$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/0E3462143D2D11EFA4B90A1EC4F9AE02.roa File: 0E3462143D2D11EFA4B90A1EC4F9AE02.roa (raw, json) Hash identifier: 8YLAmzfkAq7wWaHxcBzfEAiWvy9p4CNzd9sT8leEWdE= Subject key identifier: DE:3F:0E:1B:5F:88:C2:EA:BD:CD:17:37:2B:E4:E4:D6:72:2D:6A:B5 Certificate issuer: /CN=A91AB193/serialNumber=7B1AE27D3CF51499C5056E7DA873665E4E415179 Certificate serial: CB Authority key identifier: 7B:1A:E2:7D:3C:F5:14:99:C5:05:6E:7D:A8:73:66:5E:4E:41:51:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/0E3462143D2D11EFA4B90A1EC4F9AE02.roa Signing time: Fri 11 Apr 2025 05:11:34 +0000 ROA not before: Fri 11 Apr 2025 05:11:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137453 IP address blocks: 203.223.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.crl rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB193, serialNumber=7B1AE27D3CF51499C5056E7DA873665E4E415179 Validity Not Before: Apr 11 05:11:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f8a486-d974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:aa:2c:b1:3f:56:a4:fd:c1:97:fe:2b:15: 7c:f9:65:45:68:2a:39:a4:9d:2b:fe:f8:fc:88:25: 3a:ad:0c:1e:84:7e:43:2d:fd:fc:d6:12:d5:a7:06: fc:f8:ae:42:38:9b:bd:5c:d0:19:80:c7:19:8b:6d: 1e:65:76:21:2a:97:81:45:9f:fe:b4:f9:ef:e1:32: 7f:99:3a:71:05:4f:e1:bf:88:6f:ec:b7:93:1c:17: b2:a7:6a:00:f5:a6:33:0f:56:83:44:3b:b7:61:8a: 1b:1a:29:df:53:10:c8:0b:7e:fc:3f:91:d3:86:24: 0f:31:dd:d4:62:0b:14:91:9c:84:ae:6a:d6:53:e3: 80:09:e9:e0:5f:2b:49:9d:bd:ea:b1:7f:0f:4e:9e: ff:3c:ff:0f:31:35:8e:17:01:75:ec:0a:26:c5:93: 69:b3:66:33:31:84:4b:71:e7:9f:ea:78:f4:47:fb: f4:9c:20:64:bd:80:d1:80:a1:51:7d:e8:91:55:1d: 7b:5a:59:5d:dd:98:6b:7a:02:6d:34:42:34:b5:7f: 97:48:88:69:1a:1f:6e:dc:46:04:43:35:ac:e6:5f: eb:d2:9e:38:66:d4:37:ce:4c:cd:0a:ad:da:53:b3: 3f:df:74:44:a7:3c:45:ee:25:a7:74:cb:fd:5f:6c: 89:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3F:0E:1B:5F:88:C2:EA:BD:CD:17:37:2B:E4:E4:D6:72:2D:6A:B5 X509v3 Authority Key Identifier: keyid:7B:1A:E2:7D:3C:F5:14:99:C5:05:6E:7D:A8:73:66:5E:4E:41:51:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/0E3462143D2D11EFA4B90A1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.223.89.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:07:58:94:33:6e:3b:2d:e9:db:b8:df:49:fa:39:68:37:cf: 47:1c:c4:24:c8:77:ef:c7:55:20:52:d8:37:0e:6c:c1:7c:bc: 11:17:78:d0:ef:53:b5:aa:13:97:f0:6d:59:b1:ab:32:09:cb: c7:66:5e:67:01:1b:eb:31:34:66:47:bb:b0:a6:e5:5c:05:4b: 6c:79:98:c2:05:a8:51:0e:38:3e:80:2f:15:19:b4:06:cc:4f: c7:08:02:9a:4a:19:01:ea:04:19:60:91:a2:8d:5a:99:e4:55: 2d:10:d8:36:97:1e:09:35:15:d6:77:1c:46:72:70:c1:8f:eb: 73:fa:03:cc:a9:f7:80:1f:4f:7d:81:9b:5a:69:d8:c9:12:93: b7:81:0f:d8:8b:5e:ad:b6:95:07:cb:7e:5f:51:b7:81:7b:52: 01:cd:de:c9:63:c3:2a:cb:72:fb:df:f4:b1:26:65:34:d8:da: 24:64:c4:2e:6f:03:82:8d:90:1a:d6:eb:02:d4:1c:45:c6:8d: da:01:1a:4c:3a:c6:0f:15:87:28:20:c4:c5:6d:af:67:e9:7f: fc:8e:36:e0:c7:1e:2a:43:be:21:5a:b0:2d:44:a9:6a:48:01: 04:21:83:7e:23:b1:e1:59:c9:72:85:f2:2a:b7:73:65:3a:f0: 9f:68:9b:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIxOTMxMTAvBgNVBAUTKDdCMUFFMjdEM0NGNTE0OTlDNTA1NkU3REE4NzM2NjVF NEU0MTUxNzkwHhcNMjUwNDExMDUxMTM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4YTQ4Ni1kOTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCWqLLE/VqT9wZf+KxV8+WVFaCo5pJ0r/vj8iCU6rQwehH5DLf381hLVpwb8 +K5COJu9XNAZgMcZi20eZXYhKpeBRZ/+tPnv4TJ/mTpxBU/hv4hv7LeTHBeyp2oA 9aYzD1aDRDu3YYobGinfUxDIC378P5HThiQPMd3UYgsUkZyErmrWU+OACengXytJ nb3qsX8PTp7/PP8PMTWOFwF17AomxZNps2YzMYRLceef6nj0R/v0nCBkvYDRgKFR feiRVR17Wlld3ZhregJtNEI0tX+XSIhpGh9u3EYEQzWs5l/r0p44ZtQ3zkzNCq3a U7M/33REpzxF7iWndMv9X2yJlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN4/Dhtf iMLqvc0XNyvk5NZyLWq1MB8GA1UdIwQYMBaAFHsa4n089RSZxQVufahzZl5OQVF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjE5My85M0Q0RTQ5MEY2 MzExMUVFOUFDQkUyMjFDNEY5QUUwMi9leHJpZlR6MUZKbkZCVzU5cUhObVhrNUJV WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V4cmlmVHoxRkpuRkJXNTlxSE5tWGs1QlVYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIxOTMvOTNENEU0OTBGNjMxMTFFRTlBQ0JFMjIxQzRGOUFFMDIvMEUzNDYyMTQz RDJEMTFFRkE0QjkwQTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL31kwDQYJKoZIhvcNAQELBQADggEBAG0HWJQzbjst6du4 30n6OWg3z0ccxCTId+/HVSBS2DcObMF8vBEXeNDvU7WqE5fwbVmxqzIJy8dmXmcB G+sxNGZHu7Cm5VwFS2x5mMIFqFEOOD6ALxUZtAbMT8cIAppKGQHqBBlgkaKNWpnk VS0Q2DaXHgk1FdZ3HEZycMGP63P6A8yp94AfT32Bm1pp2MkSk7eBD9iLXq22lQfL fl9Rt4F7UgHN3sljwyrLcvvf9LEmZTTY2iRkxC5vA4KNkBrW6wLUHEXGjdoBGkw6 xg8VhyggxMVtr2fpf/yONuDHHipDviFasC1EqWpIAQQhg34jseFZyXKF8iq3c2U6 8J9omyA= -----END CERTIFICATE-----Generated at Sat Apr 26 08:09:50 2025 by rpki-client