$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/DED04A561D4111EB89535E1EC4F9AE02.roa File: DED04A561D4111EB89535E1EC4F9AE02.roa (raw, json) Hash identifier: YIkgFm4YlQ3B4lEIbOf0SksB4/x97E+3vlPXwWTeW9Y= Subject key identifier: 5B:6C:72:00:89:8D:C1:51:86:B7:BB:D9:E3:D9:B5:40:77:93:76:03 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36BC Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/DED04A561D4111EB89535E1EC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:02 +0000 ROA not before: Sat 22 Mar 2025 15:01:02 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140594 IP address blocks: 59.103.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14012 (0x36bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:02 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0ae-022f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:96:a7:5c:57:3a:ef:ac:08:00:29:67:da:f1: c4:d5:df:66:8d:52:bc:bf:6e:4f:fd:5a:60:66:c5: 0d:31:66:98:12:c9:ce:88:8a:b7:4a:b4:d6:9b:8e: 1c:4e:52:0d:91:d7:ac:bb:55:e7:6f:58:ea:73:0a: d1:8c:ab:9a:96:97:fe:7b:33:67:99:9d:e2:e7:e9: 3e:1e:11:6b:29:45:f5:3a:c5:f3:07:3a:2f:35:0d: c9:af:18:a7:23:bc:3a:c7:df:1a:c7:1d:35:42:19: 05:fd:2c:ae:95:f6:80:bf:2b:0e:03:cb:f1:0b:74: 95:5f:8b:17:22:17:b0:39:a5:29:dd:d2:c9:17:7a: 30:a8:14:a9:78:05:86:62:a0:b1:b7:54:d4:ff:ff: 5e:97:e0:ff:dd:ce:be:0f:10:37:5d:65:e9:e7:f4: f9:cd:53:88:7c:b8:87:fd:6b:b3:43:f0:c0:4f:93: b8:c3:93:91:e2:86:4c:d8:e1:5a:6c:66:17:08:42: 4a:a0:83:2e:76:d9:d9:e4:66:3d:12:e9:62:1b:3a: 9e:75:19:24:37:8e:34:fa:14:30:41:20:94:20:a2: e7:ac:8e:7f:aa:ce:7f:b2:9c:a2:83:70:5d:2b:d5: dd:ac:0a:9b:60:1d:97:d0:4d:29:2d:ff:35:45:74: 1f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:6C:72:00:89:8D:C1:51:86:B7:BB:D9:E3:D9:B5:40:77:93:76:03 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/DED04A561D4111EB89535E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.103.190.0/23 Signature Algorithm: sha256WithRSAEncryption a9:1b:3a:f3:bc:02:e8:4c:d1:c0:89:af:f2:98:99:e6:9e:06: 10:3c:4a:0c:00:78:d3:df:7e:e0:38:6e:c6:35:e8:2c:65:85: 55:49:55:32:87:ea:5c:8a:b4:04:84:39:f6:9e:72:74:40:e7: 94:25:a3:bf:43:40:37:b8:f8:81:19:4b:40:21:81:ba:97:8f: a4:eb:10:19:49:7e:56:36:1c:fc:24:bc:ce:17:4d:04:5a:e8: df:03:35:68:b8:b1:ec:04:cf:b2:08:9d:4c:9d:da:83:e3:f7: 73:52:e2:a5:78:67:a0:96:30:e7:5b:dd:11:8c:61:cb:6d:86: 94:f4:3e:7d:d6:ed:be:10:b4:f6:75:af:13:d0:64:87:2a:e7: 62:46:4d:82:f9:a5:4f:9b:86:c6:62:1a:37:81:6c:a0:00:98: 50:4c:e9:e5:ba:73:ef:bf:8a:0a:0d:40:d3:f4:ce:74:33:03: 55:a4:f6:67:cc:e7:b6:7b:a5:86:c1:22:50:4e:d0:a8:15:21: 68:5c:77:37:47:f3:23:28:22:a6:30:7f:89:51:94:d2:ea:52: 24:02:e3:e4:5e:55:e4:fa:55:2e:57:a4:90:86:96:25:6d:4a: a7:16:7b:54:4c:fc:b7:60:bd:a3:95:8d:99:f0:5b:01:33:65: ad:6c:a9:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTAyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBhZS0wMjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJanXFc676wIACln2vHE1d9mjVK8v25P/VpgZsUNMWaYEsnOiIq3SrTWm44c TlINkdesu1Xnb1jqcwrRjKualpf+ezNnmZ3i5+k+HhFrKUX1OsXzBzovNQ3Jrxin I7w6x98axx01QhkF/SyulfaAvysOA8vxC3SVX4sXIhewOaUp3dLJF3owqBSpeAWG YqCxt1TU//9el+D/3c6+DxA3XWXp5/T5zVOIfLiH/WuzQ/DAT5O4w5OR4oZM2OFa bGYXCEJKoIMudtnZ5GY9EuliGzqedRkkN440+hQwQSCUIKLnrI5/qs5/spyig3Bd K9XdrAqbYB2X0E0pLf81RXQfiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFtscgCJ jcFRhre72ePZtUB3k3YDMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvREVEMDRBNTYx RDQxMTFFQjg5NTM1RTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAE7Z74wDQYJKoZIhvcNAQELBQADggEBAKkbOvO8AuhM0cCJ r/KYmeaeBhA8SgwAeNPffuA4bsY16CxlhVVJVTKH6lyKtASEOfaecnRA55Qlo79D QDe4+IEZS0AhgbqXj6TrEBlJflY2HPwkvM4XTQRa6N8DNWi4sewEz7IInUyd2oPj 93NS4qV4Z6CWMOdb3RGMYctthpT0Pn3W7b4QtPZ1rxPQZIcq52JGTYL5pU+bhsZi GjeBbKAAmFBM6eW6c++/igoNQNP0znQzA1Wk9mfM57Z7pYbBIlBO0KgVIWhcdzdH 8yMoIqYwf4lRlNLqUiQC4+ReVeT6VS5XpJCGliVtSqcWe1RM/LdgvaOVjZnwWwEz Za1sqQY= -----END CERTIFICATE-----Generated at Sat Apr 26 08:10:28 2025 by rpki-client