$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa File: CDDEC562011711EEB15FDD2AC4F9AE02.roa (raw, json) Hash identifier: PgsogDDZQkDovTqfqAZnCJjtewKfx64pNU23F3h3LOI= Subject key identifier: D1:B1:96:26:D6:D4:A3:F1:DA:B6:05:61:9D:A1:57:0B:8C:28:82:F5 Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 039A Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa Signing time: Mon 17 Mar 2025 00:46:17 +0000 ROA not before: Mon 17 Mar 2025 00:46:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137263 IP address blocks: 210.79.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6, serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: Mar 17 00:46:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d770d9-bc17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c5:37:a7:fa:c9:c6:43:b7:05:f7:4e:7b:fa: 71:be:ae:a8:b8:ae:30:8e:94:d5:7d:ba:85:1c:2b: f2:1b:83:81:c9:d8:3e:28:d1:f3:ea:ec:e3:d4:6e: c2:0b:dd:06:a2:cf:95:da:fe:69:49:b7:88:80:d6: 61:7f:f1:d9:87:c3:31:f3:48:1b:3a:65:8b:be:b3: 00:2f:b3:cf:b4:7b:28:7a:29:c4:27:66:6a:d0:5d: 5c:6c:4c:79:c3:9d:0b:ef:5a:4b:43:a8:2d:d0:22: b4:8a:9f:a3:7e:96:af:e4:4f:63:f0:e3:2c:12:48: 9a:22:8c:f9:e8:9e:08:a3:4e:56:69:49:28:9c:7a: 28:48:c6:39:85:69:5f:3c:d1:ed:af:6f:1e:d6:b9: 7d:e2:86:c9:5b:32:74:59:bf:ec:52:7a:cd:d4:a7: 26:23:07:b4:fa:db:35:23:4b:c5:32:ba:2a:70:86: 16:de:07:cf:df:3d:87:c9:e2:59:27:2e:36:5f:9d: 94:af:d9:4b:09:5b:cc:a7:fd:61:11:1d:b6:10:03: 29:4b:6c:33:10:d9:13:46:0d:6a:aa:69:14:27:8d: ff:e5:b5:33:17:eb:bb:65:ac:fa:5a:04:88:b8:b7: f8:d4:a0:b8:bb:5b:8f:75:c0:65:d6:03:21:1c:72: ba:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B1:96:26:D6:D4:A3:F1:DA:B6:05:61:9D:A1:57:0B:8C:28:82:F5 X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.79.60.0/24 Signature Algorithm: sha256WithRSAEncryption a7:b2:5f:d6:6d:eb:dc:3c:c6:73:1f:8f:e7:ef:dc:62:50:d5: 3d:8b:13:d5:a8:a4:76:64:14:0d:2b:bb:63:a8:df:c9:b3:06: 84:91:bb:a3:bb:2b:63:d7:0a:c4:4a:c8:12:60:c3:83:58:e4: b6:a0:ca:90:0b:ba:f2:0f:4f:2e:22:97:d1:11:72:34:24:38: dc:2c:21:c5:11:1e:65:b8:fa:0a:bd:52:b0:68:5b:21:e9:19: 1e:59:ba:a2:95:5a:f9:2d:e1:ac:85:c0:e8:f8:aa:a8:64:b5: 50:a3:67:96:eb:b2:9d:73:c8:6b:b3:bb:72:d8:a8:ff:f0:8f: e1:4f:bd:61:80:89:78:90:c0:4f:84:70:88:40:8f:6f:d8:d6: 2b:e6:c8:60:93:76:47:24:2d:78:5a:5c:b1:de:66:59:24:57: b6:ff:71:2e:16:50:29:d0:0a:6d:40:7e:76:ad:1e:c0:dc:48: d4:8f:58:64:5a:ea:eb:e4:60:ce:56:11:41:78:d1:9c:e6:07: 48:d3:f4:9d:5d:2a:07:2e:d8:10:84:30:32:bb:d9:8b:5b:33: 1a:48:3a:2d:96:66:23:14:2a:53:6f:02:84:58:ae:e6:09:bc: bd:4f:97:62:8c:f1:fa:7d:e2:46:5f:be:9b:7c:09:b9:6a:8f: e1:2c:e0:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjUwMzE3MDA0NjE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3NzBkOS1iYzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsU3p/rJxkO3BfdOe/pxvq6ouK4wjpTVfbqFHCvyG4OBydg+KNHz6uzj1G7C C90Gos+V2v5pSbeIgNZhf/HZh8Mx80gbOmWLvrMAL7PPtHsoeinEJ2Zq0F1cbEx5 w50L71pLQ6gt0CK0ip+jfpav5E9j8OMsEkiaIoz56J4Io05WaUkonHooSMY5hWlf PNHtr28e1rl94obJWzJ0Wb/sUnrN1KcmIwe0+ts1I0vFMroqcIYW3gfP3z2HyeJZ Jy42X52Ur9lLCVvMp/1hER22EAMpS2wzENkTRg1qqmkUJ43/5bUzF+u7Zaz6WgSI uLf41KC4u1uPdcBl1gMhHHK6dwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNGxlibW 1KPx2rYFYZ2hVwuMKIL1MB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvQ0RERUM1NjIw MTE3MTFFRUIxNUZERDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSTzwwDQYJKoZIhvcNAQELBQADggEBAKeyX9Zt69w8xnMf j+fv3GJQ1T2LE9WopHZkFA0ru2Oo38mzBoSRu6O7K2PXCsRKyBJgw4NY5LagypAL uvIPTy4il9ERcjQkONwsIcURHmW4+gq9UrBoWyHpGR5ZuqKVWvkt4ayFwOj4qqhk tVCjZ5brsp1zyGuzu3LYqP/wj+FPvWGAiXiQwE+EcIhAj2/Y1ivmyGCTdkckLXha XLHeZlkkV7b/cS4WUCnQCm1AfnatHsDcSNSPWGRa6uvkYM5WEUF40ZzmB0jT9J1d Kgcu2BCEMDK72YtbMxpIOi2WZiMUKlNvAoRYruYJvL1Pl2KM8fp94kZfvpt8Cblq j+Es4G8= -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:14 2025 by rpki-client