$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa File: BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa (raw, json) Hash identifier: X+/JRaBFSpU+csAjI62l5rVURr8ZUzb9qKYNdwDW88k= Subject key identifier: EB:00:A0:D9:81:9D:11:79:41:36:9E:77:98:19:AE:91:B9:6E:BB:59 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 278C Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:39 +0000 ROA not before: Tue 08 Apr 2025 15:53:39 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152173 IP address blocks: 122.54.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10124 (0x278c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:39 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54683-ac8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0f:b5:b6:31:9d:86:1e:99:92:b0:71:14:79: d9:38:fb:a1:1b:ea:7b:cb:9f:fb:39:37:62:3b:55: 89:03:cb:58:95:ec:c8:bc:f2:f1:b5:42:90:3a:e1: 86:47:4f:64:51:c7:97:20:62:ac:f9:aa:92:bf:0b: 19:c3:2f:1d:b6:b3:0b:c3:78:8e:86:b7:a0:50:ef: f7:9f:38:8b:e8:6e:f6:bf:25:13:9b:a3:21:2d:37: f3:ce:d6:13:d1:fd:5c:9e:bf:4d:fa:cb:91:9a:a0: 65:ef:33:47:00:f6:ab:3f:26:8a:8d:e6:06:ae:26: 58:06:ad:da:6b:d8:69:15:e9:d4:26:51:02:d9:44: 5d:36:56:bd:e3:49:50:90:4e:f2:d9:d4:4b:23:22: d7:c6:77:8d:cb:1f:ae:89:f8:cd:fa:77:86:27:d8: 98:66:02:42:26:04:cd:cf:33:3e:03:50:40:b1:ea: 18:26:ad:6e:ed:5b:b8:df:93:5f:75:59:67:b3:4c: 64:6d:87:05:ad:1b:6b:27:4e:88:81:2c:fc:14:5d: d6:16:66:0e:ab:9a:31:0d:ce:9b:b2:39:c9:d2:67: 31:80:3e:ce:28:8e:17:e6:be:63:60:79:fa:4c:11: f3:02:24:6c:98:88:2b:c5:28:b5:22:57:ea:3e:a1: c5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:00:A0:D9:81:9D:11:79:41:36:9E:77:98:19:AE:91:B9:6E:BB:59 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.54.67.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:c2:a0:78:03:f2:a8:a1:9e:38:91:3d:4e:02:38:eb:28:3c: b6:58:99:f6:69:f4:a4:6b:df:cb:14:9f:d8:fe:eb:e3:db:40: e1:43:a2:12:d3:c6:ae:b9:61:c4:d5:7d:65:0f:82:b8:21:1b: f8:0f:ea:64:58:97:c0:68:be:7c:9d:cc:f6:89:e0:89:40:a5: b1:6e:c3:68:1d:a2:6d:25:c3:1a:11:da:99:dd:45:e2:03:2e: 1d:b0:5e:e7:aa:0f:16:76:a9:27:6c:d2:1d:05:f3:f8:92:8a: e3:32:dd:7c:69:83:c7:d0:73:32:5d:aa:50:8a:57:cd:53:4b: bc:fa:de:c4:30:df:90:e4:12:51:7f:54:78:2d:ce:68:66:8b: 45:3a:71:4c:49:40:ed:43:ab:e7:f1:86:70:98:4a:63:aa:b4: e8:4a:10:cc:8f:aa:2c:9c:27:42:81:dc:4c:b9:e1:29:65:cd: 0b:57:c5:e9:40:c3:7a:c4:28:6e:b2:f5:01:4b:b5:0c:0e:66: 2e:c0:bd:94:9f:c9:ba:4d:ec:e3:79:41:34:ab:d3:9c:09:fa: 28:0c:32:9c:5f:5b:90:a4:39:f9:72:19:d9:51:0a:f5:5b:68: 2e:c8:7a:98:b9:2d:05:ab:bf:fa:0e:12:33:9a:ab:44:34:fe: c9:89:13:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzM5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4My1hYzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqg+1tjGdhh6ZkrBxFHnZOPuhG+p7y5/7OTdiO1WJA8tYlezIvPLxtUKQOuGG R09kUceXIGKs+aqSvwsZwy8dtrMLw3iOhregUO/3nziL6G72vyUTm6MhLTfzztYT 0f1cnr9N+suRmqBl7zNHAParPyaKjeYGriZYBq3aa9hpFenUJlEC2URdNla940lQ kE7y2dRLIyLXxneNyx+uifjN+neGJ9iYZgJCJgTNzzM+A1BAseoYJq1u7Vu435Nf dVlns0xkbYcFrRtrJ06IgSz8FF3WFmYOq5oxDc6bsjnJ0mcxgD7OKI4X5r5jYHn6 TBHzAiRsmIgrxSi1IlfqPqHF7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOsAoNmB nRF5QTaed5gZrpG5brtZMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQkU1REExQTBF M0JFMTFFRUFFQzVFMDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6NkMwDQYJKoZIhvcNAQELBQADggEBAGvCoHgD8qihnjiR PU4COOsoPLZYmfZp9KRr38sUn9j+6+PbQOFDohLTxq65YcTVfWUPgrghG/gP6mRY l8BovnydzPaJ4IlApbFuw2gdom0lwxoR2pndReIDLh2wXueqDxZ2qSds0h0F8/iS iuMy3Xxpg8fQczJdqlCKV81TS7z63sQw35DkElF/VHgtzmhmi0U6cUxJQO1Dq+fx hnCYSmOqtOhKEMyPqiycJ0KB3Ey54SllzQtXxelAw3rEKG6y9QFLtQwOZi7AvZSf ybpN7ON5QTSr05wJ+igMMpxfW5CkOflyGdlRCvVbaC7Iepi5LQWrv/oOEjOaq0Q0 /smJE6M= -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:02 2025 by rpki-client