$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/62F6493EE3BE11EE933A0461C4F9AE02.roa File: 62F6493EE3BE11EE933A0461C4F9AE02.roa (raw, json) Hash identifier: 6KUaAZVDPkXTkOKZ5DbXYRghI5OIx+//6O9Z2SthviM= Subject key identifier: A3:24:AC:54:C4:84:A9:B5:96:D3:75:05:62:14:8A:75:B8:B3:17:BA Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2790 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/62F6493EE3BE11EE933A0461C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:43 +0000 ROA not before: Tue 08 Apr 2025 15:53:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18115 IP address blocks: 27.110.128.0/24 maxlen: 24 58.71.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10128 (0x2790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54686-8740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d0:b7:91:e9:bc:d9:52:1f:0a:95:2d:4c:e4: 55:19:02:a1:70:03:67:5d:ff:05:70:5b:8e:19:86: 34:28:98:37:09:9e:13:62:0c:82:e5:e6:ae:15:60: b7:af:00:d7:c2:19:7a:84:b4:71:19:e9:80:9a:64: 1d:58:66:9d:44:c1:f2:8c:54:2d:ff:71:33:32:88: b1:75:c6:90:9a:c4:cf:11:6b:b3:df:36:af:b7:db: 8c:27:23:bf:c9:97:b3:40:c1:02:16:30:74:04:02: e9:24:0e:5e:8c:5a:40:8e:5a:c3:6d:60:03:e5:29: e4:81:36:de:55:bc:9d:04:79:5b:f7:05:23:6f:2d: 82:63:89:fb:c7:76:dd:7f:d7:77:53:07:6b:1f:14: 6b:db:af:b4:ac:48:37:ab:fe:b4:3b:b4:50:f5:73: 27:05:c8:eb:bb:f8:55:84:26:32:da:0d:58:20:58: 41:6e:75:18:64:04:e7:04:fa:f8:00:e2:06:6a:a9: 01:fb:ad:36:68:12:f1:c0:7b:c7:18:9c:2c:cd:ae: e6:9e:95:70:c4:e2:57:95:a8:b0:e3:01:78:1a:7e: 24:33:69:b2:05:e5:66:2c:f1:86:b5:5f:8d:a8:4d: 5e:c5:c5:f8:01:96:0e:92:70:a6:53:ba:88:0f:cc: 88:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:24:AC:54:C4:84:A9:B5:96:D3:75:05:62:14:8A:75:B8:B3:17:BA X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/62F6493EE3BE11EE933A0461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.128.0/24 58.71.117.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:b0:49:a3:7b:9b:05:9b:df:bc:49:cb:fd:cd:15:5c:f4:fc: 2d:2b:1f:f8:09:b3:e1:e1:aa:07:45:06:22:55:39:2d:9f:e4: 45:5a:ca:65:a3:bd:8b:71:ed:84:59:96:c9:83:ee:39:2f:1b: 28:89:54:d1:f9:2e:69:b1:c2:b7:7d:2f:ea:8b:c8:c5:25:d6: 3a:64:13:e9:c9:9f:cf:79:0f:92:09:5a:89:86:28:92:62:f6: 70:f2:72:9c:a2:8a:20:0a:e6:cc:16:8d:67:0c:18:48:89:e6: 7b:95:e2:a0:07:cc:6c:c3:45:85:7a:df:62:ba:c4:bd:ff:10: c4:0c:a5:2a:4d:71:e4:74:a5:06:db:00:82:0d:69:3c:0d:0e: 08:fa:af:81:0d:67:e8:49:40:fe:08:31:79:15:36:98:c8:d6: c2:dc:be:c4:1d:c2:56:7f:83:04:19:3f:53:63:5f:a1:45:ff: 5d:97:25:cb:6c:d7:55:6c:8f:46:e0:68:93:7d:cc:d7:9f:a8: 77:05:0d:3e:2c:d5:9b:91:78:d4:fc:74:db:6c:32:91:49:37: 57:8b:7f:38:0f:8e:83:e4:3c:22:b9:08:b0:6b:23:df:f6:2b: 77:7b:db:97:d5:91:4d:3a:08:52:4e:54:54:13:f0:1b:9b:49: 38:b3:9a:a2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJ5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4Ni04NzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39C3kem82VIfCpUtTORVGQKhcANnXf8FcFuOGYY0KJg3CZ4TYgyC5eauFWC3 rwDXwhl6hLRxGemAmmQdWGadRMHyjFQt/3EzMoixdcaQmsTPEWuz3zavt9uMJyO/ yZezQMECFjB0BALpJA5ejFpAjlrDbWAD5SnkgTbeVbydBHlb9wUjby2CY4n7x3bd f9d3UwdrHxRr26+0rEg3q/60O7RQ9XMnBcjru/hVhCYy2g1YIFhBbnUYZATnBPr4 AOIGaqkB+602aBLxwHvHGJwsza7mnpVwxOJXlaiw4wF4Gn4kM2myBeVmLPGGtV+N qE1excX4AZYOknCmU7qID8yIpQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKMkrFTE hKm1ltN1BWIUinW4sxe6MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNjJGNjQ5M0VF M0JFMTFFRTkzM0EwNDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAbboADBAA6R3UwDQYJKoZIhvcNAQELBQADggEBAJywSaN7 mwWb37xJy/3NFVz0/C0rH/gJs+HhqgdFBiJVOS2f5EVaymWjvYtx7YRZlsmD7jkv GyiJVNH5Lmmxwrd9L+qLyMUl1jpkE+nJn895D5IJWomGKJJi9nDycpyiiiAK5swW jWcMGEiJ5nuV4qAHzGzDRYV632K6xL3/EMQMpSpNceR0pQbbAIINaTwNDgj6r4EN Z+hJQP4IMXkVNpjI1sLcvsQdwlZ/gwQZP1NjX6FF/12XJcts11Vsj0bgaJN9zNef qHcFDT4s1ZuReNT8dNtsMpFJN1eLfzgPjoPkPCK5CLBrI9/2K3d725fVkU06CFJO VFQT8BubSTizmqI= -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:02 2025 by rpki-client