$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa File: D35D0A48129B11EB97265731C4F9AE02.roa (raw, json) Hash identifier: YPo4JrjUY8rokDYSsOS/zRUheikbdfmmqRlCH28JQPw= Subject key identifier: 07:C5:A9:59:A2:7F:5B:0B:CB:05:CE:F5:E9:91:21:65:98:43:40:E4 Certificate issuer: /CN=A91F2573/serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196 Certificate serial: 074F Authority key identifier: E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa Signing time: Sat 08 Feb 2025 21:39:54 +0000 ROA not before: Sat 08 Feb 2025 21:39:54 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 56035 IP address blocks: 110.173.228.0/24 maxlen: 24 110.173.229.0/24 maxlen: 24 110.173.230.0/24 maxlen: 24 110.173.231.0/24 maxlen: 24 120.88.0.0/24 maxlen: 24 120.88.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1871 (0x74f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2573, serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196 Validity Not Before: Feb 8 21:39:54 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a7cf2a-268f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ed:5e:8a:21:76:69:9a:79:65:51:6e:82:fe: e0:88:de:20:74:7a:b5:c6:07:db:18:a5:23:20:88: 65:8f:a6:f8:85:11:be:ef:52:a6:c1:b5:0c:54:3a: b5:74:5a:45:f1:d4:1e:58:61:79:a4:e5:90:e6:41: e7:2b:83:cb:e4:ab:5e:89:38:12:11:f7:43:c7:7e: b5:36:95:ad:1e:6e:cb:7c:e0:13:77:8c:18:77:e0: 5d:84:42:95:01:31:fc:c6:b7:65:c7:28:8d:6e:c1: 43:b3:ca:d1:76:a3:90:77:22:7b:b1:76:10:2c:67: 88:72:a3:9c:37:6d:31:40:bc:c2:d9:14:81:24:f6: 3b:57:b1:1a:1d:64:ce:ea:0b:5e:7e:61:b8:38:37: cd:ee:70:39:a1:77:9d:26:99:05:96:02:3c:d6:37: f3:24:1f:ad:d0:11:8b:f5:a6:f5:90:33:29:64:1c: cb:09:df:14:88:ee:19:51:8b:7d:c8:c0:d4:a9:89: 93:a9:78:7d:85:ec:be:c3:9e:30:f3:3e:d8:37:dd: 0b:94:73:37:7c:b3:0b:1e:6c:74:a4:15:73:fc:c7: 16:c2:9f:a5:dc:8c:9f:aa:58:a2:5d:21:4c:71:46: 83:5f:ed:76:5a:2e:d3:b7:da:d1:d4:06:a0:8f:f4: 38:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C5:A9:59:A2:7F:5B:0B:CB:05:CE:F5:E9:91:21:65:98:43:40:E4 X509v3 Authority Key Identifier: keyid:E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.173.228.0/22 120.88.0.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:54:6e:37:13:ab:a3:09:4d:3d:87:cf:b0:80:df:33:12:07: 48:a9:d0:ad:ba:5b:51:80:16:83:15:08:94:28:4e:10:45:d7: 85:f5:52:61:71:ab:0a:98:92:16:0b:29:28:33:cb:77:a2:86: 19:98:85:75:5d:8b:e3:29:b3:ff:07:a7:5c:a7:cb:90:70:ef: b0:b0:6e:39:34:ee:b8:70:55:35:70:62:d5:41:2c:a6:b8:6b: 24:ff:0a:f5:31:94:94:ed:16:81:9d:c0:61:9e:06:50:fb:15: 85:64:22:06:64:cf:6e:61:67:d9:bf:aa:85:86:ec:21:13:38: 68:7d:3a:01:00:f2:3c:1e:e4:e0:19:76:bf:99:59:8c:cb:07: 5a:7f:06:73:ad:4b:dd:ff:2a:4a:8e:4b:ec:aa:9c:79:8f:e7: bf:d6:90:7e:3f:bd:3e:ba:68:69:09:a0:ad:13:b7:bb:f5:1b: fb:5f:5d:d3:3d:b7:68:85:61:31:7f:00:c5:a4:f5:ef:23:24: 9f:7e:13:b0:2f:49:1d:31:b3:5c:b6:25:c8:08:4d:32:0c:d4: 36:9b:96:dd:1b:49:94:47:1b:8c:dd:80:cf:78:44:69:c6:f7: 57:84:30:1b:8a:a5:f4:76:ea:30:66:c5:e0:53:5f:7e:89:f2: c7:38:b4:9d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI1NzMxMTAvBgNVBAUTKEU4NDdERUFENUMwRkVENDlFMzNBM0I2MjI0RUZGM0U0 RUNEQTQxOTYwHhcNMjUwMjA4MjEzOTU0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E3Y2YyYS0yNjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+1eiiF2aZp5ZVFugv7giN4gdHq1xgfbGKUjIIhlj6b4hRG+71KmwbUMVDq1 dFpF8dQeWGF5pOWQ5kHnK4PL5KteiTgSEfdDx361NpWtHm7LfOATd4wYd+BdhEKV ATH8xrdlxyiNbsFDs8rRdqOQdyJ7sXYQLGeIcqOcN20xQLzC2RSBJPY7V7EaHWTO 6gtefmG4ODfN7nA5oXedJpkFlgI81jfzJB+t0BGL9ab1kDMpZBzLCd8UiO4ZUYt9 yMDUqYmTqXh9hey+w54w8z7YN90LlHM3fLMLHmx0pBVz/McWwp+l3IyfqliiXSFM cUaDX+12Wi7Tt9rR1Aagj/Q4QQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAfFqVmi f1sLywXO9emRIWWYQ0DkMB8GA1UdIwQYMBaAFOhH3q1cD+1J4zo7YiTv8+Ts2kGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjU3My9BOTBFRDMyNjEy OUExMUVCOTU5MzlGMzBDNEY5QUUwMi82RWZlclZ3UDdVbmpPanRpSk9fejVPemFR WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZFZmVyVndQN1Vuak9qdGlKT196NU96YVFaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI1NzMvQTkwRUQzMjYxMjlBMTFFQjk1OTM5RjMwQzRGOUFFMDIvRDM1RDBBNDgx MjlCMTFFQjk3MjY1NzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJureQDBAF4WAAwDQYJKoZIhvcNAQELBQADggEBABtUbjcT q6MJTT2Hz7CA3zMSB0ip0K26W1GAFoMVCJQoThBF14X1UmFxqwqYkhYLKSgzy3ei hhmYhXVdi+Mps/8Hp1yny5Bw77Cwbjk07rhwVTVwYtVBLKa4ayT/CvUxlJTtFoGd wGGeBlD7FYVkIgZkz25hZ9m/qoWG7CETOGh9OgEA8jwe5OAZdr+ZWYzLB1p/BnOt S93/KkqOS+yqnHmP57/WkH4/vT66aGkJoK0Tt7v1G/tfXdM9t2iFYTF/AMWk9e8j JJ9+E7AvSR0xs1y2JcgITTIM1Dablt0bSZRHG4zdgM94RGnG91eEMBuKpfR26jBm xeBTX36J8sc4tJ0= -----END CERTIFICATE-----Generated at Sat Apr 26 09:07:23 2025 by rpki-client