$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/FD36CD26EC2211EFAE200F79C4F9AE02.roa File: FD36CD26EC2211EFAE200F79C4F9AE02.roa (raw, json) Hash identifier: 31Dxym1vHZAUuP9HrMGwdQy+0zNPX5MVVrv3CWlz3bg= Subject key identifier: 84:78:1A:B1:8B:FA:75:72:D8:3C:E1:58:8F:BF:4D:61:46:71:71:52 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: 04 Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/FD36CD26EC2211EFAE200F79C4F9AE02.roa Signing time: Sun 16 Feb 2025 05:01:32 +0000 ROA not before: Sun 16 Feb 2025 05:01:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 36352 IP address blocks: 45.120.4.0/22 maxlen: 24 103.60.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E Validity Not Before: Feb 16 05:01:32 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67b1712c-72d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:27:69:64:10:50:32:68:5b:d5:80:12:ca:4a: 3c:e7:c6:0d:7e:83:9f:86:44:90:ca:b1:e6:ba:17: 4e:dc:00:2f:51:de:31:6e:f0:45:86:5c:4d:a0:79: 1c:20:1f:2b:34:71:3a:22:c5:82:34:88:43:ec:1c: e9:1e:1d:54:2c:ed:1e:0a:75:a3:37:63:1a:53:7b: c6:83:27:be:04:9a:80:c5:2e:f7:ba:25:da:f7:e2: d3:38:ae:d1:84:34:e2:6e:df:c1:9a:e6:96:b7:dd: 90:23:53:fb:70:16:dd:26:50:76:44:53:ba:d6:f5: fe:64:c6:53:5b:1f:d1:5b:9a:f0:67:dc:ed:31:04: 34:9c:54:02:7b:a2:72:2b:ac:5d:1b:59:ba:dd:a3: 49:2c:fd:de:54:7a:dd:d9:54:ee:fb:19:30:c9:2b: d3:67:30:a3:8e:2e:cf:67:3d:59:6b:27:b2:37:18: 6d:61:3d:00:74:e1:e5:b2:20:25:0e:c5:f1:c6:f5: 47:60:02:05:25:4e:5c:f6:e5:d9:aa:60:e4:1a:1f: 20:f7:1c:79:4c:b9:59:5b:c5:cd:fa:f2:b5:11:89: 76:7d:37:04:60:be:c7:3c:75:24:5e:99:43:5e:a1: dd:d8:cd:2f:40:c2:28:61:23:7c:d8:08:f9:90:a4: b7:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:78:1A:B1:8B:FA:75:72:D8:3C:E1:58:8F:BF:4D:61:46:71:71:52 X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/FD36CD26EC2211EFAE200F79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.4.0/22 103.60.64.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:4e:0a:a6:0d:3c:90:01:cb:92:d0:60:fd:81:c2:03:ab:57: 14:93:56:bb:e1:ca:6a:0f:5c:40:ab:b0:90:b2:f9:c8:9c:7c: cf:7d:9a:fe:0d:39:25:70:09:3f:62:92:4a:51:dc:39:db:6e: a2:61:af:7e:74:e2:03:27:03:5a:1b:ff:0d:65:ec:11:83:59: b1:e6:7e:be:79:46:6a:61:4c:a4:ab:3f:54:cf:bb:b3:e8:95: 92:24:23:fc:fb:92:99:6d:d5:e2:35:65:a4:53:f4:39:9a:2e: 83:7c:63:da:ea:a4:dc:fb:e7:b7:bf:0a:2f:cc:da:4c:54:7d: e1:36:e7:af:d5:4f:36:a4:04:0a:34:90:b1:d4:dc:7a:04:df: db:37:1c:d2:a7:00:e8:9b:fc:67:15:a3:ec:5f:7b:5c:2d:ff: 56:08:10:e6:1a:28:ee:3a:62:77:83:93:00:30:2c:2f:2e:87: f3:81:3f:bf:5b:e0:8d:3a:e6:57:fb:f6:86:7c:7a:42:28:14: 45:96:fd:39:ba:5b:cf:94:ff:ab:a3:37:ed:9f:72:4d:75:b3: f6:e3:7e:40:db:22:b4:3a:c6:65:b4:99:a4:5f:cf:64:3e:8e: 2c:2b:51:2e:b5:18:25:3a:ff:64:bb:b6:71:29:c0:c3:b0:44: 1f:90:47:22 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTk2RTExMC8GA1UEBRMoMjQyOUEzRUU1MDg4RjNENDUzNzJBOEUzQjM2ODM0Qzc1 RUFFNkQyOTAeFw0yNTAyMTYwNTAxMzJaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjE3MTJjLTcyZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwJ2lkEFAyaFvVgBLKSjznxg1+g5+GRJDKsea6F07cAC9R3jFu8EWGXE2geRwg Hys0cToixYI0iEPsHOkeHVQs7R4KdaM3YxpTe8aDJ74EmoDFLve6Jdr34tM4rtGE NOJu38Ga5pa33ZAjU/twFt0mUHZEU7rW9f5kxlNbH9FbmvBn3O0xBDScVAJ7onIr rF0bWbrdo0ks/d5Uet3ZVO77GTDJK9NnMKOOLs9nPVlrJ7I3GG1hPQB04eWyICUO xfHG9UdgAgUlTlz25dmqYOQaHyD3HHlMuVlbxc368rURiXZ9NwRgvsc8dSRemUNe od3YzS9AwihhI3zYCPmQpLdnAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUhHgasYv6 dXLYPOFYj79NYUZxcVIwHwYDVR0jBBgwFoAUJCmj7lCI89RTcqjjs2g0x16ubSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTZFLzIzRDJGMTZFRUMy MTExRUZBMzU1NjA1RkM0RjlBRTAyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkNtajdsQ0k4OVJUY3FqanMyZzB4MTZ1YlNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTk2RS8yM0QyRjE2RUVDMjExMUVGQTM1NTYwNUZDNEY5QUUwMi9GRDM2Q0QyNkVD MjIxMUVGQUUyMDBGNzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAi14BAMEAmc8QDANBgkqhkiG9w0BAQsFAAOCAQEAfE4Kpg08 kAHLktBg/YHCA6tXFJNWu+HKag9cQKuwkLL5yJx8z32a/g05JXAJP2KSSlHcOdtu omGvfnTiAycDWhv/DWXsEYNZseZ+vnlGamFMpKs/VM+7s+iVkiQj/PuSmW3V4jVl pFP0OZoug3xj2uqk3Pvnt78KL8zaTFR94Tbnr9VPNqQECjSQsdTcegTf2zcc0qcA 6Jv8ZxWj7F97XC3/VggQ5hoo7jpid4OTADAsLy6H84E/v1vgjTrmV/v2hnx6QigU RZb9Obpbz5T/q6M37Z9yTXWz9uN+QNsitDrGZbSZpF/PZD6OLCtRLrUYJTr/ZLu2 cSnAw7BEH5BHIg== -----END CERTIFICATE-----Generated at Sat Apr 5 10:39:19 2025 by rpki-client