$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/39D8CF1893EB11EEB45D3A32C4F9AE02.roa File: 39D8CF1893EB11EEB45D3A32C4F9AE02.roa (raw, json) Hash identifier: ofRtHX/MKl5XIFnHo+xiQV/BMYeRiUmwlrnI4KBBFTU= Subject key identifier: 71:58:82:FA:FC:40:83:1B:DE:96:EC:33:C6:28:BD:21:E5:FC:1A:12 Certificate issuer: /CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Certificate serial: 0513 Authority key identifier: 93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/39D8CF1893EB11EEB45D3A32C4F9AE02.roa Signing time: Thu 06 Feb 2025 23:42:18 +0000 ROA not before: Thu 06 Feb 2025 23:42:18 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38621 IP address blocks: 203.9.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4268, serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Validity Not Before: Feb 6 23:42:18 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a548d9-c762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:35:26:71:51:cb:e1:53:9e:de:5c:ad:13: db:f3:99:62:85:7f:19:08:6e:1d:94:b8:59:a3:4a: 3b:98:21:26:0a:a3:d4:4c:f5:2d:c1:4e:75:c1:45: 2f:6d:43:90:70:25:fd:c7:d8:42:7c:ab:bb:37:cd: b6:37:24:4c:81:73:13:c2:70:07:be:7e:d4:19:ec: 04:a2:30:c4:98:96:c2:1c:2a:c9:bd:99:d6:01:ce: 56:61:a3:9e:a8:49:ef:fe:88:53:ae:71:c1:e7:63: f5:76:1f:70:cb:9c:85:d9:40:ee:69:f1:a8:92:48: 3c:23:e8:09:60:37:44:68:63:b6:16:5a:77:62:8f: 23:98:07:00:d2:2a:f8:6b:27:8f:be:1c:64:13:a1: c1:42:f5:51:82:fa:8d:b4:6a:01:9f:c3:3e:dc:b0: 3e:6b:fb:bf:37:a5:68:59:21:57:48:b0:6d:d2:e3: 97:79:f1:89:09:4d:dc:b1:15:ee:05:b5:6f:79:79: 1a:f4:26:fa:fa:14:02:e3:46:0c:d9:34:e0:ce:33: 65:3b:29:86:41:13:e3:02:cf:7f:55:94:a2:00:1f: c8:f3:dd:12:1c:58:ec:dd:db:6f:c1:d7:c6:26:c7: 27:57:d4:e0:3d:bc:27:96:3a:aa:ff:68:9c:56:a1: 42:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:58:82:FA:FC:40:83:1B:DE:96:EC:33:C6:28:BD:21:E5:FC:1A:12 X509v3 Authority Key Identifier: keyid:93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/39D8CF1893EB11EEB45D3A32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.179.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:e3:7e:2e:74:cf:2c:2a:fc:98:99:9d:66:37:8b:29:4c:1c: 96:d0:bc:b7:a5:ec:bf:7b:ce:2c:dd:1b:6c:7b:c2:4b:25:e5: 10:21:39:da:86:2b:d4:fd:f8:ec:f1:65:2b:b0:1c:b4:98:6a: 61:21:f4:aa:4f:5e:25:ff:9a:0f:46:7f:24:2d:42:6a:86:32: 7c:6c:52:fe:a6:9a:16:01:29:2e:cb:14:40:39:c6:af:a3:5a: b2:44:78:f9:51:9c:50:fc:b5:c3:d3:82:93:16:35:e3:79:6a: da:bd:20:43:82:e2:17:de:c5:2c:71:06:07:0e:aa:7d:a0:9b: 9d:04:f2:6e:da:92:29:62:ed:bd:3f:fe:6e:8c:4c:de:91:95: af:f6:1c:90:32:9a:a0:50:b9:bd:83:cf:39:86:b4:cf:4a:af: 56:a7:09:70:e3:96:70:cd:86:63:96:77:80:fb:54:af:6d:49: 7c:17:a5:c6:3a:dc:27:7d:6f:df:d2:d2:3e:d6:b9:5d:e5:b7: 37:aa:15:63:16:be:4d:af:06:92:a4:fb:91:58:eb:4f:ed:1e: 85:c2:4f:80:86:ae:85:c0:36:f8:0a:40:94:c2:f9:c0:93:d3: 8a:47:be:21:a9:6e:e5:51:2d:06:9e:8f:55:7a:00:94:15:a3: 17:bc:13:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyNjgxMTAvBgNVBAUTKDkzNzMyRjNGQzMxMzU5QkJCRjhCMzc5NjI0QkY5MTM1 MUNDQUQ4NTcwHhcNMjUwMjA2MjM0MjE4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1NDhkOS1jNzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc41JnFRy+FTnt5crRPb85lihX8ZCG4dlLhZo0o7mCEmCqPUTPUtwU51wUUv bUOQcCX9x9hCfKu7N822NyRMgXMTwnAHvn7UGewEojDEmJbCHCrJvZnWAc5WYaOe qEnv/ohTrnHB52P1dh9wy5yF2UDuafGokkg8I+gJYDdEaGO2Flp3Yo8jmAcA0ir4 ayePvhxkE6HBQvVRgvqNtGoBn8M+3LA+a/u/N6VoWSFXSLBt0uOXefGJCU3csRXu BbVveXka9Cb6+hQC40YM2TTgzjNlOymGQRPjAs9/VZSiAB/I890SHFjs3dtvwdfG JscnV9TgPbwnljqq/2icVqFChwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHFYgvr8 QIMb3pbsM8YovSHl/BoSMB8GA1UdIwQYMBaAFJNzLz/DE1m7v4s3liS/kTUcythX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI2OC9DNzhFQkNFQTIx OTMxMUVDOTAwQzU2NTNDNEY5QUUwMi9rM012UDhNVFdidV9pemVXSkwtUk5Seksy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szTXZQOE1UV2J1X2l6ZVdKTC1STlJ6SzJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyNjgvQzc4RUJDRUEyMTkzMTFFQzkwMEM1NjUzQzRGOUFFMDIvMzlEOENGMTg5 M0VCMTFFRUI0NUQzQTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLCbMwDQYJKoZIhvcNAQELBQADggEBAF/jfi50zywq/JiZ nWY3iylMHJbQvLel7L97zizdG2x7wksl5RAhOdqGK9T9+OzxZSuwHLSYamEh9KpP XiX/mg9GfyQtQmqGMnxsUv6mmhYBKS7LFEA5xq+jWrJEePlRnFD8tcPTgpMWNeN5 atq9IEOC4hfexSxxBgcOqn2gm50E8m7akili7b0//m6MTN6Rla/2HJAymqBQub2D zzmGtM9Kr1anCXDjlnDNhmOWd4D7VK9tSXwXpcY63Cd9b9/S0j7WuV3ltzeqFWMW vk2vBpKk+5FY60/tHoXCT4CGroXANvgKQJTC+cCT04pHviGpbuVRLQaej1V6AJQV oxe8E80= -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:42 2025 by rpki-client