$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa File: 612992C6012A11EFB75C350FC4F9AE02.roa (raw, json) Hash identifier: kIIwTAeW+pDEZ3yhH1JwOUrEmJAAi9ldowt4J7C/CXc= Subject key identifier: FE:F8:19:2A:58:21:3A:14:BC:05:4B:82:CC:41:A0:9A:A8:B5:85:E9 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: A8 Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa Signing time: Thu 27 Feb 2025 05:27:10 +0000 ROA not before: Thu 27 Feb 2025 05:27:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 14618 IP address blocks: 117.74.104.0/24 maxlen: 24 117.74.105.0/24 maxlen: 24 117.74.106.0/24 maxlen: 24 117.74.107.0/24 maxlen: 24 117.74.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F Validity Not Before: Feb 27 05:27:10 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67bff7ad-3bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6f:1e:ef:db:4e:2f:5e:4a:c2:07:e7:fa:6b: 22:54:12:6f:8c:30:8b:0c:46:16:23:06:18:7b:89: f1:9f:3b:6f:76:f0:3f:cc:37:6d:a9:f8:3e:a6:b1: a4:86:8e:d7:3d:b6:ce:62:02:6e:64:a6:64:bd:e3: 98:7a:50:c6:0b:78:f3:c9:b6:c1:77:d8:f4:fa:dc: 47:68:60:5a:a6:69:fe:c8:48:34:e8:b1:24:8b:6e: e8:2d:1e:27:13:4c:36:c9:d9:fb:8f:06:7d:2f:c4: d4:66:4d:7e:1e:69:7e:54:3b:ce:49:ca:d6:2c:63: 04:1d:28:dd:2c:35:3f:61:d3:02:9e:b6:2e:0d:da: c6:4e:a8:89:96:a1:95:36:76:51:a6:0e:66:77:65: be:7b:c0:bb:f1:e5:b6:71:f8:35:27:65:73:9c:2b: b5:c5:09:cf:25:8c:a6:45:03:f0:9c:0c:06:83:80: 8d:41:8d:5d:f1:b7:f6:46:75:bc:02:7a:c7:ee:46: a0:06:ee:6e:dd:91:72:2b:86:5a:3d:0c:b2:6e:e0: 4c:3d:3f:da:f5:77:7f:9b:85:d2:3d:25:c8:ee:30: ee:56:f8:e7:28:ce:43:0d:30:d8:96:e4:14:8f:a9: 67:fa:fc:89:02:36:5d:a4:c5:cd:21:79:b1:00:7b: 82:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F8:19:2A:58:21:3A:14:BC:05:4B:82:CC:41:A0:9A:A8:B5:85:E9 X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.74.104.0-117.74.108.255 Signature Algorithm: sha256WithRSAEncryption 87:0e:64:cf:12:aa:de:2a:e2:53:f7:e5:8f:5b:35:b9:4b:08: 9b:d1:3a:3d:62:31:b8:54:80:10:6f:4c:49:48:89:be:9f:d8: 05:c4:01:17:c8:e3:5a:db:58:69:6d:f3:44:98:73:7e:e3:a5: d6:51:48:ba:91:6a:3b:1a:fe:54:22:d9:f6:50:aa:28:51:22: 36:a9:3c:d0:0e:cc:22:c4:6f:04:02:3a:89:6c:85:e0:84:10: a1:96:d8:e6:f4:d4:95:90:e4:7e:14:d5:a6:70:61:a1:2b:d2: bc:6e:25:01:01:56:8a:05:69:25:27:ad:5f:bc:6c:d8:96:cc: f7:b7:4f:f4:40:19:06:cd:a5:5e:3f:da:0a:8d:fd:53:43:ea: c1:db:12:00:3d:d8:f8:e3:2c:37:d7:03:72:37:47:54:bd:4e: 0d:ab:aa:1f:ce:ea:96:2f:69:69:df:91:bc:6f:40:1c:57:0c: 95:25:18:11:0d:54:41:21:24:1b:8e:7c:8c:eb:6d:5d:c8:3a: 80:7b:8e:f8:bd:a3:fb:08:8e:b1:38:39:f0:b7:c8:03:d0:5e: e7:31:c7:78:ca:18:d8:0c:2d:60:81:d9:d4:5a:c4:7d:7f:ef: 86:e1:4a:8e:d8:d4:bd:1f:ab:10:3d:de:3f:70:c4:00:71:e2: ab:3e:59:7d -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjUwMjI3MDUyNzEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmZjdhZC0zYmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr28e79tOL15Kwgfn+msiVBJvjDCLDEYWIwYYe4nxnztvdvA/zDdtqfg+prGk ho7XPbbOYgJuZKZkveOYelDGC3jzybbBd9j0+txHaGBapmn+yEg06LEki27oLR4n E0w2ydn7jwZ9L8TUZk1+Hml+VDvOScrWLGMEHSjdLDU/YdMCnrYuDdrGTqiJlqGV NnZRpg5md2W+e8C78eW2cfg1J2VznCu1xQnPJYymRQPwnAwGg4CNQY1d8bf2RnW8 AnrH7kagBu5u3ZFyK4ZaPQyybuBMPT/a9Xd/m4XSPSXI7jDuVvjnKM5DDTDYluQU j6ln+vyJAjZdpMXNIXmxAHuC2QIDAQABo4ICnTCCApkwHQYDVR0OBBYEFP74GSpY IToUvAVLgsxBoJqotYXpMB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5NEYvMEFGNDVFMzYwMTJBMTFFRkE1RkQ5MTZGQzRGOUFFMDIvNjEyOTkyQzYw MTJBMTFFRkI3NUMzNTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA3VKaAMEAHVKbDANBgkqhkiG9w0BAQsFAAOCAQEAhw5k zxKq3iriU/flj1s1uUsIm9E6PWIxuFSAEG9MSUiJvp/YBcQBF8jjWttYaW3zRJhz fuOl1lFIupFqOxr+VCLZ9lCqKFEiNqk80A7MIsRvBAI6iWyF4IQQoZbY5vTUlZDk fhTVpnBhoSvSvG4lAQFWigVpJSetX7xs2JbM97dP9EAZBs2lXj/aCo39U0PqwdsS AD3Y+OMsN9cDcjdHVL1ODauqH87qli9pad+RvG9AHFcMlSUYEQ1UQSEkG458jOtt Xcg6gHuO+L2j+wiOsTg58LfIA9Be5zHHeMoY2AwtYIHZ1FrEfX/vhuFKjtjUvR+r ED3eP3DEAHHiqz5ZfQ== -----END CERTIFICATE-----Generated at Fri Apr 4 23:55:42 2025 by rpki-client