$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa File: 543386248C5811E782F42951C4F9AE02.roa (raw, json) Hash identifier: GlY/r205IC2OrqcOiTDslwqaWuBIkTf2ufwkodlMU14= Subject key identifier: EB:FC:BC:EE:BE:09:5B:4F:F4:D4:BF:CB:BD:62:4F:02:C3:B0:8F:76 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 277D Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:24 +0000 ROA not before: Tue 08 Apr 2025 15:53:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132206 IP address blocks: 112.206.224.0/20 maxlen: 20 112.206.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10109 (0x277d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54674-2855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c8:6c:17:d5:0e:e4:28:a8:ca:2d:8d:a7:8c: 38:ef:0e:92:3d:53:89:02:92:2e:93:77:84:ef:02: ce:32:55:b9:84:27:f4:79:c6:9d:74:57:2e:65:90: 45:89:56:72:ca:79:88:b5:a8:84:aa:f2:71:e9:0a: fe:87:41:c6:be:20:41:c5:2e:8e:c3:47:0a:9b:d9: 60:70:c8:86:71:cf:80:04:eb:e2:12:5e:e3:26:55: 60:ba:54:bd:42:df:31:98:34:be:03:6a:ed:52:a2: 7c:44:16:c1:73:74:11:29:52:59:f0:86:99:bf:8a: c4:21:7a:2d:d8:20:5c:ef:9c:a1:96:23:b8:f9:8e: dc:06:7e:67:53:95:45:dd:e9:82:cd:b9:9b:45:07: 4b:90:a0:f3:c6:c6:05:8b:9e:a3:14:f2:88:3e:e5: 65:9e:54:93:01:1a:bf:94:36:cb:35:8e:c9:51:59: cc:11:19:3b:73:2d:ff:52:24:17:18:b7:f5:88:a4: 60:f2:87:dc:4b:76:3b:c9:1e:ff:60:78:0b:1e:15: de:c7:38:52:e7:da:27:7f:77:91:e9:a6:02:bf:18: a2:d7:c5:c2:75:8d:b4:78:bb:6c:8e:59:45:26:43: a0:85:6a:cc:bc:ba:60:af:98:5f:fb:6c:24:41:e0: 09:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:FC:BC:EE:BE:09:5B:4F:F4:D4:BF:CB:BD:62:4F:02:C3:B0:8F:76 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.206.224.0/20 Signature Algorithm: sha256WithRSAEncryption 7f:d6:d7:7d:6a:47:94:f1:35:6d:97:01:3c:4b:3f:c0:8a:8e: 03:f3:57:4b:c8:44:9d:6b:69:eb:62:22:4d:17:7b:66:84:ba: 93:02:7c:75:b8:90:81:11:32:bb:a5:12:8b:c3:81:5e:2b:91: 08:a4:1b:d7:3f:be:e9:c6:a9:87:ce:1a:ad:5f:da:3e:be:f3: 45:98:27:e7:c6:75:a0:6c:61:bd:76:53:50:d8:42:f1:23:99: de:44:d4:14:92:82:34:1d:6c:70:f5:fc:02:fd:54:55:3f:95: 49:63:53:38:6c:84:e0:c0:04:15:1d:1a:7c:3c:b5:57:d5:c7: d5:8e:0e:35:01:7b:ef:e6:91:8e:4e:25:59:a3:a9:78:81:14: 8b:4c:1c:53:3d:18:8b:2c:a8:31:c7:bb:c8:9c:86:06:60:c1: 57:69:67:17:f1:57:6f:f6:56:51:a0:4d:0f:23:20:63:b8:9e: ff:6c:e7:db:13:a7:07:95:4e:62:01:8a:05:b7:fb:4f:6b:d1: 5f:d9:77:6c:b6:c0:e1:82:4d:e2:03:00:87:63:98:3a:4a:74: 1e:17:e9:63:91:2e:e5:52:e8:25:e1:b8:44:13:c9:01:c6:f3: 0d:e5:f4:ec:f7:8a:0c:0c:f3:38:4c:7f:c3:08:d7:ea:40:3e: 4f:cd:73:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY3NC0yODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsshsF9UO5Cioyi2Np4w47w6SPVOJApIuk3eE7wLOMlW5hCf0ecaddFcuZZBF iVZyynmItaiEqvJx6Qr+h0HGviBBxS6Ow0cKm9lgcMiGcc+ABOviEl7jJlVgulS9 Qt8xmDS+A2rtUqJ8RBbBc3QRKVJZ8IaZv4rEIXot2CBc75yhliO4+Y7cBn5nU5VF 3emCzbmbRQdLkKDzxsYFi56jFPKIPuVlnlSTARq/lDbLNY7JUVnMERk7cy3/UiQX GLf1iKRg8ofcS3Y7yR7/YHgLHhXexzhS59onf3eR6aYCvxii18XCdY20eLtsjllF JkOghWrMvLpgr5hf+2wkQeAJOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOv8vO6+ CVtP9NS/y71iTwLDsI92MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNTQzMzg2MjQ4 QzU4MTFFNzgyRjQyOTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARwzuAwDQYJKoZIhvcNAQELBQADggEBAH/W131qR5TxNW2X ATxLP8CKjgPzV0vIRJ1raetiIk0Xe2aEupMCfHW4kIERMrulEovDgV4rkQikG9c/ vunGqYfOGq1f2j6+80WYJ+fGdaBsYb12U1DYQvEjmd5E1BSSgjQdbHD1/AL9VFU/ lUljUzhshODABBUdGnw8tVfVx9WODjUBe+/mkY5OJVmjqXiBFItMHFM9GIssqDHH u8ichgZgwVdpZxfxV2/2VlGgTQ8jIGO4nv9s59sTpweVTmIBigW3+09r0V/Zd2y2 wOGCTeIDAIdjmDpKdB4X6WORLuVS6CXhuEQTyQHG8w3l9Oz3igwM8zhMf8MI1+pA Pk/Nc1s= -----END CERTIFICATE-----Generated at Sat Apr 26 12:35:40 2025 by rpki-client