$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EFBF37208C5611E792848B4AC4F9AE02.roa File: EFBF37208C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: nNfTdp4PUnPXPodCTbOjAsAWXgCW6bK0lHos7EHr9sI= Subject key identifier: 83:8D:12:3D:37:EF:43:E2:8C:58:7B:57:3A:2E:EA:F0:DA:24:59:03 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2780 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EFBF37208C5611E792848B4AC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:27 +0000 ROA not before: Tue 08 Apr 2025 15:53:27 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132803 IP address blocks: 122.55.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10112 (0x2780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:27 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54677-4f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:0d:29:d4:48:aa:99:3e:fc:44:44:c7:c0:3d: 94:63:77:a2:bc:9a:3e:41:1c:a8:2c:80:c4:1e:87: 2b:ca:7a:f9:1b:95:a1:ee:c7:98:65:55:99:6b:63: d2:95:d6:55:44:22:5a:be:80:0e:53:6c:d6:d7:38: c7:8d:09:9a:d6:4d:3b:09:ee:0c:e8:27:e9:b0:2c: 27:66:8f:33:6f:16:ea:43:a1:48:8f:6c:f9:66:5b: 45:52:d8:0c:5b:f8:9d:55:7f:02:0c:18:12:da:51: 22:39:05:18:ee:32:e2:e0:eb:7d:a5:74:3f:2e:a1: 90:20:9c:23:7c:94:bd:bc:1e:64:6a:2a:b6:fe:8f: fa:00:a4:1a:92:f2:0e:3c:ca:f1:53:36:1d:46:1a: 3b:8f:a8:69:a7:2c:fc:28:3a:ea:16:18:45:b5:9b: e4:32:6b:2f:94:fd:93:7c:a3:77:de:4e:02:d1:17: 61:b0:8a:1a:f0:5a:39:7c:83:c0:9c:e0:24:e6:6a: ef:a5:99:db:e4:a9:44:bf:6e:69:c0:1c:0b:3d:fd: b1:df:98:50:e3:b5:aa:ca:45:02:a3:84:10:56:46: 77:ec:e3:23:c4:bd:07:b9:38:a8:39:3a:c8:e8:49: 6b:79:d7:04:3d:9a:ec:5b:00:6f:c2:d2:a2:84:72: d7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:8D:12:3D:37:EF:43:E2:8C:58:7B:57:3A:2E:EA:F0:DA:24:59:03 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/EFBF37208C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.55.9.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:c1:13:a7:85:7f:50:a4:f3:45:ef:11:ce:82:82:00:67:67: 58:c5:18:85:5d:22:60:5c:36:15:9f:e9:a9:f8:f5:da:cd:e1: d1:72:e5:11:29:e6:4b:5d:62:8b:46:b4:f5:83:a3:c3:12:95: c4:34:80:0a:83:17:70:49:2a:5c:67:06:74:18:80:db:02:1a: b6:87:68:e5:3c:4a:88:03:74:18:ef:25:4f:ed:0f:26:82:5b: ac:4b:c2:62:98:50:e5:e0:f9:53:d4:48:77:3c:e0:b1:68:fb: fc:fb:32:4e:99:8d:73:cf:6d:8e:9d:6d:86:99:f5:b2:ba:b0: c2:66:ea:19:a8:70:af:c5:bd:7b:50:c2:57:d1:12:8c:9a:af: b7:14:fb:bc:03:c6:32:dc:74:5c:ac:0d:cb:b5:1b:54:94:2f: a1:37:8c:36:d0:97:c4:46:fa:c6:57:47:5e:a4:13:1a:96:e5: 28:71:a5:78:4e:c6:c0:ac:f5:e0:73:af:26:40:19:75:0f:6f: 7d:04:7d:2c:1f:bf:8d:b3:4d:cd:54:a9:24:87:87:04:05:98: 2c:ef:08:49:0a:99:b8:9b:90:d2:8e:3d:0e:c0:6a:a6:ee:cd: 75:bc:99:8c:ed:9b:90:37:eb:5f:9f:91:9f:b9:e3:c7:de:85: 19:cf:78:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzI3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY3Ny00ZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8w0p1EiqmT78RETHwD2UY3eivJo+QRyoLIDEHocrynr5G5Wh7seYZVWZa2PS ldZVRCJavoAOU2zW1zjHjQma1k07Ce4M6CfpsCwnZo8zbxbqQ6FIj2z5ZltFUtgM W/idVX8CDBgS2lEiOQUY7jLi4Ot9pXQ/LqGQIJwjfJS9vB5kaiq2/o/6AKQakvIO PMrxUzYdRho7j6hppyz8KDrqFhhFtZvkMmsvlP2TfKN33k4C0RdhsIoa8Fo5fIPA nOAk5mrvpZnb5KlEv25pwBwLPf2x35hQ47WqykUCo4QQVkZ37OMjxL0HuTioOTrI 6ElredcEPZrsWwBvwtKihHLX6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIONEj03 70PijFh7Vzou6vDaJFkDMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRUZCRjM3MjA4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6NwkwDQYJKoZIhvcNAQELBQADggEBAEvBE6eFf1Ck80Xv Ec6CggBnZ1jFGIVdImBcNhWf6an49drN4dFy5REp5ktdYotGtPWDo8MSlcQ0gAqD F3BJKlxnBnQYgNsCGraHaOU8SogDdBjvJU/tDyaCW6xLwmKYUOXg+VPUSHc84LFo +/z7Mk6ZjXPPbY6dbYaZ9bK6sMJm6hmocK/FvXtQwlfREoyar7cU+7wDxjLcdFys Dcu1G1SUL6E3jDbQl8RG+sZXR16kExqW5ShxpXhOxsCs9eBzryZAGXUPb30EfSwf v42zTc1UqSSHhwQFmCzvCEkKmbibkNKOPQ7AaqbuzXW8mYztm5A361+fkZ+548fe hRnPeEc= -----END CERTIFICATE-----Generated at Sat Apr 26 14:07:54 2025 by rpki-client