$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/04594232DEA011EE91181415C4F9AE02.roa File: 04594232DEA011EE91181415C4F9AE02.roa (raw, json) Hash identifier: ux/yn18OibC6Db2VOykrM0n0NcvF/7PYrwCoPjjFpC4= Subject key identifier: 99:C6:63:4E:D5:AA:32:B7:28:31:11:CA:60:82:08:B7:0B:F9:24:58 Certificate issuer: /CN=A91C7B15/serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Certificate serial: 01B3 Authority key identifier: 58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/04594232DEA011EE91181415C4F9AE02.roa Signing time: Wed 16 Apr 2025 16:55:25 +0000 ROA not before: Wed 16 Apr 2025 16:55:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 37988 IP address blocks: 195.114.14.0/23 maxlen: 23 195.114.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B15, serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Validity Not Before: Apr 16 16:55:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ffe0fc-ce81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:df:94:4c:c7:4e:52:8e:5d:d1:6d:7f:b7:f6: 76:8e:be:dd:2d:1a:8d:99:56:f2:82:1c:74:22:2d: c4:bb:bb:01:ce:ff:3b:5b:05:e4:07:ac:8b:1b:49: 1e:73:7a:2d:a1:de:74:89:cd:15:61:d2:5e:93:63: ef:4a:d6:e3:e6:a6:75:7e:2f:03:32:04:1c:56:dd: ea:d0:d3:67:a7:40:94:a7:ad:fe:a8:e5:97:8f:ae: 6f:f4:41:3b:1b:fe:d1:d6:fb:f6:52:c0:ea:9e:30: 6a:fb:d5:84:4e:11:e7:d4:8c:64:68:2a:9a:5c:fd: b1:dd:ed:d5:c6:7d:49:56:60:cb:0a:6f:75:33:15: 7b:8d:e2:52:70:ef:a1:4f:40:3c:42:b3:4e:50:52: 0a:c8:f4:8d:92:3a:b6:51:70:48:6c:e8:78:45:13: 2d:19:de:f7:89:15:89:42:44:4c:f7:40:bc:e5:0e: 66:59:fc:04:7e:79:f2:81:37:46:81:02:ae:8f:62: e9:9e:27:5e:52:d0:b4:aa:27:10:b4:87:97:ea:03: 17:07:14:30:24:cb:67:bc:bc:5d:49:2a:81:6e:e3: 8c:b6:a0:cd:14:bf:51:18:09:af:cf:eb:22:2a:a1: 14:c9:cc:e0:b2:05:81:6b:da:de:4c:36:da:20:55: 6a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:C6:63:4E:D5:AA:32:B7:28:31:11:CA:60:82:08:B7:0B:F9:24:58 X509v3 Authority Key Identifier: keyid:58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/04594232DEA011EE91181415C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 195.114.14.0/23 195.114.126.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:6c:ec:98:71:dd:50:92:67:e2:99:03:d8:3f:fc:87:d4:75: 7b:87:88:b6:98:bc:86:ef:b7:1f:22:53:50:92:42:61:81:51: 86:10:7f:43:f8:40:f6:a3:b3:29:f3:15:fb:3f:64:74:f4:31: 2c:31:45:d3:57:2d:7d:81:a0:51:df:08:e9:06:ee:a9:8e:ea: e3:d9:c4:64:4f:10:05:bf:03:2d:f6:36:3d:be:0a:81:50:c4: 37:6a:68:c4:b4:c0:5f:b1:af:75:f8:fc:ae:2e:9f:4e:d1:fe: 46:bb:c8:b4:5b:97:5a:dc:d4:d9:04:c7:91:6f:c2:93:6e:ee: 13:98:11:20:02:a6:a1:c9:68:07:52:ff:00:02:a7:42:4c:4a: 63:69:5b:e1:16:b9:2a:0e:45:8b:83:84:37:99:ff:59:2c:3a: 49:7e:67:c3:00:bc:f4:be:2e:76:de:a4:73:53:d5:59:68:cb: 13:ac:75:cc:6d:51:6a:ba:74:21:00:a3:d6:e9:83:0a:27:cd: 37:1c:df:b2:5a:18:77:91:a2:71:ea:4b:01:36:46:19:80:5d: 97:6c:ef:5c:33:50:fc:95:42:e4:8e:77:31:cd:d4:38:68:58: b7:61:91:43:f1:67:67:f3:6e:7e:a0:f9:aa:cc:ea:48:00:36: 85:b0:44:75 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdCMTUxMTAvBgNVBAUTKDU4MEU0NjZCN0Q0RkE4NjQ5RDJFMEIyNzM3NUVBMjg2 QzZDNTQ1ODQwHhcNMjUwNDE2MTY1NTI1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZmZTBmYy1jZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5t+UTMdOUo5d0W1/t/Z2jr7dLRqNmVbyghx0Ii3Eu7sBzv87WwXkB6yLG0ke c3otod50ic0VYdJek2PvStbj5qZ1fi8DMgQcVt3q0NNnp0CUp63+qOWXj65v9EE7 G/7R1vv2UsDqnjBq+9WEThHn1IxkaCqaXP2x3e3Vxn1JVmDLCm91MxV7jeJScO+h T0A8QrNOUFIKyPSNkjq2UXBIbOh4RRMtGd73iRWJQkRM90C85Q5mWfwEfnnygTdG gQKuj2LpnideUtC0qicQtIeX6gMXBxQwJMtnvLxdSSqBbuOMtqDNFL9RGAmvz+si KqEUyczgsgWBa9reTDbaIFVqdQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJnGY07V qjK3KDERymCCCLcL+SRYMB8GA1UdIwQYMBaAFFgORmt9T6hknS4LJzdeoobGxUWE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0IxNS8zMjZFQjBCNDhE RUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFHU2RMZ3NuTjE2aWhzYkZS WVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1dBNUdhMzFQcUdTZExnc25OMTZpaHNiRlJZUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdCMTUvMzI2RUIwQjQ4REVCMTFFRDkzRkFBRDBGQzRGOUFFMDIvMDQ1OTQyMzJE RUEwMTFFRTkxMTgxNDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHDcg4DBAHDcn4wDQYJKoZIhvcNAQELBQADggEBADts7Jhx 3VCSZ+KZA9g//IfUdXuHiLaYvIbvtx8iU1CSQmGBUYYQf0P4QPajsynzFfs/ZHT0 MSwxRdNXLX2BoFHfCOkG7qmO6uPZxGRPEAW/Ay32Nj2+CoFQxDdqaMS0wF+xr3X4 /K4un07R/ka7yLRbl1rc1NkEx5FvwpNu7hOYESACpqHJaAdS/wACp0JMSmNpW+EW uSoORYuDhDeZ/1ksOkl+Z8MAvPS+LnbepHNT1VloyxOsdcxtUWq6dCEAo9bpgwon zTcc37JaGHeRonHqSwE2RhmAXZds71wzUPyVQuSOdzHN1DhoWLdhkUPxZ2fzbn6g +arM6kgANoWwRHU= -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:41 2025 by rpki-client