$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa File: 0A956A80B48711EC83327546C4F9AE02.roa (raw, json) Hash identifier: QTUVJsweaVnNBbhlnpDHj+5m7Q6KujtkGNOkASm6SsM= Subject key identifier: 1D:CA:A7:B2:03:B6:88:5F:EF:62:2F:BD:C0:6B:5C:E0:BC:F5:1B:5D Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 346C Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa Signing time: Tue 04 Mar 2025 15:31:27 +0000 ROA not before: Tue 04 Mar 2025 15:31:27 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55328 IP address blocks: 175.176.208.0/21 maxlen: 24 203.34.75.0/24 maxlen: 24 203.62.198.0/24 maxlen: 24 2401:7200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13420 (0x346c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Mar 4 15:31:27 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c71ccf-79f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ff:6e:22:b2:69:b7:93:64:e5:9d:64:01:de: 9d:18:b2:10:02:ca:af:0c:e2:c3:bf:0c:2d:48:d0: cb:c2:9a:97:09:f0:db:a8:e9:a5:f7:f1:59:bd:6d: 7b:c9:3c:17:17:9c:a2:bd:6a:eb:69:6b:d1:f6:52: 5f:b5:f6:e8:9e:1a:69:90:26:6c:63:77:f3:d9:17: 70:b1:3d:c8:2f:15:8a:4d:0f:d2:9a:99:13:b1:58: 86:ae:b4:30:2b:25:a7:92:af:a8:31:a6:dc:33:08: 63:86:00:16:cb:97:6a:3d:95:89:8a:0d:45:c9:d5: 75:f3:d2:b6:c4:ef:28:08:d0:ca:5d:d2:83:0c:4d: 8b:f4:23:7a:a7:38:b4:d0:7f:6c:0f:d5:d9:f4:73: 2a:3d:c7:e1:b9:23:db:14:72:99:f0:45:b3:f7:d4: 1f:a9:c0:a7:d2:e0:df:85:4b:38:b7:a1:92:f3:8e: da:58:6d:72:f7:6e:6d:ae:9a:b2:d7:91:52:c3:7a: d3:50:5e:3c:5e:bf:f4:82:2c:c8:db:1a:93:dd:17: 34:40:a6:da:93:d3:20:d3:e2:84:2b:0b:06:8a:64: 8a:7a:ec:f3:77:33:f9:63:0f:d1:ef:aa:1b:42:6f: 22:46:b6:d4:98:5b:95:40:b4:45:08:c7:77:08:61: 54:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:CA:A7:B2:03:B6:88:5F:EF:62:2F:BD:C0:6B:5C:E0:BC:F5:1B:5D X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.176.208.0/21 203.34.75.0/24 203.62.198.0/24 IPv6: 2401:7200::/32 Signature Algorithm: sha256WithRSAEncryption 80:a9:9b:47:5a:72:66:0c:08:52:fc:5e:13:44:7f:a8:a5:6a: c7:60:e0:a5:be:ef:89:bc:c1:87:77:13:32:19:c6:3d:41:3b: 4d:ce:8f:5b:96:01:5b:17:d4:8d:5f:f2:e0:bc:69:dd:e3:50: 66:ca:7c:7d:37:f8:72:89:4f:87:19:a4:c6:46:87:c4:64:5a: bb:f8:c4:47:bf:87:8e:e2:d7:bb:a9:89:b6:ac:40:c0:60:9e: fe:1e:7c:24:e6:1d:2b:20:d8:2d:aa:83:de:83:b2:ef:49:c7: cd:21:06:52:fa:bb:a3:39:e6:0b:1b:b8:c3:a2:72:0d:67:2c: 2c:77:34:21:7f:d3:0a:0b:de:a1:5f:ff:75:66:9b:2d:82:17: 1a:e3:c6:c7:e9:4d:f2:e2:fa:ea:8e:2d:68:38:62:eb:96:60: 17:ea:72:08:19:d3:7f:07:bb:21:a2:36:4c:f5:79:75:2b:c2: 79:14:9e:ba:50:51:9d:37:7e:0e:1e:bc:89:1a:9b:ec:95:e1: 7a:4d:93:1c:2d:db:4b:43:af:f8:53:ab:e2:d5:1b:dd:e2:13: 47:d4:8d:9e:8c:ae:a8:98:7e:b9:51:71:e2:6e:5e:d5:b6:0f: b3:7f:01:f5:b5:46:b9:b2:dc:60:9e:3b:46:fd:ac:d0:d0:6b: 30:e0:bd:da -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICNGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjUwMzA0MTUzMTI3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3MWNjZi03OWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf9uIrJpt5Nk5Z1kAd6dGLIQAsqvDOLDvwwtSNDLwpqXCfDbqOml9/FZvW17 yTwXF5yivWrraWvR9lJftfbonhppkCZsY3fz2RdwsT3ILxWKTQ/SmpkTsViGrrQw KyWnkq+oMabcMwhjhgAWy5dqPZWJig1FydV189K2xO8oCNDKXdKDDE2L9CN6pzi0 0H9sD9XZ9HMqPcfhuSPbFHKZ8EWz99QfqcCn0uDfhUs4t6GS847aWG1y925trpqy 15FSw3rTUF48Xr/0gizI2xqT3Rc0QKbak9Mg0+KEKwsGimSKeuzzdzP5Yw/R76ob Qm8iRrbUmFuVQLRFCMd3CGFU+QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFB3Kp7ID tohf72IvvcBrXOC89RtdMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYwRTgvNDU3OTZBRDIxREEzMTFFMjlGRkI4Qzk4MDhCMDJDRDIvMEE5NTZBODBC NDg3MTFFQzgzMzI3NTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAOvsNADBADLIksDBADLPsYwDQQCAAIwBwMFACQBcgAwDQYJ KoZIhvcNAQELBQADggEBAICpm0dacmYMCFL8XhNEf6ilasdg4KW+74m8wYd3EzIZ xj1BO03Oj1uWAVsX1I1f8uC8ad3jUGbKfH03+HKJT4cZpMZGh8RkWrv4xEe/h47i 17upibasQMBgnv4efCTmHSsg2C2qg96Dsu9Jx80hBlL6u6M55gsbuMOicg1nLCx3 NCF/0woL3qFf/3Vmmy2CFxrjxsfpTfLi+uqOLWg4YuuWYBfqcggZ038HuyGiNkz1 eXUrwnkUnrpQUZ03fg4evIkam+yV4XpNkxwt20tDr/hTq+LVG93iE0fUjZ6MrqiY frlRceJuXtW2D7N/AfW1Rrmy3GCeO0b9rNDQazDgvdo= -----END CERTIFICATE-----Generated at Sat Apr 26 07:42:53 2025 by rpki-client