$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA5F9/6920C74A048211F08F5A5280C4F9AE02/16B651C6048411F094895C27C4F9AE02.roa File: 16B651C6048411F094895C27C4F9AE02.roa (raw, json) Hash identifier: pwAo4LzFE8ykOXOE/sO5tKhbyP75rksTaUDUQRDRnG0= Subject key identifier: DF:E7:BC:7C:A4:E4:6E:31:3B:7A:7C:37:81:39:85:D8:10:ED:1D:1A Certificate issuer: /CN=A91CA5F9/serialNumber=F5BBAE85C6FFB360CED4080D1136A2BFD3A97FD1 Certificate serial: 02 Authority key identifier: F5:BB:AE:85:C6:FF:B3:60:CE:D4:08:0D:11:36:A2:BF:D3:A9:7F:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9buuhcb_s2DO1AgNETaiv9Opf9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA5F9/6920C74A048211F08F5A5280C4F9AE02/16B651C6048411F094895C27C4F9AE02.roa Signing time: Wed 19 Mar 2025 05:36:21 +0000 ROA not before: Wed 19 Mar 2025 05:36:21 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 23917 IP address blocks: 202.2.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA5F9/6920C74A048211F08F5A5280C4F9AE02/9buuhcb_s2DO1AgNETaiv9Opf9E.crl rsync://rpki.apnic.net/member_repository/A91CA5F9/6920C74A048211F08F5A5280C4F9AE02/9buuhcb_s2DO1AgNETaiv9Opf9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9buuhcb_s2DO1AgNETaiv9Opf9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA5F9, serialNumber=F5BBAE85C6FFB360CED4080D1136A2BFD3A97FD1 Validity Not Before: Mar 19 05:36:21 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67da57d5-61d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:78:6c:ff:92:d1:d0:9c:01:1a:ce:bf:2d: bf:a5:8e:61:68:72:ef:da:06:3d:b8:b8:2f:5c:02: d1:04:ce:ed:9e:f5:fb:c5:c9:1d:69:76:0c:f6:4e: 5e:17:c9:71:54:70:62:88:5d:82:a4:d6:7c:86:25: 2d:9a:9d:f5:48:0d:39:09:6b:2c:ad:1b:ce:be:e5: 37:cf:a3:ad:a4:a3:dd:14:9f:df:e2:11:17:c1:f8: a5:53:bf:88:96:79:b0:10:58:28:45:d4:5e:ee:49: ac:83:3c:66:30:aa:e3:fe:ea:67:05:1c:c9:b8:71: 1c:8b:2a:0a:80:ff:56:4c:a2:74:1c:bb:75:20:93: c7:6b:eb:e2:9f:b1:4e:85:2a:0d:91:61:8d:c1:73: 98:5a:ca:6d:13:b9:67:32:af:d8:38:43:2e:fd:5c: 0e:d9:a3:13:e4:48:84:94:5c:e1:f1:85:c9:42:6c: 90:bb:2a:c0:91:8d:18:b7:14:77:95:52:11:da:bb: ab:aa:4c:04:03:73:74:c0:b4:bd:01:04:8b:a6:2e: 11:76:90:e7:44:10:c7:77:21:b7:d6:18:8b:15:0b: 28:8b:c6:10:76:80:90:c2:57:63:cf:72:b4:15:66: 81:be:ce:f5:c2:ac:31:51:97:85:19:55:bc:ca:d9: 9e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E7:BC:7C:A4:E4:6E:31:3B:7A:7C:37:81:39:85:D8:10:ED:1D:1A X509v3 Authority Key Identifier: keyid:F5:BB:AE:85:C6:FF:B3:60:CE:D4:08:0D:11:36:A2:BF:D3:A9:7F:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA5F9/6920C74A048211F08F5A5280C4F9AE02/9buuhcb_s2DO1AgNETaiv9Opf9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9buuhcb_s2DO1AgNETaiv9Opf9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA5F9/6920C74A048211F08F5A5280C4F9AE02/16B651C6048411F094895C27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.2.112.0/20 Signature Algorithm: sha256WithRSAEncryption 91:8a:58:36:48:87:30:7e:ea:8c:87:c7:43:14:75:f8:e8:66: 04:77:7b:27:3f:4d:5f:65:4a:85:c0:04:96:5d:bb:a8:de:d0: 1a:b7:3f:09:3a:1b:50:6c:d7:5d:01:8c:13:33:ba:6b:31:4a: d2:4c:b3:fe:50:aa:00:dd:87:ec:c9:58:85:6e:98:ec:c9:86: e6:fe:10:5d:19:1f:21:51:1b:f5:a1:29:8f:d1:2c:52:17:8a: 5e:33:33:ba:fc:8c:61:8e:9c:c9:8d:3e:84:58:9e:13:5f:11: 20:dc:a9:0e:65:41:d2:fb:21:bb:41:31:a5:41:50:42:16:1d: 62:28:75:a4:30:a0:2e:61:af:1c:59:43:58:1c:80:c5:13:1f: bc:67:c7:3e:66:25:22:6b:d5:67:25:b3:97:e2:4e:65:72:dc: be:65:fa:8c:b6:b2:c3:88:bf:c1:84:fd:64:25:7a:c8:ff:64: 24:82:47:f9:fb:17:c7:2c:6b:5f:52:4b:ec:95:94:5b:91:d8: 92:87:f6:3d:6f:51:65:4c:dd:d7:e2:f5:cb:e6:5f:f3:25:79: 10:ad:b6:99:8c:cb:14:5d:c4:e2:4d:3c:7b:88:4d:aa:30:b3: 97:d8:88:70:4a:d1:a1:aa:02:9a:1c:c3:a5:3a:21:0f:ae:4b: c9:fd:89:78 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTVGOTExMC8GA1UEBRMoRjVCQkFFODVDNkZGQjM2MENFRDQwODBEMTEzNkEyQkZE M0E5N0ZEMTAeFw0yNTAzMTkwNTM2MjFaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZGE1N2Q1LTYxZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1IXhs/5LR0JwBGs6/Lb+ljmFocu/aBj24uC9cAtEEzu2e9fvFyR1pdgz2Tl4X yXFUcGKIXYKk1nyGJS2anfVIDTkJayytG86+5TfPo62ko90Un9/iERfB+KVTv4iW ebAQWChF1F7uSayDPGYwquP+6mcFHMm4cRyLKgqA/1ZMonQcu3Ugk8dr6+KfsU6F Kg2RYY3Bc5haym0TuWcyr9g4Qy79XA7ZoxPkSISUXOHxhclCbJC7KsCRjRi3FHeV UhHau6uqTAQDc3TAtL0BBIumLhF2kOdEEMd3IbfWGIsVCyiLxhB2gJDCV2PPcrQV ZoG+zvXCrDFRl4UZVbzK2Z7FAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3+e8fKTk bjE7enw3gTmF2BDtHRowHwYDVR0jBBgwFoAU9buuhcb/s2DO1AgNETaiv9Opf9Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBNUY5LzY5MjBDNzRBMDQ4 MjExRjA4RjVBNTI4MEM0RjlBRTAyLzlidXVoY2JfczJETzFBZ05FVGFpdjlPcGY5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWJ1dWhjYl9zMkRPMUFnTkVUYWl2OU9wZjlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTVGOS82OTIwQzc0QTA0ODIxMUYwOEY1QTUyODBDNEY5QUUwMi8xNkI2NTFDNjA0 ODQxMUYwOTQ4OTVDMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBMoCcDANBgkqhkiG9w0BAQsFAAOCAQEAkYpYNkiHMH7qjIfH QxR1+OhmBHd7Jz9NX2VKhcAEll27qN7QGrc/CTobUGzXXQGMEzO6azFK0kyz/lCq AN2H7MlYhW6Y7MmG5v4QXRkfIVEb9aEpj9EsUheKXjMzuvyMYY6cyY0+hFieE18R INypDmVB0vshu0ExpUFQQhYdYih1pDCgLmGvHFlDWByAxRMfvGfHPmYlImvVZyWz l+JOZXLcvmX6jLayw4i/wYT9ZCV6yP9kJIJH+fsXxyxrX1JL7JWUW5HYkof2PW9R ZUzd1+L1y+Zf8yV5EK22mYzLFF3E4k08e4hNqjCzl9iIcErRoaoCmhzDpTohD65L yf2JeA== -----END CERTIFICATE-----Generated at Sat Apr 26 07:42:44 2025 by rpki-client