$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/706D3EA4140211EB87D7320FC4F9AE02.roa File: 706D3EA4140211EB87D7320FC4F9AE02.roa (raw, json) Hash identifier: a/CArtNqj+X7FLzknDiVLBMQF895RFRrNOFXjFmjzNk= Subject key identifier: 5A:A0:C3:87:11:49:E9:C0:76:52:E9:EB:A8:66:33:39:54:A2:62:61 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0EBC Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/706D3EA4140211EB87D7320FC4F9AE02.roa Signing time: Tue 14 Jan 2025 18:16:23 +0000 ROA not before: Tue 14 Jan 2025 18:16:23 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 36224 IP address blocks: 210.57.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3772 (0xebc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:16:23 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786a9f7-7caf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d5:e8:85:b9:7d:88:8c:a7:26:d4:5c:78:1b: 2a:fa:11:10:a5:92:24:1d:3e:a5:09:88:07:22:57: 43:a8:60:23:34:dd:c0:ec:fd:04:bc:f0:d9:4d:f9: d4:3c:0b:17:17:53:7c:db:5b:6a:c3:65:3e:4a:d9: d3:06:09:f6:56:3b:a2:98:79:ca:bb:a1:52:7f:10: ae:ac:7f:51:7d:70:4b:95:b3:54:c5:d8:d4:5b:29: 9a:fc:60:98:0c:97:71:ca:38:d0:c7:7c:c9:9b:b0: 2c:09:1f:dc:ac:79:34:8b:d2:51:b8:14:30:20:cb: d6:81:99:20:3b:11:41:ee:d4:cb:8a:e9:eb:05:0f: df:2e:fe:88:02:53:6c:43:4e:e5:e0:f4:ba:60:bf: 7b:44:1d:dd:93:3e:19:b0:9a:b5:63:0a:77:46:0f: 33:26:cf:69:a8:04:3d:59:30:53:e9:e3:b2:6f:f9: e6:ad:d9:7a:eb:66:b9:42:6c:2c:46:8e:f6:f1:5c: f4:00:32:ed:d9:6f:51:b5:13:66:26:37:06:b1:d8: 6e:99:74:47:53:57:0d:55:da:89:c7:50:77:e6:4c: d7:4f:dc:65:5c:c0:48:11:e6:37:23:b6:d4:d6:72: 99:fc:ff:87:18:d5:d7:2d:6a:5b:86:48:3a:fb:ce: f2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A0:C3:87:11:49:E9:C0:76:52:E9:EB:A8:66:33:39:54:A2:62:61 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/706D3EA4140211EB87D7320FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.57.44.0/24 Signature Algorithm: sha256WithRSAEncryption 35:ac:c7:f0:f1:b6:f2:0f:15:9e:cb:10:bd:50:11:cd:a8:9d: 15:53:5b:68:f3:e6:97:6d:5f:52:c4:23:2a:e5:52:27:4e:82: 73:14:03:fd:84:8f:c6:9a:b8:5f:a6:8a:28:a4:cc:5b:7e:e5: 72:60:b3:21:38:f0:3b:93:e2:41:37:ed:25:0d:2f:dd:07:30: de:01:a6:02:23:69:70:e6:d5:5f:a2:98:6e:70:e0:07:8f:1a: 1e:e4:6e:87:31:53:1a:4e:36:40:f6:43:e5:ea:83:62:b7:54: 33:cb:3b:a2:ec:2c:92:d4:b9:8b:02:19:8c:f6:fb:57:39:06: ee:d7:e0:02:f7:44:18:54:bf:c2:1d:15:1a:ea:ab:fe:17:f3: ba:d6:44:dc:a9:f0:6a:53:69:21:5d:25:20:05:89:df:8e:69: d2:ab:a4:d1:50:34:3c:73:72:7d:87:1b:46:cf:d5:89:9f:7e: d8:65:2a:f5:3d:fe:0c:d0:65:70:fb:c7:d3:85:1b:60:33:b5: ed:a0:f2:58:7e:f7:a2:de:82:81:99:ea:03:c8:16:69:61:05: 73:c8:ce:b4:18:b5:51:08:2f:d3:3a:a9:90:ee:7b:e5:67:52: d0:85:ea:f3:f2:ae:a8:ca:16:18:12:3f:43:ff:04:bc:5b:9f: ef:35:56:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjUwMTE0MTgxNjIzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2YTlmNy03Y2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmdXohbl9iIynJtRceBsq+hEQpZIkHT6lCYgHIldDqGAjNN3A7P0EvPDZTfnU PAsXF1N821tqw2U+StnTBgn2VjuimHnKu6FSfxCurH9RfXBLlbNUxdjUWyma/GCY DJdxyjjQx3zJm7AsCR/crHk0i9JRuBQwIMvWgZkgOxFB7tTLiunrBQ/fLv6IAlNs Q07l4PS6YL97RB3dkz4ZsJq1Ywp3Rg8zJs9pqAQ9WTBT6eOyb/nmrdl662a5Qmws Ro728Vz0ADLt2W9RtRNmJjcGsdhumXRHU1cNVdqJx1B35kzXT9xlXMBIEeY3I7bU 1nKZ/P+HGNXXLWpbhkg6+87y0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFqgw4cR SenAdlLp66hmMzlUomJhMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNzA2RDNFQTQx NDAyMTFFQjg3RDczMjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSOSwwDQYJKoZIhvcNAQELBQADggEBADWsx/DxtvIPFZ7L EL1QEc2onRVTW2jz5pdtX1LEIyrlUidOgnMUA/2Ej8aauF+miiikzFt+5XJgsyE4 8DuT4kE37SUNL90HMN4BpgIjaXDm1V+imG5w4AePGh7kbocxUxpONkD2Q+Xqg2K3 VDPLO6LsLJLUuYsCGYz2+1c5Bu7X4AL3RBhUv8IdFRrqq/4X87rWRNyp8GpTaSFd JSAFid+OadKrpNFQNDxzcn2HG0bP1YmffthlKvU9/gzQZXD7x9OFG2Azte2g8lh+ 96LegoGZ6gPIFmlhBXPIzrQYtVEIL9M6qZDue+VnUtCF6vPyrqjKFhgSP0P/BLxb n+81VnE= -----END CERTIFICATE-----Generated at Sun Apr 13 21:02:22 2025 by rpki-client