$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/E763AA76A3E811EC8665D621C4F9AE02.roa File: E763AA76A3E811EC8665D621C4F9AE02.roa (raw, json) Hash identifier: Ao2xYTosLdprmQ1iWk+n5IxTYfK7aKOeNtfro7ROk4k= Subject key identifier: E8:4E:A2:74:3F:8F:31:95:03:4F:19:D2:16:89:F0:A8:C8:27:43:2F Certificate issuer: /CN=A91758DF/serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Certificate serial: 0472 Authority key identifier: 33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/E763AA76A3E811EC8665D621C4F9AE02.roa Signing time: Thu 10 Apr 2025 00:57:51 +0000 ROA not before: Thu 10 Apr 2025 00:57:51 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 14593 IP address blocks: 65.181.0.0/19 maxlen: 24 168.140.240.0/20 maxlen: 24 206.83.96.0/21 maxlen: 24 206.83.104.0/21 maxlen: 24 206.83.112.0/21 maxlen: 24 206.83.120.0/22 maxlen: 24 206.83.124.0/23 maxlen: 24 206.83.126.0/24 maxlen: 24 206.83.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1138 (0x472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Validity Not Before: Apr 10 00:57:51 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67f7178e-34a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0c:8e:d1:3a:0d:12:a3:78:87:4d:21:e6:46: ca:f3:98:7e:8c:cf:0a:90:54:5e:ed:68:4b:a3:b4: 15:03:fc:d7:c5:2d:da:c6:9a:62:ed:c4:50:6f:d2: b9:4d:fa:90:8c:40:ba:5a:61:a7:e9:72:11:a8:77: 9d:f1:78:6d:3b:c3:be:7a:c5:b2:59:07:f6:a5:57: 53:00:28:c0:af:1e:3e:ba:30:b6:ef:0e:c3:9a:72: 8b:4f:17:56:ce:7d:fe:0a:3b:5b:54:a9:cc:ee:86: 57:e2:01:b6:dd:53:21:be:5a:e1:0c:bd:42:23:4a: 28:0e:25:43:bc:38:e7:21:1e:a9:99:a7:e9:86:e2: ba:e4:24:b0:c1:21:2e:1b:0d:c7:f0:05:6c:7c:82: c2:89:ca:85:cd:d7:0c:6f:2c:59:ec:43:1c:cf:f3: 5b:4f:8d:2b:dd:f1:a7:c0:4c:29:84:e5:3c:8d:41: 8b:d0:fc:56:ca:78:4b:ec:63:40:16:8d:34:25:dd: d1:52:ab:8f:1d:2a:bc:86:73:4f:54:63:0d:a2:35: 41:38:ff:cb:73:10:5b:35:29:52:7a:22:f2:0e:b9: 17:63:c4:98:83:4c:84:6e:17:a8:34:17:20:64:8f: c9:4b:4e:09:42:49:cf:df:86:bb:30:4a:02:b9:d8: da:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4E:A2:74:3F:8F:31:95:03:4F:19:D2:16:89:F0:A8:C8:27:43:2F X509v3 Authority Key Identifier: keyid:33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/E763AA76A3E811EC8665D621C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 65.181.0.0/19 168.140.240.0/20 206.83.96.0/19 Signature Algorithm: sha256WithRSAEncryption a4:d6:73:5a:f5:4f:6f:a5:b7:30:27:d8:f6:e1:43:b5:18:6c: 1f:2c:4f:dd:c9:24:47:fb:82:48:78:c7:cb:76:33:1a:73:da: b0:53:02:7b:9a:ea:7b:a1:7a:b0:0c:f0:78:9d:ac:c0:3d:f9: 59:a5:74:7f:77:fe:19:4c:3e:8e:a5:8d:10:ff:cd:51:d5:f9: 28:31:f2:af:c9:af:33:82:7d:d7:ed:e3:3f:75:91:bb:bf:64: e2:38:7a:3c:16:1e:50:5a:6d:28:33:4f:e5:e9:eb:98:b0:56: 88:30:31:b1:0e:ba:a4:42:65:7c:9d:b8:a4:6e:f4:b4:40:76: 9a:be:84:b3:c2:f5:fc:9f:16:00:2a:a5:a1:d4:1a:af:6b:81: 3a:d3:ba:11:7e:15:99:eb:58:12:12:d6:d2:cb:fe:d1:45:fa: 09:8e:bd:65:4b:0c:bb:9b:d7:0a:47:e6:84:54:34:81:ea:58: 11:81:c7:91:30:8a:c6:d5:c6:af:69:06:2e:22:15:03:5c:a5: 57:11:4b:05:44:ed:07:52:82:a1:ce:06:45:84:d0:d3:e7:6d: c7:e4:26:49:1a:78:b7:1d:c0:a2:d4:82:0b:eb:9e:96:90:c7: 67:8c:f9:b3:0e:57:6d:09:3e:63:d9:86:8e:85:1e:ba:a5:67: 75:2a:e8:92 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDMzRjg4RUFGMUU0Q0UwRjFBMTg3N0Q0OUVGOTdDMEU3 RkVEQzAzOUEwHhcNMjUwNDEwMDA1NzUxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3MTc4ZS0zNGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQyO0ToNEqN4h00h5kbK85h+jM8KkFRe7WhLo7QVA/zXxS3axppi7cRQb9K5 TfqQjEC6WmGn6XIRqHed8XhtO8O+esWyWQf2pVdTACjArx4+ujC27w7DmnKLTxdW zn3+CjtbVKnM7oZX4gG23VMhvlrhDL1CI0ooDiVDvDjnIR6pmafphuK65CSwwSEu Gw3H8AVsfILCicqFzdcMbyxZ7EMcz/NbT40r3fGnwEwphOU8jUGL0PxWynhL7GNA Fo00Jd3RUquPHSq8hnNPVGMNojVBOP/LcxBbNSlSeiLyDrkXY8SYg0yEbheoNBcg ZI/JS04JQknP34a7MEoCudjaJQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOhOonQ/ jzGVA08Z0haJ8KjIJ0MvMB8GA1UdIwQYMBaAFDP4jq8eTODxoYd9Se+XwOf+3AOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi84NjczNjA4MDQ3 RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQR2hoMzFKNzVmQTVfN2NB NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01faU9yeDVNNFBHaGgzMUo3NWZBNV83Y0E1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU4REYvODY3MzYwODA0N0ZFMTFFQzlDREY0QjBBQzRGOUFFMDIvRTc2M0FBNzZB M0U4MTFFQzg2NjVENjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAVBtQADBASojPADBAXOU2AwDQYJKoZIhvcNAQELBQADggEB AKTWc1r1T2+ltzAn2PbhQ7UYbB8sT93JJEf7gkh4x8t2Mxpz2rBTAnua6nuherAM 8HidrMA9+VmldH93/hlMPo6ljRD/zVHV+Sgx8q/JrzOCfdft4z91kbu/ZOI4ejwW HlBabSgzT+Xp65iwVogwMbEOuqRCZXyduKRu9LRAdpq+hLPC9fyfFgAqpaHUGq9r gTrTuhF+FZnrWBIS1tLL/tFF+gmOvWVLDLub1wpH5oRUNIHqWBGBx5EwisbVxq9p Bi4iFQNcpVcRSwVE7QdSgqHOBkWE0NPnbcfkJkkaeLcdwKLUggvrnpaQx2eM+bMO V20JPmPZho6FHrqlZ3Uq6JI= -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:12 2025 by rpki-client