$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa File: F49547A8099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: yO30SavdL0lkfH2zzbpK5z0lf3go0lJUNRihb4O9ztU= Subject key identifier: CF:D7:95:C5:92:09:CF:8D:7A:14:09:06:53:24:DE:22:3D:32:A0:01 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0F8F Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa Signing time: Fri 28 Feb 2025 19:30:20 +0000 ROA not before: Fri 28 Feb 2025 19:30:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397241 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3983 (0xf8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:20 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c20ecb-0fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:85:f5:81:84:bf:56:91:9d:1f:2f:14:9c:70: 9e:58:56:30:bd:c7:27:62:cd:c1:59:e0:4a:48:6b: 32:5a:db:24:7d:cb:32:b6:84:d8:45:7f:95:95:31: ad:e4:62:f2:c0:54:af:b1:92:82:12:da:62:f5:90: 1f:4c:4f:17:77:e5:18:bf:10:ec:9a:1c:55:18:25: 5c:6e:69:47:9a:f1:f3:72:54:1c:33:00:ee:a4:59: e0:70:e7:b6:b0:f1:39:2b:fe:3e:b0:84:de:9a:f4: fa:8d:8e:87:4d:89:00:4a:2a:4a:52:c3:48:ff:48: 2b:a2:60:0f:aa:5c:0a:1b:81:51:71:d8:17:75:97: 66:b2:60:cc:cf:aa:51:f5:64:d3:fc:f6:c3:e4:8c: 4a:ad:01:58:57:53:05:0e:cd:60:a9:01:e7:3f:be: ff:72:0d:58:fe:32:92:25:4f:d6:88:46:3e:aa:a9: 64:ef:4c:cd:6c:06:dc:b1:3a:d3:5f:ac:20:a9:c7: a2:1a:e0:85:fe:20:92:8a:fe:14:46:bb:9a:d3:ca: b4:70:21:ee:18:15:ec:29:12:fb:e7:36:63:6e:c2: c8:19:c5:54:cb:ed:5d:10:16:6b:95:00:19:60:54: 5b:4e:4f:a5:31:80:c2:d0:34:5e:12:3f:a5:89:38: db:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D7:95:C5:92:09:CF:8D:7A:14:09:06:53:24:DE:22:3D:32:A0:01 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F49547A8099A11EAB5891D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 55:af:39:cd:ef:d9:cb:7a:55:0e:67:d0:0c:8b:de:3a:93:20: b4:ff:a0:0a:21:96:1b:0f:b9:87:a3:84:30:28:56:41:89:73: 64:4e:b0:fd:50:4a:12:41:53:c4:23:19:0e:1e:a9:54:b2:de: 36:f9:f3:16:50:dd:93:3f:41:7e:e5:3d:e3:94:23:2e:19:34: e9:a9:8f:e0:43:8f:97:71:bf:a9:f1:ed:b2:b6:f4:94:c1:81: af:a4:3c:1a:ab:3c:e8:c3:9e:d4:da:79:90:71:78:40:9b:e3: be:bd:a7:e5:53:7a:0e:44:15:41:d7:e0:0e:7e:ba:42:6a:2e: ad:33:79:74:20:aa:4d:71:6a:c7:50:e9:7b:ab:28:b0:76:fa: 54:22:f8:4b:7c:75:42:04:2d:29:45:51:d3:e0:37:da:61:e4: ef:45:98:0b:e5:ff:7c:c4:ab:b7:cb:ac:26:25:96:9a:d1:16: e4:8a:7e:d8:f0:8d:19:90:18:66:0f:64:a4:cb:cc:43:34:f5: 32:01:73:74:3d:6b:22:2d:c5:d7:33:d3:1f:fb:b1:d5:4f:c0: d2:2a:b0:b1:a8:d1:94:0d:89:0b:b6:5d:f0:33:96:0c:88:d4: b7:b9:c1:a0:0b:b2:44:7a:ad:bf:b4:c3:17:d9:c1:cd:57:68: 96:34:a1:5a -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICD48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDIwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyMGVjYi0wZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4X1gYS/VpGdHy8UnHCeWFYwvccnYs3BWeBKSGsyWtskfcsytoTYRX+VlTGt 5GLywFSvsZKCEtpi9ZAfTE8Xd+UYvxDsmhxVGCVcbmlHmvHzclQcMwDupFngcOe2 sPE5K/4+sITemvT6jY6HTYkASipKUsNI/0gromAPqlwKG4FRcdgXdZdmsmDMz6pR 9WTT/PbD5IxKrQFYV1MFDs1gqQHnP77/cg1Y/jKSJU/WiEY+qqlk70zNbAbcsTrT X6wgqceiGuCF/iCSiv4URrua08q0cCHuGBXsKRL75zZjbsLIGcVUy+1dEBZrlQAZ YFRbTk+lMYDC0DReEj+liTjbqwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFM/XlcWS Cc+NehQJBlMk3iI9MqABMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjQ5NTQ3QTgw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAFWvOc3v2ct6 VQ5n0AyL3jqTILT/oAohlhsPuYejhDAoVkGJc2ROsP1QShJBU8QjGQ4eqVSy3jb5 8xZQ3ZM/QX7lPeOUIy4ZNOmpj+BDj5dxv6nx7bK29JTBga+kPBqrPOjDntTaeZBx eECb4769p+VTeg5EFUHX4A5+ukJqLq0zeXQgqk1xasdQ6XurKLB2+lQi+Et8dUIE LSlFUdPgN9ph5O9FmAvl/3zEq7fLrCYllprRFuSKftjwjRmQGGYPZKTLzEM09TIB c3Q9ayItxdcz0x/7sdVPwNIqsLGo0ZQNiQu2XfAzlgyI1Le5waALskR6rb+0wxfZ wc1XaJY0oVo= -----END CERTIFICATE-----Generated at Sat Apr 26 08:13:33 2025 by rpki-client