$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5FCF/B84C603A1E5F11F09E6A6B4FC4F9AE02/943B92961E6011F0B81D3A54C4F9AE02.roa File: 943B92961E6011F0B81D3A54C4F9AE02.roa (raw, json) Hash identifier: OpKLsw9gUBvgDq3xLq9YboZIcPYYkBwvYdkkqKU3FB4= Subject key identifier: CD:73:C7:4C:B1:EE:78:CE:DA:21:8D:6C:A4:C0:BC:EF:C6:27:1D:5C Certificate issuer: /CN=A91A5FCF/serialNumber=98AE956D426E1602CED8BB72588F62A3DA12A955 Certificate serial: 02 Authority key identifier: 98:AE:95:6D:42:6E:16:02:CE:D8:BB:72:58:8F:62:A3:DA:12:A9:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mK6VbUJuFgLO2LtyWI9io9oSqVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5FCF/B84C603A1E5F11F09E6A6B4FC4F9AE02/943B92961E6011F0B81D3A54C4F9AE02.roa Signing time: Mon 21 Apr 2025 03:27:40 +0000 ROA not before: Mon 21 Apr 2025 03:27:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18024 IP address blocks: 163.227.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5FCF/B84C603A1E5F11F09E6A6B4FC4F9AE02/mK6VbUJuFgLO2LtyWI9io9oSqVU.crl rsync://rpki.apnic.net/member_repository/A91A5FCF/B84C603A1E5F11F09E6A6B4FC4F9AE02/mK6VbUJuFgLO2LtyWI9io9oSqVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mK6VbUJuFgLO2LtyWI9io9oSqVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5FCF, serialNumber=98AE956D426E1602CED8BB72588F62A3DA12A955 Validity Not Before: Apr 21 03:27:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6805bb2c-baf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cb:28:77:4d:1a:a4:19:cf:7b:45:28:47:14: 7a:a0:20:fd:bc:73:ff:b9:a2:33:99:a2:77:de:75: 75:6d:e2:a2:73:de:90:f3:e4:ff:23:a2:53:9f:c6: c2:76:e0:13:74:98:0a:c5:03:d6:ca:7a:e4:bc:38: 5d:b7:5e:02:6b:da:65:8f:c0:62:6f:14:2b:f2:71: 40:8d:ec:68:26:6e:b1:e4:40:d2:3b:1c:11:64:78: 97:93:6d:ed:95:f5:30:63:d3:45:42:7b:63:cf:bd: cb:18:f0:e3:9a:10:c9:07:3a:eb:4f:37:50:8d:7d: 2c:fe:1b:53:d0:69:05:94:a8:04:51:5e:85:ec:51: 3a:8b:37:ba:fb:09:b6:ba:c3:05:5b:8c:f7:70:78: 33:73:e2:7c:68:7e:e1:6b:7b:e4:da:e7:65:36:08: 6b:14:1e:fe:06:a0:23:a6:cc:da:1a:39:ef:86:61: 43:26:e2:7c:43:d4:89:dc:48:b7:8f:ba:fa:b8:d4: 7a:c1:0c:3b:d2:90:dd:ac:bb:dd:bd:38:d8:30:d4: d4:6e:81:86:de:56:77:ed:f7:49:36:12:f5:78:3e: 2c:0a:c0:8d:22:c1:99:6d:f9:20:16:7e:ab:10:e6: fe:5e:e5:21:22:57:b8:40:a1:64:73:0d:3b:0f:20: 58:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:73:C7:4C:B1:EE:78:CE:DA:21:8D:6C:A4:C0:BC:EF:C6:27:1D:5C X509v3 Authority Key Identifier: keyid:98:AE:95:6D:42:6E:16:02:CE:D8:BB:72:58:8F:62:A3:DA:12:A9:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5FCF/B84C603A1E5F11F09E6A6B4FC4F9AE02/mK6VbUJuFgLO2LtyWI9io9oSqVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mK6VbUJuFgLO2LtyWI9io9oSqVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5FCF/B84C603A1E5F11F09E6A6B4FC4F9AE02/943B92961E6011F0B81D3A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.22.0/23 Signature Algorithm: sha256WithRSAEncryption 01:c3:d8:fc:5f:17:cf:22:80:01:7e:64:ac:d1:83:24:bc:7c: de:58:20:9f:05:29:97:96:02:a1:27:fb:ba:bb:1d:59:f3:0d: ce:04:98:2f:a4:1c:cf:f3:2a:97:68:68:af:9c:b6:32:82:7d: 7b:1e:33:64:30:5d:e3:11:46:e1:9b:75:8f:b9:64:98:d7:a7: 66:2b:3a:22:62:d5:7d:5c:c0:5d:4b:24:70:a5:34:b5:ce:c5: 3e:11:49:ee:92:06:c1:7a:99:a0:dd:54:5c:f7:96:ab:ad:e4: 3f:15:39:3b:f7:9d:de:51:bc:d1:ff:7e:88:f9:02:95:e8:d8: a9:90:1f:f8:67:71:a1:cf:52:5b:eb:5a:a5:c8:f5:f6:a9:06: ef:03:1c:cb:be:58:4c:d6:7e:94:1a:4b:32:d8:de:8b:8e:ec: 79:85:30:58:99:83:56:65:0c:66:62:59:bc:7e:e4:4c:64:da: e9:6f:b4:c7:6d:7a:36:ae:20:7a:4a:e2:5e:4a:f4:e2:07:a3: aa:56:ce:c9:ac:8b:61:b4:d7:2d:2b:07:3b:66:35:19:9e:cd: f3:f5:6f:48:93:bd:81:da:cc:bd:b3:0c:e8:b3:b4:66:42:0c: e8:d5:44:a3:56:50:21:99:87:7f:6a:1d:57:b5:cb:b0:f6:6d: 2b:17:0e:52 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUZDRjExMC8GA1UEBRMoOThBRTk1NkQ0MjZFMTYwMkNFRDhCQjcyNTg4RjYyQTNE QTEyQTk1NTAeFw0yNTA0MjEwMzI3NDBaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDViYjJjLWJhZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChyyh3TRqkGc97RShHFHqgIP28c/+5ojOZonfedXVt4qJz3pDz5P8jolOfxsJ2 4BN0mArFA9bKeuS8OF23XgJr2mWPwGJvFCvycUCN7GgmbrHkQNI7HBFkeJeTbe2V 9TBj00VCe2PPvcsY8OOaEMkHOutPN1CNfSz+G1PQaQWUqARRXoXsUTqLN7r7Cba6 wwVbjPdweDNz4nxofuFre+Ta52U2CGsUHv4GoCOmzNoaOe+GYUMm4nxD1IncSLeP uvq41HrBDDvSkN2su929ONgw1NRugYbeVnft90k2EvV4PiwKwI0iwZlt+SAWfqsQ 5v5e5SEiV7hAoWRzDTsPIFjnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzXPHTLHu eM7aIY1spMC878YnHVwwHwYDVR0jBBgwFoAUmK6VbUJuFgLO2LtyWI9io9oSqVUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1RkNGL0I4NEM2MDNBMUU1 RjExRjA5RTZBNkI0RkM0RjlBRTAyL21LNlZiVUp1RmdMTzJMdHlXSTlpbzlvU3FW VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUs2VmJVSnVGZ0xPMkx0eVdJOWlvOW9TcVZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUZDRi9CODRDNjAzQTFFNUYxMUYwOUU2QTZCNEZDNEY5QUUwMi85NDNCOTI5NjFF NjAxMUYwQjgxRDNBNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPjFjANBgkqhkiG9w0BAQsFAAOCAQEAAcPY/F8XzyKAAX5k rNGDJLx83lggnwUpl5YCoSf7ursdWfMNzgSYL6Qcz/Mql2hor5y2MoJ9ex4zZDBd 4xFG4Zt1j7lkmNenZis6ImLVfVzAXUskcKU0tc7FPhFJ7pIGwXqZoN1UXPeWq63k PxU5O/ed3lG80f9+iPkClejYqZAf+Gdxoc9SW+tapcj19qkG7wMcy75YTNZ+lBpL Mtjei47seYUwWJmDVmUMZmJZvH7kTGTa6W+0x216Nq4gekriXkr04gejqlbOyayL YbTXLSsHO2Y1GZ7N8/VvSJO9gdrMvbMM6LO0ZkIM6NVEo1ZQIZmHf2odV7XLsPZt KxcOUg== -----END CERTIFICATE-----Generated at Sat Apr 26 09:19:39 2025 by rpki-client