$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F3DC1FD08C5611E792848B4AC4F9AE02.roa File: F3DC1FD08C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: z8Txj1JKr5vAyHyXu3Q0JC83ZWN/Ombj0tuTCxlEaRY= Subject key identifier: 5C:A1:43:87:45:87:88:5C:1D:C9:CF:A2:51:21:E5:EF:2D:87:13:16 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2794 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F3DC1FD08C5611E792848B4AC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:46 +0000 ROA not before: Tue 08 Apr 2025 15:53:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 24451 IP address blocks: 58.71.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10132 (0x2794) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5468a-d8ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:80:22:64:fc:75:7e:e1:e7:98:d0:a1:f2:70: 29:9a:e7:c5:eb:e7:65:9b:cf:41:c5:50:f4:a5:bc: 1e:ea:4d:a8:2c:c2:12:77:ca:08:76:0a:b9:5e:68: ab:aa:b7:2a:5b:40:54:a1:24:f1:86:69:b9:d5:c9: 60:96:c9:c9:01:6c:7c:03:5b:1d:ba:41:56:9f:49: 18:bc:3d:6d:98:69:b0:2a:4f:c2:58:4a:9b:59:eb: 9f:f5:39:7b:7c:52:89:22:ae:7a:db:7c:08:5a:f4: 2d:b3:4c:a6:32:4e:2d:7b:ee:c2:ac:71:a8:04:0e: 80:9a:5e:ae:62:a3:13:a6:ca:e7:59:42:49:c4:62: bc:5e:79:13:a7:f3:eb:c7:f2:54:df:6f:2e:19:8d: f6:cc:ea:4d:4e:c3:92:4f:6a:22:27:97:a7:05:10: 9c:9d:4a:11:47:7f:ad:d0:85:cb:70:b0:11:11:00: 3c:26:9e:06:27:88:da:de:af:d0:b4:89:4e:33:1c: d9:03:f8:20:de:6d:3e:8a:ef:7e:37:13:70:39:fb: 7d:ea:8f:0f:28:e1:6a:2a:04:bf:8a:c9:ca:9c:de: 5e:ce:c8:eb:fe:d5:0f:cc:dc:83:b1:81:a4:98:22: f1:fb:27:47:1a:d9:79:88:f4:85:f7:08:c1:37:b9: ab:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A1:43:87:45:87:88:5C:1D:C9:CF:A2:51:21:E5:EF:2D:87:13:16 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F3DC1FD08C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.71.71.0/24 Signature Algorithm: sha256WithRSAEncryption 93:83:b9:a4:2b:52:25:3c:22:f4:bb:28:f4:dd:21:ff:ae:fa: ae:50:c0:9a:7d:64:f9:11:fb:30:9d:cc:7b:47:b3:5a:70:a4: 01:29:bb:e3:83:45:bf:a7:d4:6b:b6:10:2c:01:bb:31:0c:6c: cc:84:06:b3:5e:48:76:20:5f:cc:6a:59:01:f1:7a:e4:4a:d3: 39:f5:08:76:ca:f1:fa:eb:29:9d:74:06:cd:87:4a:71:a3:05: a7:5c:56:b1:96:9b:a4:06:5f:7c:9f:1f:d3:09:2c:54:d5:e0: 8e:be:78:83:c5:ec:c7:4d:7a:b3:d4:a0:db:65:fc:9d:a9:51: f2:bb:d1:74:71:b3:65:bd:88:11:4f:5a:a4:b4:df:f4:81:44: fc:d8:5b:f2:00:33:b8:34:8d:2d:f9:4a:92:78:73:4a:ba:0e: e4:bf:a4:32:5d:fa:e6:2e:d0:93:e6:11:83:d3:0b:97:e4:3a: f3:97:22:40:50:5d:d1:e5:01:54:fe:5d:32:23:fd:ee:d7:be: 70:0b:12:1e:59:cd:4f:88:c5:2b:28:42:57:2c:73:cd:cc:27: 46:45:14:74:73:57:f4:c1:bc:a0:ed:b2:55:eb:b2:08:45:da: 88:8a:d4:fb:6e:76:2c:a9:08:9a:3c:9e:a2:7d:61:fb:9c:9a: a9:08:ed:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzQ2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4YS1kOGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44AiZPx1fuHnmNCh8nApmufF6+dlm89BxVD0pbwe6k2oLMISd8oIdgq5Xmir qrcqW0BUoSTxhmm51clglsnJAWx8A1sdukFWn0kYvD1tmGmwKk/CWEqbWeuf9Tl7 fFKJIq5623wIWvQts0ymMk4te+7CrHGoBA6Aml6uYqMTpsrnWUJJxGK8XnkTp/Pr x/JU328uGY32zOpNTsOST2oiJ5enBRCcnUoRR3+t0IXLcLAREQA8Jp4GJ4ja3q/Q tIlOMxzZA/gg3m0+iu9+NxNwOft96o8PKOFqKgS/isnKnN5ezsjr/tUPzNyDsYGk mCLx+ydHGtl5iPSF9wjBN7mr9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFyhQ4dF h4hcHcnPolEh5e8thxMWMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjNEQzFGRDA4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6R0cwDQYJKoZIhvcNAQELBQADggEBAJODuaQrUiU8IvS7 KPTdIf+u+q5QwJp9ZPkR+zCdzHtHs1pwpAEpu+ODRb+n1Gu2ECwBuzEMbMyEBrNe SHYgX8xqWQHxeuRK0zn1CHbK8frrKZ10Bs2HSnGjBadcVrGWm6QGX3yfH9MJLFTV 4I6+eIPF7MdNerPUoNtl/J2pUfK70XRxs2W9iBFPWqS03/SBRPzYW/IAM7g0jS35 SpJ4c0q6DuS/pDJd+uYu0JPmEYPTC5fkOvOXIkBQXdHlAVT+XTIj/e7XvnALEh5Z zU+IxSsoQlcsc83MJ0ZFFHRzV/TBvKDtslXrsghF2oiK1PtudiypCJo8nqJ9Yfuc mqkI7TM= -----END CERTIFICATE-----Generated at Sat Apr 26 12:31:12 2025 by rpki-client