$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/C7C45DD643F611EF84151D6FC4F9AE02.roa File: C7C45DD643F611EF84151D6FC4F9AE02.roa (raw, json) Hash identifier: SfS9ZnMJ4K7BL+m5tPbXXtGeAg5+tE+/js3vJ/6kex8= Subject key identifier: B4:13:54:01:A8:E3:B8:74:EF:01:BE:AD:C1:14:D6:7C:77:B4:7D:8C Certificate issuer: /CN=A91C0D37/serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4 Certificate serial: FC Authority key identifier: E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/C7C45DD643F611EF84151D6FC4F9AE02.roa Signing time: Tue 07 Jan 2025 03:57:14 +0000 ROA not before: Tue 07 Jan 2025 03:57:14 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 18119 IP address blocks: 192.107.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0D37, serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4 Validity Not Before: Jan 7 03:57:14 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677ca61a-9f70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:fa:cd:f6:61:ba:b5:ba:03:54:6f:67:62: 66:9c:d7:19:f8:c5:81:b1:a6:8b:66:09:09:ce:c7: 06:8b:d9:16:cf:9b:d4:e8:b8:8e:00:8a:7e:77:dc: 97:e0:7b:df:d1:e5:8b:84:30:e3:29:52:36:82:09: 2e:9d:80:1b:ac:2e:a1:32:c0:0a:af:6e:b7:32:c0: ae:e2:09:f7:dd:12:0e:20:0a:d8:3e:25:94:dd:09: 7a:51:ba:eb:46:d6:83:e8:d4:5f:49:fb:61:c6:92: 9d:1a:f3:de:b4:5f:a4:65:67:3a:37:87:c4:16:6e: 41:f2:f6:1d:b5:f7:5c:7d:cb:72:9a:c3:13:0e:79: ff:d8:d0:24:ce:5b:62:8b:26:00:2d:ee:79:97:21: f9:5f:88:bf:eb:d3:62:1c:dc:f0:d7:0a:c6:17:2e: 0d:fe:be:bf:96:31:90:58:1b:36:e5:0f:20:09:5d: cc:45:78:ee:fc:c4:ea:eb:70:6c:33:40:e7:45:0d: 85:e3:0e:d5:ce:81:98:f3:e3:3b:0b:79:4b:c8:fa: ef:7d:d0:85:3b:f9:75:09:14:3e:34:a4:50:02:39: dc:72:f6:6d:e6:dd:01:30:fe:13:e6:63:42:40:14: ab:fd:a5:f7:b4:d6:2b:ed:0b:f8:f2:ed:3a:90:8f: df:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:13:54:01:A8:E3:B8:74:EF:01:BE:AD:C1:14:D6:7C:77:B4:7D:8C X509v3 Authority Key Identifier: keyid:E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/C7C45DD643F611EF84151D6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.107.113.0/24 Signature Algorithm: sha256WithRSAEncryption df:69:1a:92:62:52:28:a0:fe:67:79:09:2f:59:03:d5:60:64: 21:64:cd:cd:24:56:f9:56:4e:09:3d:bc:4b:ec:ee:19:ba:e8: 2d:94:1d:0b:d7:2a:84:fd:a6:4d:26:5e:ad:da:bf:d8:12:e2: 50:04:79:9b:f1:a5:37:c3:40:c6:e8:6b:78:09:b3:04:f9:a9: 23:60:bf:13:f6:16:18:28:2e:43:06:1a:17:f4:10:49:17:77: a9:79:5d:1b:ab:a9:88:72:70:da:32:b1:73:72:6b:f3:95:cd: 40:f3:90:22:de:67:3f:ce:2e:30:7a:77:40:1a:91:fa:46:1e: 09:d9:e9:c9:3b:d1:c4:66:66:e2:d1:ab:f7:c0:33:38:be:8c: 7d:2f:47:51:35:b6:ae:d5:a2:37:fb:a9:4b:01:58:75:5a:7c: b8:d1:7e:5f:32:2c:3b:b6:a9:2f:67:68:4b:55:d3:b8:d3:15: 98:07:37:76:ae:34:07:ff:8e:fe:73:e9:69:66:16:09:eb:23: 86:c3:9c:5f:e9:2d:c8:67:5b:9f:3b:6d:59:3a:ac:33:31:03: 44:63:cb:43:30:00:93:1f:c5:5b:61:62:05:36:c7:b5:8c:6f: e8:b1:50:7f:7e:3b:75:01:43:3a:66:27:e3:05:49:5e:be:85: 80:1b:ce:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBEMzcxMTAvBgNVBAUTKEU0MjAwRDQ0QUQ5RDZFQ0I2ODcyRjY1M0E5NTg0M0ZC MjdEODQ3QTQwHhcNMjUwMTA3MDM1NzE0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjYTYxYS05ZjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0/6zfZhurW6A1RvZ2JmnNcZ+MWBsaaLZgkJzscGi9kWz5vU6LiOAIp+d9yX 4Hvf0eWLhDDjKVI2ggkunYAbrC6hMsAKr263MsCu4gn33RIOIArYPiWU3Ql6Ubrr RtaD6NRfSfthxpKdGvPetF+kZWc6N4fEFm5B8vYdtfdcfctymsMTDnn/2NAkzlti iyYALe55lyH5X4i/69NiHNzw1wrGFy4N/r6/ljGQWBs25Q8gCV3MRXju/MTq63Bs M0DnRQ2F4w7VzoGY8+M7C3lLyPrvfdCFO/l1CRQ+NKRQAjnccvZt5t0BMP4T5mNC QBSr/aX3tNYr7Qv48u06kI/fvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLQTVAGo 47h07wG+rcEU1nx3tH2MMB8GA1UdIwQYMBaAFOQgDUStnW7LaHL2U6lYQ/sn2Eek MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEQzNy8wNUVFQ0Q4NjUz NUIxMUVFOUJGMjBBNkJDNEY5QUUwMi81Q0FOUksyZGJzdG9jdlpUcVZoRC15ZllS NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVDQU5SSzJkYnN0b2N2WlRxVmhELXlmWVI2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBEMzcvMDVFRUNEODY1MzVCMTFFRTlCRjIwQTZCQzRGOUFFMDIvQzdDNDVERDY0 M0Y2MTFFRjg0MTUxRDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAa3EwDQYJKoZIhvcNAQELBQADggEBAN9pGpJiUiig/md5 CS9ZA9VgZCFkzc0kVvlWTgk9vEvs7hm66C2UHQvXKoT9pk0mXq3av9gS4lAEeZvx pTfDQMboa3gJswT5qSNgvxP2FhgoLkMGGhf0EEkXd6l5XRurqYhycNoysXNya/OV zUDzkCLeZz/OLjB6d0AakfpGHgnZ6ck70cRmZuLRq/fAMzi+jH0vR1E1tq7Vojf7 qUsBWHVafLjRfl8yLDu2qS9naEtV07jTFZgHN3auNAf/jv5z6WlmFgnrI4bDnF/p LchnW587bVk6rDMxA0Rjy0MwAJMfxVthYgU2x7WMb+ixUH9+O3UBQzpmJ+MFSV6+ hYAbzqM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:30 2025 by rpki-client