$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD3F6/371681FAF8D311EF9758FB0FC4F9AE02/88E11172F99A11EFA825D961C4F9AE02.roa File: 88E11172F99A11EFA825D961C4F9AE02.roa (raw, json) Hash identifier: AXOaVoqZ86dlROkyEdtuYYcAQanKRipkDbyi/sYqa94= Subject key identifier: 07:47:A0:48:46:B1:95:C8:5C:2B:8E:2A:69:92:15:05:1C:16:5C:9D Certificate issuer: /CN=A91FD3F6/serialNumber=9F89A604F45CEB6F6804FB534EADC24166BD0F29 Certificate serial: 05 Authority key identifier: 9F:89:A6:04:F4:5C:EB:6F:68:04:FB:53:4E:AD:C2:41:66:BD:0F:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4mmBPRc629oBPtTTq3CQWa9Dyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD3F6/371681FAF8D311EF9758FB0FC4F9AE02/88E11172F99A11EFA825D961C4F9AE02.roa Signing time: Wed 05 Mar 2025 08:19:19 +0000 ROA not before: Wed 05 Mar 2025 08:19:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 8075 IP address blocks: 203.27.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD3F6/371681FAF8D311EF9758FB0FC4F9AE02/n4mmBPRc629oBPtTTq3CQWa9Dyk.crl rsync://rpki.apnic.net/member_repository/A91FD3F6/371681FAF8D311EF9758FB0FC4F9AE02/n4mmBPRc629oBPtTTq3CQWa9Dyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4mmBPRc629oBPtTTq3CQWa9Dyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD3F6 Validity Not Before: Mar 5 08:19:19 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67c80907-9a52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cb:06:87:e0:5f:59:a1:0a:53:70:ed:ea:83: cc:a7:02:63:b3:9d:4a:72:f5:58:d0:2a:d5:15:95: 99:c4:df:44:28:e3:dc:13:31:be:0e:21:98:fd:1f: a2:6a:7c:9f:ac:f5:ae:6f:08:4b:cf:75:dd:fb:dd: 0a:38:df:c3:c2:7f:af:54:b0:66:3d:7e:37:1d:4c: 9d:64:14:fb:44:fd:ea:c1:00:fc:58:af:c4:9c:89: 84:a7:95:6b:a6:b6:6c:71:89:b6:58:5a:81:d5:fd: 32:33:85:11:60:7a:b7:44:8a:1a:83:15:34:29:b2: c9:d3:0e:e0:74:21:78:42:2e:0a:2b:bb:dc:c0:f6: bd:7a:e0:f3:36:68:d2:75:e3:d5:e6:97:02:05:6a: 84:e0:f4:b1:72:de:e7:16:26:25:24:54:ed:cc:a8: e7:21:66:ec:fc:3f:81:f3:73:e8:a6:a2:a9:c0:6d: e5:e2:44:ea:a0:39:4c:53:ed:a1:00:07:3f:4c:0e: 2b:98:78:6c:b2:d2:03:db:bf:e1:c2:f7:1b:bf:5c: 3d:b8:e4:3c:63:4e:6b:ff:47:7d:41:fb:55:28:24: b8:cc:41:da:0f:c5:b0:e0:71:dd:c6:91:82:32:3a: cd:53:26:3c:be:4b:dc:b4:15:8a:ca:99:a7:51:20: 92:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:47:A0:48:46:B1:95:C8:5C:2B:8E:2A:69:92:15:05:1C:16:5C:9D X509v3 Authority Key Identifier: keyid:9F:89:A6:04:F4:5C:EB:6F:68:04:FB:53:4E:AD:C2:41:66:BD:0F:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD3F6/371681FAF8D311EF9758FB0FC4F9AE02/n4mmBPRc629oBPtTTq3CQWa9Dyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4mmBPRc629oBPtTTq3CQWa9Dyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD3F6/371681FAF8D311EF9758FB0FC4F9AE02/88E11172F99A11EFA825D961C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.127.0/24 Signature Algorithm: sha256WithRSAEncryption 94:45:d5:ca:fd:40:fd:8f:17:58:d7:a1:5b:bf:ec:e3:a9:cb: 79:57:4d:7f:88:49:70:06:04:5f:e1:81:91:6a:94:4b:e9:1e: d5:03:08:1e:97:3f:a9:8d:e2:7f:41:9d:c4:1c:4b:e6:d0:d2: b0:64:e4:10:8d:24:c1:2e:c2:14:ed:c1:ac:a5:bc:a0:b8:ef: c4:f7:42:ee:f8:1d:1e:fc:ba:7b:2e:72:ab:8c:3a:37:33:26: 75:4d:19:86:f2:83:36:eb:43:21:09:eb:82:b5:56:62:11:db: 17:af:58:ff:80:71:b9:92:1b:69:1d:26:d7:4c:56:b3:8e:64: 05:48:3b:a8:2b:48:bf:c3:40:26:20:f2:3e:7d:d6:d2:fb:e1: a1:aa:1c:55:04:59:69:10:d1:b2:15:bc:4e:27:77:a2:db:93: 18:5e:c5:7c:8c:a0:32:12:82:60:7e:e0:d2:1a:c9:92:cd:e9: 71:40:a3:9b:4a:04:da:7b:89:62:ec:7e:ce:8b:41:bb:42:4f: c9:24:7d:42:94:09:a7:dd:fb:7f:71:8e:6b:1d:d3:c8:1e:15: 3e:ce:f2:b2:a7:e9:f6:d8:ba:6a:89:bf:49:08:47:6e:8c:26: e4:0b:1a:65:4e:0e:1d:dd:cd:31:d2:da:fe:57:2a:6d:3a:5f: df:0a:d9:2a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RDNGNjExMC8GA1UEBRMoOUY4OUE2MDRGNDVDRUI2RjY4MDRGQjUzNEVBREMyNDE2 NkJEMEYyOTAeFw0yNTAzMDUwODE5MTlaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzgwOTA3LTlhNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChywaH4F9ZoQpTcO3qg8ynAmOznUpy9VjQKtUVlZnE30Qo49wTMb4OIZj9H6Jq fJ+s9a5vCEvPdd373Qo438PCf69UsGY9fjcdTJ1kFPtE/erBAPxYr8SciYSnlWum tmxxibZYWoHV/TIzhRFgerdEihqDFTQpssnTDuB0IXhCLgoru9zA9r164PM2aNJ1 49XmlwIFaoTg9LFy3ucWJiUkVO3MqOchZuz8P4Hzc+imoqnAbeXiROqgOUxT7aEA Bz9MDiuYeGyy0gPbv+HC9xu/XD245DxjTmv/R31B+1UoJLjMQdoPxbDgcd3GkYIy Os1TJjy+S9y0FYrKmadRIJKZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUB0egSEax lchcK44qaZIVBRwWXJ0wHwYDVR0jBBgwFoAUn4mmBPRc629oBPtTTq3CQWa9Dykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZEM0Y2LzM3MTY4MUZBRjhE MzExRUY5NzU4RkIwRkM0RjlBRTAyL240bW1CUFJjNjI5b0JQdFRUcTNDUVdhOUR5 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbjRtbUJQUmM2MjlvQlB0VFRxM0NRV2E5RHlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDNGNi8zNzE2ODFGQUY4RDMxMUVGOTc1OEZCMEZDNEY5QUUwMi84OEUxMTE3MkY5 OUExMUVGQTgyNUQ5NjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsbfzANBgkqhkiG9w0BAQsFAAOCAQEAlEXVyv1A/Y8XWNeh W7/s46nLeVdNf4hJcAYEX+GBkWqUS+ke1QMIHpc/qY3if0GdxBxL5tDSsGTkEI0k wS7CFO3BrKW8oLjvxPdC7vgdHvy6ey5yq4w6NzMmdU0ZhvKDNutDIQnrgrVWYhHb F69Y/4BxuZIbaR0m10xWs45kBUg7qCtIv8NAJiDyPn3W0vvhoaocVQRZaRDRshW8 Tid3otuTGF7FfIygMhKCYH7g0hrJks3pcUCjm0oE2nuJYux+zotBu0JPySR9QpQJ p937f3GOax3TyB4VPs7ysqfp9ti6aom/SQhHbowm5AsaZU4OHd3NMdLa/lcqbTpf 3wrZKg== -----END CERTIFICATE-----Generated at Fri Apr 4 23:20:43 2025 by rpki-client