$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/93957C3A25B211ECB5356475C4F9AE02.roa File: 93957C3A25B211ECB5356475C4F9AE02.roa (raw, json) Hash identifier: BdOiTbzqh5XSdUEde1pJSh9jcSbYou4UnLUcs5Z11Mw= Subject key identifier: AA:A4:3F:2A:45:12:11:AC:F0:5D:99:7B:4A:9E:25:66:3E:87:D1:20 Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Certificate serial: 247B Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/93957C3A25B211ECB5356475C4F9AE02.roa Signing time: Tue 18 Mar 2025 16:03:12 +0000 ROA not before: Tue 18 Mar 2025 16:03:12 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 3758 IP address blocks: 202.176.192.0/19 maxlen: 24 203.208.224.0/19 maxlen: 24 2404:5800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9339 (0x247b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Validity Not Before: Mar 18 16:03:12 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d99940-d40e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:e7:1a:9a:77:b7:46:08:13:bf:82:ed:d8: c0:f6:92:61:b2:14:3d:5d:ea:e0:83:37:0f:a4:58: 8f:25:2d:b8:cc:ea:59:c2:30:9b:5a:ab:a6:00:8c: 22:39:79:dd:f9:d4:2d:c6:82:a8:b1:59:a0:49:a4: 1f:3e:aa:27:0e:64:b8:89:80:dd:a6:7d:16:df:2e: ba:50:83:3f:fb:0a:05:aa:ee:bd:76:1d:e8:27:f5: 94:cc:60:dc:3e:20:28:1d:48:e3:f5:0c:62:25:9a: b0:2e:d1:de:e5:a1:61:0a:39:36:90:f8:84:c8:5f: ed:03:5c:4e:df:c0:54:db:8f:40:06:8f:6b:03:f7: cc:c2:78:a8:ec:fb:93:33:3c:f3:fa:fb:f4:1f:53: 7c:b0:10:75:ee:17:f1:3b:90:f8:45:f6:fd:56:1d: 6c:15:5b:ec:40:20:2a:59:93:62:8a:10:af:0c:6c: b2:c3:64:d3:2a:91:f1:c3:56:0d:d6:c0:21:59:61: e5:1f:34:62:5a:80:bf:97:e3:37:eb:c4:a7:c7:9e: cd:aa:95:5f:1f:c2:95:36:ac:a8:9a:83:c5:32:81: 1e:23:4b:e6:1c:cd:64:95:ad:d6:fb:6d:ea:c9:05: 2c:b1:01:f2:90:38:97:12:8a:3a:c6:62:d6:32:da: 94:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A4:3F:2A:45:12:11:AC:F0:5D:99:7B:4A:9E:25:66:3E:87:D1:20 X509v3 Authority Key Identifier: keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/93957C3A25B211ECB5356475C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.176.192.0/19 203.208.224.0/19 IPv6: 2404:5800::/32 Signature Algorithm: sha256WithRSAEncryption 9d:2e:74:a3:c5:1e:02:b6:d4:55:a9:b9:b5:10:fd:b7:12:71: d8:86:7c:8d:8a:04:a3:21:13:47:66:1c:34:d1:f6:23:ff:65: 34:13:cf:f4:1d:f0:d6:24:b9:92:d0:ef:2f:a2:d4:5a:20:95: dc:35:95:17:56:b1:23:cd:ab:ef:b7:76:18:5a:cb:06:ce:dd: 2a:fd:8d:16:d3:b1:3f:45:2b:2b:54:46:38:ea:48:98:d9:a8: 99:0d:67:08:39:78:9b:5d:c8:47:24:75:60:39:b1:39:4d:07: d3:91:79:80:26:5c:22:a7:9b:de:57:81:3e:7c:c0:e3:e1:21: da:e6:d6:7f:08:d6:56:80:7d:a5:81:e0:0f:f3:d6:41:df:28: 22:19:c9:e3:0f:bc:32:8d:d4:69:f6:f2:60:2a:e0:85:7d:07: 7d:bb:14:5a:30:84:8f:f0:2e:2e:f8:3c:9e:86:29:82:65:4e: 6e:70:93:52:e1:cd:73:cc:69:c6:fb:ab:b1:22:44:f5:8c:b7: 2a:0b:fe:18:94:15:f2:c2:3e:e7:ff:36:7b:da:fb:ac:29:16: 79:8d:5a:71:57:6b:ca:19:a2:18:2c:0b:ce:45:b5:5f:cd:0a: 93:67:9b:df:28:d1:4e:c6:df:09:4f:50:34:58:6f:7a:ab:38: 14:bd:87:42 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxNkExMTAvBgNVBAUTKENGN0FDNkU3ODUzRTQ5NTgyODcwMDY0MzAwNzY1ODQ2 NTdFMEM5NTAwHhcNMjUwMzE4MTYwMzEyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5OTk0MC1kNDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX/nGpp3t0YIE7+C7djA9pJhshQ9XerggzcPpFiPJS24zOpZwjCbWqumAIwi OXnd+dQtxoKosVmgSaQfPqonDmS4iYDdpn0W3y66UIM/+woFqu69dh3oJ/WUzGDc PiAoHUjj9QxiJZqwLtHe5aFhCjk2kPiEyF/tA1xO38BU249ABo9rA/fMwnio7PuT Mzzz+vv0H1N8sBB17hfxO5D4Rfb9Vh1sFVvsQCAqWZNiihCvDGyyw2TTKpHxw1YN 1sAhWWHlHzRiWoC/l+M368Snx57NqpVfH8KVNqyomoPFMoEeI0vmHM1kla3W+23q yQUssQHykDiXEoo6xmLWMtqUUwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKqkPypF EhGs8F2Ze0qeJWY+h9EgMB8GA1UdIwQYMBaAFM96xueFPklYKHAGQwB2WEZX4MlQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTE2QS8xRDdBRDBCQTQ1 OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNWZ29jQVpEQUhaWVJsZmd5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozckc1NFUtU1Znb2NBWkRBSFpZUmxmZ3lWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkxNkEvMUQ3QUQwQkE0NThEMTFFNUIzOTU3QTc5QzRGOUFFMDIvOTM5NTdDM0Ey NUIyMTFFQ0I1MzU2NDc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAXKsMADBAXL0OAwDQQCAAIwBwMFACQEWAAwDQYJKoZIhvcN AQELBQADggEBAJ0udKPFHgK21FWpubUQ/bcScdiGfI2KBKMhE0dmHDTR9iP/ZTQT z/Qd8NYkuZLQ7y+i1Fogldw1lRdWsSPNq++3dhhaywbO3Sr9jRbTsT9FKytURjjq SJjZqJkNZwg5eJtdyEckdWA5sTlNB9OReYAmXCKnm95XgT58wOPhIdrm1n8I1laA faWB4A/z1kHfKCIZyeMPvDKN1Gn28mAq4IV9B327FFowhI/wLi74PJ6GKYJlTm5w k1LhzXPMacb7q7EiRPWMtyoL/hiUFfLCPuf/Nnva+6wpFnmNWnFXa8oZohgsC85F tV/NCpNnm98o0U7G3wlPUDRYb3qrOBS9h0I= -----END CERTIFICATE-----Generated at Sat Apr 26 09:06:47 2025 by rpki-client