$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa File: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (raw, json) Hash identifier: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4= Subject key identifier: D1:AC:E7:30:FE:E6:39:54:94:5D:FF:9F:85:4B:85:C0:1A:28:E2:0A Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 012D Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa Signing time: Tue 15 Apr 2025 03:39:36 +0000 ROA not before: Tue 15 Apr 2025 03:39:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135520 IP address blocks: 192.43.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Apr 15 03:39:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fdd4f7-021c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:69:ab:c7:60:b1:c6:39:a8:63:a5:3a:46:91: 80:ad:9c:9f:31:b4:44:90:1f:f5:01:b4:78:0d:6b: 2d:bf:db:68:2f:ae:8c:c1:dc:46:40:b8:a6:b0:b9: a9:7c:d3:e2:a0:b4:61:a0:5c:d2:c8:69:c7:76:3d: 9f:27:f9:48:01:f7:b6:35:a3:fd:9a:ae:13:df:77: 33:19:ac:60:24:d8:21:80:b3:d7:a2:43:2e:e6:f6: 31:1c:65:de:68:36:4d:2d:22:93:03:e8:94:17:88: 2c:c0:9d:ee:55:24:ac:e4:14:2a:6f:46:66:2f:1e: e5:a1:4b:bf:40:ba:6c:a4:40:a1:09:96:ab:b6:09: a6:ef:74:ca:f4:31:ec:c7:b9:82:81:a2:79:89:d0: 34:1f:8f:0a:6c:1b:d0:1e:ab:a0:47:a2:41:ea:41: e4:da:5d:74:06:4f:dd:95:8b:07:1d:a9:41:34:2a: 79:cc:a3:03:0f:6d:ea:e9:95:9c:ca:ff:2d:3a:5f: db:54:4c:71:0f:fa:f3:3d:d4:15:f6:57:ea:39:46: b4:f7:b9:d2:fa:b2:6e:70:cb:d7:f9:f3:ff:32:e0: 8e:af:17:26:ab:bf:60:7b:ab:2c:b9:0e:69:75:7f: 22:9f:5f:a2:3e:9d:e4:38:2e:82:3d:be:e3:aa:7d: eb:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AC:E7:30:FE:E6:39:54:94:5D:FF:9F:85:4B:85:C0:1A:28:E2:0A X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.43.226.0/24 Signature Algorithm: sha256WithRSAEncryption 27:fc:7a:9e:5a:7d:c0:d0:92:41:8c:9e:2b:b9:7e:9d:0a:aa: 0f:63:99:9b:be:c0:f6:bc:db:ec:86:d7:28:78:d1:da:39:d3: 11:ae:0b:a3:57:1f:53:6a:d9:df:4b:63:54:64:6f:c7:14:9d: 46:e9:03:04:41:e7:5a:11:da:1d:be:d7:3f:44:c9:31:9f:bc: 21:b3:8b:18:1f:fa:27:41:e7:67:5d:de:db:83:1a:62:fd:48: 2c:09:50:df:5d:b2:55:03:c1:95:81:3b:f5:c1:03:da:f3:76: 42:92:66:f2:a8:ee:56:09:b5:40:03:c5:87:a4:36:d9:24:91: df:fe:bd:f7:fb:ac:fb:c8:07:33:18:47:d5:7d:84:e2:b4:71: 8a:7b:d0:d9:57:6c:98:6d:ae:4f:d7:53:a0:b8:6a:b5:fb:5c: 6f:e1:78:1c:6d:d7:58:04:4c:a4:e4:20:ef:02:2f:54:80:ed: 72:c2:fc:57:c2:d2:08:dd:ad:70:e0:5b:91:d1:00:29:75:5d: 54:c9:ea:87:cf:21:b0:32:1a:42:b1:09:86:34:b2:3b:bf:ef: 16:48:53:85:9c:a3:6c:a2:f3:96:bf:ad:06:df:82:45:96:57: f4:ba:24:55:e2:4e:a7:41:95:2c:4f:e5:f6:bb:a8:fe:ee:74: b6:ef:88:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNDE1MDMzOTM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkZDRmNy0wMjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Wmrx2CxxjmoY6U6RpGArZyfMbREkB/1AbR4DWstv9toL66MwdxGQLimsLmp fNPioLRhoFzSyGnHdj2fJ/lIAfe2NaP9mq4T33czGaxgJNghgLPXokMu5vYxHGXe aDZNLSKTA+iUF4gswJ3uVSSs5BQqb0ZmLx7loUu/QLpspEChCZartgmm73TK9DHs x7mCgaJ5idA0H48KbBvQHqugR6JB6kHk2l10Bk/dlYsHHalBNCp5zKMDD23q6ZWc yv8tOl/bVExxD/rzPdQV9lfqOUa097nS+rJucMvX+fP/MuCOrxcmq79ge6ssuQ5p dX8in1+iPp3kOC6CPb7jqn3rGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNGs5zD+ 5jlUlF3/n4VLhcAaKOIKMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQUFCMzNFNEM1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvM0I4REVGQkNC MkNEMTFFRkJFQjZBNTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAK+IwDQYJKoZIhvcNAQELBQADggEBACf8ep5afcDQkkGM niu5fp0Kqg9jmZu+wPa82+yG1yh40do50xGuC6NXH1Nq2d9LY1Rkb8cUnUbpAwRB 51oR2h2+1z9EyTGfvCGzixgf+idB52dd3tuDGmL9SCwJUN9dslUDwZWBO/XBA9rz dkKSZvKo7lYJtUADxYekNtkkkd/+vff7rPvIBzMYR9V9hOK0cYp70NlXbJhtrk/X U6C4arX7XG/heBxt11gETKTkIO8CL1SA7XLC/FfC0gjdrXDgW5HRACl1XVTJ6ofP IbAyGkKxCYY0sju/7xZIU4Wco2yi85a/rQbfgkWWV/S6JFXiTqdBlSxP5fa7qP7u dLbviOk= -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:35 2025 by rpki-client