$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7934717A3BA611EC8737B534C4F9AE02.roa File: 7934717A3BA611EC8737B534C4F9AE02.roa (raw, json) Hash identifier: w2mL/fsYRB6MmS8ED2TzYNgHT6YJdEKc1P9Mt7Z0I6E= Subject key identifier: 36:6D:63:6C:DD:DF:9B:5C:2A:BC:59:24:4E:92:13:7C:A5:7B:6C:A1 Certificate issuer: /CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Certificate serial: 0514 Authority key identifier: 93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7934717A3BA611EC8737B534C4F9AE02.roa Signing time: Thu 06 Feb 2025 23:42:18 +0000 ROA not before: Thu 06 Feb 2025 23:42:18 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38622 IP address blocks: 111.119.8.0/22 maxlen: 22 111.119.8.0/24 maxlen: 24 111.119.9.0/24 maxlen: 24 111.119.10.0/24 maxlen: 24 111.119.11.0/24 maxlen: 24 111.119.18.0/24 maxlen: 24 111.119.19.0/24 maxlen: 24 117.121.252.0/22 maxlen: 22 117.121.252.0/23 maxlen: 23 117.121.252.0/24 maxlen: 24 117.121.253.0/24 maxlen: 24 2402:6800:740::/48 maxlen: 48 2402:6800:770::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4268, serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Validity Not Before: Feb 6 23:42:18 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a548da-8269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c6:e9:7b:23:f4:3a:80:4f:e2:8b:a4:06:b6: 9d:10:2f:a5:05:03:e4:5f:b7:01:17:d6:1a:3f:7c: dc:4a:a8:6b:bd:f8:53:95:89:83:4d:b7:b0:d1:c2: 59:7a:64:5f:b3:2c:4d:81:c0:2b:ba:72:f2:65:98: 16:d4:20:92:9b:a5:82:e8:39:56:8c:f4:f5:3f:d0: 2f:2f:91:17:5f:9f:8a:8d:d9:d9:d8:6e:68:b1:37: 6c:bb:a1:e8:57:f8:1e:2a:70:ac:f3:2b:21:ac:4e: 0e:ae:87:97:2a:be:7d:95:95:f9:45:a7:9a:0d:41: 7f:43:d3:d7:1b:a9:52:06:9d:97:9e:81:5d:34:53: 11:43:6c:6f:d5:77:1e:0e:d8:8e:92:d1:f0:c4:b9: fe:64:08:1d:e5:ad:34:61:0a:be:92:ae:e6:30:d7: 4a:a3:8a:ab:f5:0e:0b:58:b8:f4:c4:34:43:ea:bf: 2f:1a:64:c4:3d:d6:0e:4a:c0:34:9e:00:5c:2c:67: 60:26:a4:34:2d:1f:7f:e6:7e:39:75:c0:c8:c1:c7: 12:46:4c:2f:e9:d8:31:a3:c2:d7:0f:92:46:9a:35: dc:56:6c:5f:39:ad:88:e1:0e:b5:c8:2b:98:98:56: 31:75:fb:1d:3b:83:04:3d:76:43:36:b2:b5:30:2c: a4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6D:63:6C:DD:DF:9B:5C:2A:BC:59:24:4E:92:13:7C:A5:7B:6C:A1 X509v3 Authority Key Identifier: keyid:93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7934717A3BA611EC8737B534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.119.8.0/22 111.119.18.0/23 117.121.252.0/22 IPv6: 2402:6800:740::/48 2402:6800:770::/48 Signature Algorithm: sha256WithRSAEncryption 5d:01:43:64:d1:04:4a:f2:01:d7:63:c3:2c:cb:59:d1:f2:f4: 4b:be:f7:f1:36:99:19:ef:4d:69:9f:2c:e0:08:40:cc:0d:de: 2a:b8:71:0b:c1:0a:1b:fd:b3:b5:96:c3:57:9b:9a:df:3c:dd: c4:ea:9b:74:f9:b8:80:83:8a:fb:18:ad:94:9f:bc:83:1f:0e: 6f:ed:e5:97:0f:25:f1:7b:59:4e:70:77:1b:83:ce:12:b5:8e: aa:05:03:d9:7c:94:76:2b:6b:4f:eb:ca:e4:83:1d:18:57:94: 7d:b3:21:2a:36:ca:43:53:a8:03:ff:5e:c5:db:30:99:07:a4: 51:40:9a:ac:87:0c:24:40:5e:a7:b4:fb:b5:ae:ae:f2:26:bc: b9:f1:d2:40:28:ea:03:e7:7e:3e:50:4b:0c:fc:b8:2c:9c:e5: 4a:73:4c:6a:8e:4c:e1:6a:de:90:c7:ab:84:71:d2:a2:16:ff: 58:58:1f:ea:f7:55:03:40:d3:6c:7a:d7:02:a6:06:e7:a8:71: 91:33:6a:82:ca:ea:31:09:e7:ef:36:be:72:67:57:d8:7c:59: d1:a1:01:b1:07:03:43:61:59:b2:e4:ef:ef:01:0e:93:78:46: 90:79:eb:72:7f:f2:0e:40:bb:35:ee:c0:cb:45:8f:fb:4a:26: 4c:86:ae:81 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyNjgxMTAvBgNVBAUTKDkzNzMyRjNGQzMxMzU5QkJCRjhCMzc5NjI0QkY5MTM1 MUNDQUQ4NTcwHhcNMjUwMjA2MjM0MjE4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1NDhkYS04MjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8bpeyP0OoBP4oukBradEC+lBQPkX7cBF9YaP3zcSqhrvfhTlYmDTbew0cJZ emRfsyxNgcArunLyZZgW1CCSm6WC6DlWjPT1P9AvL5EXX5+KjdnZ2G5osTdsu6Ho V/geKnCs8yshrE4OroeXKr59lZX5RaeaDUF/Q9PXG6lSBp2XnoFdNFMRQ2xv1Xce DtiOktHwxLn+ZAgd5a00YQq+kq7mMNdKo4qr9Q4LWLj0xDRD6r8vGmTEPdYOSsA0 ngBcLGdgJqQ0LR9/5n45dcDIwccSRkwv6dgxo8LXD5JGmjXcVmxfOa2I4Q61yCuY mFYxdfsdO4MEPXZDNrK1MCyk7QIDAQABo4ICuzCCArcwHQYDVR0OBBYEFDZtY2zd 35tcKrxZJE6SE3yle2yhMB8GA1UdIwQYMBaAFJNzLz/DE1m7v4s3liS/kTUcythX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI2OC9DNzhFQkNFQTIx OTMxMUVDOTAwQzU2NTNDNEY5QUUwMi9rM012UDhNVFdidV9pemVXSkwtUk5Seksy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szTXZQOE1UV2J1X2l6ZVdKTC1STlJ6SzJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyNjgvQzc4RUJDRUEyMTkzMTFFQzkwMEM1NjUzQzRGOUFFMDIvNzkzNDcxN0Ez QkE2MTFFQzg3MzdCNTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAJvdwgDBAFvdxIDBAJ1efwwGAQCAAIwEgMHACQCaAAHQAMH ACQCaAAHcDANBgkqhkiG9w0BAQsFAAOCAQEAXQFDZNEESvIB12PDLMtZ0fL0S773 8TaZGe9NaZ8s4AhAzA3eKrhxC8EKG/2ztZbDV5ua3zzdxOqbdPm4gIOK+xitlJ+8 gx8Ob+3llw8l8XtZTnB3G4POErWOqgUD2XyUditrT+vK5IMdGFeUfbMhKjbKQ1Oo A/9exdswmQekUUCarIcMJEBep7T7ta6u8ia8ufHSQCjqA+d+PlBLDPy4LJzlSnNM ao5M4WrekMerhHHSohb/WFgf6vdVA0DTbHrXAqYG56hxkTNqgsrqMQnn7za+cmdX 2HxZ0aEBsQcDQ2FZsuTv7wEOk3hGkHnrcn/yDkC7Ne7Ay0WP+0omTIaugQ== -----END CERTIFICATE-----Generated at Sat Apr 26 12:36:03 2025 by rpki-client