$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/7CC6D634F27311EF9AAECC3CC4F9AE02.roa File: 7CC6D634F27311EF9AAECC3CC4F9AE02.roa (raw, json) Hash identifier: VAI7zkNz19dGI6fGQU68XKDlsZjsYQpjUZnb2rSND4E= Subject key identifier: C1:CF:DD:C6:2C:E5:8E:D5:70:FA:7C:1A:38:61:D0:EF:E6:E7:55:84 Certificate issuer: /CN=A91CD281/serialNumber=74166668BE76B737576316E55D9E6439E671CF47 Certificate serial: 02 Authority key identifier: 74:16:66:68:BE:76:B7:37:57:63:16:E5:5D:9E:64:39:E6:71:CF:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/7CC6D634F27311EF9AAECC3CC4F9AE02.roa Signing time: Mon 24 Feb 2025 05:52:10 +0000 ROA not before: Mon 24 Feb 2025 05:52:10 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 1221 IP address blocks: 203.29.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.crl rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD281, serialNumber=74166668BE76B737576316E55D9E6439E671CF47 Validity Not Before: Feb 24 05:52:10 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67bc090a-ffc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7a:db:84:8d:4d:84:5c:04:18:4a:f3:85:23: f8:9d:78:ff:43:10:0e:e5:27:41:63:dc:a4:c0:97: 39:41:e1:7a:12:bc:77:6b:8c:65:ba:21:10:cf:b6: c4:f8:14:da:c2:24:c2:ba:56:fc:35:3f:16:8b:79: 15:3a:5c:8e:43:5e:21:46:ef:a9:fc:0d:ea:ff:fe: 9a:bc:2f:7e:e1:5c:53:78:e8:d1:0c:e2:38:ac:15: b3:06:c5:f4:a4:c2:f9:01:f0:ff:cb:5e:76:69:1f: ac:48:bd:c7:fb:19:c5:92:ba:15:73:4e:06:b0:19: 9c:28:99:d6:4a:fe:9e:6e:13:84:3e:13:fe:76:a8: b3:f9:d6:b1:86:4a:8c:14:b4:b7:03:29:ca:f1:30: 6e:1f:c2:bb:94:ae:50:56:8c:44:d3:45:bd:a1:a2: 3e:52:72:c5:86:91:fb:81:b3:b3:7b:42:a3:0c:ab: 65:2c:06:10:2c:0f:b0:09:1d:51:80:c2:e6:b1:cb: d3:44:28:44:1c:3e:f9:a9:28:82:3c:4b:66:65:f2: 19:af:b1:ba:d1:ab:5a:fc:75:2c:03:ac:09:e3:7a: cb:c6:43:b7:5e:40:dc:0f:12:cc:09:37:24:cf:2b: 1a:66:23:95:4b:cd:e0:e6:11:eb:6c:73:a4:a8:2c: e9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CF:DD:C6:2C:E5:8E:D5:70:FA:7C:1A:38:61:D0:EF:E6:E7:55:84 X509v3 Authority Key Identifier: keyid:74:16:66:68:BE:76:B7:37:57:63:16:E5:5D:9E:64:39:E6:71:CF:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/7CC6D634F27311EF9AAECC3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.29.94.0/24 Signature Algorithm: sha256WithRSAEncryption 45:de:88:a7:d2:70:a5:62:a3:83:14:db:3b:26:da:9c:af:9e: 3c:65:f4:55:c0:d4:bc:e7:c2:17:71:fd:58:5b:bc:ce:95:dc: fc:89:c8:ab:2d:d2:38:02:7a:1b:f5:51:4a:7e:e0:56:1b:20: ee:5d:f3:d1:ba:e8:55:47:fa:f5:99:df:2c:a2:f3:29:25:9a: 98:25:dd:eb:d8:0b:d4:ed:7d:bb:f7:c7:c9:f9:6b:11:03:0d: 80:d1:52:6f:32:b3:73:a3:c4:1e:bc:44:f4:77:f4:62:87:ca: 34:98:bc:ee:1c:c0:05:08:a6:b0:13:37:d6:03:3e:c8:1d:36: aa:3d:f2:79:27:f4:6d:59:e1:58:86:05:f3:b9:00:51:ad:f0: 79:19:2d:76:14:4f:a1:57:ef:02:3e:07:3c:af:39:22:7f:99: d5:1c:d4:7f:cb:5b:c7:de:86:e2:13:c0:7d:90:07:81:64:14: ae:be:f6:25:bb:bf:68:6e:c9:41:35:16:a6:bf:a8:22:69:9e: 83:86:b2:a2:95:46:0c:33:56:26:60:41:38:6b:75:f3:d9:99: 3f:0f:18:b3:59:1c:fb:01:04:52:3b:d0:2f:14:fa:e6:8d:df: d6:1a:22:e0:0d:ad:ed:14:db:ad:4d:35:f2:13:f5:de:98:93: 41:13:19:d4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDI4MTExMC8GA1UEBRMoNzQxNjY2NjhCRTc2QjczNzU3NjMxNkU1NUQ5RTY0MzlF NjcxQ0Y0NzAeFw0yNTAyMjQwNTUyMTBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YmMwOTBhLWZmYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDietuEjU2EXAQYSvOFI/ideP9DEA7lJ0Fj3KTAlzlB4XoSvHdrjGW6IRDPtsT4 FNrCJMK6Vvw1PxaLeRU6XI5DXiFG76n8Der//pq8L37hXFN46NEM4jisFbMGxfSk wvkB8P/LXnZpH6xIvcf7GcWSuhVzTgawGZwomdZK/p5uE4Q+E/52qLP51rGGSowU tLcDKcrxMG4fwruUrlBWjETTRb2hoj5ScsWGkfuBs7N7QqMMq2UsBhAsD7AJHVGA wuaxy9NEKEQcPvmpKII8S2Zl8hmvsbrRq1r8dSwDrAnjesvGQ7deQNwPEswJNyTP KxpmI5VLzeDmEetsc6SoLOmfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwc/dxizl jtVw+nwaOGHQ7+bnVYQwHwYDVR0jBBgwFoAUdBZmaL52tzdXYxblXZ5kOeZxz0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMjgxL0ZCNDIxNkU4RjI3 MDExRUY5QkY4QjUzNUM0RjlBRTAyL2RCWm1hTDUydHpkWFl4YmxYWjVrT2VaeHow Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZEJabWFMNTJ0emRYWXhibFhaNWtPZVp4ejBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDI4MS9GQjQyMTZFOEYyNzAxMUVGOUJGOEI1MzVDNEY5QUUwMi83Q0M2RDYzNEYy NzMxMUVGOUFBRUNDM0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsdXjANBgkqhkiG9w0BAQsFAAOCAQEARd6Ip9JwpWKjgxTb OybanK+ePGX0VcDUvOfCF3H9WFu8zpXc/InIqy3SOAJ6G/VRSn7gVhsg7l3z0bro VUf69ZnfLKLzKSWamCXd69gL1O19u/fHyflrEQMNgNFSbzKzc6PEHrxE9Hf0YofK NJi87hzABQimsBM31gM+yB02qj3yeSf0bVnhWIYF87kAUa3weRktdhRPoVfvAj4H PK85In+Z1RzUf8tbx96G4hPAfZAHgWQUrr72Jbu/aG7JQTUWpr+oImmeg4ayopVG DDNWJmBBOGt189mZPw8Ys1kc+wEEUjvQLxT65o3f1hoi4A2t7RTbrU018hP13piT QRMZ1A== -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:25 2025 by rpki-client