$ rpki-client -vvf rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/85B9F090F35011EFAE695322C4F9AE02.roa File: 85B9F090F35011EFAE695322C4F9AE02.roa (raw, json) Hash identifier: lww/ZRWFPgZIaev9PDmaV5kjaByxeNEFJJYVjFLwNzI= Subject key identifier: AC:F0:36:1C:C1:77:88:85:86:2F:F5:4B:4A:FE:03:4D:B6:0B:8D:34 Certificate issuer: /CN=A91FECDA/serialNumber=01DB81EF6D6394E66D3B32315B479EBED799C937 Certificate serial: 0F19 Authority key identifier: 01:DB:81:EF:6D:63:94:E6:6D:3B:32:31:5B:47:9E:BE:D7:99:C9:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AduB721jlOZtOzIxW0eevteZyTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/85B9F090F35011EFAE695322C4F9AE02.roa Signing time: Tue 25 Feb 2025 11:59:33 +0000 ROA not before: Tue 25 Feb 2025 11:59:33 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134684 IP address blocks: 202.128.108.0/23 maxlen: 23 202.128.108.0/24 maxlen: 24 202.128.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.crl rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AduB721jlOZtOzIxW0eevteZyTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 17:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3865 (0xf19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FECDA Validity Not Before: Feb 25 11:59:33 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67bdb0a5-b989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bf:c5:66:28:14:9c:ff:32:e0:62:dc:90:40: 4e:1c:da:ed:1c:9c:14:37:13:7a:7d:81:ad:98:02: bb:6c:5e:ed:f1:8f:94:89:b5:50:76:43:37:d9:d0: 11:61:4e:e7:d5:7c:c6:e6:0c:34:6f:bc:23:38:1d: 22:28:5a:9c:71:3b:5c:5b:c2:d6:2d:b3:23:36:09: 9a:6e:c2:9e:ca:43:5c:b4:8e:06:d9:aa:9b:93:df: fa:ab:07:77:9f:ce:8a:90:37:31:0f:5e:91:6a:12: 3d:e8:e3:60:b8:7f:5e:41:b7:5b:e1:20:c8:11:b6: f6:a4:96:93:be:ca:d4:6b:71:cd:eb:38:f2:50:a3: c3:0a:06:1a:f8:d4:04:68:58:15:ee:c5:cb:b7:d7: ab:b5:01:fb:30:a7:62:41:bd:93:6c:5e:ee:0b:08: e6:e2:56:c8:75:a6:78:d0:c6:37:64:6a:27:e8:23: 5c:b1:2c:93:41:54:c7:e0:c3:91:9d:0c:be:7a:45: f2:03:57:ea:4d:76:bb:ec:4b:a3:40:f0:ef:e7:f1: bd:24:e8:e8:dd:c7:fc:4f:08:ab:4d:fd:fc:3f:63: 80:b4:94:9c:3a:5e:21:15:21:17:e3:89:f1:2c:13: 45:d8:a0:7a:5e:a3:0f:2c:71:7c:96:77:6b:d5:2e: 46:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F0:36:1C:C1:77:88:85:86:2F:F5:4B:4A:FE:03:4D:B6:0B:8D:34 X509v3 Authority Key Identifier: keyid:01:DB:81:EF:6D:63:94:E6:6D:3B:32:31:5B:47:9E:BE:D7:99:C9:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AduB721jlOZtOzIxW0eevteZyTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/85B9F090F35011EFAE695322C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.128.108.0/23 Signature Algorithm: sha256WithRSAEncryption af:36:9a:ed:d7:a0:16:55:de:a0:48:6c:bc:3c:cf:aa:d4:ca: 4f:0f:35:07:34:0c:01:52:b5:80:c4:af:1b:fa:e6:6a:f6:19: d0:b8:e3:2c:cb:7e:da:21:60:5a:27:28:c3:e1:03:14:81:53: 75:44:2a:eb:48:fc:1e:b4:67:e4:1e:f9:2f:8e:44:bb:c6:a0: e3:95:42:1f:7a:ca:f1:fe:1d:b7:45:7d:69:3a:88:77:df:fa: b7:1a:d4:f1:18:3d:b8:f8:7e:c3:8c:1a:65:8c:45:a2:de:44: 45:c7:b9:1d:b1:b9:0f:49:3d:b0:48:68:26:d7:25:45:e1:9a: 7b:14:b0:41:98:c4:2e:34:2f:d9:d1:65:40:76:d2:43:87:47: 10:eb:98:27:37:51:3b:9d:ce:df:bb:b4:57:3c:af:b3:e5:a7: 9f:b3:8b:69:17:da:8d:81:70:d5:46:ab:21:b5:0e:d3:f9:28: 18:cb:5d:c8:42:34:69:4c:0f:97:b4:5e:13:95:07:75:44:fc: e3:83:1e:7a:d9:0c:15:aa:64:b0:02:53:cd:88:4e:0e:8e:09: 0a:64:8d:9f:8a:10:e1:3f:9d:8e:f4:15:c4:69:56:03:51:34: 3f:18:5c:28:ff:ed:7a:ac:3b:32:0a:6d:7a:e0:03:35:e6:69: 44:98:6c:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVDREExMTAvBgNVBAUTKDAxREI4MUVGNkQ2Mzk0RTY2RDNCMzIzMTVCNDc5RUJF RDc5OUM5MzcwHhcNMjUwMjI1MTE1OTMzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JkYjBhNS1iOTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub/FZigUnP8y4GLckEBOHNrtHJwUNxN6fYGtmAK7bF7t8Y+UibVQdkM32dAR YU7n1XzG5gw0b7wjOB0iKFqccTtcW8LWLbMjNgmabsKeykNctI4G2aqbk9/6qwd3 n86KkDcxD16RahI96ONguH9eQbdb4SDIEbb2pJaTvsrUa3HN6zjyUKPDCgYa+NQE aFgV7sXLt9ertQH7MKdiQb2TbF7uCwjm4lbIdaZ40MY3ZGon6CNcsSyTQVTH4MOR nQy+ekXyA1fqTXa77EujQPDv5/G9JOjo3cf8TwirTf38P2OAtJScOl4hFSEX44nx LBNF2KB6XqMPLHF8lndr1S5GrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKzwNhzB d4iFhi/1S0r+A022C400MB8GA1UdIwQYMBaAFAHbge9tY5TmbTsyMVtHnr7Xmck3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUNEQS84QTg4RjEwNDZG OUMxMUU5QTUwNzRCMkZDNEY5QUUwMi9BZHVCNzIxamxPWnRPekl4VzBlZXZ0ZVp5 VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkdUI3MjFqbE9adE96SXhXMGVldnRlWnlUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVDREEvOEE4OEYxMDQ2RjlDMTFFOUE1MDc0QjJGQzRGOUFFMDIvODVCOUYwOTBG MzUwMTFFRkFFNjk1MzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKgGwwDQYJKoZIhvcNAQELBQADggEBAK82mu3XoBZV3qBI bLw8z6rUyk8PNQc0DAFStYDErxv65mr2GdC44yzLftohYFonKMPhAxSBU3VEKutI /B60Z+Qe+S+ORLvGoOOVQh96yvH+HbdFfWk6iHff+rca1PEYPbj4fsOMGmWMRaLe REXHuR2xuQ9JPbBIaCbXJUXhmnsUsEGYxC40L9nRZUB20kOHRxDrmCc3UTudzt+7 tFc8r7Plp5+zi2kX2o2BcNVGqyG1DtP5KBjLXchCNGlMD5e0XhOVB3VE/OODHnrZ DBWqZLACU82ITg6OCQpkjZ+KEOE/nY70FcRpVgNRND8YXCj/7XqsOzIKbXrgAzXm aUSYbA8= -----END CERTIFICATE-----Generated at Tue Apr 8 11:03:49 2025 by rpki-client