$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5CDB2402FD6D11EE951DE436C4F9AE02.roa File: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (raw, json) Hash identifier: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0= Subject key identifier: D2:74:32:B1:06:70:19:99:D9:91:05:A8:A6:40:B0:21:18:63:4B:34 Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0801 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5CDB2402FD6D11EE951DE436C4F9AE02.roa Signing time: Tue 04 Feb 2025 21:41:26 +0000 ROA not before: Tue 04 Feb 2025 21:41:26 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.27.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 21:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2049 (0x801) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB Validity Not Before: Feb 4 21:41:26 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a28985-596d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bc:4c:7f:af:d0:4e:15:17:f8:35:d3:88:3f: ab:79:98:1a:34:3b:f6:34:fc:31:73:ed:13:60:b8: 6e:56:59:b7:a4:39:b8:95:44:74:4a:00:d7:1b:7b: 1f:42:6b:0f:f5:66:d3:a1:86:1d:91:f7:86:4c:da: 35:9e:c9:25:db:21:b1:c7:6c:9b:0a:e6:99:e0:31: 6f:88:bb:16:21:d7:d4:f4:eb:89:45:3e:fd:b6:25: ba:bb:9e:c5:8b:a5:03:60:e3:78:a5:e1:12:1d:5b: 69:65:b0:23:f1:76:82:18:83:4f:db:8d:00:fb:f1: 30:e9:54:27:30:12:d6:6c:8f:99:a6:07:7a:ba:14: a4:f2:20:e2:5a:5e:01:65:3c:f3:60:55:a9:64:bd: d8:e0:67:cf:28:b3:de:8a:4d:7f:e8:29:5a:3e:74: 78:0e:06:a4:f1:83:98:a4:de:5a:23:4c:50:b5:47: 04:2c:4e:ce:59:28:08:3c:b1:78:f1:75:79:72:24: ae:b8:4d:f6:a2:ba:eb:62:98:b0:20:6f:47:8f:7e: 52:51:9e:3a:61:e5:61:86:4a:77:f3:f0:51:4e:e7: 29:c8:b7:f0:37:d3:b7:51:4f:7f:83:5f:15:c0:36: 06:a3:98:64:33:69:00:58:00:50:c9:b8:90:d8:b2: fd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:74:32:B1:06:70:19:99:D9:91:05:A8:A6:40:B0:21:18:63:4B:34 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5CDB2402FD6D11EE951DE436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.226.0/23 Signature Algorithm: sha256WithRSAEncryption 46:44:00:d1:07:cc:64:a6:0d:38:6c:6e:8c:d8:cb:ae:9a:ae: 57:4b:7a:dd:64:67:cf:59:67:64:f5:b0:87:dd:39:e2:dc:79: 65:53:fc:c0:26:2b:b5:cf:6d:37:af:af:27:58:88:d3:fd:29: 64:6c:92:39:4f:06:b6:dc:71:e2:d7:82:82:d9:73:99:65:87: 0f:1e:2c:02:5c:21:fc:b3:83:f1:01:9f:02:3f:81:b2:de:8b: ec:1a:70:9f:54:0a:c7:46:10:ad:fc:31:8c:8b:c1:04:c0:40: d8:65:c8:c3:38:43:55:d7:d2:14:0c:0d:09:b5:0e:f4:51:c4: d8:be:14:c9:37:fb:0e:44:9a:f7:46:e0:b8:73:ad:48:5d:88: 4b:34:51:82:b3:bf:ba:bb:2a:f5:4b:bd:c2:f7:2f:d7:1f:46: 38:d7:d7:7c:ab:20:50:9a:f6:07:75:5d:14:ce:51:92:24:29: 20:27:0d:95:12:d3:84:94:d0:70:8a:3a:0a:ea:5d:49:bb:2c: 54:38:7d:01:1f:50:8d:82:5b:89:04:e6:83:b7:f9:e4:22:66: 20:1e:f9:1e:f7:78:b4:93:8a:4e:1b:01:53:df:b4:b4:b4:b7: 5d:37:40:03:9a:8d:ad:3d:e8:5e:25:7e:fe:38:f6:53:a9:c7: 59:c6:c0:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwMjA0MjE0MTI2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyODk4NS01OTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7xMf6/QThUX+DXTiD+reZgaNDv2NPwxc+0TYLhuVlm3pDm4lUR0SgDXG3sf QmsP9WbToYYdkfeGTNo1nskl2yGxx2ybCuaZ4DFviLsWIdfU9OuJRT79tiW6u57F i6UDYON4peESHVtpZbAj8XaCGINP240A+/Ew6VQnMBLWbI+Zpgd6uhSk8iDiWl4B ZTzzYFWpZL3Y4GfPKLPeik1/6ClaPnR4Dgak8YOYpN5aI0xQtUcELE7OWSgIPLF4 8XV5ciSuuE32orrrYpiwIG9Hj35SUZ46YeVhhkp38/BRTucpyLfwN9O3UU9/g18V wDYGo5hkM2kAWABQybiQ2LL9wwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJ0MrEG cBmZ2ZEFqKZAsCEYY0s0MB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I3QUIvNTY3ODY1Njg0MDA5MTFFQkEzNzQyMjVCQzRGOUFFMDIvNUNEQjI0MDJG RDZEMTFFRTk1MURFNDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLG+IwDQYJKoZIhvcNAQELBQADggEBAEZEANEHzGSmDThs bozYy66arldLet1kZ89ZZ2T1sIfdOeLceWVT/MAmK7XPbTevrydYiNP9KWRskjlP BrbcceLXgoLZc5llhw8eLAJcIfyzg/EBnwI/gbLei+wacJ9UCsdGEK38MYyLwQTA QNhlyMM4Q1XX0hQMDQm1DvRRxNi+FMk3+w5EmvdG4LhzrUhdiEs0UYKzv7q7KvVL vcL3L9cfRjjX13yrIFCa9gd1XRTOUZIkKSAnDZUS04SU0HCKOgrqXUm7LFQ4fQEf UI2CW4kE5oO3+eQiZiAe+R73eLSTik4bAVPftLS0t103QAOaja096F4lfv449lOp x1nGwG8= -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:10 2025 by rpki-client