$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F721F6B08C5611E792848B4AC4F9AE02.roa File: F721F6B08C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: HjDnuWYD2CM4eau1ngg0jQqOKxs9P1pY+POnRU8sW84= Subject key identifier: BF:3D:85:4A:E0:05:1B:8A:79:3E:DD:3F:77:19:C5:72:95:FD:53:1A Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2799 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F721F6B08C5611E792848B4AC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:51 +0000 ROA not before: Tue 08 Apr 2025 15:53:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55413 IP address blocks: 122.55.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10137 (0x2799) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5468e-9d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7a:29:3c:7b:86:77:69:12:fb:aa:46:21:38: ed:73:b7:c0:36:22:ea:d1:38:06:40:34:83:e0:d8: c5:f3:e7:08:6e:80:12:dd:4c:70:56:ee:88:79:04: c6:4f:ba:e3:e3:10:3e:30:15:f7:df:c7:3a:7d:81: 84:1d:7e:e4:22:c0:57:cc:f8:b3:8d:3d:02:ca:e2: ba:6b:79:32:8d:18:26:d1:a7:ad:79:7a:bd:f6:aa: fe:39:64:63:1e:40:0d:83:e3:39:0e:dc:04:b4:b1: 3b:54:ee:85:ec:59:01:41:da:e1:3a:34:21:b9:95: b2:0e:c3:2a:74:c5:a0:05:7e:e1:f9:fc:3e:60:5b: d3:b6:89:07:37:c6:7f:9f:b8:ff:7f:95:25:2d:70: 99:9c:46:55:6b:89:1b:ea:3b:42:14:96:e2:ab:f0: 9b:4b:7c:96:98:31:e1:0e:32:6e:93:28:ab:c4:4f: 70:0f:58:25:28:f1:87:0a:24:89:fc:f6:1c:c2:03: 1c:83:31:1b:4f:e7:58:85:5a:6f:5e:18:20:e2:61: 1e:b7:e8:bb:0b:34:2d:fa:fb:cf:d3:4d:d6:3e:6a: a1:5b:f0:26:fb:0e:a6:1e:56:27:0d:29:dd:4f:eb: 2d:7f:be:3c:e3:6b:bd:5c:6f:1c:b5:8c:30:ed:09: 87:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:3D:85:4A:E0:05:1B:8A:79:3E:DD:3F:77:19:C5:72:95:FD:53:1A X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F721F6B08C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.55.6.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:d1:87:e4:c3:53:f4:ee:fc:9b:de:e2:4b:99:87:cd:fe:2d: f2:ab:62:aa:07:31:45:3a:32:b6:f9:03:e4:e4:17:9a:98:49: 7b:fc:58:34:97:a1:11:89:9a:47:8e:6c:0a:4a:b0:42:d8:c8: d7:d7:bd:91:7c:1f:67:d8:d6:f4:e3:c5:63:3f:10:47:fc:26: 18:d2:a0:a7:3b:10:e9:39:64:10:e1:83:59:c6:af:6f:f4:6f: 1a:4b:a7:52:41:c9:bc:f3:48:2a:95:6f:17:d9:ec:77:84:25: 14:ea:22:52:ad:19:c7:c6:61:3c:ec:c4:a8:78:7f:27:1b:3e: 6a:1f:a4:ae:9f:df:2d:03:e9:78:e5:93:f3:0b:9c:6e:ab:97: 20:ba:a5:3e:7a:ea:1b:5e:e8:b8:89:83:bd:95:be:39:46:85: 5f:d6:94:34:3e:d8:89:a6:6c:42:eb:1a:95:37:cf:66:31:13: 37:23:18:2d:36:62:7e:f4:1e:79:35:11:cf:bd:ed:ce:09:cd: c0:78:12:40:71:30:86:a4:1d:eb:b3:df:ec:a8:0a:4f:91:81: c4:9c:48:59:e4:f5:12:ed:7e:c8:26:79:7a:ae:f4:ee:b7:90: b0:d0:91:02:2e:3e:c8:98:1f:2a:59:cb:47:3a:50:f5:e9:5b: e5:47:17:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4ZS05ZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHopPHuGd2kS+6pGITjtc7fANiLq0TgGQDSD4NjF8+cIboAS3UxwVu6IeQTG T7rj4xA+MBX338c6fYGEHX7kIsBXzPizjT0CyuK6a3kyjRgm0aeteXq99qr+OWRj HkANg+M5DtwEtLE7VO6F7FkBQdrhOjQhuZWyDsMqdMWgBX7h+fw+YFvTtokHN8Z/ n7j/f5UlLXCZnEZVa4kb6jtCFJbiq/CbS3yWmDHhDjJukyirxE9wD1glKPGHCiSJ /PYcwgMcgzEbT+dYhVpvXhgg4mEet+i7CzQt+vvP003WPmqhW/Am+w6mHlYnDSnd T+stf74842u9XG8ctYww7QmHbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL89hUrg BRuKeT7dP3cZxXKV/VMaMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjcyMUY2QjA4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6NwYwDQYJKoZIhvcNAQELBQADggEBAJrRh+TDU/Tu/Jve 4kuZh83+LfKrYqoHMUU6Mrb5A+TkF5qYSXv8WDSXoRGJmkeObApKsELYyNfXvZF8 H2fY1vTjxWM/EEf8JhjSoKc7EOk5ZBDhg1nGr2/0bxpLp1JBybzzSCqVbxfZ7HeE JRTqIlKtGcfGYTzsxKh4fycbPmofpK6f3y0D6Xjlk/MLnG6rlyC6pT566hte6LiJ g72VvjlGhV/WlDQ+2ImmbELrGpU3z2YxEzcjGC02Yn70Hnk1Ec+97c4JzcB4EkBx MIakHeuz3+yoCk+RgcScSFnk9RLtfsgmeXqu9O63kLDQkQIuPsiYHypZy0c6UPXp W+VHF2k= -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:42 2025 by rpki-client