$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa File: 5366509AC63511EAAC843455C4F9AE02.roa (raw, json) Hash identifier: 4VfxlhXPt3Fli8QftF+Jbfr+B7PpkjZJjrN7R7UoFec= Subject key identifier: BD:1A:70:DA:30:A4:6D:85:75:31:1D:CA:BF:26:C3:FE:6E:35:EC:E3 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 279B Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:58 +0000 ROA not before: Tue 08 Apr 2025 15:53:58 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9497 IP address blocks: 202.138.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10139 (0x279b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:58 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54695-44ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cd:95:49:f9:a4:8a:e9:fe:c7:5f:d1:3a:94: 6f:b6:8f:5e:d3:4d:2d:d1:15:9b:cd:24:d8:66:16: cc:0a:5d:51:11:43:ec:53:8e:b4:1a:25:5b:4f:7e: 27:94:19:62:79:b6:22:bd:82:8d:25:9a:8d:7c:6e: 94:aa:fc:da:87:b5:4d:8e:84:d6:46:8d:12:0f:02: c0:ac:c8:00:eb:88:90:55:d8:ca:87:85:f6:99:97: 84:83:69:c1:29:32:a5:31:bb:b8:7c:28:13:4d:3f: 00:a9:49:84:83:63:ed:ff:34:d7:3b:5f:e0:ce:94: b4:f5:76:37:fe:84:db:ff:02:a3:a7:f3:f8:72:a3: 7c:28:fb:6a:01:26:8c:7b:25:ac:7d:19:cb:98:3c: fd:c9:78:dd:9b:f0:9f:be:b0:3a:e7:fa:41:71:50: 35:f3:59:35:2a:fa:5d:dc:83:e2:a9:2c:f8:21:18: 59:22:bd:9f:b1:a2:2b:78:3f:cd:d7:af:a4:65:a2: eb:1c:42:fa:95:c5:0e:c5:36:85:0b:b1:36:2d:2e: 1b:0c:e4:be:bd:80:a5:17:02:0d:5b:d2:ce:c6:65: e8:a0:63:97:b4:bc:48:c4:4e:2b:f6:40:c9:bf:6d: 24:a1:55:09:bf:ba:66:10:f3:19:df:c0:53:da:3f: 81:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1A:70:DA:30:A4:6D:85:75:31:1D:CA:BF:26:C3:FE:6E:35:EC:E3 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.138.128.0/19 Signature Algorithm: sha256WithRSAEncryption a9:c7:37:0c:77:dc:5e:22:22:70:8e:0e:2a:1e:fb:47:33:6d: c9:a5:ba:e1:4c:f9:8d:3d:57:88:b1:85:c5:d8:d1:76:26:94: 75:1f:bf:db:3d:a8:07:ec:ec:12:05:00:89:a6:09:27:8e:4b: 83:0e:4a:c7:40:4b:b6:3c:b1:df:57:f3:a9:ce:f3:20:07:ab: be:17:27:b0:2f:62:b6:7e:9b:4a:55:09:76:06:a8:3f:ff:c4: 8e:b5:bf:ca:f0:19:59:0a:92:c3:02:2d:46:e2:eb:21:49:08: 44:49:de:e3:2d:b0:55:54:d7:39:c3:73:4d:3b:17:8b:81:0b: 00:b4:bb:40:49:f5:7e:13:46:8b:44:cf:5b:39:c1:05:c2:05: 4e:88:65:87:d4:28:5b:73:2d:2b:0a:c9:ef:22:e6:75:a7:70: da:c0:43:cf:19:56:cd:02:ac:65:a2:00:9d:af:86:e6:4a:58: a6:59:8f:de:56:44:54:aa:05:e3:fa:79:09:42:08:e3:72:d6: c2:4e:cf:2f:41:c8:81:ed:51:7c:33:3b:eb:f1:69:d3:8e:52: 58:f3:be:fa:be:1c:97:39:ea:34:f3:bb:18:2a:91:25:4a:07: 29:6c:83:e0:ee:77:e6:9c:95:07:52:8e:65:34:94:dd:64:36: 51:57:95:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzU4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY5NS00NGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwc2VSfmkiun+x1/ROpRvto9e000t0RWbzSTYZhbMCl1REUPsU460GiVbT34n lBliebYivYKNJZqNfG6Uqvzah7VNjoTWRo0SDwLArMgA64iQVdjKh4X2mZeEg2nB KTKlMbu4fCgTTT8AqUmEg2Pt/zTXO1/gzpS09XY3/oTb/wKjp/P4cqN8KPtqASaM eyWsfRnLmDz9yXjdm/CfvrA65/pBcVA181k1Kvpd3IPiqSz4IRhZIr2fsaIreD/N 16+kZaLrHEL6lcUOxTaFC7E2LS4bDOS+vYClFwINW9LOxmXooGOXtLxIxE4r9kDJ v20koVUJv7pmEPMZ38BT2j+BbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL0acNow pG2FdTEdyr8mw/5uNezjMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNTM2NjUwOUFD NjM1MTFFQUFDODQzNDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXKioAwDQYJKoZIhvcNAQELBQADggEBAKnHNwx33F4iInCO Dioe+0czbcmluuFM+Y09V4ixhcXY0XYmlHUfv9s9qAfs7BIFAImmCSeOS4MOSsdA S7Y8sd9X86nO8yAHq74XJ7AvYrZ+m0pVCXYGqD//xI61v8rwGVkKksMCLUbi6yFJ CERJ3uMtsFVU1znDc007F4uBCwC0u0BJ9X4TRotEz1s5wQXCBU6IZYfUKFtzLSsK ye8i5nWncNrAQ88ZVs0CrGWiAJ2vhuZKWKZZj95WRFSqBeP6eQlCCONy1sJOzy9B yIHtUXwzO+vxadOOUljzvvq+HJc56jTzuxgqkSVKBylsg+Dud+aclQdSjmU0lN1k NlFXlXQ= -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:31 2025 by rpki-client