$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/6DBD2412C9EB11EC886A6D51C4F9AE02.roa File: 6DBD2412C9EB11EC886A6D51C4F9AE02.roa (raw, json) Hash identifier: 2JFPJBUaYhM0ytiq7e9eC6CYsDAt8wgMcc3SKiIFHsg= Subject key identifier: E7:43:9E:60:DB:AE:F4:D6:F9:7D:F9:8B:BC:C2:65:6B:74:9B:A0:18 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2783 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/6DBD2412C9EB11EC886A6D51C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:30 +0000 ROA not before: Tue 08 Apr 2025 15:53:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134154 IP address blocks: 203.213.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10115 (0x2783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5467a-0ed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1e:54:aa:b9:a2:23:44:ef:7b:b6:7e:f1:5b: b3:75:dc:5b:98:d5:04:dd:39:26:72:92:66:bb:7c: 65:0b:82:22:b2:16:4f:46:20:9a:6a:1a:b7:2f:e1: f4:6f:bc:38:ab:cc:52:da:95:09:3c:d2:6e:c5:57: c0:7a:87:64:e4:04:9e:87:66:fe:0e:90:7d:83:13: 7b:e2:f6:89:e8:3e:16:c5:12:dc:25:93:ed:5d:55: 35:db:3f:b6:da:7c:6a:30:e9:bd:a5:b7:4c:52:e2: 83:16:b3:fb:ae:26:a7:23:88:2c:b2:c9:1b:ec:94: 30:f0:49:0c:c0:d6:6e:13:f2:ec:db:8e:1d:41:fd: 34:ab:c1:b6:ef:7d:81:6e:72:e9:06:59:c6:3f:5e: 3b:2e:65:59:64:7d:86:f6:a8:ab:1e:65:a4:5c:21: 07:af:02:57:e3:41:23:44:8f:ce:03:ad:28:c3:b1: c7:04:cd:e1:36:e8:ef:39:81:0e:36:60:90:6c:91: cd:91:9b:7d:3e:a7:4d:e8:4e:b8:c1:ed:ca:22:45: cf:c1:27:70:b1:a4:58:e9:b8:88:c8:f9:7d:7d:60: d2:e1:a4:c4:b1:61:f6:a6:b3:66:b3:5f:7f:2b:6e: 5f:d7:a4:f0:dc:cb:38:5d:63:8e:e5:19:a7:de:72: a7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:43:9E:60:DB:AE:F4:D6:F9:7D:F9:8B:BC:C2:65:6B:74:9B:A0:18 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/6DBD2412C9EB11EC886A6D51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.213.219.0/24 Signature Algorithm: sha256WithRSAEncryption 86:46:2d:c2:29:5b:0f:7e:9b:71:22:59:ad:fc:db:18:bc:4f: 0d:b8:19:c0:d3:78:66:bb:93:5c:84:61:69:c7:30:4d:49:fb: 45:9b:19:02:dd:98:45:f1:a5:d5:d9:77:88:cd:5f:ae:d9:e8: 9a:f3:36:06:ed:3c:7a:82:02:94:31:28:f2:d5:fb:94:c9:ae: 7b:6d:c9:36:fb:74:fe:0e:e9:1a:23:d5:6c:00:ea:46:71:b6: 3f:23:cd:cc:86:75:e3:23:c9:e2:42:1a:ac:6b:b2:b1:99:4e: c9:0f:2b:4f:31:b6:6d:45:c8:7d:41:99:30:e2:08:72:a5:20: 59:b5:ac:47:92:4e:1a:4d:c4:a7:33:87:24:ad:9c:60:23:6c: 15:7d:c6:16:b6:f2:90:fa:db:d3:86:96:55:ea:42:ae:ec:20: e9:3e:e3:13:c7:86:f1:8a:07:f7:bb:74:73:06:fb:66:ff:ed: ad:6c:57:0a:a7:1c:0a:f5:56:4d:de:b9:4d:af:e4:16:a7:aa: bb:85:40:15:0c:b7:93:24:f3:ca:b1:56:f6:5e:e6:17:fe:ac: 0d:0c:ea:01:1e:24:26:03:1e:a2:0e:1e:13:0d:cd:b8:ee:cb: 3a:63:28:29:6a:68:f6:fd:78:1c:3a:ac:90:a4:11:03:b7:a1: eb:ed:c5:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzMwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY3YS0wZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux5UqrmiI0Tve7Z+8VuzddxbmNUE3TkmcpJmu3xlC4IishZPRiCaahq3L+H0 b7w4q8xS2pUJPNJuxVfAeodk5ASeh2b+DpB9gxN74vaJ6D4WxRLcJZPtXVU12z+2 2nxqMOm9pbdMUuKDFrP7rianI4gssskb7JQw8EkMwNZuE/Ls244dQf00q8G2732B bnLpBlnGP147LmVZZH2G9qirHmWkXCEHrwJX40EjRI/OA60ow7HHBM3hNujvOYEO NmCQbJHNkZt9PqdN6E64we3KIkXPwSdwsaRY6biIyPl9fWDS4aTEsWH2prNms19/ K25f16Tw3Ms4XWOO5Rmn3nKnEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOdDnmDb rvTW+X35i7zCZWt0m6AYMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNkRCRDI0MTJD OUVCMTFFQzg4NkE2RDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL1dswDQYJKoZIhvcNAQELBQADggEBAIZGLcIpWw9+m3Ei Wa382xi8Tw24GcDTeGa7k1yEYWnHME1J+0WbGQLdmEXxpdXZd4jNX67Z6JrzNgbt PHqCApQxKPLV+5TJrnttyTb7dP4O6Roj1WwA6kZxtj8jzcyGdeMjyeJCGqxrsrGZ TskPK08xtm1FyH1BmTDiCHKlIFm1rEeSThpNxKczhyStnGAjbBV9xha28pD629OG llXqQq7sIOk+4xPHhvGKB/e7dHMG+2b/7a1sVwqnHAr1Vk3euU2v5BanqruFQBUM t5Mk88qxVvZe5hf+rA0M6gEeJCYDHqIOHhMNzbjuyzpjKClqaPb9eBw6rJCkEQO3 oevtxXg= -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:51 2025 by rpki-client