$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa File: 4E8DA224547711EF9EDD014DC4F9AE02.roa (raw, json) Hash identifier: 4Q9eSoyybwKkbe+OvPprVAkVlq22srO6Z2iGnnSJ3hw= Subject key identifier: F7:45:9B:D9:BD:2C:71:98:1B:3A:36:FB:FA:C7:D9:F0:EF:B2:48:DA Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 02E7 Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa Signing time: Thu 17 Apr 2025 01:07:18 +0000 ROA not before: Thu 17 Apr 2025 01:07:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18390 IP address blocks: 202.87.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43, serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: Apr 17 01:07:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68005445-e3c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:79:a7:8d:1d:46:c7:b8:28:d9:98:7c:13:26: a6:45:50:3d:ac:bb:1c:71:4a:2a:75:d2:60:48:3d: 0f:db:5d:68:5f:0e:f8:e2:8d:09:80:b5:fd:31:bb: a1:05:4b:71:f4:51:a7:b6:0c:62:71:7d:53:ad:64: 95:eb:6f:d3:51:e8:1c:65:87:a3:35:77:00:04:b0: 68:82:02:c7:f1:0d:23:0f:3c:6b:96:0c:a7:42:e2: 31:65:aa:79:5f:a0:cc:de:c7:f8:c9:0d:84:b1:1b: 71:d1:47:e7:ad:ab:c6:1b:37:2b:a3:12:bc:bc:57: 95:54:1d:b2:3d:ed:f2:72:83:95:47:e6:dd:5e:79: 1a:06:71:8a:de:20:77:fb:41:4b:c3:4b:98:51:81: fb:d4:cf:fa:81:a8:8a:3f:65:74:f0:9c:eb:3c:04: cf:a0:0b:59:a0:9e:b4:3e:df:f6:c7:df:16:5b:c8: 1b:f6:7a:e4:89:45:cd:22:28:4c:e3:aa:fb:2f:84: c0:31:bf:40:64:7f:f4:0a:36:e5:df:16:03:18:31: f9:c5:e0:29:70:74:1d:d6:b1:2d:71:b3:4f:d7:39: 14:71:49:c3:4a:58:52:b1:6c:a7:e7:d6:d7:85:db: ca:fb:7c:29:0b:8d:24:50:c7:78:f2:ff:9d:cf:a4: b6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:45:9B:D9:BD:2C:71:98:1B:3A:36:FB:FA:C7:D9:F0:EF:B2:48:DA X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.87.160.0/20 Signature Algorithm: sha256WithRSAEncryption 16:90:43:d6:3b:a0:45:96:39:6c:22:c5:f2:42:3a:b1:c3:41: e4:e1:75:19:ee:b8:f4:38:ec:f9:97:2c:83:57:c0:2c:7b:83: 6a:61:b4:6c:ad:f7:68:2f:0f:8d:a3:ba:35:c5:44:2d:80:a4: 8e:cd:dd:72:24:52:a6:1a:5a:f4:0a:0f:33:da:60:7f:36:4b: 1e:ff:be:57:47:6f:d6:d8:af:2b:6f:d3:71:5a:92:15:80:9c: 80:a0:f4:03:a0:1c:80:05:21:4a:34:de:c9:79:35:da:c3:8e: c6:e5:88:04:a9:33:6e:b1:03:e1:ba:80:50:d6:5b:4f:1a:f1: 0c:f6:57:5c:08:a7:9b:44:70:68:b5:a2:37:ea:0d:03:e4:b7: 89:f6:47:3d:f0:2e:6e:20:a7:e7:82:f9:41:b3:5a:36:bf:67: d2:b7:8e:49:1c:29:16:0e:04:9a:3d:d4:53:39:ba:f0:60:7c: 8f:6c:f6:95:fb:75:ea:8c:95:2a:86:a7:a1:1e:d8:1b:c9:08: 2c:95:df:73:85:1e:4a:00:9a:31:5a:90:4b:53:00:99:ec:1b: da:ff:eb:0a:be:1c:f0:97:07:3d:82:db:67:4e:80:96:95:4a: f8:83:33:bc:bd:0d:ca:54:cf:96:71:19:4a:72:68:1c:ba:5e: a5:9d:ab:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjUwNDE3MDEwNzE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwNTQ0NS1lM2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8XmnjR1Gx7go2Zh8EyamRVA9rLsccUoqddJgSD0P211oXw744o0JgLX9Mbuh BUtx9FGntgxicX1TrWSV62/TUegcZYejNXcABLBoggLH8Q0jDzxrlgynQuIxZap5 X6DM3sf4yQ2EsRtx0UfnravGGzcroxK8vFeVVB2yPe3ycoOVR+bdXnkaBnGK3iB3 +0FLw0uYUYH71M/6gaiKP2V08JzrPATPoAtZoJ60Pt/2x98WW8gb9nrkiUXNIihM 46r7L4TAMb9AZH/0Cjbl3xYDGDH5xeApcHQd1rEtcbNP1zkUcUnDSlhSsWyn59bX hdvK+3wpC40kUMd48v+dz6S22QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPdFm9m9 LHGYGzo2+/rH2fDvskjaMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZENDMvN0Q5OTgwNzZEQ0QxMTFFQ0EzQUI5RDM2QzRGOUFFMDIvNEU4REEyMjQ1 NDc3MTFFRjlFREQwMTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKV6AwDQYJKoZIhvcNAQELBQADggEBABaQQ9Y7oEWWOWwi xfJCOrHDQeThdRnuuPQ47PmXLINXwCx7g2phtGyt92gvD42jujXFRC2ApI7N3XIk UqYaWvQKDzPaYH82Sx7/vldHb9bYrytv03FakhWAnICg9AOgHIAFIUo03sl5NdrD jsbliASpM26xA+G6gFDWW08a8Qz2V1wIp5tEcGi1ojfqDQPkt4n2Rz3wLm4gp+eC +UGzWja/Z9K3jkkcKRYOBJo91FM5uvBgfI9s9pX7deqMlSqGp6Ee2BvJCCyV33OF HkoAmjFakEtTAJnsG9r/6wq+HPCXBz2C22dOgJaVSviDM7y9DcpUz5ZxGUpyaBy6 XqWdq7M= -----END CERTIFICATE-----Generated at Sat Apr 26 09:01:43 2025 by rpki-client