$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa File: CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa (raw, json) Hash identifier: zPBNAdtnIGt+ra2FI390H36UQCaUhQl2E2/fPAphoFM= Subject key identifier: F3:D8:C8:61:28:09:5B:53:31:6E:53:99:2B:CA:CA:F5:17:BB:05:C7 Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Certificate serial: 076B Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa Signing time: Fri 14 Mar 2025 17:15:27 +0000 ROA not before: Fri 14 Mar 2025 17:15:27 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153038 IP address blocks: 203.89.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1899 (0x76b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Validity Not Before: Mar 14 17:15:27 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d4642f-8a3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:43:0c:05:26:3c:88:a3:b6:66:d3:b4:40:cf: 52:83:d2:df:d1:ff:4c:95:72:e2:b0:04:57:b6:4f: 56:4c:5f:ee:b6:8c:08:dc:f0:33:29:f9:31:79:e2: 0d:b2:89:45:38:3c:54:29:1e:37:00:f4:c7:11:e2: b9:76:36:86:99:e2:45:5a:fa:c3:ec:89:00:c3:23: 40:fe:df:ad:1a:75:cd:2a:d8:46:59:57:6e:5e:29: 9c:a8:4e:90:95:22:bb:6e:e1:dd:52:2b:87:9f:89: ea:7c:8d:ca:33:90:78:d1:05:40:e4:d2:90:9b:e3: 40:9a:c5:b8:51:87:82:21:20:14:eb:f6:34:03:ab: 06:84:3d:b9:e6:c5:89:b7:e4:a9:f2:52:3f:b7:79: 73:59:24:b7:13:e6:2b:e0:e1:b4:ad:d0:1e:f7:b9: b6:47:80:10:47:4e:dd:e2:cf:3f:cf:2f:3f:8e:08: bf:ca:e4:af:1a:c6:6f:7a:05:f4:51:c0:1a:6b:a5: a9:36:74:d4:ef:6a:6e:f0:a0:b3:7c:5b:df:ab:20: 7f:5c:b2:26:90:ab:11:e4:22:17:54:e5:b7:80:f5: 6f:df:a7:af:d5:1f:26:0a:bd:a4:e3:d3:e6:de:50: c0:8a:8b:46:9a:19:7f:9b:63:13:e7:0b:58:41:bd: c3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D8:C8:61:28:09:5B:53:31:6E:53:99:2B:CA:CA:F5:17:BB:05:C7 X509v3 Authority Key Identifier: keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.89.126.0/24 Signature Algorithm: sha256WithRSAEncryption 47:b3:f1:15:09:cf:b2:e1:70:ed:22:7a:8e:83:a9:a1:6d:98: fa:cf:93:e3:1c:5b:a2:6d:e3:22:f4:1b:e1:b3:5b:29:17:72: a4:f9:68:98:24:34:a0:8b:ef:56:bc:da:b4:f6:e3:5c:68:01: 61:82:c3:a6:18:c2:7a:d3:40:be:82:e8:fa:d2:8d:75:b4:95: 44:a6:1c:10:ab:ae:54:e3:63:f6:cc:27:af:88:33:d1:1d:16: 88:0b:d3:06:5c:c9:f6:81:13:0d:6a:48:cb:6d:8d:90:e9:26: 0c:45:9e:33:bc:64:19:74:8d:b4:e9:eb:b0:c4:07:fc:89:9c: c5:9b:1b:a8:55:28:35:c4:18:cd:d6:9b:87:a1:3c:63:88:2c: 0a:75:60:ec:5e:56:ee:c6:a9:72:83:0a:13:6b:97:96:e9:1b: f9:e8:d4:55:f3:0a:47:7d:56:28:04:1e:ae:9f:a0:b7:28:9b: 50:28:8e:e8:c5:69:3b:90:3a:cc:1d:0d:a6:5a:6d:ba:59:de: fa:59:7d:a8:e8:0a:04:c9:bb:73:3d:6c:44:84:db:ce:7b:cb: 0e:2a:09:a4:2f:0b:4c:fb:c8:d4:15:c0:ea:53:48:6a:c8:98: f3:12:37:c7:71:5e:8b:24:7c:f6:9c:4c:5b:ea:8d:08:22:ef: ed:ff:af:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKERERDUzRjUyMjVFRDJGOERBOEQwOUU3QUFEOTgyQzgw QjZDRUFEQTgwHhcNMjUwMzE0MTcxNTI3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q0NjQyZi04YTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEMMBSY8iKO2ZtO0QM9Sg9Lf0f9MlXLisARXtk9WTF/utowI3PAzKfkxeeIN solFODxUKR43APTHEeK5djaGmeJFWvrD7IkAwyNA/t+tGnXNKthGWVduXimcqE6Q lSK7buHdUiuHn4nqfI3KM5B40QVA5NKQm+NAmsW4UYeCISAU6/Y0A6sGhD255sWJ t+Sp8lI/t3lzWSS3E+Yr4OG0rdAe97m2R4AQR07d4s8/zy8/jgi/yuSvGsZvegX0 UcAaa6WpNnTU72pu8KCzfFvfqyB/XLImkKsR5CIXVOW3gPVv36ev1R8mCr2k49Pm 3lDAiotGmhl/m2MT5wtYQb3DKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPPYyGEo CVtTMW5TmSvKyvUXuwXHMB8GA1UdIwQYMBaAFN3VP1Il7S+NqNCeeq2YLIC2zq2o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0Mm8wSjU2clpnc2dMYk9y YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkVV9VaVh0TDQybzBKNTZyWmdzZ0xiT3JhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU4RUYvRDI0MzM3OTY0QUVDMTFFODg0MTdGMzRBQzRGOUFFMDIvQ0QwQUNDM0FE OUNFMTFFRkEzOTNCQzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLWX4wDQYJKoZIhvcNAQELBQADggEBAEez8RUJz7LhcO0i eo6DqaFtmPrPk+McW6Jt4yL0G+GzWykXcqT5aJgkNKCL71a82rT241xoAWGCw6YY wnrTQL6C6PrSjXW0lUSmHBCrrlTjY/bMJ6+IM9EdFogL0wZcyfaBEw1qSMttjZDp JgxFnjO8ZBl0jbTp67DEB/yJnMWbG6hVKDXEGM3Wm4ehPGOILAp1YOxeVu7GqXKD ChNrl5bpG/no1FXzCkd9VigEHq6foLcom1AojujFaTuQOswdDaZabbpZ3vpZfajo CgTJu3M9bESE2857yw4qCaQvC0z7yNQVwOpTSGrImPMSN8dxXoskfPacTFvqjQgi 7+3/r/A= -----END CERTIFICATE-----Generated at Sat Apr 26 08:10:30 2025 by rpki-client