$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa File: F688FE388C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: lqz+b2mpZ7liApUeWmpk6Sxdz1MK1YVyI/nndtzOfc8= Subject key identifier: 63:00:AC:14:C6:94:B4:21:FD:16:EE:DD:C6:8E:64:EA:F7:5B:CA:7C Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2798 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:50 +0000 ROA not before: Tue 08 Apr 2025 15:53:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 46071 IP address blocks: 58.69.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10136 (0x2798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5468d-d0e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b8:e6:25:c9:67:18:3b:57:62:69:e4:9f:8f: 80:bd:c6:46:d1:cc:87:76:10:9e:4a:e0:43:d9:77: 92:3e:26:db:d5:d2:54:c4:80:63:4a:85:0f:6e:b6: 5e:b7:86:15:7e:2a:73:e6:62:df:68:15:11:ad:68: 26:c0:27:92:2c:5f:86:c2:67:15:e5:0f:6d:70:4b: 41:2c:b2:0b:53:2d:b9:b0:4f:c3:2d:c4:4d:19:f1: e5:3f:d0:57:26:f9:58:5d:ae:29:e5:e4:14:e6:d3: ee:a7:03:25:45:67:00:57:18:c5:d8:b3:1b:f7:e5: 92:9c:20:1a:2b:ae:cb:21:5a:0d:bb:f8:dd:c1:05: b1:dc:37:81:41:96:59:ca:f5:51:8b:6b:70:0b:ec: 20:6e:f4:4f:9f:a5:e9:0e:90:9a:15:57:5e:af:39: fd:5e:65:b0:c3:02:cb:6f:6f:74:9c:5b:c5:1a:0a: 14:83:49:de:ce:ac:01:f2:e5:1f:97:2d:9c:86:06: df:92:20:af:dc:c2:73:fe:45:bb:97:2a:99:66:6a: 20:5a:31:e0:71:55:1a:51:3e:ad:32:38:51:4c:3a: 3c:4a:57:65:54:e1:7b:b9:a2:38:ed:f7:19:80:33: 24:8a:69:ae:28:8c:90:fc:46:ba:d3:2e:7a:1d:6c: 56:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:00:AC:14:C6:94:B4:21:FD:16:EE:DD:C6:8E:64:EA:F7:5B:CA:7C X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.69.6.0/24 Signature Algorithm: sha256WithRSAEncryption a4:2f:e9:8e:97:20:01:e7:d3:0f:3b:3e:a7:c9:78:a0:12:ee: 61:51:e8:6c:78:49:28:45:d1:8a:1a:60:90:30:f8:fe:8e:b1: a8:51:66:9f:cc:e3:75:00:b7:27:1f:ca:de:5a:b1:2d:a1:fb: e6:0b:04:6c:6b:86:96:57:69:94:09:e7:ea:fd:4c:02:97:48: 90:e7:ff:3c:8b:e7:e4:2c:07:af:3b:1c:fc:28:62:c1:ed:ed: c4:d9:7b:3e:7b:65:d1:9e:ca:9d:47:2e:31:e3:80:be:d7:a4: 93:81:0b:4f:8e:b7:88:7a:51:79:25:48:d0:81:3a:91:12:7b: 8d:da:82:c7:ef:39:fe:22:4c:cc:64:8c:19:b7:e7:5c:a9:09: bb:ee:b0:47:30:b3:b5:e6:8c:f3:61:10:77:27:91:0b:aa:d0: 71:c2:bc:f7:9b:7f:96:a2:24:b4:d6:f4:1e:3a:b3:a1:48:e2: ec:48:0c:b5:1f:f8:19:e9:d9:7c:ec:d0:01:51:9c:19:19:1f: 14:3f:0d:de:4f:66:f7:82:f1:31:a4:b4:a7:25:eb:21:c8:6e: 75:f7:0d:63:04:f6:3f:db:f7:f8:9b:f1:2e:3c:ad:d9:9c:e1: e4:1c:b5:b4:aa:c7:36:bc:81:a3:8a:b2:5c:a7:30:18:c1:03: 75:78:dd:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4ZC1kMGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rjmJclnGDtXYmnkn4+AvcZG0cyHdhCeSuBD2XeSPibb1dJUxIBjSoUPbrZe t4YVfipz5mLfaBURrWgmwCeSLF+GwmcV5Q9tcEtBLLILUy25sE/DLcRNGfHlP9BX JvlYXa4p5eQU5tPupwMlRWcAVxjF2LMb9+WSnCAaK67LIVoNu/jdwQWx3DeBQZZZ yvVRi2twC+wgbvRPn6XpDpCaFVderzn9XmWwwwLLb290nFvFGgoUg0nezqwB8uUf ly2chgbfkiCv3MJz/kW7lyqZZmogWjHgcVUaUT6tMjhRTDo8SldlVOF7uaI47fcZ gDMkimmuKIyQ/Ea60y56HWxWgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGMArBTG lLQh/Rbu3caOZOr3W8p8MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjY4OEZFMzg4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6RQYwDQYJKoZIhvcNAQELBQADggEBAKQv6Y6XIAHn0w87 PqfJeKAS7mFR6Gx4SShF0YoaYJAw+P6OsahRZp/M43UAtycfyt5asS2h++YLBGxr hpZXaZQJ5+r9TAKXSJDn/zyL5+QsB687HPwoYsHt7cTZez57ZdGeyp1HLjHjgL7X pJOBC0+Ot4h6UXklSNCBOpESe43agsfvOf4iTMxkjBm351ypCbvusEcws7XmjPNh EHcnkQuq0HHCvPebf5aiJLTW9B46s6FI4uxIDLUf+Bnp2Xzs0AFRnBkZHxQ/Dd5P ZveC8TGktKcl6yHIbnX3DWME9j/b9/ib8S48rdmc4eQctbSqxza8gaOKslynMBjB A3V43Xo= -----END CERTIFICATE-----Generated at Sat Apr 26 14:10:29 2025 by rpki-client