$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa File: 8FFA8D36FF0C11EA854DE24CC4F9AE02.roa (raw, json) Hash identifier: /fu5zMOPYj0D0Ps2WZUQUjgnnPB/F1YbBEHE6RjBLN8= Subject key identifier: 8E:3E:45:97:C8:67:48:AC:20:97:45:5A:C4:A7:2E:CC:E0:D2:B9:7E Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 602C Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa Signing time: Fri 25 Apr 2025 21:25:50 +0000 ROA not before: Fri 25 Apr 2025 21:25:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55355 IP address blocks: 118.143.207.0/24 maxlen: 24 118.143.209.0/24 maxlen: 24 218.188.96.0/24 maxlen: 24 218.188.97.0/24 maxlen: 24 218.188.98.0/24 maxlen: 24 218.188.99.0/24 maxlen: 24 218.188.100.0/24 maxlen: 24 218.188.101.0/24 maxlen: 24 218.188.102.0/24 maxlen: 24 218.189.10.0/24 maxlen: 24 218.189.124.0/24 maxlen: 24 218.189.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 21:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24620 (0x602c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 25 21:25:50 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=680bfdde-1b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f7:2a:56:4c:64:bb:da:65:60:80:b4:08:98: 1f:fe:5d:18:19:eb:aa:8c:95:1a:39:b1:d3:6e:39: 1b:0f:51:12:5f:73:51:e1:62:25:45:cf:25:86:56: 92:79:02:d5:4b:39:fa:33:f3:3d:dc:a4:84:9f:59: 2d:54:b9:74:8c:03:2d:13:da:1c:ab:08:dc:f1:d7: cb:25:22:9c:78:8c:99:2f:00:58:30:29:71:c3:6c: 00:ec:24:fd:f4:1b:84:60:a1:7f:62:95:ea:67:3d: 24:22:f1:9f:e8:8a:e0:0e:5a:6b:2d:ca:2f:65:d1: 95:c8:93:4e:51:6e:30:de:5e:05:2c:f7:0b:68:36: be:8e:92:dc:c3:16:02:d3:da:7d:ec:bb:21:33:b1: 00:93:a6:bf:40:62:ff:bd:4f:ef:ac:07:2e:ca:29: 23:b5:14:17:e6:c9:bb:e6:38:8e:08:77:2a:76:e6: e9:6c:a7:2e:d5:35:79:5c:b4:3f:11:d9:30:d6:29: 51:70:b2:a3:f2:b3:9d:f6:0f:69:2c:60:90:e8:68: fe:64:66:bf:5f:c2:14:17:0d:dd:23:08:52:13:4c: 58:3b:25:97:a6:e0:d8:60:11:7d:03:59:47:87:b0: 53:77:ea:b9:eb:c5:f7:7e:52:ad:6a:1a:36:67:3a: e8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:3E:45:97:C8:67:48:AC:20:97:45:5A:C4:A7:2E:CC:E0:D2:B9:7E X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.143.207.0/24 118.143.209.0/24 218.188.96.0-218.188.102.255 218.189.10.0/24 218.189.124.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:70:03:4c:ba:c8:d9:66:47:ef:ba:fa:9b:ee:b4:f9:d8:2b: 17:ed:ae:de:6f:c0:e0:90:93:5d:6a:3d:c7:9d:00:c4:e9:fc: ce:a4:64:10:ea:0f:9a:7b:c0:be:68:c9:55:1e:c1:08:71:d5: 38:ec:b3:94:a3:f5:f1:00:8b:60:32:f8:f9:c0:1f:fe:02:c7: e6:2a:0c:96:49:6d:e1:16:e8:42:18:95:2d:90:9c:22:d7:ec: 17:03:4c:8e:1a:36:38:16:bf:cc:53:50:6d:4a:52:fc:fb:98: db:bd:0e:eb:cd:2d:d2:23:41:3d:06:38:32:ae:08:ce:f9:a9: f8:1c:d6:37:76:ee:14:97:5e:ce:d0:34:db:ec:dc:dd:d8:1f: 45:86:f1:66:23:43:23:57:2a:86:05:30:07:b6:a0:5c:63:ca: d2:98:70:f1:ac:45:a5:ba:d2:ba:52:47:91:f8:7d:50:84:7b: d8:77:f3:7b:32:c3:ba:ac:09:0a:4c:66:b8:96:48:ce:49:b5: b0:d9:24:c6:7a:b0:51:c8:86:87:28:c0:9a:d2:03:66:4f:2f: 29:b4:b9:1b:2e:f4:43:21:e3:50:fc:c1:e1:b5:0c:ee:12:1c: b3:6d:29:d5:19:f1:0e:c8:9f:7b:c4:eb:74:63:d9:1d:c2:6c: 30:12:ac:04 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICYCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDI1MjEyNTUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBiZmRkZS0xYjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fcqVkxku9plYIC0CJgf/l0YGeuqjJUaObHTbjkbD1ESX3NR4WIlRc8lhlaS eQLVSzn6M/M93KSEn1ktVLl0jAMtE9ocqwjc8dfLJSKceIyZLwBYMClxw2wA7CT9 9BuEYKF/YpXqZz0kIvGf6IrgDlprLcovZdGVyJNOUW4w3l4FLPcLaDa+jpLcwxYC 09p97LshM7EAk6a/QGL/vU/vrAcuyikjtRQX5sm75jiOCHcqdubpbKcu1TV5XLQ/ Edkw1ilRcLKj8rOd9g9pLGCQ6Gj+ZGa/X8IUFw3dIwhSE0xYOyWXpuDYYBF9A1lH h7BTd+q568X3flKtaho2Zzro+QIDAQABo4ICtTCCArEwHQYDVR0OBBYEFI4+RZfI Z0isIJdFWsSnLszg0rl+MB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvOEZGQThEMzZG RjBDMTFFQTg1NERFMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAB2j88DBAB2j9EwDAMEBdq8YAMEANq8ZgMEANq9CgMEAdq9 fDANBgkqhkiG9w0BAQsFAAOCAQEAPHADTLrI2WZH77r6m+60+dgrF+2u3m/A4JCT XWo9x50AxOn8zqRkEOoPmnvAvmjJVR7BCHHVOOyzlKP18QCLYDL4+cAf/gLH5ioM lklt4RboQhiVLZCcItfsFwNMjho2OBa/zFNQbUpS/PuY270O680t0iNBPQY4Mq4I zvmp+BzWN3buFJdeztA02+zc3dgfRYbxZiNDI1cqhgUwB7agXGPK0phw8axFpbrS ulJHkfh9UIR72HfzezLDuqwJCkxmuJZIzkm1sNkkxnqwUciGhyjAmtIDZk8vKbS5 Gy70QyHjUPzB4bUM7hIcs20p1RnxDsife8TrdGPZHcJsMBKsBA== -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:53 2025 by rpki-client