$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/06370CB2DB9211E9B70EDD2EC4F9AE02.roa File: 06370CB2DB9211E9B70EDD2EC4F9AE02.roa (raw, json) Hash identifier: tiA64s/MRKlR1BkumxbFlRLnmMmyLTM+IqS1j/mgdbk= Subject key identifier: F1:A1:87:BA:81:C2:90:0E:70:70:E3:D0:3F:5B:98:98:6A:57:E5:0B Certificate issuer: /CN=A91C9606/serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Certificate serial: 0CCD Authority key identifier: 1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/06370CB2DB9211E9B70EDD2EC4F9AE02.roa Signing time: Mon 02 Dec 2024 18:07:27 +0000 ROA not before: Mon 02 Dec 2024 18:07:27 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45237 IP address blocks: 202.131.0.0/24 maxlen: 24 202.131.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9606, serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Validity Not Before: Dec 2 18:07:27 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674df75f-e730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:65:2e:9e:41:10:e7:a6:e7:57:e8:53:ea:45: 18:1a:7a:b5:55:9d:38:4e:2a:7d:e1:cc:fa:e2:a0: 51:ce:7b:4c:73:4b:ec:5f:05:ed:59:8e:0f:cc:22: 74:12:a7:b4:98:73:7b:bc:67:75:12:f7:15:f0:a4: b5:a6:e9:48:2a:1e:d7:b3:9e:71:58:be:fa:fc:ac: 54:37:74:6b:7b:b8:0c:8f:c3:00:96:e6:21:c4:1e: 14:aa:b8:0a:81:07:2b:61:3f:6a:b6:ad:bd:28:a5: 27:d4:97:b3:c9:b1:e5:26:c0:63:c3:47:09:59:09: de:12:9e:22:33:1f:e0:35:ca:41:cd:ce:74:6b:88: 55:59:13:89:43:ff:42:ec:e9:1c:e4:82:68:f0:91: 35:36:56:1c:46:c9:21:67:12:da:1c:07:39:d8:75: 76:6e:3a:0f:94:7b:d5:fb:de:86:95:2b:6c:92:55: f6:95:9e:1d:11:de:0e:47:7d:00:15:2d:45:1e:31: e1:fa:ff:70:dc:c6:39:66:99:df:b9:b3:1d:ba:97: 79:f9:a3:0b:dd:eb:3c:49:b2:6d:8f:52:a2:0c:5c: cb:ad:eb:bd:16:34:d2:5b:47:4e:29:95:d4:16:59: cd:f9:f5:28:72:7a:ec:4d:28:3c:b3:9a:5a:5a:30: 23:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A1:87:BA:81:C2:90:0E:70:70:E3:D0:3F:5B:98:98:6A:57:E5:0B X509v3 Authority Key Identifier: keyid:1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/06370CB2DB9211E9B70EDD2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.131.0.0/24 202.131.4.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:c7:23:30:02:a3:d3:ed:56:8a:f6:6f:a7:f2:47:89:dd:b5: 0a:73:3e:97:a9:1b:24:7b:e4:6e:d8:b1:de:c1:f6:c3:a8:07: 82:82:47:c4:b1:0f:7c:5d:5b:59:72:2a:e4:e6:4f:1f:d5:88: aa:18:55:f4:bd:04:ac:37:dc:32:64:3f:a9:41:61:5c:ee:25: b2:7f:52:d0:08:fe:7f:7d:73:8f:a9:60:7b:51:c3:67:ce:3f: 74:65:c3:b3:55:f0:34:be:4f:30:c6:1e:aa:46:8c:dd:72:36: 0f:19:4f:50:3c:fc:02:fb:88:cd:a6:b8:1c:0f:fe:66:95:d8: 1f:15:9c:c3:ae:85:31:16:01:e1:65:28:a0:ea:ed:e9:f9:30: 75:71:d5:f3:c4:d2:cf:ff:94:76:ce:4f:04:e0:3d:c7:3d:07: 6e:3c:3b:6d:df:03:13:58:ee:89:fb:df:05:f3:8e:0b:75:41: 48:97:4f:19:2b:f6:b1:2e:1b:2f:36:23:0c:07:c9:60:0c:56: d5:72:6b:e3:e1:98:f4:db:6b:07:4e:5f:29:6f:d3:66:f9:ed: 6b:d2:74:fa:ff:08:b0:10:16:f6:fb:ad:6a:bb:5c:e0:d3:2d: 9a:44:80:ec:8c:f6:88:02:53:04:a1:0c:cf:39:bd:f9:b2:7d: ae:96:bd:a4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk2MDYxMTAvBgNVBAUTKDFCNDcxREFEQ0Q5MTIwOTMzNTEzNkVBQ0Y2Q0M5ODg4 Mjg2NTRCMkEwHhcNMjQxMjAyMTgwNzI3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkZjc1Zi1lNzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mUunkEQ56bnV+hT6kUYGnq1VZ04Tip94cz64qBRzntMc0vsXwXtWY4PzCJ0 Eqe0mHN7vGd1EvcV8KS1pulIKh7Xs55xWL76/KxUN3Rre7gMj8MAluYhxB4UqrgK gQcrYT9qtq29KKUn1JezybHlJsBjw0cJWQneEp4iMx/gNcpBzc50a4hVWROJQ/9C 7Okc5IJo8JE1NlYcRskhZxLaHAc52HV2bjoPlHvV+96GlStsklX2lZ4dEd4OR30A FS1FHjHh+v9w3MY5ZpnfubMdupd5+aML3es8SbJtj1KiDFzLreu9FjTSW0dOKZXU FlnN+fUocnrsTSg8s5paWjAjCwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPGhh7qB wpAOcHDj0D9bmJhqV+ULMB8GA1UdIwQYMBaAFBtHHa3NkSCTNRNurPbMmIgoZUsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTYwNi85QzlGOUY5QURC OTAxMUU5QTNDMTJGMkNDNEY5QUUwMi9HMGNkcmMyUklKTTFFMjZzOXN5WWlDaGxT eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cwY2RyYzJSSUpNMUUyNnM5c3lZaUNobFN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk2MDYvOUM5RjlGOUFEQjkwMTFFOUEzQzEyRjJDQzRGOUFFMDIvMDYzNzBDQjJE QjkyMTFFOUI3MEVERDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKgwADBADKgwQwDQYJKoZIhvcNAQELBQADggEBAGvHIzAC o9PtVor2b6fyR4ndtQpzPpepGyR75G7Ysd7B9sOoB4KCR8SxD3xdW1lyKuTmTx/V iKoYVfS9BKw33DJkP6lBYVzuJbJ/UtAI/n99c4+pYHtRw2fOP3Rlw7NV8DS+TzDG HqpGjN1yNg8ZT1A8/AL7iM2muBwP/maV2B8VnMOuhTEWAeFlKKDq7en5MHVx1fPE 0s//lHbOTwTgPcc9B248O23fAxNY7on73wXzjgt1QUiXTxkr9rEuGy82IwwHyWAM VtVya+PhmPTbawdOXylv02b57WvSdPr/CLAQFvb7rWq7XODTLZpEgOyM9ogCUwSh DM85vfmyfa6WvaQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:00:28 2025 by rpki-client