$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F55175EA8C5611E792848B4AC4F9AE02.roa File: F55175EA8C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: VkOAhIa80kNaefVErpKRcJS1UUCVoa+4BpGDgLLqprQ= Subject key identifier: 0A:66:DC:AB:C6:36:B1:D1:1C:6A:41:55:07:6A:3B:6B:E9:38:66:6F Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2796 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F55175EA8C5611E792848B4AC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:48 +0000 ROA not before: Tue 08 Apr 2025 15:53:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 36776 IP address blocks: 58.69.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10134 (0x2796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5468b-663f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9e:51:88:96:4a:9f:d7:58:c9:f7:30:de:7f: 78:c4:85:e0:0d:78:74:c0:3d:57:52:b0:7a:20:11: f0:14:85:34:be:a6:75:71:eb:77:f0:ee:fc:e7:80: e8:0e:22:26:21:38:9a:e4:e0:d7:48:00:7e:b5:78: 5d:81:a1:89:9d:f4:75:63:e1:2c:4a:ab:1b:c0:91: 69:d3:f2:d6:a4:22:50:2a:1d:fa:3f:41:d9:24:1c: 53:ce:80:cf:b5:0d:d1:29:22:39:9e:7c:25:0c:13: 99:53:cf:5d:0d:22:25:72:51:b4:39:85:ec:f6:3a: 27:2f:de:f4:d9:03:39:85:33:a6:b3:c9:ad:24:c2: ac:e7:a1:3b:72:31:90:7e:20:e1:34:59:53:2a:91: 5f:be:57:13:41:24:7c:a0:a1:27:c1:7a:61:b9:81: 07:65:00:46:9a:20:23:2b:dd:95:fd:a6:5b:0a:06: 44:92:47:31:cb:83:2f:5f:63:f4:0f:46:88:6a:98: 43:e8:4a:36:db:85:75:1a:c4:a4:89:5a:66:6b:86: a8:a1:85:31:ea:69:ae:c2:92:f0:a3:6a:23:22:50: c8:43:7e:2f:f1:e0:d6:91:51:b0:16:69:60:8f:33: 31:1b:b5:5b:a2:f8:f4:b2:c5:5d:e3:16:a0:75:2d: 80:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:66:DC:AB:C6:36:B1:D1:1C:6A:41:55:07:6A:3B:6B:E9:38:66:6F X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F55175EA8C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.69.253.0/24 Signature Algorithm: sha256WithRSAEncryption ae:05:e1:4c:b4:3e:34:91:da:6d:45:8d:ff:30:a1:53:94:3d: ef:b8:70:a0:e5:a7:8f:b5:15:f4:7a:eb:99:16:12:ce:b8:db: d6:aa:03:e8:73:e3:39:3c:87:2a:c2:8c:85:68:5f:54:05:43: 0f:b0:40:80:e9:f6:00:11:49:c9:cd:d8:bf:e7:b2:49:8f:4d: 1a:ac:cd:59:03:51:e6:f5:b1:a5:8e:d5:e8:60:5f:2e:e9:9a: d5:8c:ef:02:10:d4:ed:33:96:4b:5a:69:fb:b4:22:0b:7a:0c: d9:b8:b0:ae:ae:61:b8:18:9a:a3:b9:fd:e8:68:04:2b:da:5a: 7d:23:92:e3:1a:cf:d6:c5:31:ee:29:2f:af:a9:38:63:3d:bf: a6:c0:35:bf:ed:7a:8e:c9:4a:25:dc:29:b7:a8:2d:50:a7:e5: 85:e6:41:fd:f2:5b:cd:7d:6b:f4:7d:3e:ba:3c:e6:de:e5:6f: d8:2f:d6:6a:e1:01:1f:5e:5b:14:b4:75:a3:83:9e:66:4e:fb: 4f:78:ce:57:9c:fb:af:93:da:30:f7:85:2a:6b:9d:f8:f7:e9: 21:d9:d9:f8:15:c8:a8:d3:e7:ac:eb:1b:ec:e2:32:35:97:ba: d6:6b:48:62:ea:65:df:c1:b9:8b:2c:9c:b2:64:e5:80:3b:24: e4:41:d8:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4Yi02NjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyp5RiJZKn9dYyfcw3n94xIXgDXh0wD1XUrB6IBHwFIU0vqZ1cet38O7854Do DiImITia5ODXSAB+tXhdgaGJnfR1Y+EsSqsbwJFp0/LWpCJQKh36P0HZJBxTzoDP tQ3RKSI5nnwlDBOZU89dDSIlclG0OYXs9jonL9702QM5hTOms8mtJMKs56E7cjGQ fiDhNFlTKpFfvlcTQSR8oKEnwXphuYEHZQBGmiAjK92V/aZbCgZEkkcxy4MvX2P0 D0aIaphD6Eo224V1GsSkiVpma4aooYUx6mmuwpLwo2ojIlDIQ34v8eDWkVGwFmlg jzMxG7Vbovj0ssVd4xagdS2ATwIDAQABo4IClTCCApEwHQYDVR0OBBYEFApm3KvG NrHRHGpBVQdqO2vpOGZvMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjU1MTc1RUE4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6Rf0wDQYJKoZIhvcNAQELBQADggEBAK4F4Uy0PjSR2m1F jf8woVOUPe+4cKDlp4+1FfR665kWEs6429aqA+hz4zk8hyrCjIVoX1QFQw+wQIDp 9gARScnN2L/nskmPTRqszVkDUeb1saWO1ehgXy7pmtWM7wIQ1O0zlktaafu0Igt6 DNm4sK6uYbgYmqO5/ehoBCvaWn0jkuMaz9bFMe4pL6+pOGM9v6bANb/teo7JSiXc KbeoLVCn5YXmQf3yW819a/R9Pro85t7lb9gv1mrhAR9eWxS0daODnmZO+094zlec +6+T2jD3hSprnfj36SHZ2fgVyKjT56zrG+ziMjWXutZrSGLqZd/BuYssnLJk5YA7 JORB2FQ= -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:22 2025 by rpki-client