$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/8489DCB2DD1111EA9D8EEB74C4F9AE02.roa File: 8489DCB2DD1111EA9D8EEB74C4F9AE02.roa (raw, json) Hash identifier: YJhwsUrB6FBIWjfO5wWMann60eKFFdl5Fnp2QU71FgI= Subject key identifier: 42:B3:D4:F8:1D:44:8B:7C:9B:F6:C9:E5:C0:0F:55:E9:C0:C8:52:26 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1891 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/8489DCB2DD1111EA9D8EEB74C4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:25 +0000 ROA not before: Tue 18 Feb 2025 17:35:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 23877 IP address blocks: 202.80.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:56:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6289 (0x1891) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 18 17:35:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4dc-df05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:cd:37:e3:53:cc:82:ef:e1:31:19:67:d3: 8f:31:68:3e:88:5a:8f:fe:9c:38:66:84:bd:11:58: bf:d0:52:19:7d:97:fb:87:eb:f0:d8:3a:a4:a7:2a: 1d:d3:7b:e6:6b:05:0e:01:ac:70:49:28:bc:c6:bf: 09:a5:eb:97:16:5e:c9:e8:ab:08:9c:f7:74:56:0c: ba:95:a3:40:99:03:4e:11:37:49:cc:ff:66:7f:21: e7:75:43:df:bd:d0:2f:e2:2b:64:71:f6:f6:e5:28: 16:bb:f6:9d:6d:cc:b1:46:03:f4:af:91:df:d5:4a: 5d:58:52:6f:a0:ef:6c:1b:48:fb:8f:f5:f2:1a:2e: 88:58:6f:d5:50:09:a6:f0:39:90:13:9f:9a:80:54: 84:85:f9:57:27:e2:4f:cf:68:92:23:e0:b9:27:99: 30:8c:1e:a0:33:77:5c:bf:b6:8d:d8:37:07:cb:82: c9:8e:21:c4:38:4d:84:51:d7:2b:69:74:ac:61:64: 90:fb:7c:7b:59:97:af:b0:b2:72:3f:e7:7f:ec:f5: 3e:b6:5c:5b:3c:6d:0c:1c:72:26:50:de:c7:7d:70: 50:4f:fc:cc:e8:46:63:15:8f:14:ab:1a:21:d5:a0: af:86:9d:a3:c2:28:22:69:2c:a4:19:63:6d:9d:51: 9c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B3:D4:F8:1D:44:8B:7C:9B:F6:C9:E5:C0:0F:55:E9:C0:C8:52:26 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/8489DCB2DD1111EA9D8EEB74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.80.183.0/24 Signature Algorithm: sha256WithRSAEncryption 90:51:a1:a2:16:b2:37:e3:8a:a4:c9:46:19:a9:12:aa:1c:ba: 79:48:00:14:41:28:cd:5f:dd:0b:a3:53:4f:02:40:06:5d:18: ea:a6:fa:26:ef:06:04:1a:5e:25:b9:40:ef:ab:8d:b8:cb:17: d9:68:29:68:40:fa:b2:19:a9:6d:b5:66:96:46:4a:26:49:ba: d6:d7:6e:40:97:d3:2e:12:a1:d4:08:a1:c7:65:68:18:bf:e6: 52:26:c0:c4:64:55:af:31:65:f8:c4:f1:02:bf:d5:39:3b:bd: a1:b5:b3:ed:7a:09:3d:f1:3c:d6:d4:34:a2:a5:3a:6d:5d:02: d8:0d:f4:b0:82:8b:af:95:6f:5b:10:e3:5d:2d:aa:57:93:aa: ff:75:e4:0a:0f:9d:c7:35:6d:c6:10:aa:80:22:65:e7:41:5d: 7a:28:50:ae:d6:0c:48:a6:23:72:55:21:68:73:e1:dc:2a:43: ba:f5:f1:eb:5f:79:30:a5:f3:a8:18:7d:da:17:66:51:a6:f1: d9:9e:3d:30:61:cd:68:11:cf:42:cc:72:c9:cb:99:1d:f3:82: 19:9d:4a:aa:7d:24:19:2a:b9:b9:35:dc:34:a6:ce:19:b0:f5: 49:dd:e1:46:26:0e:e5:3d:31:d7:27:bc:b4:bb:dd:65:0a:a7: 90:9f:7e:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRkYy1kZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTnNN+NTzILv4TEZZ9OPMWg+iFqP/pw4ZoS9EVi/0FIZfZf7h+vw2Dqkpyod 03vmawUOAaxwSSi8xr8JpeuXFl7J6KsInPd0Vgy6laNAmQNOETdJzP9mfyHndUPf vdAv4itkcfb25SgWu/adbcyxRgP0r5Hf1UpdWFJvoO9sG0j7j/XyGi6IWG/VUAmm 8DmQE5+agFSEhflXJ+JPz2iSI+C5J5kwjB6gM3dcv7aN2DcHy4LJjiHEOE2EUdcr aXSsYWSQ+3x7WZevsLJyP+d/7PU+tlxbPG0MHHImUN7HfXBQT/zM6EZjFY8Uqxoh 1aCvhp2jwigiaSykGWNtnVGcaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEKz1Pgd RIt8m/bJ5cAPVenAyFImMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvODQ4OURDQjJE RDExMTFFQTlEOEVFQjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKULcwDQYJKoZIhvcNAQELBQADggEBAJBRoaIWsjfjiqTJ RhmpEqocunlIABRBKM1f3QujU08CQAZdGOqm+ibvBgQaXiW5QO+rjbjLF9loKWhA +rIZqW21ZpZGSiZJutbXbkCX0y4SodQIocdlaBi/5lImwMRkVa8xZfjE8QK/1Tk7 vaG1s+16CT3xPNbUNKKlOm1dAtgN9LCCi6+Vb1sQ410tqleTqv915AoPncc1bcYQ qoAiZedBXXooUK7WDEimI3JVIWhz4dwqQ7r18etfeTCl86gYfdoXZlGm8dmePTBh zWgRz0LMcsnLmR3zghmdSqp9JBkqubk13DSmzhmw9Und4UYmDuU9MdcnvLS73WUK p5Cffsc= -----END CERTIFICATE-----Generated at Sat Apr 26 17:22:30 2025 by rpki-client