$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa File: 443470FC7C1511EBB779C03EC4F9AE02.roa (raw, json) Hash identifier: GJ+Ts94sVlUdI4E9xrQTvfVMrj+KCnN2xtF35+3yCvE= Subject key identifier: 0F:BD:9E:C4:37:41:88:3C:C5:60:3F:1C:FC:1F:63:3F:9F:83:7B:9F Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36B6 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:00:56 +0000 ROA not before: Sat 22 Mar 2025 15:00:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136525 IP address blocks: 39.34.144.0/20 maxlen: 24 39.34.176.0/21 maxlen: 24 59.103.192.0/20 maxlen: 24 59.103.208.0/21 maxlen: 24 119.152.224.0/20 maxlen: 24 119.157.64.0/20 maxlen: 24 182.190.96.0/20 maxlen: 24 182.190.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14006 (0x36b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:00:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0a8-4cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:62:3a:4d:a5:63:16:e0:88:e1:5d:f0:d8:d6: 8f:7e:a3:0a:c6:32:35:f5:89:01:79:27:ce:93:bc: 9a:a3:ad:d0:83:5a:d6:0f:0f:9a:cd:0b:49:f7:d2: 2f:01:89:6c:70:26:f1:ab:d0:2e:ff:d6:36:4d:04: 26:1d:bf:c6:3d:da:f0:78:26:ca:55:10:de:37:22: 6c:ee:52:00:dd:a3:62:3c:a1:73:a7:9d:88:4e:ef: 70:a5:d1:1c:a5:20:c6:22:68:cd:82:81:0d:ab:5a: bd:ce:57:33:82:57:1c:95:1d:5b:e5:3d:87:c0:48: 0b:db:38:36:77:ee:99:d6:b4:ca:6c:51:ee:b4:9d: e2:f8:64:aa:4a:77:da:a6:f6:75:5c:cb:dd:75:cf: 27:a3:0f:1e:3e:3d:f7:a5:40:15:42:dd:5c:91:0b: 7f:f1:5c:7f:84:e9:a5:b8:8f:e8:e1:56:4e:86:25: 0a:01:f0:db:83:25:b7:39:32:3b:1c:56:b4:d3:10: 9a:66:30:0b:ea:fa:62:df:68:26:38:a1:51:ea:62: 3d:2d:c2:01:99:e0:93:ac:a5:37:61:59:0f:8b:d3: ac:62:68:7c:e3:0a:48:1f:6d:2d:d8:ac:61:5a:40: 08:f9:a7:63:17:de:52:c4:bd:46:17:ad:1d:26:16: 07:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BD:9E:C4:37:41:88:3C:C5:60:3F:1C:FC:1F:63:3F:9F:83:7B:9F X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.34.144.0/20 39.34.176.0/21 59.103.192.0-59.103.215.255 119.152.224.0/20 119.157.64.0/20 182.190.96.0/20 182.190.192.0/19 Signature Algorithm: sha256WithRSAEncryption b9:b1:b1:63:9b:6c:c6:11:fc:b9:3e:31:f1:16:76:b1:91:95: 68:bc:93:1d:ac:dd:f6:96:54:7d:d6:3c:31:49:64:c0:4e:d0: fb:63:a5:d9:83:66:d1:25:ce:f8:c9:81:16:c4:a7:48:09:61: 4e:77:5e:fb:89:a4:00:db:52:e6:c5:f5:80:8f:89:09:75:0f: 92:42:fa:c2:ac:91:d0:b0:02:08:a9:82:85:75:ca:9b:78:d3: 56:ec:05:6c:53:b2:6e:d8:ec:43:f8:81:9a:f7:7e:84:7e:69: 6d:12:5b:60:93:32:6d:3b:bc:7f:2e:fe:c5:5f:26:08:a1:a6: d2:16:02:95:fa:a2:e4:62:db:06:00:c8:04:cd:1b:7a:e6:79: 82:fe:ab:01:71:ff:39:72:4f:f4:bc:40:a1:b5:29:19:31:2e: 73:bc:74:7e:d4:7f:db:e5:88:a6:5a:6d:19:ca:fa:f3:3f:e1: 24:5f:07:7f:dd:e0:0b:d5:a0:e5:6b:8b:50:58:af:1c:b6:66: d1:18:2b:90:4b:f5:53:2f:35:1a:ae:27:29:b6:cc:b8:97:3c: 66:b2:41:37:dc:34:fe:df:d0:7e:85:39:bc:b7:2d:ca:6b:6e: ea:b5:68:96:cb:ac:d1:f2:90:29:ca:2b:cb:56:a5:ed:d6:81: 35:0f:e8:f7 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICNrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMDU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBhOC00Y2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52I6TaVjFuCI4V3w2NaPfqMKxjI19YkBeSfOk7yao63Qg1rWDw+azQtJ99Iv AYlscCbxq9Au/9Y2TQQmHb/GPdrweCbKVRDeNyJs7lIA3aNiPKFzp52ITu9wpdEc pSDGImjNgoENq1q9zlczglcclR1b5T2HwEgL2zg2d+6Z1rTKbFHutJ3i+GSqSnfa pvZ1XMvddc8now8ePj33pUAVQt1ckQt/8Vx/hOmluI/o4VZOhiUKAfDbgyW3OTI7 HFa00xCaZjAL6vpi32gmOKFR6mI9LcIBmeCTrKU3YVkPi9OsYmh84wpIH20t2Kxh WkAI+adjF95SxL1GF60dJhYHCwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFA+9nsQ3 QYg8xWA/HPwfYz+fg3ufMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvNDQzNDcwRkM3 QzE1MTFFQkI3NzlDMDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBAQnIpADBAMnIrAwDAMEBjtnwAMEAztn0AMEBHeY4AMEBHed QAMEBLa+YAMEBba+wDANBgkqhkiG9w0BAQsFAAOCAQEAubGxY5tsxhH8uT4x8RZ2 sZGVaLyTHazd9pZUfdY8MUlkwE7Q+2Ol2YNm0SXO+MmBFsSnSAlhTnde+4mkANtS 5sX1gI+JCXUPkkL6wqyR0LACCKmChXXKm3jTVuwFbFOybtjsQ/iBmvd+hH5pbRJb YJMybTu8fy7+xV8mCKGm0hYClfqi5GLbBgDIBM0beuZ5gv6rAXH/OXJP9LxAobUp GTEuc7x0ftR/2+WIplptGcr68z/hJF8Hf93gC9Wg5WuLUFivHLZm0RgrkEv1Uy81 Gq4nKbbMuJc8ZrJBN9w0/t/QfoU5vLctymtu6rVolsus0fKQKcory1al7daBNQ/o 9w== -----END CERTIFICATE-----Generated at Sat Apr 26 09:13:13 2025 by rpki-client