$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/D9D9E8C0191511F092B86383C4F9AE02.roa File: D9D9E8C0191511F092B86383C4F9AE02.roa (raw, json) Hash identifier: QZ2cZMYkPm+jK9/JMXPVcucYU0NqHDxW+giSXfrxEfc= Subject key identifier: EA:B3:12:79:D0:A9:E6:21:20:68:15:3B:83:86:D2:1C:52:FB:7E:74 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 0C Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/D9D9E8C0191511F092B86383C4F9AE02.roa Signing time: Mon 14 Apr 2025 09:50:09 +0000 ROA not before: Mon 14 Apr 2025 09:50:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 30967 IP address blocks: 188.95.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:04:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Apr 14 09:50:09 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67fcda51-da24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ad:01:82:8c:e7:08:fd:54:19:72:2c:0a:85: 0f:6a:0f:84:bb:20:35:af:c9:bf:4f:6b:bf:08:09: 59:65:13:5d:34:07:f0:ab:e9:f1:d7:db:49:00:c7: fe:d8:dc:0f:43:82:71:6d:58:5a:f2:3b:b0:ca:96: bd:80:fb:af:a5:95:28:60:68:ee:16:48:12:b6:5f: d7:ec:59:9a:2a:77:4a:2a:03:08:10:e3:e8:a3:74: 4a:dc:d6:4c:6f:f9:39:ce:03:56:ff:ba:d3:9c:e0: 32:e6:84:ea:af:28:99:0a:a2:c7:8b:4e:cc:ab:f5: d8:69:b8:9b:cb:07:ff:eb:e7:ea:a6:76:81:71:60: 6c:20:71:85:91:9a:13:10:cf:c7:df:24:eb:58:5c: b3:99:5c:41:ca:95:2a:7e:a4:51:76:c3:8f:cc:ad: 27:b5:4e:53:e5:75:56:57:72:b2:17:17:66:73:8e: 1b:97:63:24:43:4a:84:e2:e4:1f:71:03:01:d8:cc: ec:bb:17:87:9f:a0:b4:77:11:79:57:3b:23:2f:17: 95:5f:94:37:6c:37:37:90:a5:8d:85:74:48:96:82: 0f:38:12:1b:12:ad:84:89:a4:f8:4c:f7:8b:f5:70: 53:8b:b1:3f:aa:e7:b7:83:5c:b6:6c:1d:22:f0:20: aa:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B3:12:79:D0:A9:E6:21:20:68:15:3B:83:86:D2:1C:52:FB:7E:74 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/D9D9E8C0191511F092B86383C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 188.95.8.0/22 Signature Algorithm: sha256WithRSAEncryption 10:cb:da:ec:4a:5c:1a:5c:4c:df:52:f9:f1:1f:2d:1d:48:6e: 42:66:db:37:09:e2:cc:b0:62:0d:2c:c6:90:c6:db:ee:c1:21: 13:d8:58:1b:30:b1:1a:d0:d8:df:ee:2e:26:5f:34:fa:28:22: 54:63:5f:74:35:2d:1f:43:9b:4c:f0:a6:93:be:62:41:66:92: fd:8a:f9:0b:3a:e8:e7:a4:49:ae:54:2c:00:1d:c7:c0:bb:da: e3:12:6e:b3:fd:25:6b:c7:22:94:61:53:a2:88:3f:a4:dd:86: 5f:2b:eb:d3:d0:40:c3:68:c8:7e:0d:a0:17:6b:51:fa:26:d9: bd:6d:a6:b6:17:af:af:6d:af:f8:79:e4:66:36:55:f0:58:e4: 6c:a3:b7:7f:f4:aa:2c:1e:5e:35:f9:4b:1f:fc:0f:de:c0:4d: d6:24:f7:d1:65:e7:f7:35:28:fb:8b:92:c2:a4:4b:4e:ab:df: 1a:ba:e6:0e:21:e6:4b:64:1c:0e:89:d3:8c:15:0c:0b:da:db: c0:d9:d2:eb:42:89:50:73:50:b4:bf:aa:00:7e:72:38:75:96: ae:6c:ed:6d:db:79:ad:a0:78:3b:74:4a:2e:c6:c2:3a:c5:b6: b2:b5:1e:55:04:d3:76:62:f7:57:af:3f:1d:b8:dc:90:f9:0a: 38:5b:c6:99 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTA0MTQwOTUwMDlaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmNkYTUxLWRhMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdrQGCjOcI/VQZciwKhQ9qD4S7IDWvyb9Pa78ICVllE100B/Cr6fHX20kAx/7Y 3A9DgnFtWFryO7DKlr2A+6+llShgaO4WSBK2X9fsWZoqd0oqAwgQ4+ijdErc1kxv +TnOA1b/utOc4DLmhOqvKJkKoseLTsyr9dhpuJvLB//r5+qmdoFxYGwgcYWRmhMQ z8ffJOtYXLOZXEHKlSp+pFF2w4/MrSe1TlPldVZXcrIXF2ZzjhuXYyRDSoTi5B9x AwHYzOy7F4efoLR3EXlXOyMvF5VflDdsNzeQpY2FdEiWgg84EhsSrYSJpPhM94v1 cFOLsT+q57eDXLZsHSLwIKqBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6rMSedCp 5iEgaBU7g4bSHFL7fnQwHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9EOUQ5RThDMDE5 MTUxMUYwOTJCODYzODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEArxfCDANBgkqhkiG9w0BAQsFAAOCAQEAEMva7EpcGlxM31L5 8R8tHUhuQmbbNwnizLBiDSzGkMbb7sEhE9hYGzCxGtDY3+4uJl80+igiVGNfdDUt H0ObTPCmk75iQWaS/Yr5Czro56RJrlQsAB3HwLva4xJus/0la8cilGFToog/pN2G Xyvr09BAw2jIfg2gF2tR+ibZvW2mthevr22v+HnkZjZV8FjkbKO3f/SqLB5eNflL H/wP3sBN1iT30WXn9zUo+4uSwqRLTqvfGrrmDiHmS2QcDonTjBUMC9rbwNnS60KJ UHNQtL+qAH5yOHWWrmztbdt5raB4O3RKLsbCOsW2srUeVQTTdmL3V68/HbjckPkK OFvGmQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:20:57 2025 by rpki-client