$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa File: 66E400CACB4C11EE8E404546C4F9AE02.roa (raw, json) Hash identifier: mvVRFtNTY10bq4ZO+LKEMEdrzCb/tsvmp6na5wzt45Q= Subject key identifier: 73:12:CC:38:B3:CE:24:F7:17:A9:18:67:A3:9F:3E:F5:0E:66:6A:E7 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0A65 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa Signing time: Wed 26 Mar 2025 19:59:55 +0000 ROA not before: Wed 26 Mar 2025 19:59:55 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 2914 IP address blocks: 27.110.64.0/21 maxlen: 21 203.78.192.0/20 maxlen: 20 203.131.240.0/20 maxlen: 20 203.131.244.0/22 maxlen: 22 2001:218::/32 maxlen: 32 2001:218:2002::/48 maxlen: 48 2001:218:8000::/38 maxlen: 38 2001:218:e000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2661 (0xa65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 19:59:55 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e45cbb-5f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:62:2a:19:92:6b:ce:17:3f:91:90:35:0d: b8:36:d8:c5:e4:a2:15:23:ca:6c:b0:02:1f:c4:94: 6a:c2:f4:b8:d8:1e:c2:aa:c4:33:06:51:c1:9d:e4: c1:eb:2a:79:48:36:c2:bc:71:8a:4d:91:bb:66:0a: 9b:89:0a:30:80:16:65:78:85:83:22:58:a5:b2:37: 82:94:7d:b4:b0:83:8b:58:66:19:3b:7a:13:eb:45: ff:ba:b6:77:16:ba:46:1b:d0:18:c2:2f:f3:03:1a: ce:4f:44:a2:81:39:e8:fb:90:52:9d:aa:ef:1c:c1: a3:6e:3e:7e:4f:67:ee:90:12:91:2a:6c:93:6b:09: 5c:23:06:1b:e2:ab:b4:17:fe:ad:2f:89:e9:23:ab: 3c:f2:3a:fb:d6:56:43:8b:98:e2:e2:52:60:03:94: 59:15:be:ef:ea:09:2c:d3:a0:57:4f:45:d6:25:c5: dd:9d:bc:a5:bc:c9:bd:3d:6e:0c:1b:3a:56:b3:48: fc:e3:77:16:d0:35:c4:79:91:28:d1:2b:0d:d0:b4: 5b:2e:1e:ed:0d:76:e9:d0:8d:cf:19:79:f4:79:93: 42:91:e7:1a:54:19:bf:cf:73:53:99:ab:b1:a6:fa: a7:a6:6e:67:83:67:dc:ea:dd:a5:42:63:45:c4:e6: 0f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:12:CC:38:B3:CE:24:F7:17:A9:18:67:A3:9F:3E:F5:0E:66:6A:E7 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/66E400CACB4C11EE8E404546C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.64.0/21 203.78.192.0/20 203.131.240.0/20 IPv6: 2001:218::/32 Signature Algorithm: sha256WithRSAEncryption 46:07:93:4f:08:f4:c9:46:1a:e0:08:ed:fd:24:a7:0e:7d:cd: 9a:a7:06:b6:aa:bc:05:ef:32:c5:02:f2:69:a5:01:02:20:f3: 0e:17:c1:3a:f0:e4:a7:9d:93:1f:eb:fc:71:66:54:7f:92:eb: 1f:e7:3e:52:4e:01:3f:d1:53:25:4d:b9:d6:f0:2f:a6:3c:ba: b3:41:b5:87:59:ab:73:5e:da:b4:a9:2d:cd:c0:51:29:69:34: 5d:74:00:41:ce:3c:0b:82:17:9a:a2:e1:f1:c7:0b:4f:49:d8: eb:cb:c1:37:c2:11:62:4f:81:07:2e:a5:cb:ba:4a:bc:55:3a: 21:a7:d7:e6:53:57:48:d2:b1:fc:a4:ab:4e:d0:6e:98:f3:31: 74:ca:c5:8a:d0:e0:2d:c1:e6:c7:d2:77:0f:a6:0c:c5:44:8e: b4:98:b0:5a:fc:72:a2:29:20:1d:9c:96:24:34:25:b7:c9:2d: d1:9e:a5:30:c4:b2:7f:c9:5e:f7:91:36:1f:90:55:c3:05:39: 17:c1:57:7d:81:28:1b:b6:e8:9c:ac:ab:ff:6b:f6:45:f5:5b: 00:f6:3b:6a:54:80:f9:a6:88:a4:33:04:28:32:43:95:03:a0: 78:d8:c6:c8:78:a2:01:6e:19:f6:c3:f2:8a:85:82:fa:e4:94: a5:0c:a9:aa -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUwMzI2MTk1OTU1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NWNiYi01ZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHZiKhmSa84XP5GQNQ24NtjF5KIVI8pssAIfxJRqwvS42B7CqsQzBlHBneTB 6yp5SDbCvHGKTZG7ZgqbiQowgBZleIWDIlilsjeClH20sIOLWGYZO3oT60X/urZ3 FrpGG9AYwi/zAxrOT0SigTno+5BSnarvHMGjbj5+T2fukBKRKmyTawlcIwYb4qu0 F/6tL4npI6s88jr71lZDi5ji4lJgA5RZFb7v6gks06BXT0XWJcXdnbylvMm9PW4M GzpWs0j843cW0DXEeZEo0SsN0LRbLh7tDXbp0I3PGXn0eZNCkecaVBm/z3NTmaux pvqnpm5ng2fc6t2lQmNFxOYPdwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFHMSzDiz ziT3F6kYZ6OfPvUOZmrnMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvNjZFNDAwQ0FD QjRDMTFFRThFNDA0NTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAMbbkADBATLTsADBATLg/AwDQQCAAIwBwMFACABAhgwDQYJ KoZIhvcNAQELBQADggEBAEYHk08I9MlGGuAI7f0kpw59zZqnBraqvAXvMsUC8mml AQIg8w4XwTrw5Kedkx/r/HFmVH+S6x/nPlJOAT/RUyVNudbwL6Y8urNBtYdZq3Ne 2rSpLc3AUSlpNF10AEHOPAuCF5qi4fHHC09J2OvLwTfCEWJPgQcupcu6SrxVOiGn 1+ZTV0jSsfykq07QbpjzMXTKxYrQ4C3B5sfSdw+mDMVEjrSYsFr8cqIpIB2cliQ0 JbfJLdGepTDEsn/JXveRNh+QVcMFORfBV32BKBu26Jysq/9r9kX1WwD2O2pUgPmm iKQzBCgyQ5UDoHjYxsh4ogFuGfbD8oqFgvrklKUMqao= -----END CERTIFICATE-----Generated at Sat Apr 26 08:48:00 2025 by rpki-client