$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/3AD6ED62138511F08BE72448C4F9AE02.roa File: 3AD6ED62138511F08BE72448C4F9AE02.roa (raw, json) Hash identifier: 3S4RVGDMTvhO6vm0Gyvr7UAtQxMy4Fhc3zbaUVgynRE= Subject key identifier: FC:29:81:39:E1:81:87:E9:16:CF:38:AC:B2:12:D7:A3:C3:56:D7:C6 Certificate issuer: /CN=A91B8070/serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Certificate serial: 02 Authority key identifier: 4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/3AD6ED62138511F08BE72448C4F9AE02.roa Signing time: Mon 07 Apr 2025 07:52:19 +0000 ROA not before: Mon 07 Apr 2025 07:52:19 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153668 IP address blocks: 163.223.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8070, serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Validity Not Before: Apr 7 07:52:19 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f38432-75fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fe:d5:87:01:3a:65:5b:19:0d:c1:51:30:68: fe:b9:e5:3e:93:e6:0f:44:b6:a4:a2:b6:f6:ae:05: 48:9c:2d:6b:c9:d7:0d:13:70:c7:5a:15:3f:a9:c4: b4:fc:d0:36:94:db:31:bc:91:c6:2b:05:87:13:39: 0f:d3:b5:18:21:1f:87:fe:13:aa:65:7f:68:2f:d9: 38:15:45:29:1a:a9:1d:c3:1e:e6:8a:c7:e7:e8:fc: 5f:e8:27:b3:01:a5:b9:b6:89:53:39:60:d5:98:8c: 68:8b:4a:10:16:c9:2d:d1:fc:08:39:0c:27:9e:68: e2:aa:02:d7:a5:04:68:34:f8:d1:8d:43:e2:8d:a4: 94:ff:e6:d9:2e:31:f5:61:66:21:f5:4f:10:bc:3c: ce:ed:25:59:05:e3:36:2c:92:35:2e:b9:5f:f5:a3: fb:6c:6c:87:79:f4:60:fd:dd:e3:a4:5c:55:49:4d: 8d:dc:ce:17:95:d4:b7:1f:e0:a9:1e:8f:55:0e:c6: ce:43:b2:a2:89:fe:b9:02:99:a3:75:80:9f:50:2f: 53:3f:15:75:78:0e:33:c5:fa:36:55:bf:43:cb:5a: 0b:a8:21:ef:d0:6b:02:54:d8:ae:9e:29:26:9f:86: 35:d1:e1:b6:d8:5d:d3:6c:11:9a:d8:72:66:40:9a: 49:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:29:81:39:E1:81:87:E9:16:CF:38:AC:B2:12:D7:A3:C3:56:D7:C6 X509v3 Authority Key Identifier: keyid:4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/3AD6ED62138511F08BE72448C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.38.0/23 Signature Algorithm: sha256WithRSAEncryption b9:cc:3f:87:2e:b1:1a:ef:e5:f9:dd:47:00:af:ef:7f:51:f8: 0b:cd:87:4e:32:80:f8:f6:d1:c3:68:2a:55:ff:10:33:8a:72: 31:1d:6d:f6:af:92:b3:ac:1a:f0:04:62:0b:62:6b:2a:3b:f3: 71:17:c1:50:11:de:14:d4:ec:4d:dc:ca:0c:04:17:aa:d9:3d: 4e:5a:36:f9:61:1b:0b:16:6d:6e:dd:e8:63:f6:24:9c:f0:df: b8:4d:bd:11:1d:b1:f6:87:be:4a:ef:41:00:43:35:95:39:33: 56:f4:ab:35:e5:4f:c8:af:5f:3d:5f:77:d6:fe:9b:82:de:34: ef:97:c3:b2:a5:67:f9:1f:b0:2c:6b:0f:9a:e2:d4:3c:cb:c7: aa:34:79:77:70:8c:c9:1d:20:d6:02:bb:28:17:04:c8:7a:df: cf:a6:5f:f9:da:e8:86:ff:1a:b9:b5:4b:bf:8f:eb:99:54:54: d8:66:47:c1:7c:dc:ed:f9:13:95:f8:07:87:5f:7a:6c:31:46: 5c:75:24:0b:c4:04:f6:0a:17:05:fa:d3:15:73:3c:2c:de:f3: ab:bf:c0:4e:1c:1a:0d:5e:42:e3:af:30:49:ab:1d:c2:3a:71: 1f:bd:6c:15:ae:3c:18:c0:67:15:72:e1:db:1e:65:90:85:2a: 61:45:77:e8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODA3MDExMC8GA1UEBRMoNEVGQjkzQjQ5QkYxQkE1NjAwOERGQzYwNjA4QjUyMTZB RUM5OUFDNjAeFw0yNTA0MDcwNzUyMTlaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjM4NDMyLTc1ZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0/tWHATplWxkNwVEwaP655T6T5g9EtqSitvauBUicLWvJ1w0TcMdaFT+pxLT8 0DaU2zG8kcYrBYcTOQ/TtRghH4f+E6plf2gv2TgVRSkaqR3DHuaKx+fo/F/oJ7MB pbm2iVM5YNWYjGiLShAWyS3R/Ag5DCeeaOKqAtelBGg0+NGNQ+KNpJT/5tkuMfVh ZiH1TxC8PM7tJVkF4zYskjUuuV/1o/tsbId59GD93eOkXFVJTY3czheV1Lcf4Kke j1UOxs5DsqKJ/rkCmaN1gJ9QL1M/FXV4DjPF+jZVv0PLWguoIe/QawJU2K6eKSaf hjXR4bbYXdNsEZrYcmZAmkltAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/CmBOeGB h+kWzzisshLXo8NW18YwHwYDVR0jBBgwFoAUTvuTtJvxulYAjfxgYItSFq7JmsYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4MDcwL0FFMzY0Njk2MTM4 NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZQWpmeGdZSXRTRnE3Sm1z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVHZ1VHRKdnh1bFlBamZ4Z1lJdFNGcTdKbXNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODA3MC9BRTM2NDY5NjEzODQxMUYwQkM1RjQ1NDdDNEY5QUUwMi8zQUQ2RUQ2MjEz ODUxMUYwOEJFNzI0NDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPfJjANBgkqhkiG9w0BAQsFAAOCAQEAucw/hy6xGu/l+d1H AK/vf1H4C82HTjKA+PbRw2gqVf8QM4pyMR1t9q+Ss6wa8ARiC2JrKjvzcRfBUBHe FNTsTdzKDAQXqtk9Tlo2+WEbCxZtbt3oY/YknPDfuE29ER2x9oe+Su9BAEM1lTkz VvSrNeVPyK9fPV931v6bgt4075fDsqVn+R+wLGsPmuLUPMvHqjR5d3CMyR0g1gK7 KBcEyHrfz6Zf+drohv8aubVLv4/rmVRU2GZHwXzc7fkTlfgHh196bDFGXHUkC8QE 9goXBfrTFXM8LN7zq7/AThwaDV5C468wSasdwjpxH71sFa48GMBnFXLh2x5lkIUq YUV36A== -----END CERTIFICATE-----Generated at Sat Apr 26 09:22:17 2025 by rpki-client