$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa File: 61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa (raw, json) Hash identifier: EzMoudDWuTdlnNruCHKgAEy3hjxWEtpDs8wnwjR1b6o= Subject key identifier: 50:53:C3:86:98:18:8B:66:5A:11:A3:CF:0D:B7:07:BA:B5:44:BF:79 Certificate issuer: /CN=A91F4D54/serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Certificate serial: 24 Authority key identifier: AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa Signing time: Tue 15 Apr 2025 06:42:16 +0000 ROA not before: Tue 15 Apr 2025 06:42:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4764 IP address blocks: 203.56.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4D54, serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Validity Not Before: Apr 15 06:42:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fdffc7-0b7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:43:ce:3a:38:6b:62:a1:21:7a:22:1b:3c:db: 01:43:ad:cb:5c:79:8d:11:46:a2:4c:3e:10:30:96: 0c:30:6f:9b:36:2e:7a:d8:b3:db:63:f2:60:07:59: 95:95:d0:cc:f0:45:ee:be:b4:bb:4e:64:2c:a1:88: 64:bf:79:8f:ac:f0:02:02:7c:7e:64:56:b3:0f:f3: b3:10:52:81:43:c0:f8:91:96:f4:f4:93:14:44:da: 5c:58:f9:cd:53:b4:02:76:89:3b:77:6f:16:5e:e5: 9e:69:c6:56:8e:27:3f:a4:7e:97:b4:48:e0:bc:e1: 25:d9:c5:80:d4:77:25:ff:64:8b:7b:d5:d6:19:77: 49:82:cd:c3:c6:cf:cf:a6:00:c0:13:33:d7:3b:6f: 79:01:d1:b5:71:82:aa:be:a9:62:0c:2d:76:5b:5e: 71:3d:b5:bb:95:8b:71:11:14:60:e4:0b:82:74:05: 2f:c8:72:98:38:31:73:40:9d:0b:57:c4:b2:75:5c: 69:d8:76:38:f8:e5:c1:15:21:ff:58:99:e3:89:e7: 4d:34:1c:c2:9c:1a:94:33:5f:41:ca:6e:e2:9e:1b: a9:d9:dd:92:78:e1:84:49:11:60:fa:e3:63:53:d1: 8c:37:fa:5f:57:70:62:38:79:cd:fd:ed:d3:e2:fa: 68:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:53:C3:86:98:18:8B:66:5A:11:A3:CF:0D:B7:07:BA:B5:44:BF:79 X509v3 Authority Key Identifier: keyid:AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.56.226.0/24 Signature Algorithm: sha256WithRSAEncryption b0:0c:8a:13:f9:63:90:ae:f7:8d:7b:d8:07:b3:24:0a:4d:21: d3:17:a4:e6:40:52:9e:be:76:33:7c:d3:30:e6:2b:b4:4e:3e: 05:64:cd:75:bd:9e:56:db:4d:58:69:0f:b3:ed:3b:b7:e4:15: fd:c8:9d:0d:b5:1e:da:c0:c0:0a:3e:20:77:eb:d1:94:a2:91: 30:7d:27:41:33:ed:72:a7:8c:7d:fc:f0:26:de:fd:19:5b:ec: 8e:a7:5c:35:74:7b:2c:06:d0:ec:30:90:e5:70:27:57:c1:7f: 06:ae:00:63:65:1b:ff:4d:b9:be:d3:3a:60:8d:54:e4:16:50: e9:10:1f:ca:6d:3c:4e:94:0b:b5:67:ce:77:4f:b1:9e:dd:ba: b6:07:4d:9d:a6:88:7a:3b:f8:2d:2d:e1:0f:4f:5f:f9:df:58: 83:18:2a:fa:46:32:4f:0b:34:b9:02:56:9c:12:37:2c:15:ed: 2d:9c:ad:a1:05:07:00:2d:4a:65:1e:a4:61:7c:53:19:bb:19: db:6f:38:c4:54:53:24:61:a2:cd:6d:63:5d:a0:72:43:7b:fc: 47:6e:9f:f4:b1:00:53:6d:9b:63:1e:7e:bf:72:03:4c:61:13: 01:5e:3e:04:fe:e5:90:41:8d:f5:da:34:7b:75:3f:11:21:c2: 6f:80:22:7a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NEQ1NDExMC8GA1UEBRMoQUY3NjEyNTdERTJDOURBNUYzM0U3MUM2NDE5RTI2N0E4 NjJERkI2MjAeFw0yNTA0MTUwNjQyMTZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmRmZmM3LTBiN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWQ846OGtioSF6Ihs82wFDrctceY0RRqJMPhAwlgwwb5s2LnrYs9tj8mAHWZWV 0MzwRe6+tLtOZCyhiGS/eY+s8AICfH5kVrMP87MQUoFDwPiRlvT0kxRE2lxY+c1T tAJ2iTt3bxZe5Z5pxlaOJz+kfpe0SOC84SXZxYDUdyX/ZIt71dYZd0mCzcPGz8+m AMATM9c7b3kB0bVxgqq+qWIMLXZbXnE9tbuVi3ERFGDkC4J0BS/Icpg4MXNAnQtX xLJ1XGnYdjj45cEVIf9YmeOJ5000HMKcGpQzX0HKbuKeG6nZ3ZJ44YRJEWD642NT 0Yw3+l9XcGI4ec397dPi+miDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUFPDhpgY i2ZaEaPPDbcHurVEv3kwHwYDVR0jBBgwFoAUr3YSV94snaXzPnHGQZ4meoYt+2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0RDU0L0QyODc3REI2RTlF QjExRUZBNDU0MkIxOEM0RjlBRTAyL3IzWVNWOTRzbmFYelBuSEdRWjRtZW9ZdC0y SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcjNZU1Y5NHNuYVh6UG5IR1FaNG1lb1l0LTJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEQ1NC9EMjg3N0RCNkU5RUIxMUVGQTQ1NDJCMThDNEY5QUUwMi82MUFBRkNDQUU5 RUMxMUVGQjZENkQyMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMs44jANBgkqhkiG9w0BAQsFAAOCAQEAsAyKE/ljkK73jXvY B7MkCk0h0xek5kBSnr52M3zTMOYrtE4+BWTNdb2eVttNWGkPs+07t+QV/cidDbUe 2sDACj4gd+vRlKKRMH0nQTPtcqeMffzwJt79GVvsjqdcNXR7LAbQ7DCQ5XAnV8F/ Bq4AY2Ub/025vtM6YI1U5BZQ6RAfym08TpQLtWfOd0+xnt26tgdNnaaIejv4LS3h D09f+d9Ygxgq+kYyTws0uQJWnBI3LBXtLZytoQUHAC1KZR6kYXxTGbsZ2284xFRT JGGizW1jXaByQ3v8R26f9LEAU22bYx5+v3IDTGETAV4+BP7lkEGN9do0e3U/ESHC b4Aieg== -----END CERTIFICATE-----Generated at Sat Apr 26 13:47:02 2025 by rpki-client