$ rpki-client -vvf rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa File: 08FDDCFC407111EFB0944C40C4F9AE02.roa (raw, json) Hash identifier: 5j1mJUsKsqLJqbWxCLNYcCoMJnOjUallWOckNeSTW7Q= Subject key identifier: 5B:20:37:E5:9F:B9:E7:61:5C:CE:55:9A:C6:07:2A:F9:76:C6:B6:79 Certificate issuer: /CN=A91F495C/serialNumber=D6C80C5D38AA3F10D1EB0E139B9E494EBF6C6421 Certificate serial: 50 Authority key identifier: D6:C8:0C:5D:38:AA:3F:10:D1:EB:0E:13:9B:9E:49:4E:BF:6C:64:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa Signing time: Tue 03 Dec 2024 05:40:30 +0000 ROA not before: Tue 03 Dec 2024 05:40:30 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 56067 IP address blocks: 116.89.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.crl rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F495C, serialNumber=D6C80C5D38AA3F10D1EB0E139B9E494EBF6C6421 Validity Not Before: Dec 3 05:40:30 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e99ce-ac8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:50:23:5b:f4:64:f5:0b:dd:07:8f:0e:79:0b: 44:00:cc:69:d5:e3:88:96:1f:e0:3f:08:98:b8:2d: 7f:4a:ad:10:b4:87:fa:14:f5:02:d7:cd:fd:c1:c4: ce:55:34:ca:88:e0:f4:a6:63:9b:36:17:aa:10:1a: fb:6b:3f:b5:af:09:d2:f5:75:97:97:3a:7c:94:44: 5d:42:d0:52:8b:8c:35:9e:70:fe:af:d6:a3:09:5e: 53:ac:78:09:c9:dd:94:7c:25:28:b9:0a:45:4a:b4: e7:8e:d4:d2:9d:9a:67:48:a7:45:6d:43:5f:01:0b: 3e:31:4a:8a:0e:8c:9c:a3:62:d8:78:e2:ee:ca:1e: 10:57:1b:38:e2:c5:2f:00:6f:6b:9f:fd:ac:7a:cb: 79:40:87:10:9d:2d:69:50:0a:e3:13:0a:b1:0d:64: 5e:4d:44:35:01:4f:11:43:56:19:0c:2d:e0:b3:2a: 76:12:8f:cb:0c:cd:c0:e4:ea:63:5b:4f:5a:28:ee: fe:ca:71:a5:94:9a:93:4e:4d:23:e3:36:2c:2f:ac: 3b:88:93:f0:47:ed:da:04:9c:9b:5b:58:a6:f8:c3: b5:fe:89:d7:cf:5f:41:72:6b:72:a7:3b:04:8d:f4: 8c:11:bf:8c:e8:2e:0a:bc:44:96:89:a9:2e:f2:e6: 03:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:20:37:E5:9F:B9:E7:61:5C:CE:55:9A:C6:07:2A:F9:76:C6:B6:79 X509v3 Authority Key Identifier: keyid:D6:C8:0C:5D:38:AA:3F:10:D1:EB:0E:13:9B:9E:49:4E:BF:6C:64:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.89.252.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:c3:30:fe:76:cb:e9:46:60:d8:fc:cd:c8:cd:69:c6:49:05: 67:5d:c6:42:9b:2f:6e:ad:4a:a2:f4:ce:45:60:31:51:26:04: 37:d4:64:63:f0:15:a4:4d:1d:98:9e:7f:d0:a2:c9:f2:88:8e: e0:fd:16:f0:eb:d5:a1:27:18:bd:2d:d4:53:59:5d:58:1d:b2: f1:68:28:7c:0e:32:03:19:97:74:0e:6a:b9:2f:f3:e5:63:a2: 43:b2:2a:09:49:7c:c0:a2:eb:5f:f1:b2:88:9f:cb:94:e1:d1: 94:0c:6c:ca:7e:54:a1:39:86:95:d9:0e:1c:76:34:68:fc:5b: 02:99:f9:13:d0:be:fa:b1:ce:f4:ab:c1:1e:55:ba:01:12:10: cb:47:5e:e0:1a:35:04:a7:6b:fc:34:66:a1:d5:79:b6:b5:28: 53:7e:ad:3e:56:2f:2e:77:c9:45:b9:eb:2f:64:20:8e:91:04: 49:0c:32:5a:f9:b5:f1:0b:b6:12:77:15:64:47:3f:5f:e7:53: f3:f8:c7:05:e3:4d:8b:74:16:1e:33:6b:30:c8:69:f7:bd:f3: ca:10:3d:56:29:8d:f1:21:ed:8d:19:2f:00:43:b2:02:7a:8f: 76:85:e8:19:c7:a0:d4:d7:4e:62:69:af:48:dd:f6:be:a7:dc: d9:7d:af:ee -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDk1QzExMC8GA1UEBRMoRDZDODBDNUQzOEFBM0YxMEQxRUIwRTEzOUI5RTQ5NEVC RjZDNjQyMTAeFw0yNDEyMDMwNTQwMzBaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGU5OWNlLWFjOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaUCNb9GT1C90Hjw55C0QAzGnV44iWH+A/CJi4LX9KrRC0h/oU9QLXzf3BxM5V NMqI4PSmY5s2F6oQGvtrP7WvCdL1dZeXOnyURF1C0FKLjDWecP6v1qMJXlOseAnJ 3ZR8JSi5CkVKtOeO1NKdmmdIp0VtQ18BCz4xSooOjJyjYth44u7KHhBXGzjixS8A b2uf/ax6y3lAhxCdLWlQCuMTCrENZF5NRDUBTxFDVhkMLeCzKnYSj8sMzcDk6mNb T1oo7v7KcaWUmpNOTSPjNiwvrDuIk/BH7doEnJtbWKb4w7X+idfPX0Fya3KnOwSN 9IwRv4zoLgq8RJaJqS7y5gMXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWyA35Z+5 52FczlWaxgcq+XbGtnkwHwYDVR0jBBgwFoAU1sgMXTiqPxDR6w4Tm55JTr9sZCEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0OTVDLzVCQzYzRUY0NDA2 NTExRUY4NTZDOUUyOUM0RjlBRTAyLzFzZ01YVGlxUHhEUjZ3NFRtNTVKVHI5c1pD RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXNnTVhUaXFQeERSNnc0VG01NUpUcjlzWkNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDk1Qy81QkM2M0VGNDQwNjUxMUVGODU2QzlFMjlDNEY5QUUwMi8wOEZERENGQzQw NzExMUVGQjA5NDRDNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnRZ/DANBgkqhkiG9w0BAQsFAAOCAQEAPsMw/nbL6UZg2PzN yM1pxkkFZ13GQpsvbq1KovTORWAxUSYEN9RkY/AVpE0dmJ5/0KLJ8oiO4P0W8OvV oScYvS3UU1ldWB2y8WgofA4yAxmXdA5quS/z5WOiQ7IqCUl8wKLrX/GyiJ/LlOHR lAxsyn5UoTmGldkOHHY0aPxbApn5E9C++rHO9KvBHlW6ARIQy0de4Bo1BKdr/DRm odV5trUoU36tPlYvLnfJRbnrL2QgjpEESQwyWvm18Qu2EncVZEc/X+dT8/jHBeNN i3QWHjNrMMhp973zyhA9VimN8SHtjRkvAEOyAnqPdoXoGceg1NdOYmmvSN32vqfc 2X2v7g== -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:18 2025 by rpki-client