$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/168FD534090211EEA1C06509C4F9AE02.roa File: 168FD534090211EEA1C06509C4F9AE02.roa (raw, json) Hash identifier: DiDcYvq7OTLPfptklNaitiQoU1f3iwa59I66Hcfla2Y= Subject key identifier: 43:65:CC:8E:B7:A7:8A:86:96:FA:54:33:0E:21:1F:E3:A1:85:BE:B5 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 062F Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/168FD534090211EEA1C06509C4F9AE02.roa Signing time: Wed 24 Jul 2024 23:41:45 +0000 ROA not before: Wed 24 Jul 2024 23:41:45 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 6453 IP address blocks: 129.227.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 24 23:41:45 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a19139-f332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:32:40:8f:07:b8:b8:9c:5a:55:5e:08:30:0b: df:ce:d5:aa:34:16:e8:cb:d2:6e:af:37:de:4b:d5: 95:49:f6:a0:c3:1f:e7:b4:63:0b:c6:ee:c7:67:b7: 68:f1:c2:6b:2e:8d:52:38:a3:4d:ba:92:8f:ef:5b: c0:0f:d1:a6:3d:0a:5f:20:3c:9b:d3:56:fa:10:19: b7:f3:ac:09:95:00:5c:e7:56:d4:d6:f8:cd:ac:48: 38:91:e7:c1:88:2c:cb:52:d9:70:c8:f7:c8:53:48: 0c:8e:cc:b2:9d:88:fd:1a:5b:9f:03:93:bb:87:b5: 86:4f:98:7c:8f:8e:38:cf:d7:15:92:6e:9a:de:84: a8:5f:84:57:64:31:87:a6:de:16:b7:2e:a8:56:76: f1:6d:5d:8a:99:b1:30:fc:b1:55:29:bf:6a:8c:dd: ec:bd:cd:8e:5e:00:82:c1:b5:85:be:60:7e:ea:a4: f2:d6:91:83:67:8d:66:b2:d1:29:4e:57:44:f6:6b: 5d:9f:ee:0e:0f:3b:38:9e:04:d7:ac:a2:40:54:43: 7f:33:74:2f:c9:38:5b:1f:a7:59:f4:02:0f:67:2a: bd:20:e7:a2:35:61:6a:2a:86:e2:3e:8e:bf:8a:77: 10:d8:84:b7:0f:a7:67:89:dc:6f:a2:e7:29:1e:f7: a3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:65:CC:8E:B7:A7:8A:86:96:FA:54:33:0E:21:1F:E3:A1:85:BE:B5 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/168FD534090211EEA1C06509C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.222.0/24 Signature Algorithm: sha256WithRSAEncryption 39:87:e1:29:bd:a5:f5:0c:71:9c:3c:f3:b0:f7:04:eb:54:b8: 3f:97:be:03:5e:35:55:3d:4b:e7:1a:6c:51:1c:a8:92:52:b1: c5:7c:8d:39:a6:74:37:dd:55:4e:98:3b:4a:98:a5:01:3a:85: 5e:b5:58:76:5e:0b:62:e5:61:be:86:b4:2b:dd:00:fd:e3:e5: 28:33:77:1e:81:23:2a:58:9c:e2:4b:1f:e5:e8:59:ca:13:9b: 0f:a0:73:f2:71:bb:d2:47:87:92:eb:b8:ac:4d:f8:0f:ae:be: e4:35:63:86:03:29:12:48:d1:24:82:90:24:d6:b5:f8:cb:ed: d9:42:d9:04:a0:33:e0:f1:66:81:66:a5:c0:d4:a5:f8:6f:a8: 0f:e6:b9:31:c8:1e:cb:66:2f:a6:2f:fa:d9:af:c4:cb:91:cb: e9:dc:46:67:58:35:e5:2d:e5:0b:88:72:fd:d8:17:da:0f:ff: e9:00:52:78:07:fa:c8:06:dd:c8:88:1d:5a:6e:a9:3e:d3:2c: 77:13:a5:d5:2f:4c:c3:a2:a4:62:ab:75:5c:08:b3:7a:00:80: a5:12:43:ac:5c:aa:ca:70:6c:18:4b:ea:93:c3:ca:a1:d3:c3: 8f:c9:ad:c5:a5:fa:89:01:ba:46:90:c7:25:a6:71:31:ed:90: ab:c5:5f:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjQwNzI0MjM0MTQ1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExOTEzOS1mMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTJAjwe4uJxaVV4IMAvfztWqNBboy9JurzfeS9WVSfagwx/ntGMLxu7HZ7do 8cJrLo1SOKNNupKP71vAD9GmPQpfIDyb01b6EBm386wJlQBc51bU1vjNrEg4kefB iCzLUtlwyPfIU0gMjsyynYj9GlufA5O7h7WGT5h8j444z9cVkm6a3oSoX4RXZDGH pt4Wty6oVnbxbV2KmbEw/LFVKb9qjN3svc2OXgCCwbWFvmB+6qTy1pGDZ41mstEp TldE9mtdn+4ODzs4ngTXrKJAVEN/M3QvyThbH6dZ9AIPZyq9IOeiNWFqKobiPo6/ incQ2IS3D6dnidxvoucpHvejxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFENlzI63 p4qGlvpUMw4hH+Ohhb61MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvMTY4RkQ1MzQw OTAyMTFFRUExQzA2NTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACB494wDQYJKoZIhvcNAQELBQADggEBADmH4Sm9pfUMcZw8 87D3BOtUuD+XvgNeNVU9S+cabFEcqJJSscV8jTmmdDfdVU6YO0qYpQE6hV61WHZe C2LlYb6GtCvdAP3j5Sgzdx6BIypYnOJLH+XoWcoTmw+gc/Jxu9JHh5LruKxN+A+u vuQ1Y4YDKRJI0SSCkCTWtfjL7dlC2QSgM+DxZoFmpcDUpfhvqA/muTHIHstmL6Yv +tmvxMuRy+ncRmdYNeUt5QuIcv3YF9oP/+kAUngH+sgG3ciIHVpuqT7TLHcTpdUv TMOipGKrdVwIs3oAgKUSQ6xcqspwbBhL6pPDyqHTw4/JrcWl+okBukaQxyWmcTHt kKvFX6I= -----END CERTIFICATE-----Generated at Thu Jul 24 12:28:06 2025 by rpki-client