$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/F4E74AA8B99911EF9A0C3B63C4F9AE02.roa File: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (raw, json) Hash identifier: Ci305f1V47fRIRqmqjLy+EIi8DLnLoGCGpVVZ48v10E= Subject key identifier: 0E:23:53:8A:F0:8D:FF:1A:0E:5E:8D:AF:46:E3:83:8B:7C:C6:0C:A8 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 08DD Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/F4E74AA8B99911EF9A0C3B63C4F9AE02.roa Signing time: Fri 28 Mar 2025 21:13:44 +0000 ROA not before: Fri 28 Mar 2025 21:13:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 118.139.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2269 (0x8dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Mar 28 21:13:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e71107-bc8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:23:e7:2d:bd:5f:38:51:a5:7b:40:f4:27:a7: 0f:92:27:fa:9c:fc:7d:06:b1:1c:8c:d3:8d:98:11: 97:63:ba:69:0b:3b:02:7e:2e:90:57:4e:4f:c9:80: 18:48:84:8f:06:a8:29:2a:0b:c2:1e:a4:32:58:fe: c6:3e:b3:c5:24:d7:e5:82:a6:e1:67:5d:b4:53:73: a8:27:45:69:33:eb:3b:20:aa:ea:38:13:15:da:99: 45:6f:23:37:c6:70:eb:bf:e3:e2:f4:64:ef:87:fa: 2e:1c:da:ee:a7:2e:63:1c:3d:78:74:47:d2:cd:b7: a7:76:44:a8:6f:32:a7:b6:92:55:e1:81:64:bd:da: 03:f0:35:45:59:c1:a4:4c:f4:3f:57:6f:9b:ab:4e: db:64:83:a5:de:5c:60:e5:d8:ff:c9:cc:00:7d:91: 8f:54:4c:a1:4d:26:19:55:a3:89:1f:c2:59:ee:a5: 25:1c:5e:9e:8d:6c:bb:e4:b4:c4:94:d9:fb:fa:70: 23:f0:03:4a:7d:e9:8c:ea:96:3b:05:aa:f8:2d:34: a9:76:f6:22:86:d6:8d:0e:e2:53:37:2b:81:5b:38: 3a:1c:c4:61:cd:3c:3b:58:6c:c3:c5:8b:f3:03:48: 85:a2:7d:d0:d6:ff:08:b2:b0:61:67:6d:89:24:d1: d0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:23:53:8A:F0:8D:FF:1A:0E:5E:8D:AF:46:E3:83:8B:7C:C6:0C:A8 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/F4E74AA8B99911EF9A0C3B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.139.184.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:0e:f4:70:91:5c:fb:03:00:24:44:e0:8b:3a:6c:7e:be:73: a7:d8:00:8b:f4:eb:bc:55:6b:5f:33:82:81:f1:87:8a:ca:48: b8:f8:80:70:b1:8f:a4:3d:f0:33:78:a4:9e:55:89:29:21:75: 1b:19:34:c1:fc:53:a5:48:10:03:22:08:07:12:7c:86:aa:42: 0e:8b:ba:55:0d:15:c8:9e:bf:87:46:ce:e5:46:bd:74:29:0e: 3a:a7:47:8d:94:e4:d3:04:d0:a3:dc:4a:58:df:f0:3b:64:c2: a5:4e:66:1f:3f:87:9a:68:90:63:bb:fd:b2:43:c8:96:e8:46: 5f:41:24:1a:c1:06:bd:35:5e:b6:fa:e2:0e:30:d8:aa:06:4b: 13:6c:86:f7:52:bf:f4:22:87:d8:fb:a4:15:7e:18:92:10:4b: e6:6c:9d:bd:14:a3:ab:ae:44:df:d6:2c:47:8f:8c:c3:38:18: 4b:c6:bf:68:43:c3:24:fe:41:33:c9:ff:ad:de:85:8f:e1:89: 03:75:e2:02:7d:db:5b:70:1c:7f:09:fd:79:60:c0:e2:c3:0f: c7:a4:2c:8c:b3:8d:54:e3:02:f2:ec:1f:91:a3:e7:b4:a6:8f: e1:ec:43:bf:3e:b7:ea:a9:cf:49:be:62:36:7a:b2:18:7f:54: 9a:8e:bc:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUwMzI4MjExMzQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U3MTEwNy1iYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9yPnLb1fOFGle0D0J6cPkif6nPx9BrEcjNONmBGXY7ppCzsCfi6QV05PyYAY SISPBqgpKgvCHqQyWP7GPrPFJNflgqbhZ120U3OoJ0VpM+s7IKrqOBMV2plFbyM3 xnDrv+Pi9GTvh/ouHNrupy5jHD14dEfSzbendkSobzKntpJV4YFkvdoD8DVFWcGk TPQ/V2+bq07bZIOl3lxg5dj/ycwAfZGPVEyhTSYZVaOJH8JZ7qUlHF6ejWy75LTE lNn7+nAj8ANKfemM6pY7Bar4LTSpdvYihtaNDuJTNyuBWzg6HMRhzTw7WGzDxYvz A0iFon3Q1v8IsrBhZ22JJNHQRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA4jU4rw jf8aDl6Nr0bjg4t8xgyoMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvRjRFNzRBQThC OTk5MTFFRjlBMEMzQjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ2i7gwDQYJKoZIhvcNAQELBQADggEBAE0O9HCRXPsDACRE 4Is6bH6+c6fYAIv067xVa18zgoHxh4rKSLj4gHCxj6Q98DN4pJ5ViSkhdRsZNMH8 U6VIEAMiCAcSfIaqQg6LulUNFciev4dGzuVGvXQpDjqnR42U5NME0KPcSljf8Dtk wqVOZh8/h5pokGO7/bJDyJboRl9BJBrBBr01Xrb64g4w2KoGSxNshvdSv/Qih9j7 pBV+GJIQS+Zsnb0Uo6uuRN/WLEePjMM4GEvGv2hDwyT+QTPJ/63ehY/hiQN14gJ9 21twHH8J/XlgwOLDD8ekLIyzjVTjAvLsH5Gj57Smj+HsQ78+t+qpz0m+YjZ6shh/ VJqOvPM= -----END CERTIFICATE-----Generated at Sat Apr 26 17:16:02 2025 by rpki-client