$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa File: B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa (raw, json) Hash identifier: RBbk8UhQUJAo0+DivNUUdglkSzsFknX4rSnxZW8gCTk= Subject key identifier: 02:30:3B:F7:BD:1A:63:89:C6:55:3D:71:A9:69:83:D5:57:76:79:5B Certificate issuer: /CN=A91D8704/serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Certificate serial: 084B Authority key identifier: 03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa Signing time: Fri 20 Dec 2024 20:38:53 +0000 ROA not before: Fri 20 Dec 2024 20:38:53 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 24320 IP address blocks: 202.72.240.0/24 maxlen: 24 202.72.241.0/24 maxlen: 24 202.72.242.0/24 maxlen: 24 202.72.243.0/24 maxlen: 24 202.72.244.0/24 maxlen: 24 202.72.245.0/24 maxlen: 24 202.72.246.0/24 maxlen: 24 202.72.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:27:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8704, serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Validity Not Before: Dec 20 20:38:53 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6765d5dd-612c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4d:38:68:c2:bb:fd:f2:96:36:a5:ce:b2:d7: 8a:a0:fd:e2:e8:b0:2e:ed:8a:f0:ca:be:b6:b4:bf: 78:52:47:10:8e:23:d6:08:b1:9d:42:bb:f9:c4:b2: c8:09:c3:94:d8:9f:9a:21:96:9f:88:ab:3d:f6:5a: c0:dc:0a:70:dc:f3:9b:fe:89:19:d3:ce:b7:1a:74: 3d:59:2a:1f:62:ac:d6:14:4c:c5:14:38:f6:29:d3: b3:8e:45:20:99:dd:b9:6b:a7:83:0c:91:a4:4d:37: 3e:9b:ff:e3:73:19:58:44:34:7c:80:6b:e1:78:a0: 10:7b:e1:cd:6c:7b:d0:da:be:cd:3a:7d:d5:20:8f: d3:af:97:a6:fb:16:49:9a:52:82:61:70:84:e0:a3: d6:a5:84:1e:b8:32:f8:5d:9e:64:b0:ab:da:17:97: 09:2a:a9:a8:ab:df:f6:9d:22:79:82:88:8b:5a:4b: 50:22:c5:2b:46:d0:86:b9:00:5c:ad:ad:91:77:db: 8b:ee:78:e9:e9:8c:e7:9c:22:ef:12:a0:16:82:3f: a9:d3:89:cd:cb:f1:2d:48:64:41:4b:1b:83:9e:f2: e0:60:9d:97:bb:f3:8e:28:38:28:3b:3e:d8:94:d2: e5:c1:a3:d3:ff:20:e5:c3:5c:78:74:e4:42:3d:fc: 15:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:30:3B:F7:BD:1A:63:89:C6:55:3D:71:A9:69:83:D5:57:76:79:5B X509v3 Authority Key Identifier: keyid:03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 78:92:da:3e:f3:72:10:fc:73:80:55:01:2d:c3:e9:16:9c:e4: 66:e5:1d:ef:83:4e:1b:e9:40:5a:55:28:e5:2b:70:37:9b:c5: a0:99:fd:8e:8e:34:f3:98:b7:0f:7c:58:31:0d:de:f3:94:90: bd:a6:26:4e:f4:da:ec:4c:26:56:cc:e4:45:2c:17:ee:8f:c9: 11:f2:d6:41:7f:53:d2:a8:91:15:13:e2:97:02:35:c1:33:0f: 73:9e:1e:e1:28:1c:61:7e:60:38:1f:67:fe:61:68:5f:18:a3: ea:af:9f:70:35:75:de:e1:8f:7c:92:93:7b:f1:43:ed:66:4d: 16:1d:6b:56:cb:97:ed:58:03:af:22:ce:3a:2b:e3:87:0b:e8: 4b:c9:29:4e:e5:57:b7:14:7d:93:e5:69:c6:2e:a0:6d:e3:d2: cd:e8:11:48:f6:16:5d:69:c2:13:a2:50:88:b8:61:cb:79:a2: 4a:0e:3d:75:60:51:ee:4a:56:0d:a6:a6:7e:89:66:ac:2f:75: bc:ce:74:d3:45:89:1d:4a:2e:d6:b0:ac:13:7b:c3:a3:5b:ab: 86:37:82:5a:21:3e:5b:b2:40:36:dc:db:a0:ef:8e:e1:c0:da: 56:fa:2c:ac:a4:36:e8:2a:c0:54:1f:46:2e:48:dd:3a:64:0f: d1:b7:d8:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3MDQxMTAvBgNVBAUTKDAzMDdFRjBGMjlDRjIyREIwOTcwRjUwODNDMDIzQzJB QTBENkY1MTcwHhcNMjQxMjIwMjAzODUzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY1ZDVkZC02MTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwU04aMK7/fKWNqXOsteKoP3i6LAu7Yrwyr62tL94UkcQjiPWCLGdQrv5xLLI CcOU2J+aIZafiKs99lrA3Apw3POb/okZ0863GnQ9WSofYqzWFEzFFDj2KdOzjkUg md25a6eDDJGkTTc+m//jcxlYRDR8gGvheKAQe+HNbHvQ2r7NOn3VII/Tr5em+xZJ mlKCYXCE4KPWpYQeuDL4XZ5ksKvaF5cJKqmoq9/2nSJ5goiLWktQIsUrRtCGuQBc ra2Rd9uL7njp6YznnCLvEqAWgj+p04nNy/EtSGRBSxuDnvLgYJ2Xu/OOKDgoOz7Y lNLlwaPT/yDlw1x4dORCPfwVuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAIwO/e9 GmOJxlU9calpg9VXdnlbMB8GA1UdIwQYMBaAFAMH7w8pzyLbCXD1CDwCPCqg1vUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODcwNC81NjU1QUM5OEJD MEMxMUVBOTFFMDlCNjhDNEY5QUUwMi9Bd2Z2RHluUEl0c0pjUFVJUEFJOEtxRFc5 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3ZnZEeW5QSXRzSmNQVUlQQUk4S3FEVzlSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg3MDQvNTY1NUFDOThCQzBDMTFFQTkxRTA5QjY4QzRGOUFFMDIvQjFBQUM1QjJC QzQxMTFFQTlBNUIyNzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKSPAwDQYJKoZIhvcNAQELBQADggEBAHiS2j7zchD8c4BV AS3D6Rac5GblHe+DThvpQFpVKOUrcDebxaCZ/Y6ONPOYtw98WDEN3vOUkL2mJk70 2uxMJlbM5EUsF+6PyRHy1kF/U9KokRUT4pcCNcEzD3OeHuEoHGF+YDgfZ/5haF8Y o+qvn3A1dd7hj3ySk3vxQ+1mTRYda1bLl+1YA68izjor44cL6EvJKU7lV7cUfZPl acYuoG3j0s3oEUj2Fl1pwhOiUIi4Yct5okoOPXVgUe5KVg2mpn6JZqwvdbzOdNNF iR1KLtawrBN7w6Nbq4Y3glohPluyQDbc26DvjuHA2lb6LKykNugqwFQfRi5I3Tpk D9G32Ls= -----END CERTIFICATE-----Generated at Sat Apr 26 08:14:25 2025 by rpki-client