$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EDA1B0D8A1CE11EDA692F359C4F9AE02.roa File: EDA1B0D8A1CE11EDA692F359C4F9AE02.roa (raw, json) Hash identifier: 8wMgBAimNVtvub961irO59NqQxJMZvEDQRKi+qZmzOM= Subject key identifier: 00:72:C3:C3:13:82:3F:6B:6F:48:0E:E4:D7:1F:3B:6C:E5:54:AA:E5 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2789 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EDA1B0D8A1CE11EDA692F359C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:36 +0000 ROA not before: Tue 08 Apr 2025 15:53:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 14499 IP address blocks: 122.55.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10121 (0x2789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54680-0348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:10:cb:3b:28:07:68:fe:cd:6f:1a:a0:18:99: 36:ea:9c:ce:1c:82:39:58:ae:a8:2e:df:40:82:ec: 6f:df:b0:1c:b4:94:ef:54:91:3a:b3:ec:d4:36:a9: 39:ae:5a:02:1f:7b:53:2d:8a:2a:39:97:62:2c:ef: ae:37:b3:88:29:84:3d:22:b3:37:9c:09:4a:02:db: be:cd:4b:cf:7f:3e:3b:bc:59:1a:82:b2:80:22:fc: eb:a6:1f:b0:7d:67:12:e5:96:23:65:72:ee:2d:f4: af:be:4e:64:5d:08:9b:01:50:19:62:67:b6:ca:e5: 30:d2:c7:5d:8e:d8:62:85:01:d9:1c:24:71:5b:f1: 0d:94:80:cd:76:10:f3:ae:7d:f8:30:19:95:91:9f: 6e:83:9f:18:7a:5f:ee:38:c3:c5:6c:95:70:ad:fc: 04:10:64:d6:0c:cc:35:62:bd:78:46:41:bf:29:cc: f3:56:65:a8:70:aa:44:c0:e0:e4:ca:8c:25:56:c9: 72:9a:bd:bc:28:97:26:12:96:60:e4:2e:3d:8d:54: c9:10:f6:ae:89:ad:ff:e4:ff:56:fa:40:1d:cd:eb: 4f:0c:cd:03:d0:18:8e:a6:57:01:6f:3f:6d:5e:fe: 74:81:28:78:4a:38:ee:f8:38:0f:be:9d:37:ff:49: 86:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:72:C3:C3:13:82:3F:6B:6F:48:0E:E4:D7:1F:3B:6C:E5:54:AA:E5 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EDA1B0D8A1CE11EDA692F359C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.55.92.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:14:27:86:0e:c3:24:b2:c9:e6:7d:7f:09:0c:ca:26:2b:c6: 21:51:bc:c1:05:16:9b:24:a7:8e:c0:a9:e9:df:ad:9f:7f:bd: 7c:de:6c:5a:15:6b:04:30:e1:17:d2:e4:52:16:7c:56:42:f9: 4a:b5:17:fb:3d:a4:36:26:60:0e:40:6b:53:a2:bc:6c:cb:70: 1c:1e:60:eb:96:8b:36:b2:30:0a:cf:45:b7:15:66:47:c6:87: ce:dd:7f:76:9a:58:3f:b2:5c:15:6e:c2:a4:33:bd:87:4d:74: 6b:c4:71:fe:dd:e8:3a:d2:1b:b2:63:47:46:8a:dd:03:14:c0: bd:af:98:99:fe:12:4f:2b:57:12:70:bb:a4:48:e9:34:be:22: 8e:d7:81:ba:12:85:75:ba:5c:09:cd:75:11:63:3e:d6:12:3e: ab:6f:e9:80:1e:25:d3:78:69:1a:71:e4:58:d8:83:bf:39:26: 44:ba:a9:c3:2a:27:19:c8:b5:5b:da:04:c1:36:07:cb:ee:44: 40:54:37:ea:e4:1a:79:16:d4:dc:05:46:ef:57:a8:5a:8e:ea: c1:90:7c:3a:1b:08:5a:02:2f:8d:28:c9:9e:82:13:48:ba:46: 89:66:b5:49:97:20:cd:a8:b5:68:2d:eb:f5:70:23:ca:d8:b3: f1:c9:4a:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4MC0wMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRDLOygHaP7NbxqgGJk26pzOHII5WK6oLt9Aguxv37ActJTvVJE6s+zUNqk5 rloCH3tTLYoqOZdiLO+uN7OIKYQ9IrM3nAlKAtu+zUvPfz47vFkagrKAIvzrph+w fWcS5ZYjZXLuLfSvvk5kXQibAVAZYme2yuUw0sddjthihQHZHCRxW/ENlIDNdhDz rn34MBmVkZ9ug58Yel/uOMPFbJVwrfwEEGTWDMw1Yr14RkG/KczzVmWocKpEwODk yowlVslymr28KJcmEpZg5C49jVTJEPauia3/5P9W+kAdzetPDM0D0BiOplcBbz9t Xv50gSh4Sjju+DgPvp03/0mGAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAByw8MT gj9rb0gO5NcfO2zlVKrlMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRURBMUIwRDhB MUNFMTFFREE2OTJGMzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6N1wwDQYJKoZIhvcNAQELBQADggEBAB8UJ4YOwySyyeZ9 fwkMyiYrxiFRvMEFFpskp47AqenfrZ9/vXzebFoVawQw4RfS5FIWfFZC+Uq1F/s9 pDYmYA5Aa1OivGzLcBweYOuWizayMArPRbcVZkfGh87df3aaWD+yXBVuwqQzvYdN dGvEcf7d6DrSG7JjR0aK3QMUwL2vmJn+Ek8rVxJwu6RI6TS+Io7XgboShXW6XAnN dRFjPtYSPqtv6YAeJdN4aRpx5FjYg785JkS6qcMqJxnItVvaBME2B8vuREBUN+rk GnkW1NwFRu9XqFqO6sGQfDobCFoCL40oyZ6CE0i6RolmtUmXIM2otWgt6/VwI8rY s/HJSno= -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:49 2025 by rpki-client