$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EEBDFBB88C5611E792848B4AC4F9AE02.roa File: EEBDFBB88C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: g10juuqEsEAKzRtgsKTtEKp5BZovzdZezXJ/i6OnQX8= Subject key identifier: D1:28:49:17:76:7E:17:10:E1:61:FF:EB:0C:C1:BF:5C:B0:63:C4:34 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 277A Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EEBDFBB88C5611E792848B4AC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:22 +0000 ROA not before: Tue 08 Apr 2025 15:53:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 10139 IP address blocks: 210.213.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10106 (0x277a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54671-0773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:da:5e:68:c1:7c:cf:b2:98:9a:3a:b5:40: 5b:2d:c2:1d:41:ae:29:a9:69:fe:74:54:65:31:37: 41:4d:aa:50:59:fb:d6:fe:3e:2d:ee:2d:02:17:01: 33:7f:0a:49:4d:b4:a3:a9:49:1a:5a:31:1c:1d:33: 81:cd:76:61:b1:9c:1d:e6:c8:d3:8f:36:d9:4a:fb: 89:36:29:4e:4a:95:18:8b:bc:8c:7c:c6:ce:78:f5: ee:a7:09:e9:ea:e9:2d:4e:eb:12:e0:06:c3:e4:3e: 8f:ab:9a:7f:4b:7e:97:40:f5:ea:7a:2c:c7:d0:94: 5d:fe:a7:a1:89:7b:e2:b7:db:9d:51:ea:d1:58:b3: 33:88:ac:bd:a6:15:95:12:79:38:38:2c:3d:56:c0: f6:b0:b6:ac:22:3d:86:59:a4:5d:09:d8:d0:ea:16: c3:e3:48:d3:fa:32:9e:f9:9e:4b:aa:1f:ee:4a:67: 94:79:92:21:6d:c8:d4:85:00:90:fc:26:eb:9f:0a: 77:ef:d0:1d:4b:98:41:f5:4f:37:46:af:54:0b:0f: d9:24:11:ff:fe:c7:f0:7d:d0:85:e7:9d:31:8a:96: 0a:cd:5b:dc:48:56:a3:49:9e:35:55:13:aa:e5:52: b5:7d:2b:2d:a9:db:e8:81:c6:73:8c:3d:64:fe:be: 78:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:28:49:17:76:7E:17:10:E1:61:FF:EB:0C:C1:BF:5C:B0:63:C4:34 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EEBDFBB88C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.213.107.0/24 Signature Algorithm: sha256WithRSAEncryption 92:34:5f:9a:a4:70:f6:44:fc:a7:58:c4:db:aa:d1:8d:88:d4: f5:1d:b2:6d:b7:30:74:b0:56:fe:de:c1:eb:a7:9a:d5:ea:76: e2:6d:0f:39:62:7b:d6:2d:97:b9:1f:3a:00:4e:9e:44:66:97: d8:a7:6d:2b:35:55:68:57:7e:58:d3:4d:33:fd:e8:7f:d4:5b: a5:11:df:13:fb:a4:66:f3:f8:44:b0:1a:c5:68:c1:51:b5:5e: 3e:99:5b:e9:d1:5c:d1:a4:ea:da:f8:87:61:5f:0f:d0:55:c3: c8:8b:bf:de:e6:ea:f9:4f:a1:61:c5:00:9b:cf:3b:19:57:25: bb:0d:3a:f6:9b:65:6a:46:d0:34:ee:e1:f9:8e:8a:a1:e5:5d: 4a:fa:5b:92:38:44:45:60:d2:58:96:99:ac:33:32:09:da:b1: 00:0c:87:17:3d:04:0f:e0:6a:b8:18:30:ec:db:d0:4c:b5:8b: b1:64:df:08:25:6d:52:10:51:8e:69:44:68:9f:80:37:ad:2d: 61:b2:31:80:34:20:37:3b:fc:ea:6d:3d:b0:38:4f:5d:52:e5: aa:2e:96:23:96:c0:c8:90:eb:f3:04:6e:92:94:29:c2:65:dd: e0:25:fa:a9:bc:e1:1b:5b:4b:e4:ac:41:be:ac:4e:de:c6:fc: 79:67:b7:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzIyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY3MS0wNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/baXmjBfM+ymJo6tUBbLcIdQa4pqWn+dFRlMTdBTapQWfvW/j4t7i0CFwEz fwpJTbSjqUkaWjEcHTOBzXZhsZwd5sjTjzbZSvuJNilOSpUYi7yMfMbOePXupwnp 6uktTusS4AbD5D6Pq5p/S36XQPXqeizH0JRd/qehiXvit9udUerRWLMziKy9phWV Enk4OCw9VsD2sLasIj2GWaRdCdjQ6hbD40jT+jKe+Z5Lqh/uSmeUeZIhbcjUhQCQ /Cbrnwp379AdS5hB9U83Rq9UCw/ZJBH//sfwfdCF550xipYKzVvcSFajSZ41VROq 5VK1fSstqdvogcZzjD1k/r54bQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNEoSRd2 fhcQ4WH/6wzBv1ywY8Q0MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRUVCREZCQjg4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADS1WswDQYJKoZIhvcNAQELBQADggEBAJI0X5qkcPZE/KdY xNuq0Y2I1PUdsm23MHSwVv7eweunmtXqduJtDzlie9Ytl7kfOgBOnkRml9inbSs1 VWhXfljTTTP96H/UW6UR3xP7pGbz+ESwGsVowVG1Xj6ZW+nRXNGk6tr4h2FfD9BV w8iLv97m6vlPoWHFAJvPOxlXJbsNOvabZWpG0DTu4fmOiqHlXUr6W5I4REVg0liW mawzMgnasQAMhxc9BA/gargYMOzb0Ey1i7Fk3wglbVIQUY5pRGifgDetLWGyMYA0 IDc7/OptPbA4T11S5aouliOWwMiQ6/MEbpKUKcJl3eAl+qm84RtbS+SsQb6sTt7G /Hlntzg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:33 2025 by rpki-client