$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/7BD12E3A480811EE8C512B0DC4F9AE02.roa File: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (raw, json) Hash identifier: PTHJR1ja6PHKnchzMzvjSZlwBo+yBYxt/AqG4ozJw5A= Subject key identifier: 12:D0:C8:2C:68:83:BF:65:B3:19:75:B5:AA:AA:B8:D3:09:7F:D9:E2 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 0FA1 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/7BD12E3A480811EE8C512B0DC4F9AE02.roa Signing time: Thu 10 Apr 2025 17:56:43 +0000 ROA not before: Thu 10 Apr 2025 17:56:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4237 IP address blocks: 203.12.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4001 (0xfa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Apr 10 17:56:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f8065a-e47a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8e:70:1c:2a:57:bd:38:e5:54:c8:9a:3f:36: a9:3a:1e:03:c5:9f:62:b3:ce:81:d3:4a:2b:e0:51: 12:3b:da:eb:6e:36:b7:f2:57:ba:41:50:fe:86:9d: 97:eb:9c:53:03:a2:12:00:60:b9:d8:ed:25:c3:18: 1d:84:ba:66:58:26:d2:9f:c5:d3:33:b5:75:3f:2a: d1:a2:30:d4:84:4e:36:d0:a0:aa:4c:11:8a:5c:0e: f1:ed:19:5b:20:37:16:64:0d:22:ba:f3:ed:e1:56: 1c:dd:5e:e8:d5:ac:fd:fd:c1:0b:70:e1:b3:c5:f9: 8a:6a:ea:b4:5e:9a:ee:86:50:eb:03:0b:00:d5:80: bb:38:2d:ef:2c:42:14:52:09:b9:0e:86:05:bd:9f: b3:ab:c8:2a:5e:90:e1:e2:5c:17:f3:ad:cb:78:4b: 13:42:09:da:3c:d1:4b:cd:e2:59:87:7f:3d:a9:3e: 59:a5:8a:ba:72:fc:7b:04:da:48:1b:38:b5:b4:2a: c0:dd:79:8c:ee:a3:92:6b:b9:0b:00:c0:c6:e5:ca: 8b:93:ce:9b:8e:f8:6f:22:6c:d1:c3:4d:94:c9:78: 6c:9a:fa:47:b2:f5:8a:6e:20:87:c8:52:9c:43:90: 60:02:da:e6:73:80:b5:d8:cb:7c:d4:c6:ac:7d:d1: d8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D0:C8:2C:68:83:BF:65:B3:19:75:B5:AA:AA:B8:D3:09:7F:D9:E2 X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/7BD12E3A480811EE8C512B0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.77.0/24 Signature Algorithm: sha256WithRSAEncryption cb:d0:1c:46:3b:0d:17:dd:ce:b7:f9:ed:2a:a6:6e:08:0c:30: f9:49:06:1d:73:1a:f1:b8:77:a5:7f:de:c5:d1:80:08:89:63: aa:16:4d:69:6e:8a:58:6f:c1:64:fa:b5:56:b5:91:47:ab:8b: 00:22:56:a1:c7:bb:b6:60:ce:4d:13:8d:4e:4d:05:69:77:82: 8d:93:34:96:31:f4:f3:6f:65:82:cc:06:f5:6f:c9:76:37:4b: 95:1d:ce:b2:ff:b1:35:0e:02:08:6a:25:c9:d2:c3:81:dd:6d: fa:94:d7:f6:ba:48:b8:47:6e:96:ae:dc:c3:14:1b:14:29:d1: 74:96:d9:20:cd:8f:64:7c:4e:1a:f2:03:ed:f0:1c:f3:dd:5a: a8:4f:33:5b:b1:eb:f3:c8:c4:7d:21:79:3b:ea:65:6c:6a:4b: b4:5e:4c:4f:5e:e9:6f:ce:44:66:a6:e1:41:79:ee:73:f8:1f: 26:62:80:e6:11:63:e4:b1:0c:7e:aa:af:3c:ba:d5:de:c1:26: 5c:9f:21:3f:fb:0c:fc:48:71:33:19:6b:a9:e3:b4:77:f1:43: 44:66:21:98:7e:b3:b2:a2:98:b6:76:9d:98:a0:73:de:cb:4f: 96:f3:8e:a9:61:db:c9:40:06:71:61:17:d7:9d:04:9b:1b:26: ba:a0:77:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjUwNDEwMTc1NjQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4MDY1YS1lNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Y5wHCpXvTjlVMiaPzapOh4DxZ9is86B00or4FESO9rrbja38le6QVD+hp2X 65xTA6ISAGC52O0lwxgdhLpmWCbSn8XTM7V1PyrRojDUhE420KCqTBGKXA7x7Rlb IDcWZA0iuvPt4VYc3V7o1az9/cELcOGzxfmKauq0XpruhlDrAwsA1YC7OC3vLEIU Ugm5DoYFvZ+zq8gqXpDh4lwX863LeEsTQgnaPNFLzeJZh389qT5ZpYq6cvx7BNpI Gzi1tCrA3XmM7qOSa7kLAMDG5cqLk86bjvhvImzRw02UyXhsmvpHsvWKbiCHyFKc Q5BgAtrmc4C12Mt81MasfdHYywIDAQABo4IClTCCApEwHQYDVR0OBBYEFBLQyCxo g79lsxl1taqquNMJf9niMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDQzcvNzkxQzZBMzQ3QjM4MTFFOUJDMEQzQjMyQzRGOUFFMDIvN0JEMTJFM0E0 ODA4MTFFRThDNTEyQjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLDE0wDQYJKoZIhvcNAQELBQADggEBAMvQHEY7DRfdzrf5 7SqmbggMMPlJBh1zGvG4d6V/3sXRgAiJY6oWTWluilhvwWT6tVa1kUeriwAiVqHH u7Zgzk0TjU5NBWl3go2TNJYx9PNvZYLMBvVvyXY3S5UdzrL/sTUOAghqJcnSw4Hd bfqU1/a6SLhHbpau3MMUGxQp0XSW2SDNj2R8ThryA+3wHPPdWqhPM1ux6/PIxH0h eTvqZWxqS7ReTE9e6W/ORGam4UF57nP4HyZigOYRY+SxDH6qrzy61d7BJlyfIT/7 DPxIcTMZa6njtHfxQ0RmIZh+s7KimLZ2nZigc97LT5bzjqlh28lABnFhF9edBJsb JrqgdzY= -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:31 2025 by rpki-client