$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/E248BDA63C5211EF94184A20C4F9AE02.roa File: E248BDA63C5211EF94184A20C4F9AE02.roa (raw, json) Hash identifier: uCKPAwy0X3Z4CL+hlBr0CZ+w6vMoqyCthCGEPEwyTxY= Subject key identifier: 4D:02:1C:7F:FA:64:2C:F4:67:30:73:DF:12:BC:9C:1D:16:F9:EC:94 Certificate issuer: /CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Certificate serial: 041D Authority key identifier: 95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/E248BDA63C5211EF94184A20C4F9AE02.roa Signing time: Thu 17 Apr 2025 00:35:41 +0000 ROA not before: Thu 17 Apr 2025 00:35:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136454 IP address blocks: 116.204.241.0/24 maxlen: 24 2400:e640:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C8E, serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Validity Not Before: Apr 17 00:35:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68004cdd-6192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:35:40:2a:da:f1:16:29:38:9b:e1:8e:6b:30: a6:82:b4:05:4e:73:54:a9:03:42:62:85:1c:97:e1: 48:5b:eb:90:0d:a9:92:a3:6b:46:b7:e1:57:9e:b8: ac:e4:df:f2:f7:64:4c:aa:1a:cd:30:8a:ed:cf:60: 0e:d4:c1:9c:1e:e2:b2:2a:eb:03:39:ca:ad:ef:1e: 9e:ce:da:53:a9:ea:2c:19:2d:71:45:eb:a5:31:b4: e1:ea:b7:e5:c9:50:1d:f9:58:f7:5e:f3:cb:d0:fa: 00:86:66:da:11:c1:4a:40:82:ce:9f:be:70:b7:a4: 49:f4:98:1d:f2:00:dc:0b:57:3f:17:a6:66:2d:19: 9b:d8:01:ef:df:00:67:97:aa:a7:5f:98:52:2b:f8: 32:ff:9c:b2:ff:47:8e:3f:fc:34:db:be:d4:16:1b: 2c:a1:d7:b8:d9:c8:0a:05:83:c1:8f:e1:e3:c6:cc: 66:45:9d:fc:6f:f6:47:3e:91:c6:33:64:1e:dd:de: 22:25:0e:d6:d2:ae:28:a1:6f:17:77:e1:fc:5a:11: eb:11:42:08:c7:1e:f5:31:17:0c:e9:6c:d0:a3:ee: 29:15:e1:ed:80:58:e2:e6:47:0a:89:f5:e6:a2:18: 2e:ac:b7:0f:cc:23:d1:94:cc:ac:c1:b2:1e:80:05: a2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:02:1C:7F:FA:64:2C:F4:67:30:73:DF:12:BC:9C:1D:16:F9:EC:94 X509v3 Authority Key Identifier: keyid:95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/E248BDA63C5211EF94184A20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.241.0/24 IPv6: 2400:e640:1000::/36 Signature Algorithm: sha256WithRSAEncryption 6e:ab:bc:a9:23:b4:26:62:a7:29:f6:71:37:22:cf:77:32:51: a1:b8:f9:ce:be:47:cf:a9:2f:1d:94:a9:90:c5:d7:45:9d:bd: e7:d1:22:94:55:11:35:cc:4e:8c:9f:7b:76:76:1a:1a:0c:35: 4d:5d:77:72:e7:be:a7:32:9e:4d:2e:5f:3d:04:7e:1d:46:a4: ce:81:0e:38:ea:5e:a1:e2:c4:da:82:c7:a8:e0:06:c8:df:c7: 26:36:73:6b:ac:8c:08:34:d1:33:d3:fd:61:52:7e:f2:2b:29: 78:1d:62:11:1a:ef:72:0f:ac:32:b3:56:c8:07:d4:96:25:af: 0b:f8:e8:3e:cb:dd:65:49:96:12:38:72:ad:9e:08:f7:41:18: 20:60:e5:8b:96:4b:44:6d:86:8c:a9:fd:83:3d:f1:38:68:f8: a4:08:7a:4f:7e:be:68:84:31:19:19:19:0a:d2:9f:e1:bb:2c: fd:93:bb:49:6d:e3:da:40:b7:40:62:f5:bf:9b:e5:b9:b6:f1: d6:4d:aa:cc:16:6c:a7:c1:4a:a3:dc:84:bb:8b:1b:72:86:1b: 8f:cc:8f:bd:0e:5a:1a:7f:c2:1b:46:2a:d3:fe:c2:e0:cd:f3: 63:3f:62:df:17:03:50:40:ee:1c:e0:37:14:c7:99:49:5a:da: ef:f8:39:74 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDOEUxMTAvBgNVBAUTKDk1MzVENzYxMTBCM0MwMjlDNTg1NUI0QzE3NDUwNUFG NjExOUYzMEMwHhcNMjUwNDE3MDAzNTQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwNGNkZC02MTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDVAKtrxFik4m+GOazCmgrQFTnNUqQNCYoUcl+FIW+uQDamSo2tGt+FXnris 5N/y92RMqhrNMIrtz2AO1MGcHuKyKusDOcqt7x6eztpTqeosGS1xReulMbTh6rfl yVAd+Vj3XvPL0PoAhmbaEcFKQILOn75wt6RJ9Jgd8gDcC1c/F6ZmLRmb2AHv3wBn l6qnX5hSK/gy/5yy/0eOP/w0277UFhssode42cgKBYPBj+HjxsxmRZ38b/ZHPpHG M2Qe3d4iJQ7W0q4ooW8Xd+H8WhHrEUIIxx71MRcM6WzQo+4pFeHtgFji5kcKifXm ohgurLcPzCPRlMyswbIegAWiywIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFE0CHH/6 ZCz0ZzBz3xK8nB0W+eyUMB8GA1UdIwQYMBaAFJU112EQs8ApxYVbTBdFBa9hGfMM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEM4RS8wMzJFNTdCODc0 MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendDbkZoVnRNRjBVRnIyRVo4 d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUWFhZUkN6d0NuRmhWdE1GMFVGcjJFWjh3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDBDOEUvMDMyRTU3Qjg3NDM5MTFFQ0I1NTcyMzZGQzRGOUFFMDIvRTI0OEJEQTYz QzUyMTFFRjk0MTg0QTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAB0zPEwDgQCAAIwCAMGBCQA5kAQMA0GCSqGSIb3DQEBCwUA A4IBAQBuq7ypI7QmYqcp9nE3Is93MlGhuPnOvkfPqS8dlKmQxddFnb3n0SKUVRE1 zE6Mn3t2dhoaDDVNXXdy576nMp5NLl89BH4dRqTOgQ446l6h4sTagseo4AbI38cm NnNrrIwINNEz0/1hUn7yKyl4HWIRGu9yD6wys1bIB9SWJa8L+Og+y91lSZYSOHKt ngj3QRggYOWLlktEbYaMqf2DPfE4aPikCHpPfr5ohDEZGRkK0p/huyz9k7tJbePa QLdAYvW/m+W5tvHWTarMFmynwUqj3IS7ixtyhhuPzI+9Dloaf8IbRirT/sLgzfNj P2LfFwNQQO4c4DcUx5lJWtrv+Dl0 -----END CERTIFICATE-----Generated at Sat Apr 26 12:29:11 2025 by rpki-client