$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa File: 192418F6AA1811EA97BC574CC4F9AE02.roa (raw, json) Hash identifier: 2NrY7syTQnT2b3fwQCo+pNk5LqubHVwUAREOnAdGVSc= Subject key identifier: 8D:F9:1D:5A:04:91:53:96:27:4F:AE:AC:22:75:38:20:2B:82:08:ED Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1EBA Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa Signing time: Mon 21 Apr 2025 03:20:22 +0000 ROA not before: Mon 21 Apr 2025 03:20:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 24429 IP address blocks: 43.91.0.0/16 maxlen: 24 2404:2280:100::/40 maxlen: 48 2404:2280:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7866 (0x1eba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Apr 21 03:20:22 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6805b975-688b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:39:91:fd:d6:40:79:b8:dc:2d:e9:b2:f8:1a: f4:0f:86:79:28:e5:2e:d8:8f:c8:c9:a1:32:74:b5: 73:2b:31:74:cf:21:0f:42:4f:97:5b:74:63:51:fa: ff:4c:b1:30:88:71:6f:0b:e8:4a:67:b3:fb:38:bf: 59:e9:b3:90:97:04:f7:db:6d:af:e1:17:1c:cf:62: 95:c9:4f:10:f5:f1:fe:cb:b4:8d:ea:8c:cc:41:24: 91:ac:0a:28:1b:e2:63:c1:d9:49:2e:7f:f5:c1:32: e7:db:15:6f:95:2e:2b:16:81:95:dd:54:6c:10:dd: 23:a1:14:8c:e0:1a:5e:c8:f7:49:a9:b7:00:37:04: ce:7f:09:ef:b5:03:39:5e:19:c2:e0:6e:9c:be:1d: 8e:2b:e6:e1:ea:e4:d8:9d:a5:0f:1b:f1:95:b5:a3: 49:6a:09:2e:fb:05:63:54:75:7d:3f:a1:01:06:91: b6:e5:d4:7f:9c:20:b9:b6:3c:54:9f:11:15:4b:78: bf:c2:97:37:10:ae:b3:21:55:53:8f:73:15:90:0d: 09:2a:70:07:6d:9d:98:45:0a:4d:a0:ad:ed:16:8a: b4:c3:5d:7b:66:dc:82:82:19:c1:dc:2f:34:02:5a: ff:8d:94:ca:ee:06:5e:5a:7d:9d:db:c4:c0:d3:52: 4b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F9:1D:5A:04:91:53:96:27:4F:AE:AC:22:75:38:20:2B:82:08:ED X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/192418F6AA1811EA97BC574CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.91.0.0/16 IPv6: 2404:2280:100::-2404:2280:2ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 68:c0:d9:b3:8a:66:58:a7:40:6d:36:46:1e:82:5c:00:8f:dc: 53:e8:30:15:57:81:c6:db:3a:f7:35:d0:0b:99:98:dd:c8:fb: c8:68:f5:ab:21:76:2a:97:94:19:fa:ed:79:6e:9a:97:b9:f3: ce:aa:c6:c0:c8:a2:d6:1a:df:28:64:5c:7f:0d:69:35:cb:c4: 5e:c2:29:a6:ec:21:77:85:72:bf:0f:d3:da:5d:87:b2:db:bd: 06:e1:97:4f:8e:ee:4b:77:ca:3d:0b:51:90:a1:e0:49:51:4c: 26:47:a2:5c:99:72:a7:a0:92:ff:b4:75:f4:84:56:ee:8e:5b: 0e:08:34:cf:69:49:98:f4:67:ef:93:1b:45:5b:04:dd:7e:c6: c7:c8:00:37:b5:4b:d7:1b:3c:a5:14:e5:9d:64:e2:2b:13:7b: 9a:f6:ef:bc:7b:aa:be:da:16:b9:d2:80:2c:c7:2c:11:22:ef: ac:8b:96:d8:65:9b:71:6c:ed:21:dc:c9:40:8c:eb:4e:03:b3: 07:62:25:8b:8a:62:71:df:a8:7a:fa:06:70:4c:dc:0b:f8:28: 55:c2:78:7d:94:14:6e:8f:aa:6b:25:c0:82:31:ef:82:97:f0: c2:20:98:4b:33:b8:72:b0:25:2a:4c:f1:8e:ab:89:d8:d2:0b: 03:28:9f:4b -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICHrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjUwNDIxMDMyMDIyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA1Yjk3NS02ODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TmR/dZAebjcLemy+Br0D4Z5KOUu2I/IyaEydLVzKzF0zyEPQk+XW3RjUfr/ TLEwiHFvC+hKZ7P7OL9Z6bOQlwT3222v4Rccz2KVyU8Q9fH+y7SN6ozMQSSRrAoo G+JjwdlJLn/1wTLn2xVvlS4rFoGV3VRsEN0joRSM4BpeyPdJqbcANwTOfwnvtQM5 XhnC4G6cvh2OK+bh6uTYnaUPG/GVtaNJagku+wVjVHV9P6EBBpG25dR/nCC5tjxU nxEVS3i/wpc3EK6zIVVTj3MVkA0JKnAHbZ2YRQpNoK3tFoq0w117ZtyCghnB3C80 Alr/jZTK7gZeWn2d28TA01JLiwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFI35HVoE kVOWJ0+urCJ1OCArggjtMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvMTkyNDE4RjZB QTE4MTFFQTk3QkM1NzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMAsEAgABMAUDAwArWzAYBAIAAjASMBADBgAkBCKAAQMGACQEIoACMA0GCSqG SIb3DQEBCwUAA4IBAQBowNmzimZYp0BtNkYeglwAj9xT6DAVV4HG2zr3NdALmZjd yPvIaPWrIXYql5QZ+u15bpqXufPOqsbAyKLWGt8oZFx/DWk1y8Rewimm7CF3hXK/ D9PaXYey270G4ZdPju5Ld8o9C1GQoeBJUUwmR6JcmXKnoJL/tHX0hFbujlsOCDTP aUmY9GfvkxtFWwTdfsbHyAA3tUvXGzylFOWdZOIrE3ua9u+8e6q+2ha50oAsxywR Iu+si5bYZZtxbO0h3MlAjOtOA7MHYiWLimJx36h6+gZwTNwL+ChVwnh9lBRuj6pr JcCCMe+Cl/DCIJhLM7hysCUqTPGOq4nY0gsDKJ9L -----END CERTIFICATE-----Generated at Sat Apr 26 08:18:52 2025 by rpki-client