$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7271CAB217D711EA90BA7F4EC4F9AE02.roa File: 7271CAB217D711EA90BA7F4EC4F9AE02.roa (raw, json) Hash identifier: Xb63l3ZIQpud6T0SsIiJHA/1T9XjvXnyGqxkBm5CkQ0= Subject key identifier: 87:17:E0:71:02:71:2A:97:F1:2E:40:7A:E5:B3:E6:D3:65:D9:57:98 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 278E Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7271CAB217D711EA90BA7F4EC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:41 +0000 ROA not before: Tue 08 Apr 2025 15:53:41 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 15347 IP address blocks: 124.106.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10126 (0x278e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:41 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54685-34d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:01:19:f6:21:ab:36:70:41:ff:2f:a9:72:e6: b0:55:77:d3:fc:d4:75:be:12:26:bf:ce:ee:8e:c6: cb:67:74:fe:1d:ad:7a:e3:c0:cf:29:65:e5:ac:49: 7b:7d:36:22:28:fb:f1:82:30:94:7d:db:ab:ff:0a: 33:3e:80:e8:92:cc:8b:3b:5c:13:13:47:7a:7e:9a: d4:d7:7f:6d:24:39:a3:28:0f:a8:d5:c7:de:70:00: 72:ec:ae:04:38:71:c8:bb:1a:d8:d0:4d:54:6b:85: 35:2e:07:40:5e:f0:04:ff:f9:52:84:0e:d5:68:41: ab:b8:9e:14:3d:f3:bd:33:37:26:32:9b:93:89:0f: e5:3f:57:e0:25:48:28:20:df:86:58:f1:e9:56:a9: c5:3e:85:07:5d:c7:1b:c4:33:34:8d:76:89:89:84: 61:9f:2f:d2:fc:8d:9b:26:df:69:32:e9:bf:85:9d: 69:5f:a4:86:f3:d5:0b:cd:f9:85:e1:dd:a5:7e:ca: 80:1c:82:3c:84:e3:db:11:88:78:9d:1e:18:47:2d: 19:65:b3:b9:4d:b3:d4:0f:43:57:6c:b0:02:a6:cf: 80:83:e2:67:5d:3a:be:d3:1a:c0:43:ea:89:a5:af: a6:61:1f:62:00:e8:2c:4e:68:b4:4c:8f:18:45:19: 69:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:17:E0:71:02:71:2A:97:F1:2E:40:7A:E5:B3:E6:D3:65:D9:57:98 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7271CAB217D711EA90BA7F4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.106.216.0/24 Signature Algorithm: sha256WithRSAEncryption 71:3a:c5:05:21:a2:9f:b2:c3:c9:7f:de:74:7d:f3:36:cf:a2: 0d:eb:e2:3c:f4:33:33:95:b4:51:72:7a:48:b6:f8:d2:d6:c8: 60:17:f0:1f:02:a4:9a:bb:f1:7e:ac:c0:90:ce:e4:7d:21:fd: d7:4d:fd:61:17:2e:31:05:e8:0b:ee:de:a2:e5:58:ee:8b:a8: e5:c5:d6:78:2c:73:b0:d5:db:f7:ef:66:8e:d8:cb:41:61:fe: 5f:1b:a5:8b:28:0f:7b:d3:b5:49:9d:39:af:b4:42:03:72:b4: 9b:c9:ea:2e:65:fe:15:ce:0e:a9:80:5f:ea:2d:86:24:da:93: 72:3f:81:81:7d:a3:3b:18:1b:ce:a2:a8:53:79:5a:65:11:01: 4a:df:c7:d5:5d:1c:26:d6:46:b7:52:9f:e8:c8:37:96:ab:6e: 3c:36:42:1e:2e:7e:d9:2d:1f:76:94:4c:8c:fa:ab:3f:b5:fe: 51:e7:84:38:25:82:f5:57:43:64:95:b4:0e:f4:9e:85:da:54: 8d:f3:ae:b8:41:f8:85:eb:a7:b7:3e:6a:55:f9:17:aa:a5:3c: 61:89:10:63:11:19:a9:9d:55:dc:7f:26:43:a4:e2:d6:ee:48: 44:e2:e3:74:d3:ba:01:2a:3b:b5:d7:8e:b9:f6:76:ce:b1:00: 35:65:20:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzQxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4NS0zNGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwEZ9iGrNnBB/y+pcuawVXfT/NR1vhImv87ujsbLZ3T+Ha1648DPKWXlrEl7 fTYiKPvxgjCUfdur/wozPoDoksyLO1wTE0d6fprU139tJDmjKA+o1cfecABy7K4E OHHIuxrY0E1Ua4U1LgdAXvAE//lShA7VaEGruJ4UPfO9MzcmMpuTiQ/lP1fgJUgo IN+GWPHpVqnFPoUHXccbxDM0jXaJiYRhny/S/I2bJt9pMum/hZ1pX6SG89ULzfmF 4d2lfsqAHII8hOPbEYh4nR4YRy0ZZbO5TbPUD0NXbLACps+Ag+JnXTq+0xrAQ+qJ pa+mYR9iAOgsTmi0TI8YRRlpbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIcX4HEC cSqX8S5AeuWz5tNl2VeYMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNzI3MUNBQjIx N0Q3MTFFQTkwQkE3RjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB8atgwDQYJKoZIhvcNAQELBQADggEBAHE6xQUhop+yw8l/ 3nR98zbPog3r4jz0MzOVtFFyeki2+NLWyGAX8B8CpJq78X6swJDO5H0h/ddN/WEX LjEF6Avu3qLlWO6LqOXF1ngsc7DV2/fvZo7Yy0Fh/l8bpYsoD3vTtUmdOa+0QgNy tJvJ6i5l/hXODqmAX+othiTak3I/gYF9ozsYG86iqFN5WmURAUrfx9VdHCbWRrdS n+jIN5arbjw2Qh4uftktH3aUTIz6qz+1/lHnhDglgvVXQ2SVtA70noXaVI3zrrhB +IXrp7c+alX5F6qlPGGJEGMRGamdVdx/JkOk4tbuSETi43TTugEqO7XXjrn2ds6x ADVlINg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:25:00 2025 by rpki-client