$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/0F56E156828C11EDA6BCA176C4F9AE02.roa File: 0F56E156828C11EDA6BCA176C4F9AE02.roa (raw, json) Hash identifier: 6jQR+LA7AhS3kcRLFdYcgiTc91j8m964KZdBUexFMD8= Subject key identifier: 8E:A9:5E:84:39:58:D9:2C:2D:BD:46:A5:4B:06:5F:03:77:B4:2C:04 Certificate issuer: /CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Certificate serial: 0DC7 Authority key identifier: E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/0F56E156828C11EDA6BCA176C4F9AE02.roa Signing time: Wed 12 Feb 2025 18:36:06 +0000 ROA not before: Wed 12 Feb 2025 18:36:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56179 IP address blocks: 122.144.32.0/19 maxlen: 24 202.154.192.0/19 maxlen: 24 203.135.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3527 (0xdc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A39, serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Validity Not Before: Feb 12 18:36:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67acea16-4aac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dd:c9:66:cf:a5:63:a5:b0:b8:8c:cd:99:d3: 6f:05:35:83:3e:7c:1b:eb:5b:53:6c:ed:16:90:8d: 9f:b5:8d:78:da:5d:9f:8a:b4:ba:37:4c:1d:06:b1: cc:5b:de:7f:d9:c4:ce:47:ac:36:57:12:33:bb:3a: b2:21:a9:af:4b:84:a7:16:15:af:54:aa:8f:a4:66: 6b:36:b8:55:21:32:bd:fc:0c:de:40:4d:f5:f5:dc: 9d:4c:3c:89:be:81:eb:92:f0:3f:89:ba:9b:de:42: be:ec:6a:19:40:b5:9e:fc:42:f4:8c:07:9b:a2:f8: 63:d9:cd:d7:ea:96:8b:5a:c8:4f:a5:53:83:18:3f: a2:fc:b0:75:0c:22:f4:f8:32:46:d0:3b:c1:a4:6c: e2:05:06:48:30:cf:26:2c:f8:8e:77:66:df:4d:c6: 85:0e:4f:71:b0:52:47:80:e6:f5:0d:3b:92:83:a4: 36:aa:d2:a8:a0:16:0e:c2:ce:92:ce:35:c9:71:bf: 8b:3d:1a:94:6a:bf:75:98:3b:97:12:d4:16:b4:f0: 2f:83:38:66:48:f3:cf:40:8a:ab:75:93:91:5e:f3: bc:9e:86:42:f0:3a:02:e7:fc:65:81:10:2e:0b:47: 7a:ee:33:19:f9:dd:a5:ad:fb:08:29:d7:ed:e0:62: 67:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A9:5E:84:39:58:D9:2C:2D:BD:46:A5:4B:06:5F:03:77:B4:2C:04 X509v3 Authority Key Identifier: keyid:E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/0F56E156828C11EDA6BCA176C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.144.32.0/19 202.154.192.0/19 203.135.64.0/19 Signature Algorithm: sha256WithRSAEncryption 20:90:36:69:25:1f:50:45:49:3f:96:ad:5e:98:04:a6:45:71: ff:e3:c3:08:90:68:2a:35:f4:f5:09:83:0d:3d:52:8e:40:3b: 32:65:65:b2:9b:a0:52:64:d4:33:03:58:99:40:ec:76:14:09: f6:26:f6:f1:fb:e0:36:e2:52:b2:1e:0b:44:a3:21:5d:83:83: c7:4a:ac:d8:52:0a:02:05:41:88:d5:e5:f0:0f:4f:98:a9:a8: 5b:1a:66:1f:00:b2:b6:69:ee:75:a9:6c:77:84:47:a5:d3:fa: 1b:0a:96:6b:c9:aa:27:5a:d9:91:f9:9b:0f:fd:f5:e3:9c:50: 65:4d:6c:b7:1a:90:d6:93:4d:13:58:ef:b2:77:b2:19:3e:89: 5f:eb:1f:23:06:6a:7d:83:df:33:95:46:aa:94:22:00:c6:67: 29:e8:e6:d6:1b:d2:04:36:8c:d1:a7:ff:15:08:c1:03:fc:61: c1:b8:7a:c3:46:db:2c:e0:d5:cc:2b:cd:62:be:fb:23:3d:2b: 55:e7:33:70:f2:6e:51:ba:31:36:b1:3c:4b:3a:b0:51:98:05: 13:76:49:c3:d1:9c:40:4d:9c:39:82:01:02:bf:cf:b0:62:4b: ac:69:11:5c:39:f7:04:b1:7a:90:b0:ac:5c:e2:01:20:f9:78: 24:ab:c7:5f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzkxMTAvBgNVBAUTKEU3QjQxQjNEMjU2RUM2QkQwQ0U3MTIxQjM3MERFNDc0 MUI4MzVFNjEwHhcNMjUwMjEyMTgzNjA2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZWExNi00YWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt3JZs+lY6WwuIzNmdNvBTWDPnwb61tTbO0WkI2ftY142l2firS6N0wdBrHM W95/2cTOR6w2VxIzuzqyIamvS4SnFhWvVKqPpGZrNrhVITK9/AzeQE319dydTDyJ voHrkvA/ibqb3kK+7GoZQLWe/EL0jAebovhj2c3X6paLWshPpVODGD+i/LB1DCL0 +DJG0DvBpGziBQZIMM8mLPiOd2bfTcaFDk9xsFJHgOb1DTuSg6Q2qtKooBYOws6S zjXJcb+LPRqUar91mDuXEtQWtPAvgzhmSPPPQIqrdZORXvO8noZC8DoC5/xlgRAu C0d67jMZ+d2lrfsIKdft4GJndwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFI6pXoQ5 WNksLb1GpUsGXwN3tCwEMB8GA1UdIwQYMBaAFOe0Gz0lbsa9DOcSGzcN5HQbg15h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzOS83MzBGMDBCMkIx QzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhyME01eEliTncza2RCdURY bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3UWJQU1Z1eHIwTTV4SWJOdzNrZEJ1RFhtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZBMzkvNzMwRjAwQjJCMUM0MTFFOUJFQ0IxODI1QzRGOUFFMDIvMEY1NkUxNTY4 MjhDMTFFREE2QkNBMTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAV6kCADBAXKmsADBAXLh0AwDQYJKoZIhvcNAQELBQADggEB ACCQNmklH1BFST+WrV6YBKZFcf/jwwiQaCo19PUJgw09Uo5AOzJlZbKboFJk1DMD WJlA7HYUCfYm9vH74DbiUrIeC0SjIV2Dg8dKrNhSCgIFQYjV5fAPT5ipqFsaZh8A srZp7nWpbHeER6XT+hsKlmvJqida2ZH5mw/99eOcUGVNbLcakNaTTRNY77J3shk+ iV/rHyMGan2D3zOVRqqUIgDGZyno5tYb0gQ2jNGn/xUIwQP8YcG4esNG2yzg1cwr zWK++yM9K1XnM3DyblG6MTaxPEs6sFGYBRN2ScPRnEBNnDmCAQK/z7BiS6xpEVw5 9wSxepCwrFziASD5eCSrx18= -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:52 2025 by rpki-client