$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/CA5B7DA48ECA11EEA3901581C4F9AE02.roa File: CA5B7DA48ECA11EEA3901581C4F9AE02.roa (raw, json) Hash identifier: NP1KRG9waDvIQkw5KUdNc2k+dz2A2AWeqBvOhbZYwI8= Subject key identifier: E8:2A:64:84:99:A3:36:63:E9:3D:0D:9F:1B:14:25:0F:70:60:F3:48 Certificate issuer: /CN=A91FB8C8/serialNumber=369B3E9B7B66E8F5BB979A6E2F2E7AACF500D3F1 Certificate serial: EB Authority key identifier: 36:9B:3E:9B:7B:66:E8:F5:BB:97:9A:6E:2F:2E:7A:AC:F5:00:D3:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nps-m3tm6PW7l5puLy56rPUA0_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/CA5B7DA48ECA11EEA3901581C4F9AE02.roa Signing time: Wed 19 Feb 2025 12:15:18 +0000 ROA not before: Wed 19 Feb 2025 12:15:18 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 134564 IP address blocks: 36.50.30.0/24 maxlen: 24 163.61.86.0/24 maxlen: 24 2001:df3:3240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/Nps-m3tm6PW7l5puLy56rPUA0_E.crl rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/Nps-m3tm6PW7l5puLy56rPUA0_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nps-m3tm6PW7l5puLy56rPUA0_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C8, serialNumber=369B3E9B7B66E8F5BB979A6E2F2E7AACF500D3F1 Validity Not Before: Feb 19 12:15:18 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67b5cb56-3f06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f9:76:a6:a8:ca:1d:a5:4e:06:9f:e0:df:11: ad:15:57:cd:50:e6:7e:a1:25:e3:e8:14:2c:f8:d0: 9d:a4:8e:d1:3e:73:e4:69:8f:d0:9d:b8:3f:93:89: b4:cb:69:35:b1:44:49:e5:12:bb:a3:0d:d8:53:f9: aa:a2:00:b1:87:7a:26:5a:f8:9f:01:c9:df:cd:6a: 91:29:76:02:46:2b:5d:c3:db:49:8e:8e:d6:5c:7e: 7a:ab:0e:08:bc:b3:ad:36:28:f6:96:3d:dc:3b:40: cc:e1:5f:df:98:6b:d6:a3:bf:7c:5c:39:65:6f:d8: 5a:34:00:a1:b4:f2:1e:79:48:7e:94:d4:3e:9d:89: 66:72:b3:dd:56:99:a0:ef:30:8f:cd:a8:ff:e2:ff: e4:34:8e:9c:1d:10:fe:52:7d:1d:80:ec:ed:1b:d1: e7:b5:a0:d5:ee:3f:3a:c1:73:88:43:00:93:5f:11: 29:05:14:97:1e:4e:25:2d:44:43:f9:81:5f:4e:a4: 05:db:4c:79:c8:c4:50:8e:32:07:0f:4e:3b:75:fc: e8:c9:0a:5e:18:79:38:d5:d1:ed:48:f1:74:85:0a: 8d:06:d5:27:ea:f2:44:1b:ed:5f:ad:f7:a7:a0:05: 23:9b:35:da:96:bb:41:0f:3a:fd:b1:30:79:2c:07: 3b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:2A:64:84:99:A3:36:63:E9:3D:0D:9F:1B:14:25:0F:70:60:F3:48 X509v3 Authority Key Identifier: keyid:36:9B:3E:9B:7B:66:E8:F5:BB:97:9A:6E:2F:2E:7A:AC:F5:00:D3:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/Nps-m3tm6PW7l5puLy56rPUA0_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nps-m3tm6PW7l5puLy56rPUA0_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/CA5B7DA48ECA11EEA3901581C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.30.0/24 163.61.86.0/24 IPv6: 2001:df3:3240::/48 Signature Algorithm: sha256WithRSAEncryption 95:1e:3f:03:8d:4e:e9:d0:e0:8b:a2:af:33:a0:89:b3:b4:b7: 23:4f:bc:92:83:a1:f0:f6:e6:7f:0c:09:6c:b7:bd:e7:f7:1f: 45:59:21:66:d6:d1:76:fe:69:ba:33:46:11:3e:ad:7f:57:2a: c9:be:44:ec:6c:20:cd:9e:8d:fd:5c:91:bb:2f:85:0a:fa:14: ef:06:1d:bd:b9:2b:9a:0c:9b:9a:54:29:37:b1:80:07:ee:12: 2a:01:68:ea:6a:c2:4c:71:f4:66:33:36:5a:5c:fa:86:41:a8: e1:45:5d:dd:e5:99:41:58:cd:f9:9e:0e:ea:13:5e:c3:bc:b7: 34:38:00:c1:32:2f:ab:ea:23:8a:9c:13:5e:50:f5:b8:6e:f2: 32:c4:9d:30:77:bc:63:46:35:69:7b:f8:d2:a5:b0:08:db:f2: 97:09:0e:b3:5e:cc:7a:5b:ca:13:e8:1e:d0:a9:97:ac:6a:a0: 98:22:e6:41:65:bf:eb:c4:d2:0b:f6:5a:b8:79:fd:12:a1:4d: 41:35:2d:58:cf:b4:6d:dc:0d:74:be:b3:85:f1:ee:b5:1a:9f: 46:06:3d:fc:ee:3f:a6:c0:51:f6:4d:79:77:3e:57:74:da:50: 29:8b:2b:95:88:f5:24:78:8f:45:97:02:94:b4:c5:5c:11:e0: 05:f7:d1:96 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzgxMTAvBgNVBAUTKDM2OUIzRTlCN0I2NkU4RjVCQjk3OUE2RTJGMkU3QUFD RjUwMEQzRjEwHhcNMjUwMjE5MTIxNTE4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I1Y2I1Ni0zZjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPl2pqjKHaVOBp/g3xGtFVfNUOZ+oSXj6BQs+NCdpI7RPnPkaY/Qnbg/k4m0 y2k1sURJ5RK7ow3YU/mqogCxh3omWvifAcnfzWqRKXYCRitdw9tJjo7WXH56qw4I vLOtNij2lj3cO0DM4V/fmGvWo798XDllb9haNAChtPIeeUh+lNQ+nYlmcrPdVpmg 7zCPzaj/4v/kNI6cHRD+Un0dgOztG9HntaDV7j86wXOIQwCTXxEpBRSXHk4lLURD +YFfTqQF20x5yMRQjjIHD047dfzoyQpeGHk41dHtSPF0hQqNBtUn6vJEG+1frfen oAUjmzXalrtBDzr9sTB5LAc7OwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOgqZISZ ozZj6T0NnxsUJQ9wYPNIMB8GA1UdIwQYMBaAFDabPpt7Zuj1u5eabi8ueqz1ANPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOC9DNDRDMDQ1MjhF QzkxMUVFOUY4RTQ0N0ZDNEY5QUUwMi9OcHMtbTN0bTZQVzdsNXB1THk1NnJQVUEw X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wcy1tM3RtNlBXN2w1cHVMeTU2clBVQTBfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI4QzgvQzQ0QzA0NTI4RUM5MTFFRTlGOEU0NDdGQzRGOUFFMDIvQ0E1QjdEQTQ4 RUNBMTFFRUEzOTAxNTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAAkMh4DBACjPVYwDwQCAAIwCQMHACABDfMyQDANBgkqhkiG 9w0BAQsFAAOCAQEAlR4/A41O6dDgi6KvM6CJs7S3I0+8koOh8PbmfwwJbLe95/cf RVkhZtbRdv5pujNGET6tf1cqyb5E7GwgzZ6N/VyRuy+FCvoU7wYdvbkrmgybmlQp N7GAB+4SKgFo6mrCTHH0ZjM2Wlz6hkGo4UVd3eWZQVjN+Z4O6hNew7y3NDgAwTIv q+ojipwTXlD1uG7yMsSdMHe8Y0Y1aXv40qWwCNvylwkOs17MelvKE+ge0KmXrGqg mCLmQWW/68TSC/ZauHn9EqFNQTUtWM+0bdwNdL6zhfHutRqfRgY9/O4/psBR9k15 dz5XdNpQKYsrlYj1JHiPRZcClLTFXBHgBffRlg== -----END CERTIFICATE-----Generated at Sat Apr 26 05:48:05 2025 by rpki-client