de:ea:76:25:e7:d0:4f: a9:f8:17:31:b1:e7:d8:5d:ae:3f:96:32:4a:85:7b: b9:b4:b3:cc:ad:18:e2:d0:c7:bb:00:0a:4b:09:9e: f9:1c:c0:69:35:89:2f:05:08:d6:f8:99:ac:ab:05: 30:a9:8c:4d:07:1b:54:2d:5b:07:81:2e:50:02:b8: 26:e1:66:96:69:a4:9a:19:32:e5:a4:e3:aa:bc:99: 3c:da:26:1b:a1:10:26:23:6b:e8:13:58:00:22:d7: 28:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D4:59:F7:F0:17:2C:46:B9:3B:4B:84:9D:AD:33:30:93:26:F3:0F X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5B2236E6FD6D11EE951DE436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.226.0/23 Signature Algorithm: sha256WithRSAEncryption d0:9d:32:80:f2:be:e5:2c:02:cf:0d:b4:42:97:40:54:9a:28: b2:ef:4e:84:87:d2:1b:ce:31:95:49:0f:d5:29:32:eb:2e:b3: 1d:6c:07:ca:9d:2d:d4:1f:4e:5e:91:04:e2:c6:ee:2d:f2:9a: 59:78:76:5c:18:ec:60:2a:a2:e4:77:20:28:91:ac:b2:0f:54: 16:db:5d:d2:69:55:2c:59:46:b8:79:df:72:c3:7b:a7:39:62: 04:c9:fa:1d:2a:53:db:c2:7e:04:e0:38:00:a8:d0:d6:b7:25: 83:cd:7b:ee:3c:8b:c5:6e:79:8e:a9:b9:4a:04:d5:83:67:e1: 22:14:79:0a:9a:cd:46:3c:b4:56:48:10:e9:e5:a9:ee:07:8a: 5f:12:54:cc:5a:7c:2e:68:0a:c7:0a:3d:5a:70:97:1b:c2:be: 58:b9:ac:d1:b0:56:5b:b1:85:dc:87:9d:60:91:ec:37:61:de: 5a:05:ff:b6:c8:3e:a4:70:34:8c:fd:02:0f:e9:de:33:f0:ed: 57:58:81:e2:ea:24:dc:f8:75:c3:f0:75:1e:f6:25:d4:07:d5: 7f:18:7c:8c:fb:e1:72:3e:b3:26:39:cd:ee:29:33:0c:ff:2f: e8:53:41:19:01:64:38:5f:9f:4b:a6:99:96:e1:37:ca:de:67: c2:17:11:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwMjA0MjE0MTI1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyODk4NS0zZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1v/ktF90vJovge+ZRNPUM3zqRjFinSQpsW1mPUVyCso5c7JaRKU9tEwmCHiT h3BwYKkOeYUag4QFNeWJhln0RjKIj0IAmQYR5A0TfkGcfc8aHJhCN8/cQu/T75cI fyCCyGVMA+/015i+2nrqwT4VOqFX0v+MR57Vc2f+eIgbZdCLz+Ok0ZI0nDyfOi3w ynZjXYfwpb9w0wAC4ar6zt7qdiXn0E+p+BcxsefYXa4/ljJKhXu5tLPMrRji0Me7 AApLCZ75HMBpNYkvBQjW+JmsqwUwqYxNBxtULVsHgS5QArgm4WaWaaSaGTLlpOOq vJk82iYboRAmI2voE1gAItcoEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBrUWffw FyxGuTtLhJ2tMzCTJvMPMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I3QUIvNTY3ODY1Njg0MDA5MTFFQkEzNzQyMjVCQzRGOUFFMDIvNUIyMjM2RTZG RDZEMTFFRTk1MURFNDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLG+IwDQYJKoZIhvcNAQELBQADggEBANCdMoDyvuUsAs8N tEKXQFSaKLLvToSH0hvOMZVJD9UpMususx1sB8qdLdQfTl6RBOLG7i3ymll4dlwY 7GAqouR3ICiRrLIPVBbbXdJpVSxZRrh533LDe6c5YgTJ+h0qU9vCfgTgOACo0Na3 JYPNe+48i8VueY6puUoE1YNn4SIUeQqazUY8tFZIEOnlqe4Hil8SVMxafC5oCscK PVpwlxvCvli5rNGwVluxhdyHnWCR7Ddh3loF/7bIPqRwNIz9Ag/p3jPw7VdYgeLq JNz4dcPwdR72JdQH1X8YfIz74XI+syY5ze4pMwz/L+hTQRkBZDhfn0ummZbhN8re Z8IXEV8= -----END CERTIFICATE-----Generated at Fri Apr 4 23:58:33 2025 by rpki-client