$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/3366E7583CAC11F0997EAC45C4F9AE02.roa File: 3366E7583CAC11F0997EAC45C4F9AE02.roa (raw, json) Hash identifier: kssI5Drais5SXspTClU/NbBaSd+qkoi5idfDTiL4j3Q= Subject key identifier: 0D:61:37:C3:AA:DC:46:A0:77:DB:77:85:57:2F:E3:1C:BA:18:46:11 Certificate issuer: /CN=A91DEF04/serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38 Certificate serial: 0689 Authority key identifier: 31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/3366E7583CAC11F0997EAC45C4F9AE02.roa Signing time: Thu 29 May 2025 16:44:34 +0000 ROA not before: Thu 29 May 2025 16:44:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 207915 IP address blocks: 115.124.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.crl rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF04, serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38 Validity Not Before: May 29 16:44:34 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68388ef2-ba68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:23:61:6c:f9:ee:d0:a1:6c:97:d4:65:f5:d5: c0:c1:9a:cd:fa:c4:bf:52:cc:ed:f7:d7:4a:30:38: 12:8e:39:5f:49:ec:d7:50:94:83:90:5b:bd:76:e7: ca:cb:20:5c:c8:70:31:d4:c1:05:ee:79:82:e2:3b: 77:b8:3d:4e:4e:a4:5c:51:f3:5d:a4:2a:35:4c:bf: ac:f3:68:0f:95:3b:78:84:3e:c2:c6:87:e4:d4:7f: 42:bc:1b:49:e8:a0:52:ee:69:01:3d:fb:83:09:b7: ed:05:98:26:c6:04:c9:23:92:e7:4d:60:aa:cd:8a: 45:b1:88:86:c2:7e:07:c0:5b:5d:09:fb:c9:82:5b: f3:aa:1e:a7:eb:09:8a:70:46:22:e1:e0:6c:e9:b7: 54:ab:70:7e:47:7c:1f:cf:8c:88:eb:60:e2:00:8a: ea:a2:26:f5:dd:69:98:db:90:6b:80:22:60:4e:c2: fa:ca:21:f5:fd:c0:35:21:c5:6d:e5:19:a6:5d:2b: 34:4e:ac:69:f9:a5:c1:6d:b2:21:dd:4e:fd:8c:a4: dc:a7:4e:af:ae:82:27:7b:da:97:f8:06:0c:de:2d: f6:02:d0:6d:e2:7f:28:22:0b:e1:9f:85:45:e9:2d: 86:5b:72:a4:95:11:07:d9:30:28:95:41:56:f2:f7: ab:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:61:37:C3:AA:DC:46:A0:77:DB:77:85:57:2F:E3:1C:BA:18:46:11 X509v3 Authority Key Identifier: keyid:31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/3366E7583CAC11F0997EAC45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.124.36.0/22 Signature Algorithm: sha256WithRSAEncryption 96:89:aa:5a:b8:9f:ca:ab:f1:14:b9:d8:05:a3:07:4b:b6:56: 76:42:5f:57:68:50:a2:7d:8f:e0:a6:b3:72:6a:dc:a6:8e:6b: cb:fc:4f:a1:32:03:69:20:0a:19:79:84:4f:8b:1a:8f:67:5e: a3:fe:15:53:dc:e5:65:4f:e7:8b:19:5f:22:c7:1e:50:7a:57: 63:18:f1:1e:5c:92:95:08:12:00:bd:89:fc:0f:8c:9a:69:fd: e5:8f:31:ed:7a:9c:52:62:97:18:ea:95:d5:bd:bb:2f:51:49: 7f:ab:61:55:80:00:02:b1:0f:a2:9e:f1:3f:8f:79:4a:2d:61: 4a:bc:1e:e0:d3:45:da:33:6a:bb:a5:12:98:51:1f:c1:ef:4d: fb:ae:26:bb:c8:87:ab:ec:4c:47:9a:bb:ae:ee:2a:5c:e9:4e: 59:70:83:fc:3e:70:ed:f2:4f:29:22:0f:55:da:d0:3d:57:c5: ae:1f:12:2f:49:cd:48:ed:02:e0:95:7f:35:a8:1a:54:dc:32: 4f:88:00:b6:94:24:80:ca:82:75:b3:4b:0f:72:05:16:11:80: c0:9a:a0:f7:73:92:a8:77:83:30:9e:8e:a8:68:dc:ae:2e:6a: e7:3f:9b:0c:51:45:ea:ae:ce:85:3e:70:cb:2f:d0:fa:cd:e4: b3:e9:06:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGMDQxMTAvBgNVBAUTKDMxMTZFMDc1ODQwNTZDMTZGNTY4RjBFQzYwOThFN0RD NEY1MDRBMzgwHhcNMjUwNTI5MTY0NDM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM4OGVmMi1iYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCNhbPnu0KFsl9Rl9dXAwZrN+sS/Uszt99dKMDgSjjlfSezXUJSDkFu9dufK yyBcyHAx1MEF7nmC4jt3uD1OTqRcUfNdpCo1TL+s82gPlTt4hD7Cxofk1H9CvBtJ 6KBS7mkBPfuDCbftBZgmxgTJI5LnTWCqzYpFsYiGwn4HwFtdCfvJglvzqh6n6wmK cEYi4eBs6bdUq3B+R3wfz4yI62DiAIrqoib13WmY25BrgCJgTsL6yiH1/cA1IcVt 5RmmXSs0Tqxp+aXBbbIh3U79jKTcp06vroIne9qX+AYM3i32AtBt4n8oIgvhn4VF 6S2GW3KklREH2TAolUFW8vervwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA1hN8Oq 3Eagd9t3hVcv4xy6GEYRMB8GA1UdIwQYMBaAFDEW4HWEBWwW9Wjw7GCY59xPUEo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUYwNC85OTFFQjc1QTdB QjAxMUVCQTAyN0JCN0ZDNEY5QUUwMi9NUmJnZFlRRmJCYjFhUERzWUpqbjNFOVFT amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01SYmdkWVFGYkJiMWFQRHNZSmpuM0U5UVNqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVGMDQvOTkxRUI3NUE3QUIwMTFFQkEwMjdCQjdGQzRGOUFFMDIvMzM2NkU3NTgz Q0FDMTFGMDk5N0VBQzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJzfCQwDQYJKoZIhvcNAQELBQADggEBAJaJqlq4n8qr8RS5 2AWjB0u2VnZCX1doUKJ9j+Cms3Jq3KaOa8v8T6EyA2kgChl5hE+LGo9nXqP+FVPc 5WVP54sZXyLHHlB6V2MY8R5ckpUIEgC9ifwPjJpp/eWPMe16nFJilxjqldW9uy9R SX+rYVWAAAKxD6Ke8T+PeUotYUq8HuDTRdozarulEphRH8HvTfuuJrvIh6vsTEea u67uKlzpTllwg/w+cO3yTykiD1Xa0D1Xxa4fEi9JzUjtAuCVfzWoGlTcMk+IALaU JIDKgnWzSw9yBRYRgMCaoPdzkqh3gzCejqho3K4uauc/mwxRRequzoU+cMsv0PrN 5LPpBqA= -----END CERTIFICATE-----Generated at Mon Jun 2 05:47:46 2025 by rpki-client