$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa File: 678B44F28B9F11EA97BB8046C4F9AE02.roa (raw, json) Hash identifier: Y1ZDcwtp4WpP7AO3uuMh550NrbR6Z6/rzhbDD2cnMZ8= Subject key identifier: 20:FA:85:F0:FA:A5:0D:3C:3F:12:56:2C:E8:D9:37:C7:81:D9:A7:23 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 189B Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:35 +0000 ROA not before: Tue 18 Feb 2025 17:35:35 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 53813 IP address blocks: 175.45.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:56:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6299 (0x189b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 18 17:35:35 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4e7-7329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cc:2c:5f:ba:c9:64:14:dc:e5:01:36:1e:e9: 50:50:21:df:83:5b:74:20:e7:4b:a7:8a:e1:7f:6c: c8:ab:38:61:3f:ae:c5:74:5e:e1:06:20:0e:8d:81: 8e:c0:47:9e:0b:69:b0:fb:56:1d:29:05:72:b7:af: 6e:bc:d8:c6:9e:a6:9e:d0:e9:6b:b5:4f:70:95:e8: 26:d5:65:bc:8b:af:a3:db:cf:9b:01:1e:4b:34:0a: bc:67:56:ca:c0:16:2e:2e:8a:f0:aa:f2:d3:2c:5c: a4:81:f3:4b:11:80:96:4c:93:17:b6:e6:6f:ca:3a: 73:3e:a3:ad:6f:06:6e:53:0e:3e:cf:d9:b6:c9:90: 58:77:2c:54:47:31:da:3f:ed:85:fd:b3:03:7f:2c: b2:fb:ac:29:1f:28:ac:22:a6:ab:8e:b7:3c:c3:fe: ae:82:cd:15:24:64:5c:a3:a2:00:4f:48:b0:ed:e1: ea:24:17:d1:4c:c2:2a:79:ff:ed:4a:1d:31:df:05: 59:7f:c9:d0:16:d0:39:8d:10:c6:a7:6d:1b:81:8c: 5e:6c:89:42:fe:c5:62:0d:28:9a:e2:69:3e:f5:a5: fa:84:45:2b:39:fe:50:5f:81:02:0d:30:f8:46:ca: 61:7d:eb:e3:db:f8:4b:25:f2:ef:0d:2e:2a:41:3e: 57:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FA:85:F0:FA:A5:0D:3C:3F:12:56:2C:E8:D9:37:C7:81:D9:A7:23 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.45.116.0/24 Signature Algorithm: sha256WithRSAEncryption 77:39:47:f7:fa:76:fc:7c:87:05:58:d3:15:9e:3d:85:22:70: 84:6f:fb:9b:b7:aa:ce:18:fe:74:b8:e9:26:d7:3b:3a:c5:30: b2:c3:36:46:5d:9f:ee:b0:a7:59:29:76:e4:bb:a5:50:77:a4: a2:65:c2:dd:dc:fe:ee:b6:e9:34:5e:b7:e0:4c:a9:69:83:9a: 40:0e:0e:d6:81:92:b5:7b:b3:ef:22:e9:88:f8:12:b4:dc:15: f1:a6:1f:72:3c:ab:45:6a:bb:ee:f0:25:86:c1:b7:b1:a0:7e: 7a:f4:a4:8e:a6:fd:59:6b:e0:03:f6:2b:1d:be:6c:21:d4:24: a4:26:7b:83:ac:11:d1:87:f4:50:8b:4c:6d:20:1c:3c:c9:d8: 7b:d8:2d:16:9b:44:6c:66:10:d5:5f:14:44:70:47:2b:7f:ca: 51:0d:7c:d3:c0:2b:48:cb:12:9c:a7:00:a3:6d:4f:61:a5:3a: 50:37:a0:7b:7b:a1:f3:65:f4:41:b0:61:b4:5c:c1:a5:50:90: c0:07:ed:d9:ac:fd:7e:b9:e9:1d:e2:e1:a1:f5:cc:40:b2:ba: 79:e8:2f:4b:b7:90:7e:d5:2c:66:ed:ae:2a:51:c1:5a:4d:0b: 80:74:c2:70:25:37:f6:16:0c:7d:c7:6b:7b:ff:d7:32:33:b3: 45:77:64:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTM1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRlNy03MzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcwsX7rJZBTc5QE2HulQUCHfg1t0IOdLp4rhf2zIqzhhP67FdF7hBiAOjYGO wEeeC2mw+1YdKQVyt69uvNjGnqae0OlrtU9wlegm1WW8i6+j28+bAR5LNAq8Z1bK wBYuLorwqvLTLFykgfNLEYCWTJMXtuZvyjpzPqOtbwZuUw4+z9m2yZBYdyxURzHa P+2F/bMDfyyy+6wpHyisIqarjrc8w/6ugs0VJGRco6IAT0iw7eHqJBfRTMIqef/t Sh0x3wVZf8nQFtA5jRDGp20bgYxebIlC/sViDSia4mk+9aX6hEUrOf5QX4ECDTD4 Rsphfevj2/hLJfLvDS4qQT5XsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCD6hfD6 pQ08PxJWLOjZN8eB2acjMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvNjc4QjQ0RjI4 QjlGMTFFQTk3QkI4MDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACvLXQwDQYJKoZIhvcNAQELBQADggEBAHc5R/f6dvx8hwVY 0xWePYUicIRv+5u3qs4Y/nS46SbXOzrFMLLDNkZdn+6wp1kpduS7pVB3pKJlwt3c /u626TRet+BMqWmDmkAODtaBkrV7s+8i6Yj4ErTcFfGmH3I8q0Vqu+7wJYbBt7Gg fnr0pI6m/Vlr4AP2Kx2+bCHUJKQme4OsEdGH9FCLTG0gHDzJ2HvYLRabRGxmENVf FERwRyt/ylENfNPAK0jLEpynAKNtT2GlOlA3oHt7ofNl9EGwYbRcwaVQkMAH7dms /X656R3i4aH1zECyunnoL0u3kH7VLGbtripRwVpNC4B0wnAlN/YWDH3Ha3v/1zIz s0V3ZEU= -----END CERTIFICATE-----Generated at Sat Apr 26 12:39:38 2025 by rpki-client