$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa File: 9604F4A6899911EBA32C6224C4F9AE02.roa (raw, json) Hash identifier: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y= Subject key identifier: E5:7D:7A:8A:C3:B8:0C:78:9D:8D:49:EE:E7:BC:FC:BC:18:46:5F:DF Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36BF Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:07 +0000 ROA not before: Sat 22 Mar 2025 15:01:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141342 IP address blocks: 59.103.140.0/22 maxlen: 24 119.157.84.0/22 maxlen: 24 119.157.88.0/22 maxlen: 24 182.189.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14015 (0x36bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0b3-47cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cd:8d:8a:1e:05:3d:76:92:00:21:8a:f2:63: 83:80:7e:5b:8f:86:96:e1:fa:09:42:c3:de:82:ca: 53:1e:51:7b:52:db:d3:1f:54:70:2a:c9:e7:6f:85: 35:99:86:6f:f5:4c:50:dc:47:d7:4c:e4:cc:4f:88: 4b:ac:dc:0f:c0:67:73:31:2b:53:f2:8c:ac:6f:32: dd:fc:d1:5a:fd:8d:1d:02:50:3a:92:16:bc:dc:01: 59:97:63:6f:9a:bc:6c:ca:1a:4a:c4:2b:19:e2:b0: 34:07:5f:f1:2b:35:f2:9c:2d:e2:ef:25:1a:9f:84: 78:e9:1a:ea:2e:62:36:8c:17:4f:55:d4:0b:45:0f: d9:e6:da:57:10:ed:b4:39:ed:ff:8e:1d:0b:c4:3b: 0e:58:e3:01:54:c8:af:69:1a:97:e2:c1:fa:58:6b: ac:93:71:9f:f5:33:f6:9f:cb:3b:b6:be:e1:93:51: 14:65:ea:40:c9:d0:be:6a:9f:bf:fc:9b:b7:c6:51: 7a:36:13:25:fa:0e:fa:66:9a:95:b0:a8:49:04:e1: 76:47:fb:c9:7d:da:d8:88:27:57:f8:3f:18:79:18: 7a:00:41:51:ae:20:f2:08:4d:40:42:84:31:0e:d2: 43:91:0c:12:42:8c:a9:79:8c:66:31:fb:09:af:8d: 4b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7D:7A:8A:C3:B8:0C:78:9D:8D:49:EE:E7:BC:FC:BC:18:46:5F:DF X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.103.140.0/22 119.157.84.0-119.157.91.255 182.189.112.0/20 Signature Algorithm: sha256WithRSAEncryption 59:f5:ee:29:9d:8a:56:b0:08:29:cf:d8:3f:10:04:01:7c:ec: 69:2f:e5:dd:d1:c5:87:c6:6c:5a:d3:3e:74:e9:bd:53:48:c3: a8:82:d2:71:a9:3f:7a:0d:c6:38:e0:d3:10:67:67:be:61:0d: 35:a9:e0:cd:48:8a:10:b3:94:51:af:b5:8a:63:00:30:90:50: 1d:29:0a:02:d3:13:90:59:09:89:34:0b:1e:c4:6d:c5:2d:67: d8:2a:20:ce:04:f1:de:61:ba:df:0b:8d:0d:31:96:7e:03:b1: 1c:27:5c:d3:62:1b:2f:95:11:a0:ab:e7:f4:fb:fe:fd:20:e9: 25:2d:e0:1a:e7:43:30:d7:70:bf:7d:66:04:5a:99:16:1f:fb: 9b:e3:bb:60:1b:c5:37:08:c5:b2:2b:b5:be:59:88:4f:c8:c8: 2e:7e:6e:ca:13:ae:a5:41:dd:ad:de:74:6a:c9:51:d8:19:71: f7:2e:03:6d:3c:9a:5e:8a:ce:a2:ef:6b:ab:a7:5c:05:63:cf: fe:e3:66:97:21:09:3a:70:e1:ea:41:6e:82:5e:b2:33:92:00: 57:09:99:ac:a6:25:a9:3b:5f:18:44:26:50:ca:2f:17:e7:a8: 5d:76:c4:30:42:d7:41:51:56:95:2a:cd:e7:e0:15:70:20:52: a0:83:9c:64 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICNr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBiMy00N2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzM2Nih4FPXaSACGK8mODgH5bj4aW4foJQsPegspTHlF7UtvTH1RwKsnnb4U1 mYZv9UxQ3EfXTOTMT4hLrNwPwGdzMStT8oysbzLd/NFa/Y0dAlA6kha83AFZl2Nv mrxsyhpKxCsZ4rA0B1/xKzXynC3i7yUan4R46RrqLmI2jBdPVdQLRQ/Z5tpXEO20 Oe3/jh0LxDsOWOMBVMivaRqX4sH6WGusk3Gf9TP2n8s7tr7hk1EUZepAydC+ap+/ /Ju3xlF6NhMl+g76ZpqVsKhJBOF2R/vJfdrYiCdX+D8YeRh6AEFRriDyCE1AQoQx DtJDkQwSQoypeYxmMfsJr41LJwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFOV9eorD uAx4nY1J7ue8/LwYRl/fMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvOTYwNEY0QTY4 OTk5MTFFQkEzMkM2MjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAI7Z4wwDAMEAnedVAMEAnedWAMEBLa9cDANBgkqhkiG9w0B AQsFAAOCAQEAWfXuKZ2KVrAIKc/YPxAEAXzsaS/l3dHFh8ZsWtM+dOm9U0jDqILS cak/eg3GOODTEGdnvmENNangzUiKELOUUa+1imMAMJBQHSkKAtMTkFkJiTQLHsRt xS1n2CogzgTx3mG63wuNDTGWfgOxHCdc02IbL5URoKvn9Pv+/SDpJS3gGudDMNdw v31mBFqZFh/7m+O7YBvFNwjFsiu1vlmIT8jILn5uyhOupUHdrd50aslR2Blx9y4D bTyaXorOou9rq6dcBWPP/uNmlyEJOnDh6kFugl6yM5IAVwmZrKYlqTtfGEQmUMov F+eoXXbEMELXQVFWlSrN5+AVcCBSoIOcZA== -----END CERTIFICATE-----Generated at Sat Apr 26 08:17:38 2025 by rpki-client