$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa File: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (raw, json) Hash identifier: mDuBvAb87vc0xqlLuEIwzuSg0BaaCa9nDXGB49E/55o= Subject key identifier: 9B:30:00:F6:64:C2:C9:71:4D:42:01:2F:96:3D:9B:A0:DF:8A:80:56 Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0411 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa Signing time: Sat 01 Mar 2025 02:33:46 +0000 ROA not before: Sat 01 Mar 2025 02:33:46 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 9342 IP address blocks: 144.218.0.0/16 maxlen: 24 169.201.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1041 (0x411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Mar 1 02:33:46 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c2720a-84a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f7:a6:07:c7:0d:1b:02:80:af:05:a1:c2:03: b8:8e:42:00:2d:cb:35:90:69:67:99:34:43:09:55: c3:19:7f:5b:42:2f:3b:43:93:68:fb:63:cf:39:7f: aa:1c:c6:95:60:79:9f:20:9c:50:0d:a3:da:19:15: ac:1f:d1:04:f8:86:83:63:0e:6f:c3:a1:4e:ee:12: 4e:34:f8:24:72:a1:dd:8f:04:19:33:34:c0:f7:2b: 84:89:42:1c:67:5c:a9:a7:09:ac:ac:94:fa:7e:b9: db:3a:9d:27:5f:3f:f6:c4:61:2b:db:93:44:2f:c6: 92:2a:dd:28:7a:f1:71:52:e1:df:44:4c:8c:b1:82: 54:bf:38:df:76:0e:ef:64:18:2a:d1:66:78:2c:ad: 7d:6d:6d:e9:b2:d8:64:2d:3f:32:fb:de:bb:f8:04: f9:d9:22:b3:48:af:fc:5a:ac:47:18:5c:a7:09:e9: 2e:de:82:64:51:28:47:7c:b0:ca:a6:2f:bc:0a:a8: 93:eb:d8:d7:cc:90:bf:85:0f:35:8e:90:f1:c0:91: a9:c1:fd:c9:b2:a6:39:32:24:6a:6c:f1:57:e6:8c: 2c:4a:11:e9:ea:42:bb:03:7d:06:d6:58:c5:86:4e: bb:0a:1d:9c:81:32:9e:dc:12:0a:83:74:55:cd:d5: da:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:30:00:F6:64:C2:C9:71:4D:42:01:2F:96:3D:9B:A0:DF:8A:80:56 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 144.218.0.0/16 169.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption c3:74:ac:24:0f:0b:82:aa:65:0d:ad:b4:06:6b:49:21:c3:35: 2a:93:59:ef:4f:2b:cd:c8:78:f1:74:cd:ad:21:bf:6e:01:a2: 4a:1d:7d:59:ae:f6:77:c9:e1:19:d1:90:92:20:33:fc:3c:48: 76:a9:8e:c1:25:ce:93:8d:fa:12:90:67:9c:33:52:71:6f:60: 87:4a:7d:3b:e8:18:1a:65:c0:a6:e5:eb:83:8c:63:f7:ac:62: 86:89:8c:cc:2e:f7:94:64:19:46:57:af:d3:a8:a5:4f:e8:01: 22:30:93:f5:44:0e:ff:5e:ad:05:6e:f1:7c:38:b5:35:4a:76: 34:04:49:5d:72:a3:9d:c7:e3:6b:65:94:5d:02:81:2d:f6:59: d6:e9:b2:17:54:ff:8a:5b:f9:ea:1a:db:10:d9:70:ca:82:4b: b0:00:64:ac:a1:de:39:d1:16:81:30:fe:64:55:a9:44:2a:e8: ac:75:76:07:d5:82:d7:4d:54:8c:8d:70:2b:5e:7a:f6:ca:6c: 2d:89:7b:6c:dd:a7:f2:27:33:8b:f2:c4:13:fb:9f:3b:a5:92: 47:52:50:e5:8c:26:9c:38:80:fa:4d:43:f1:1f:06:c0:e9:41: 61:93:65:31:69:d4:4c:85:23:e7:25:c2:b8:00:ab:82:a9:01: 57:31:85:03 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICBBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjUwMzAxMDIzMzQ2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyNzIwYS04NGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPemB8cNGwKArwWhwgO4jkIALcs1kGlnmTRDCVXDGX9bQi87Q5No+2PPOX+q HMaVYHmfIJxQDaPaGRWsH9EE+IaDYw5vw6FO7hJONPgkcqHdjwQZMzTA9yuEiUIc Z1yppwmsrJT6frnbOp0nXz/2xGEr25NEL8aSKt0oevFxUuHfREyMsYJUvzjfdg7v ZBgq0WZ4LK19bW3psthkLT8y+967+AT52SKzSK/8WqxHGFynCeku3oJkUShHfLDK pi+8CqiT69jXzJC/hQ81jpDxwJGpwf3JsqY5MiRqbPFX5owsShHp6kK7A30G1ljF hk67Ch2cgTKe3BIKg3RVzdXacQIDAQABo4ICmTCCApUwHQYDVR0OBBYEFJswAPZk wslxTUIBL5Y9m6DfioBWMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjIvQUI2QjI3RjY1RUUyMTFFQ0FGQTY0QjQ0QzRGOUFFMDIvQ0E3RENDRkU1 RUU1MTFFQ0E2QjhDQTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIwYIKwYBBQUHAQcBAf8E FDASMBAEAgABMAoDAwCQ2gMDAKnJMA0GCSqGSIb3DQEBCwUAA4IBAQDDdKwkDwuC qmUNrbQGa0khwzUqk1nvTyvNyHjxdM2tIb9uAaJKHX1ZrvZ3yeEZ0ZCSIDP8PEh2 qY7BJc6TjfoSkGecM1Jxb2CHSn076BgaZcCm5euDjGP3rGKGiYzMLveUZBlGV6/T qKVP6AEiMJP1RA7/Xq0FbvF8OLU1SnY0BEldcqOdx+NrZZRdAoEt9lnW6bIXVP+K W/nqGtsQ2XDKgkuwAGSsod450RaBMP5kValEKuisdXYH1YLXTVSMjXArXnr2ymwt iXts3afyJzOL8sQT+587pZJHUlDljCacOID6TUPxHwbA6UFhk2UxadRMhSPnJcK4 AKuCqQFXMYUD -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:30 2025 by rpki-client