$ rpki-client -vvf rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/DD8B40E41A7E11F098A37378C4F9AE02.roa File: DD8B40E41A7E11F098A37378C4F9AE02.roa (raw, json) Hash identifier: L6v9N1lps3HT+4hWevJV8kUzpnpP386yo30tBD8aoeQ= Subject key identifier: 9D:7E:5D:E5:33:EB:74:0F:B1:81:4A:47:91:00:09:32:79:C9:E4:92 Certificate issuer: /CN=A91450A4/serialNumber=3D1D6A332AEA4EC502037A0909F4CC19D42DB198 Certificate serial: 07EA Authority key identifier: 3D:1D:6A:33:2A:EA:4E:C5:02:03:7A:09:09:F4:CC:19:D4:2D:B1:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/DD8B40E41A7E11F098A37378C4F9AE02.roa Signing time: Wed 16 Apr 2025 04:54:24 +0000 ROA not before: Wed 16 Apr 2025 04:54:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 18000 IP address blocks: 118.107.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.crl rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2026 (0x7ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91450A4, serialNumber=3D1D6A332AEA4EC502037A0909F4CC19D42DB198 Validity Not Before: Apr 16 04:54:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ff37ff-24b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:c4:38:ee:2c:f8:b7:90:75:23:07:08:1f: d4:0e:4a:75:6d:2d:14:6c:81:e5:d9:24:01:ee:4d: 82:90:e7:99:82:aa:e1:89:de:de:11:d9:e2:fe:27: 74:ff:c7:ad:e8:65:2a:5f:59:90:81:e1:31:b6:64: db:04:15:d5:f3:92:2f:7a:ac:ba:2b:84:a9:0e:4a: 53:29:bf:57:10:05:47:f8:c5:2e:cb:f5:01:20:8f: dc:b1:03:fb:48:6b:80:60:36:fe:d2:21:e0:86:7e: eb:df:8c:5d:a8:ce:99:30:8d:07:3c:a6:05:15:a2: 33:2e:5f:b2:cf:42:15:ae:9e:31:00:10:80:6d:7b: 74:86:7b:ce:51:b9:5e:7e:c5:a8:7c:de:af:3b:f2: 0c:a1:03:64:ce:2d:f1:ec:96:43:f7:36:f4:45:16: 21:07:75:00:e4:bf:66:7d:21:19:c8:8c:1f:21:97: b4:76:51:ef:f7:1b:62:cd:91:88:17:fc:b1:e4:a5: c4:23:24:24:f2:17:35:21:dd:aa:86:f7:c6:c9:81: a8:0e:45:2c:80:37:53:4f:ea:79:15:30:c6:cc:f9: a2:36:03:e6:e6:7f:fc:dc:88:9b:62:9c:fc:d7:3d: e7:5e:6b:94:42:92:35:fa:26:5a:f7:2d:90:62:0c: 5f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:7E:5D:E5:33:EB:74:0F:B1:81:4A:47:91:00:09:32:79:C9:E4:92 X509v3 Authority Key Identifier: keyid:3D:1D:6A:33:2A:EA:4E:C5:02:03:7A:09:09:F4:CC:19:D4:2D:B1:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/DD8B40E41A7E11F098A37378C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.107.144.0/21 Signature Algorithm: sha256WithRSAEncryption 32:27:2f:e5:d7:88:c7:73:53:af:e4:df:3f:37:be:c6:be:2b: 37:b7:e8:51:77:8b:2d:59:a5:31:78:5a:31:90:45:01:ab:7a: 57:99:3d:3c:60:0f:b1:1f:66:c8:d5:82:8b:56:11:34:a0:54: 49:c8:d0:ff:57:5e:b3:fa:9b:20:d3:1c:41:09:83:24:aa:3e: a7:52:35:36:84:e0:39:9e:c0:df:33:b5:99:ee:49:8a:58:6c: 6d:c8:b1:ab:24:96:47:8a:1a:58:f7:3b:70:eb:5f:b0:8e:88: 83:17:f9:2c:a8:17:17:d3:06:8b:38:ae:59:a5:ec:68:63:19: 5d:d1:c9:af:80:b6:80:9f:0e:d1:ee:25:ad:f3:67:fe:42:d7: 81:f2:24:9c:5c:e1:12:da:ec:cc:10:79:ec:4b:cc:77:a2:1d: cc:51:aa:bf:dc:4c:65:81:c5:ad:c0:f1:d4:2b:4c:70:eb:96: 90:71:33:71:f0:89:c4:78:17:0f:28:1a:52:41:1c:89:4f:e9: c3:1b:fd:07:02:5c:20:dc:cb:6c:06:5b:9c:02:19:3c:07:e5: 2c:ad:a9:2a:5f:f3:76:47:9a:26:aa:ff:9e:a0:74:d3:9e:2f: 98:f0:cd:b6:41:78:9c:83:43:4c:04:20:21:74:84:c7:51:2e: c9:1a:7b:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUwQTQxMTAvBgNVBAUTKDNEMUQ2QTMzMkFFQTRFQzUwMjAzN0EwOTA5RjRDQzE5 RDQyREIxOTgwHhcNMjUwNDE2MDQ1NDI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZmMzdmZi0yNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEDEOO4s+LeQdSMHCB/UDkp1bS0UbIHl2SQB7k2CkOeZgqrhid7eEdni/id0 /8et6GUqX1mQgeExtmTbBBXV85Iveqy6K4SpDkpTKb9XEAVH+MUuy/UBII/csQP7 SGuAYDb+0iHghn7r34xdqM6ZMI0HPKYFFaIzLl+yz0IVrp4xABCAbXt0hnvOUble fsWofN6vO/IMoQNkzi3x7JZD9zb0RRYhB3UA5L9mfSEZyIwfIZe0dlHv9xtizZGI F/yx5KXEIyQk8hc1Id2qhvfGyYGoDkUsgDdTT+p5FTDGzPmiNgPm5n/83IibYpz8 1z3nXmuUQpI1+iZa9y2QYgxfFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ1+XeUz 63QPsYFKR5EACTJ5yeSSMB8GA1UdIwQYMBaAFD0dajMq6k7FAgN6CQn0zBnULbGY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTBBNC9ERDQ3MzY5ODBD MzYxMUVCQTRFNDlFMjFDNEY5QUUwMi9QUjFxTXlycVRzVUNBM29KQ2ZUTUdkUXRz WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSMXFNeXJxVHNVQ0Ezb0pDZlRNR2RRdHNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUwQTQvREQ0NzM2OTgwQzM2MTFFQkE0RTQ5RTIxQzRGOUFFMDIvREQ4QjQwRTQx QTdFMTFGMDk4QTM3Mzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN2a5AwDQYJKoZIhvcNAQELBQADggEBADInL+XXiMdzU6/k 3z83vsa+Kze36FF3iy1ZpTF4WjGQRQGreleZPTxgD7EfZsjVgotWETSgVEnI0P9X XrP6myDTHEEJgySqPqdSNTaE4DmewN8ztZnuSYpYbG3IsasklkeKGlj3O3DrX7CO iIMX+SyoFxfTBos4rlml7GhjGV3Rya+AtoCfDtHuJa3zZ/5C14HyJJxc4RLa7MwQ eexLzHeiHcxRqr/cTGWBxa3A8dQrTHDrlpBxM3HwicR4Fw8oGlJBHIlP6cMb/QcC XCDcy2wGW5wCGTwH5SytqSpf83ZHmiaq/56gdNOeL5jwzbZBeJyDQ0wEICF0hMdR Lskae8E= -----END CERTIFICATE-----Generated at Sat Apr 26 08:17:32 2025 by rpki-client