$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa File: 01A59B2EB72111EC9885AF51C4F9AE02.roa (raw, json) Hash identifier: ZxjzvMJOc2NgcpdE8e37lu0bNoPURWMzdC0aiFNUfTU= Subject key identifier: 95:E4:5D:65:77:F7:19:F2:7D:C0:AD:28:D7:2C:25:CF:C2:90:AF:29 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 600C Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa Signing time: Fri 25 Apr 2025 20:05:38 +0000 ROA not before: Fri 25 Apr 2025 20:05:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 24462 IP address blocks: 210.0.224.0/24 maxlen: 24 218.188.80.0/24 maxlen: 24 218.189.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 21:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24588 (0x600c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 25 20:05:38 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=680beb11-e83a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:75:e8:e9:8b:c6:30:ff:f1:78:37:e9:d2:7f: 0f:ed:28:fe:9f:d3:79:7b:f5:b6:63:48:f4:df:fd: 4c:31:a5:e0:67:e2:41:22:a7:67:5a:69:8a:75:39: 82:30:b1:ac:b9:4e:c4:e4:91:54:24:af:04:fe:8a: fb:66:c6:ed:f3:1e:b4:c4:c2:f8:38:f8:08:df:ef: 31:ae:e0:31:ba:90:ee:63:d0:3b:e2:77:9e:f4:79: c6:bc:a5:0d:17:84:40:ad:9f:4f:54:ce:14:4c:1a: 6d:81:21:3d:4c:3d:8e:2f:e7:20:92:a3:6f:7e:2f: e0:c4:55:2c:cc:2a:e9:1e:52:09:ca:0e:8f:d0:2b: 28:20:23:c2:a1:b9:78:e6:58:37:44:ac:6c:71:b1: 47:96:73:32:04:65:1d:db:2e:03:a1:a2:57:13:2a: 51:fc:67:61:ee:c4:0b:6d:05:23:d2:7a:78:f4:49: 73:24:b6:69:41:a5:4e:12:25:1a:fa:ce:3f:43:13: 45:e9:60:32:fb:b8:19:5d:37:12:d2:af:b6:01:68: 77:85:8c:0d:35:ec:50:e1:5b:c0:46:bb:fc:8d:fe: 80:7f:dc:19:ac:43:38:9e:5a:91:ae:fb:02:da:15: 1a:63:54:d6:44:38:99:d5:f3:41:48:14:a6:0c:5f: 5d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:E4:5D:65:77:F7:19:F2:7D:C0:AD:28:D7:2C:25:CF:C2:90:AF:29 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.0.224.0/24 218.188.80.0/24 218.189.74.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:a5:b2:dc:07:4d:b2:48:c2:47:85:7d:f9:bd:7f:c5:83:15: 02:f5:e1:1d:e7:4c:81:cd:58:52:7e:ec:9c:c8:02:d3:ed:eb: 97:7b:16:d4:42:2c:30:33:4d:a5:fe:84:22:cd:ab:19:25:19: 83:48:1a:b4:ba:9b:31:cb:52:5f:a6:47:42:72:75:23:bd:0f: 57:ab:ed:e1:cf:af:96:5b:95:d1:19:94:0a:72:02:b4:ef:29: 86:57:3e:f0:7b:99:79:33:9b:ce:33:20:53:49:66:ce:8c:e8: 74:7f:75:70:f8:ef:1e:f0:2a:5f:9d:39:9e:79:d6:69:4c:dd: af:9a:65:bc:bd:db:3e:c2:61:ac:77:d4:05:68:b1:d0:86:e3: aa:9f:48:0e:fd:8c:e6:69:32:fa:16:a9:9a:33:05:22:60:5e: 84:8e:53:da:4b:ad:cb:1a:f7:ce:67:b3:0d:ac:68:72:35:4e: 83:52:68:e0:8f:fe:fe:d5:6e:3d:41:76:48:e0:2f:b8:58:bd: 7a:68:c1:0a:a7:25:55:b3:4b:f1:eb:b4:9a:17:69:58:c9:dd: ec:a7:79:b9:15:d9:81:f6:ee:ce:d6:2f:9e:10:51:3c:eb:24: 88:02:f5:44:37:f7:16:b0:c2:50:52:72:7d:96:b5:96:4a:4b: 22:cd:e4:2c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICYAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDI1MjAwNTM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBiZWIxMS1lODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3Xo6YvGMP/xeDfp0n8P7Sj+n9N5e/W2Y0j03/1MMaXgZ+JBIqdnWmmKdTmC MLGsuU7E5JFUJK8E/or7Zsbt8x60xML4OPgI3+8xruAxupDuY9A74nee9HnGvKUN F4RArZ9PVM4UTBptgSE9TD2OL+cgkqNvfi/gxFUszCrpHlIJyg6P0CsoICPCobl4 5lg3RKxscbFHlnMyBGUd2y4DoaJXEypR/Gdh7sQLbQUj0np49ElzJLZpQaVOEiUa +s4/QxNF6WAy+7gZXTcS0q+2AWh3hYwNNexQ4VvARrv8jf6Af9wZrEM4nlqRrvsC 2hUaY1TWRDiZ1fNBSBSmDF9dzwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJXkXWV3 9xnyfcCtKNcsJc/CkK8pMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvMDFBNTlCMkVC NzIxMTFFQzk4ODVBRjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADSAOADBADavFADBADavUowDQYJKoZIhvcNAQELBQADggEB AB+lstwHTbJIwkeFffm9f8WDFQL14R3nTIHNWFJ+7JzIAtPt65d7FtRCLDAzTaX+ hCLNqxklGYNIGrS6mzHLUl+mR0JydSO9D1er7eHPr5ZbldEZlApyArTvKYZXPvB7 mXkzm84zIFNJZs6M6HR/dXD47x7wKl+dOZ551mlM3a+aZby92z7CYax31AVosdCG 46qfSA79jOZpMvoWqZozBSJgXoSOU9pLrcsa985nsw2saHI1ToNSaOCP/v7Vbj1B dkjgL7hYvXpowQqnJVWzS/HrtJoXaVjJ3eynebkV2YH27s7WL54QUTzrJIgC9UQ3 9xawwlBScn2WtZZKSyLN5Cw= -----END CERTIFICATE-----Generated at Sat Apr 26 12:57:26 2025 by rpki-client