$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/F0D8670E641711EEB4A16E1FC4F9AE02.roa File: F0D8670E641711EEB4A16E1FC4F9AE02.roa (raw, json) Hash identifier: VubRHHBc3Mp0miN/hmjpYpMhRr6R/fcT8ESI96i2bn0= Subject key identifier: 22:32:B3:B4:36:AD:0D:01:F5:22:58:EB:44:D6:4C:7E:6C:87:72:A7 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36B7 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/F0D8670E641711EEB4A16E1FC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:00:57 +0000 ROA not before: Sat 22 Mar 2025 15:00:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136602 IP address blocks: 202.70.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14007 (0x36b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:00:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0a9-4350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:af:eb:9c:a0:ff:20:1a:c2:9a:e7:ec:ce:1e: 9b:b0:0c:2f:c3:ea:c5:c7:7f:e3:a1:f1:a5:97:f2: 73:7a:87:a2:43:a5:85:2d:1e:52:58:51:04:8b:5c: ed:fb:af:ca:a9:83:23:07:04:1b:16:10:7d:1a:71: 22:8e:fb:a3:e2:8f:a1:3b:de:83:40:8b:eb:d3:8d: fe:dd:ad:11:5d:b9:3c:8b:f1:dd:ab:25:f0:63:7f: 2e:ec:6e:5c:3c:88:9f:38:12:0e:03:b9:fa:e2:c9: 44:53:9b:35:9b:80:7e:33:10:44:dd:90:a7:54:84: 24:13:9a:47:6d:d4:a0:57:30:be:64:70:0c:dc:69: ab:18:f2:52:18:74:31:88:f7:ee:42:fb:6d:f9:30: 99:12:38:cf:51:a9:4d:3d:8b:8b:05:12:99:d2:6b: 77:27:94:de:1c:2d:8b:d1:5b:e7:ce:aa:bb:44:c3: 0b:dc:c3:d4:43:1f:0e:e4:dd:95:e8:2e:03:c8:18: ee:a8:41:b1:ef:7b:be:ed:e3:57:b5:ad:fa:52:b9: 8b:55:e4:e8:bd:01:9f:b9:f8:4a:58:93:e7:36:d1: 00:f2:de:39:82:99:25:01:8b:1b:3f:ff:50:25:47: bd:59:0a:a0:7c:b1:fb:b3:6c:aa:12:06:37:41:e8: 60:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:32:B3:B4:36:AD:0D:01:F5:22:58:EB:44:D6:4C:7E:6C:87:72:A7 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/F0D8670E641711EEB4A16E1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.148.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:96:62:e3:2a:31:83:3f:6e:f8:46:cf:88:6d:2b:70:6f:e2: e7:c2:2e:05:7c:36:47:b2:01:68:99:55:ad:9e:0f:85:a4:dd: ed:5c:b9:5e:a3:91:2c:05:02:61:04:b1:35:63:f3:85:72:dc: 07:19:db:66:44:e0:e7:ea:79:83:4e:a2:28:35:23:87:00:10: 60:d7:e8:7b:c4:7b:5e:ee:de:03:79:ef:14:48:bf:d1:f5:60: af:c0:54:fe:bb:0f:89:3b:37:29:a8:9a:22:43:e5:c1:f9:ff: b7:a3:67:b3:2a:32:69:79:73:33:0e:9c:72:c9:5e:e8:b4:e4: e9:37:2e:17:1d:4e:32:00:68:ef:e4:ab:f4:00:f9:0f:8a:07: e1:bd:19:cf:3e:00:a9:92:1e:c8:9c:e7:f7:d3:e4:42:eb:3b: 10:e0:d2:a1:0d:15:d3:c7:8c:fb:2e:bf:a8:0a:3e:38:4d:32: 64:4a:f4:e5:20:e4:46:f1:0d:c2:6b:ec:52:72:b1:0b:b3:62: 4d:48:60:a5:b5:e4:0e:c2:ad:7d:30:9e:e2:e5:66:d8:1d:4a: d0:d8:01:6a:42:64:58:b6:73:5e:06:d6:cf:0a:74:d5:f5:7d: ba:90:bb:ca:46:f3:bc:f0:9e:ab:05:72:e9:30:9f:77:9c:49: 69:9c:87:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMDU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBhOS00MzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq/rnKD/IBrCmufszh6bsAwvw+rFx3/jofGll/JzeoeiQ6WFLR5SWFEEi1zt +6/KqYMjBwQbFhB9GnEijvuj4o+hO96DQIvr043+3a0RXbk8i/HdqyXwY38u7G5c PIifOBIOA7n64slEU5s1m4B+MxBE3ZCnVIQkE5pHbdSgVzC+ZHAM3GmrGPJSGHQx iPfuQvtt+TCZEjjPUalNPYuLBRKZ0mt3J5TeHC2L0Vvnzqq7RMML3MPUQx8O5N2V 6C4DyBjuqEGx73u+7eNXta36UrmLVeTovQGfufhKWJPnNtEA8t45gpklAYsbP/9Q JUe9WQqgfLH7s2yqEgY3QehgLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCIys7Q2 rQ0B9SJY60TWTH5sh3KnMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvRjBEODY3MEU2 NDE3MTFFRUI0QTE2RTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKRpQwDQYJKoZIhvcNAQELBQADggEBAB6WYuMqMYM/bvhG z4htK3Bv4ufCLgV8NkeyAWiZVa2eD4Wk3e1cuV6jkSwFAmEEsTVj84Vy3AcZ22ZE 4OfqeYNOoig1I4cAEGDX6HvEe17u3gN57xRIv9H1YK/AVP67D4k7NymomiJD5cH5 /7ejZ7MqMml5czMOnHLJXui05Ok3LhcdTjIAaO/kq/QA+Q+KB+G9Gc8+AKmSHsic 5/fT5ELrOxDg0qENFdPHjPsuv6gKPjhNMmRK9OUg5EbxDcJr7FJysQuzYk1IYKW1 5A7CrX0wnuLlZtgdStDYAWpCZFi2c14G1s8KdNX1fbqQu8pG87zwnqsFcukwn3ec SWmchyw= -----END CERTIFICATE-----Generated at Sat Apr 26 08:13:04 2025 by rpki-client