$ rpki-client -vvf rpki.apnic.net/member_repository/A91676D4/E17ECE2EE2E611EBB7596A75C4F9AE02/BB8B992A1B6011F0AFD7AF11C4F9AE02.roa File: BB8B992A1B6011F0AFD7AF11C4F9AE02.roa (raw, json) Hash identifier: 4uW1ZahJzWa6HAJxuQAKK8sMzKGprYe0anlEXJ8Yjww= Subject key identifier: 1F:09:65:DE:F6:5B:3C:8D:B7:B6:FF:EE:7E:BD:78:8D:9F:0F:AE:18 Certificate issuer: /CN=A91676D4/serialNumber=835A6C96B20924C7E5D8F12F06DB9DD23E252F5D Certificate serial: 0575 Authority key identifier: 83:5A:6C:96:B2:09:24:C7:E5:D8:F1:2F:06:DB:9D:D2:3E:25:2F:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1pslrIJJMfl2PEvBtud0j4lL10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91676D4/E17ECE2EE2E611EBB7596A75C4F9AE02/BB8B992A1B6011F0AFD7AF11C4F9AE02.roa Signing time: Thu 17 Apr 2025 07:55:12 +0000 ROA not before: Thu 17 Apr 2025 07:55:12 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 7473 IP address blocks: 101.234.31.0/24 maxlen: 24 101.234.32.0/24 maxlen: 24 101.234.33.0/24 maxlen: 24 101.234.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91676D4/E17ECE2EE2E611EBB7596A75C4F9AE02/g1pslrIJJMfl2PEvBtud0j4lL10.crl rsync://rpki.apnic.net/member_repository/A91676D4/E17ECE2EE2E611EBB7596A75C4F9AE02/g1pslrIJJMfl2PEvBtud0j4lL10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1pslrIJJMfl2PEvBtud0j4lL10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91676D4, serialNumber=835A6C96B20924C7E5D8F12F06DB9DD23E252F5D Validity Not Before: Apr 17 07:55:12 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6800b3e0-d561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b1:94:bb:01:5a:78:77:c3:a9:4f:5d:24:43: 48:b1:b7:21:d8:30:16:14:f8:0e:78:79:51:f3:83: 82:a7:98:33:6a:6a:46:98:67:6e:d3:c7:ba:e6:b9: eb:4e:32:21:75:65:1f:1e:a0:ae:db:a4:25:aa:b8: 66:32:a4:25:5b:94:bb:eb:4d:20:ad:eb:a1:91:94: 1d:0e:4e:27:24:95:8d:f6:30:54:e5:4d:c2:cf:8c: 7f:5e:75:68:4f:4b:de:18:7c:02:34:5d:2f:ff:df: 16:f2:6c:c5:51:1b:58:04:7f:81:bc:1d:9d:72:68: ef:1b:91:f9:09:5c:8f:87:02:c6:97:73:65:df:7d: a0:09:f4:00:9b:cd:f0:68:25:7c:97:4c:63:3a:8d: 1d:c6:30:a1:a4:aa:75:f9:94:0a:66:8c:77:9e:b4: be:61:c0:58:ef:f4:35:8f:a7:13:24:4e:96:d0:4f: 2d:6b:e1:35:16:8c:19:21:9b:ea:a2:db:7d:29:a3: 58:69:80:34:e3:6f:53:d0:4a:92:fe:71:ab:28:78: 70:5d:0e:45:13:42:f2:ff:4b:9b:4b:42:27:1f:9a: d8:ce:9a:ca:44:f2:0e:99:ae:fa:42:3b:6e:e2:fd: ac:46:dc:a4:b1:3c:0b:a7:b7:6e:f6:93:97:87:49: a4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:09:65:DE:F6:5B:3C:8D:B7:B6:FF:EE:7E:BD:78:8D:9F:0F:AE:18 X509v3 Authority Key Identifier: keyid:83:5A:6C:96:B2:09:24:C7:E5:D8:F1:2F:06:DB:9D:D2:3E:25:2F:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91676D4/E17ECE2EE2E611EBB7596A75C4F9AE02/g1pslrIJJMfl2PEvBtud0j4lL10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1pslrIJJMfl2PEvBtud0j4lL10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91676D4/E17ECE2EE2E611EBB7596A75C4F9AE02/BB8B992A1B6011F0AFD7AF11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.234.31.0-101.234.33.255 101.234.40.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:d3:6d:0a:fc:32:49:ef:2c:74:37:3f:53:7f:af:a4:fd:e8: 30:55:8f:14:df:7f:26:99:8a:e9:7a:83:c0:20:14:58:6d:7b: c6:ea:06:a4:24:d1:55:39:9e:9a:cf:e2:8c:23:f6:60:88:f5: 3a:68:21:64:33:f8:3c:0f:2a:aa:d1:14:ab:df:ad:8e:16:e5: 24:fd:e5:47:e7:83:f9:9b:d7:d3:dd:b5:3f:0e:05:86:21:b5: 61:a1:2f:8d:88:e7:10:de:ad:1d:39:23:de:7f:69:4e:7b:b5: a9:1e:ae:f7:7b:9c:d8:71:d8:19:55:fd:c5:e4:7d:5a:db:67: 1f:ec:ab:8e:50:fd:45:9e:d3:e8:af:c6:f4:a9:b2:26:ae:f3: 2b:1d:f5:29:d8:4d:a1:b5:b6:9b:25:33:7e:68:8c:fa:44:d0: 8d:35:a3:ae:a3:0c:98:af:e6:e9:cd:c6:fc:9d:da:1f:88:75: 4a:6c:4b:e3:85:d3:32:09:52:20:3b:4a:69:72:38:08:d2:7a: 0b:12:d6:60:11:42:d5:8b:83:a9:9f:3e:3d:92:e0:1f:da:39: 74:5b:c5:9a:74:10:55:8f:85:6f:5a:05:8a:1b:57:2d:de:5e: 2f:3a:b8:7b:a1:cf:12:e1:55:af:fb:2d:6b:aa:f7:c3:a3:74: bf:6f:bd:10 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njc2RDQxMTAvBgNVBAUTKDgzNUE2Qzk2QjIwOTI0QzdFNUQ4RjEyRjA2REI5REQy M0UyNTJGNUQwHhcNMjUwNDE3MDc1NTEyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwYjNlMC1kNTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubGUuwFaeHfDqU9dJENIsbch2DAWFPgOeHlR84OCp5gzampGmGdu08e65rnr TjIhdWUfHqCu26QlqrhmMqQlW5S7600greuhkZQdDk4nJJWN9jBU5U3Cz4x/XnVo T0veGHwCNF0v/98W8mzFURtYBH+BvB2dcmjvG5H5CVyPhwLGl3Nl332gCfQAm83w aCV8l0xjOo0dxjChpKp1+ZQKZox3nrS+YcBY7/Q1j6cTJE6W0E8ta+E1FowZIZvq ott9KaNYaYA0429T0EqS/nGrKHhwXQ5FE0Ly/0ubS0InH5rYzprKRPIOma76Qjtu 4v2sRtyksTwLp7du9pOXh0mk8QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFB8JZd72 WzyNt7b/7n69eI2fD64YMB8GA1UdIwQYMBaAFINabJayCSTH5djxLwbbndI+JS9d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzZENC9FMTdFQ0UyRUUy RTYxMUVCQjc1OTZBNzVDNEY5QUUwMi9nMXBzbHJJSkpNZmwyUEV2QnR1ZDBqNGxM MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxcHNscklKSk1mbDJQRXZCdHVkMGo0bEwxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njc2RDQvRTE3RUNFMkVFMkU2MTFFQkI3NTk2QTc1QzRGOUFFMDIvQkI4Qjk5MkEx QjYwMTFGMEFGRDdBRjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGXqHwMEAWXqIAMEAGXqKDANBgkqhkiG9w0BAQsFAAOC AQEAetNtCvwySe8sdDc/U3+vpP3oMFWPFN9/JpmK6XqDwCAUWG17xuoGpCTRVTme ms/ijCP2YIj1OmghZDP4PA8qqtEUq9+tjhblJP3lR+eD+ZvX0921Pw4FhiG1YaEv jYjnEN6tHTkj3n9pTnu1qR6u93uc2HHYGVX9xeR9WttnH+yrjlD9RZ7T6K/G9Kmy Jq7zKx31KdhNobW2myUzfmiM+kTQjTWjrqMMmK/m6c3G/J3aH4h1SmxL44XTMglS IDtKaXI4CNJ6CxLWYBFC1YuDqZ8+PZLgH9o5dFvFmnQQVY+Fb1oFihtXLd5eLzq4 e6HPEuFVr/sta6r3w6N0v2+9EA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:27:41 2025 by rpki-client