$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa File: 09182D38084E11EF89D29620C4F9AE02.roa (raw, json) Hash identifier: bcXSyaSt5GFuvXt37iS12rNWnp//huiE39lT66O1G3Q= Subject key identifier: 46:D8:2C:A3:D6:B5:9F:D6:76:6D:06:D6:77:8E:46:F8:50:41:6E:2D Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 0541 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa Signing time: Tue 04 Feb 2025 23:13:23 +0000 ROA not before: Tue 04 Feb 2025 23:13:23 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 45577 IP address blocks: 223.25.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1345 (0x541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Feb 4 23:13:23 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a29f13-ab7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:54:f0:0a:4c:a1:e2:52:e0:7f:ee:27:39:cb: b3:93:a9:77:29:0c:ac:2d:84:91:5a:7a:29:4b:58: 2a:fa:93:09:24:7a:e8:3a:fc:65:91:82:62:af:cc: 39:53:c8:5d:6f:1e:d4:b3:c3:45:eb:83:2a:73:64: 39:79:b9:9f:f2:e3:3b:7e:94:8e:1e:d0:b9:0c:c7: 43:40:7c:27:3b:5f:65:47:57:51:3d:8e:45:3c:36: fb:f5:bd:33:0e:61:8a:cb:f6:50:27:a9:e6:10:aa: df:08:4f:0f:df:95:87:7c:63:6f:c9:d8:d2:38:98: e6:d5:69:47:a5:34:52:5b:94:c2:6d:73:0c:26:ea: 4b:77:dd:a5:f1:a5:fb:08:08:8b:7c:50:39:f5:8b: 45:99:4d:35:b8:6a:8b:37:ef:07:01:9a:82:89:c3: 80:8f:62:86:59:b6:e7:02:1f:33:d2:f2:79:2d:8e: a3:12:7e:72:22:ec:08:25:25:2d:cf:b2:66:25:a4: 5a:a0:0b:db:e2:9a:20:69:89:cc:c7:b3:0e:e7:12: f2:41:de:ee:51:2c:ee:97:fd:52:02:82:5d:af:09: 19:99:7b:c2:f0:65:43:fa:6a:78:01:32:27:93:2e: 9f:bb:7b:7e:90:47:d7:72:29:dc:46:4c:c8:fa:ab: 9a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D8:2C:A3:D6:B5:9F:D6:76:6D:06:D6:77:8E:46:F8:50:41:6E:2D X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.25.224.0/22 Signature Algorithm: sha256WithRSAEncryption c9:2d:5a:15:92:95:99:e7:d4:2e:09:6c:12:4f:2b:bb:34:e2: 81:2c:17:20:a8:62:90:6c:1e:ea:dc:f7:04:28:3e:96:0f:81: 60:de:1b:b6:82:51:7a:ea:35:98:7d:1e:f1:f0:e0:4d:61:06: df:cd:f8:bd:0b:07:f5:7b:6d:c4:5e:34:fe:26:48:5d:91:5b: e8:57:7c:65:d4:73:16:ee:56:97:c0:c6:fe:ee:5b:5d:0b:c2: 48:5c:94:0f:1c:4c:26:14:d4:6c:99:ad:7a:a4:d3:b7:63:83: 08:ee:a3:d8:f5:92:7c:89:ea:73:e3:de:3d:55:17:6a:dc:c5: 56:bd:ce:84:58:c4:d0:2a:f5:7f:64:ab:2f:f9:c0:a9:cd:f9: c4:d1:03:38:6e:6e:6f:6f:25:4c:1a:14:f0:c4:d7:7e:4c:46: 8b:f4:e1:6b:f1:0a:34:1c:04:aa:a3:04:1d:74:dc:f8:2b:94: 11:e0:bd:0d:54:8a:fa:0e:d9:b3:e3:49:41:f7:26:5f:cf:99: 41:b5:1e:b5:a5:ad:40:07:a2:de:17:86:03:b3:be:df:77:04: 1c:f0:b4:b1:0e:bd:38:1e:ab:90:2c:94:73:e2:d0:bd:70:3b: c4:aa:e3:89:55:d0:a2:45:96:f5:4d:12:b4:58:ef:9b:35:d0: bf:9a:93:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwMjA0MjMxMzIzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyOWYxMy1hYjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFTwCkyh4lLgf+4nOcuzk6l3KQysLYSRWnopS1gq+pMJJHroOvxlkYJir8w5 U8hdbx7Us8NF64Mqc2Q5ebmf8uM7fpSOHtC5DMdDQHwnO19lR1dRPY5FPDb79b0z DmGKy/ZQJ6nmEKrfCE8P35WHfGNvydjSOJjm1WlHpTRSW5TCbXMMJupLd92l8aX7 CAiLfFA59YtFmU01uGqLN+8HAZqCicOAj2KGWbbnAh8z0vJ5LY6jEn5yIuwIJSUt z7JmJaRaoAvb4pogaYnMx7MO5xLyQd7uUSzul/1SAoJdrwkZmXvC8GVD+mp4ATIn ky6fu3t+kEfXcincRkzI+quaNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEbYLKPW tZ/Wdm0G1neORvhQQW4tMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvMDkxODJEMzgw ODRFMTFFRjg5RDI5NjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALfGeAwDQYJKoZIhvcNAQELBQADggEBAMktWhWSlZnn1C4J bBJPK7s04oEsFyCoYpBsHurc9wQoPpYPgWDeG7aCUXrqNZh9HvHw4E1hBt/N+L0L B/V7bcReNP4mSF2RW+hXfGXUcxbuVpfAxv7uW10LwkhclA8cTCYU1GyZrXqk07dj gwjuo9j1knyJ6nPj3j1VF2rcxVa9zoRYxNAq9X9kqy/5wKnN+cTRAzhubm9vJUwa FPDE135MRov04WvxCjQcBKqjBB103PgrlBHgvQ1UivoO2bPjSUH3Jl/PmUG1HrWl rUAHot4XhgOzvt93BBzwtLEOvTgeq5AslHPi0L1wO8Sq44lV0KJFlvVNErRY75s1 0L+ak3A= -----END CERTIFICATE-----Generated at Sat Apr 26 07:57:33 2025 by rpki-client