$ rpki-client -vvf rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/CBA325821A7D11F09A63C576C4F9AE02.roa File: CBA325821A7D11F09A63C576C4F9AE02.roa (raw, json) Hash identifier: P6YodNXIYdCQHm2vOKV8XIgdGr4y0ngHXIwNqS8C+KM= Subject key identifier: 66:A5:26:16:BC:66:73:4F:20:99:D2:3A:A0:3B:70:DF:D5:13:8C:BB Certificate issuer: /CN=A91450A4/serialNumber=3D1D6A332AEA4EC502037A0909F4CC19D42DB198 Certificate serial: 07E6 Authority key identifier: 3D:1D:6A:33:2A:EA:4E:C5:02:03:7A:09:09:F4:CC:19:D4:2D:B1:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/CBA325821A7D11F09A63C576C4F9AE02.roa Signing time: Wed 16 Apr 2025 04:50:09 +0000 ROA not before: Wed 16 Apr 2025 04:50:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 132907 IP address blocks: 175.184.192.0/21 maxlen: 22 175.184.193.0/24 maxlen: 24 175.184.195.0/24 maxlen: 24 175.184.196.0/24 maxlen: 24 175.184.197.0/24 maxlen: 24 175.184.199.0/24 maxlen: 24 175.184.216.0/21 maxlen: 21 175.184.216.0/22 maxlen: 22 175.184.216.0/24 maxlen: 24 175.184.217.0/24 maxlen: 24 175.184.221.0/24 maxlen: 24 175.184.222.0/24 maxlen: 24 175.184.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.crl rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91450A4, serialNumber=3D1D6A332AEA4EC502037A0909F4CC19D42DB198 Validity Not Before: Apr 16 04:50:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ff3701-493c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:12:3f:91:ee:03:4f:ea:b6:67:8d:2e:58:b8: bd:a4:c5:50:4d:7d:3e:88:92:ac:52:c7:07:ee:da: 87:fa:3d:74:ef:59:56:7f:54:bd:c9:2b:5a:0b:eb: 61:e9:cd:92:43:e2:77:ec:23:d5:59:13:64:d0:a4: 7e:bf:0f:55:a7:b4:65:a5:72:7d:97:33:39:8c:63: 8f:2b:0f:a4:f5:a6:b4:af:5d:66:d8:ec:c3:4b:2a: 9c:ae:b4:60:33:07:79:df:f2:23:0c:f1:98:f5:54: 12:d7:20:ce:1e:08:87:db:06:29:67:60:40:d0:f3: e8:47:d1:31:cf:94:ef:3b:b5:ba:bb:21:6a:5c:c0: f9:f0:e9:69:c4:9e:04:72:4c:07:d9:4c:bf:d6:b9: 1a:41:a4:27:b0:e5:c0:63:2b:d3:8a:49:f0:a7:c6: de:6b:ac:f1:33:02:fd:6d:38:3b:ad:b8:49:83:3c: 14:84:1e:1a:9b:b2:7b:8b:fe:6d:4b:c2:1e:68:a3: c6:4c:49:9a:ad:3a:5e:89:1b:f0:b0:02:ac:9f:78: d3:e1:64:d1:2d:9d:93:93:0c:89:9f:32:13:cb:5b: 07:21:8f:e4:db:7e:90:32:4c:6e:94:3a:d7:f6:1c: 47:e2:60:7b:70:3d:ec:8a:43:08:19:3f:7c:e3:ed: ac:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A5:26:16:BC:66:73:4F:20:99:D2:3A:A0:3B:70:DF:D5:13:8C:BB X509v3 Authority Key Identifier: keyid:3D:1D:6A:33:2A:EA:4E:C5:02:03:7A:09:09:F4:CC:19:D4:2D:B1:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/CBA325821A7D11F09A63C576C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.184.192.0/21 175.184.216.0/21 Signature Algorithm: sha256WithRSAEncryption 14:99:f4:80:0c:be:cb:50:e9:06:5c:dc:b0:f2:24:06:a0:bf: fd:2e:d2:34:6f:6c:fa:bb:3c:ec:b4:9e:3d:18:b8:fb:9e:2e: e3:d8:0f:14:4a:84:93:f2:be:8b:a9:30:84:dc:1a:72:48:03: d0:f3:3b:04:fc:f0:9c:85:7e:47:fa:a3:26:a1:52:71:f1:e9: 9e:e3:3a:e7:06:df:15:19:17:89:9b:ea:be:fe:d4:da:08:f5: 4e:fe:b6:4f:38:c1:5c:47:bc:f4:42:f6:14:63:54:33:c1:26: f3:b5:e9:46:77:ab:44:e1:4f:4a:a4:e6:b9:a1:db:17:f1:a2: 2a:64:ce:9f:92:95:28:7a:e7:2d:b6:ce:6b:4b:13:21:6a:8f: ff:ef:9a:65:c5:67:e4:75:02:38:34:c8:69:eb:62:fd:37:e5: 91:b0:aa:8c:d8:0e:b9:21:3e:a6:af:7a:46:a0:70:d4:1b:9a: 18:a4:01:25:07:ec:e7:1d:47:25:fd:6e:d3:9c:87:39:70:b8: 5d:f9:5f:58:60:c0:c9:6a:08:b1:cb:5f:89:cc:89:d1:6b:3f: 18:69:0f:ec:50:92:f4:71:74:71:3c:7f:60:ab:6c:aa:1b:6e: 89:fd:3b:6c:e7:2a:e7:bd:49:e5:44:37:d4:e1:88:52:f2:92: a6:d3:d6:6c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUwQTQxMTAvBgNVBAUTKDNEMUQ2QTMzMkFFQTRFQzUwMjAzN0EwOTA5RjRDQzE5 RDQyREIxOTgwHhcNMjUwNDE2MDQ1MDA5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZmMzcwMS00OTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BI/ke4DT+q2Z40uWLi9pMVQTX0+iJKsUscH7tqH+j1071lWf1S9yStaC+th 6c2SQ+J37CPVWRNk0KR+vw9Vp7RlpXJ9lzM5jGOPKw+k9aa0r11m2OzDSyqcrrRg Mwd53/IjDPGY9VQS1yDOHgiH2wYpZ2BA0PPoR9Exz5TvO7W6uyFqXMD58OlpxJ4E ckwH2Uy/1rkaQaQnsOXAYyvTiknwp8bea6zxMwL9bTg7rbhJgzwUhB4am7J7i/5t S8IeaKPGTEmarTpeiRvwsAKsn3jT4WTRLZ2TkwyJnzITy1sHIY/k236QMkxulDrX 9hxH4mB7cD3sikMIGT984+2sewIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGalJha8 ZnNPIJnSOqA7cN/VE4y7MB8GA1UdIwQYMBaAFD0dajMq6k7FAgN6CQn0zBnULbGY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTBBNC9ERDQ3MzY5ODBD MzYxMUVCQTRFNDlFMjFDNEY5QUUwMi9QUjFxTXlycVRzVUNBM29KQ2ZUTUdkUXRz WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSMXFNeXJxVHNVQ0Ezb0pDZlRNR2RRdHNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUwQTQvREQ0NzM2OTgwQzM2MTFFQkE0RTQ5RTIxQzRGOUFFMDIvQ0JBMzI1ODIx QTdEMTFGMDlBNjNDNTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAOvuMADBAOvuNgwDQYJKoZIhvcNAQELBQADggEBABSZ9IAM vstQ6QZc3LDyJAagv/0u0jRvbPq7POy0nj0YuPueLuPYDxRKhJPyvoupMITcGnJI A9DzOwT88JyFfkf6oyahUnHx6Z7jOucG3xUZF4mb6r7+1NoI9U7+tk84wVxHvPRC 9hRjVDPBJvO16UZ3q0ThT0qk5rmh2xfxoipkzp+SlSh65y22zmtLEyFqj//vmmXF Z+R1Ajg0yGnrYv035ZGwqozYDrkhPqavekagcNQbmhikASUH7OcdRyX9btOchzlw uF35X1hgwMlqCLHLX4nMidFrPxhpD+xQkvRxdHE8f2CrbKobbon9O2znKue9SeVE N9ThiFLykqbT1mw= -----END CERTIFICATE-----Generated at Sat Apr 26 08:11:27 2025 by rpki-client