$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/4793567206A211EEBDA4D34BC4F9AE02.roa File: 4793567206A211EEBDA4D34BC4F9AE02.roa (raw, json) Hash identifier: hN1FG4yB+En2c4wj8yUNEIMBBFanGUa7r/bmCbomayU= Subject key identifier: D3:6C:31:B3:B4:3E:91:E4:22:05:51:F8:02:EB:7E:54:91:C4:32:8E Certificate issuer: /CN=A917E0A8/serialNumber=0508CBE9AB6EE7F629F1E17385F3E0FDEF8C3D3B Certificate serial: 0570 Authority key identifier: 05:08:CB:E9:AB:6E:E7:F6:29:F1:E1:73:85:F3:E0:FD:EF:8C:3D:3B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/4793567206A211EEBDA4D34BC4F9AE02.roa Signing time: Wed 30 Apr 2025 19:29:45 +0000 ROA not before: Wed 30 Apr 2025 19:29:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 3258 IP address blocks: 85.113.70.0/24 maxlen: 24 91.199.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.crl rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=0508CBE9AB6EE7F629F1E17385F3E0FDEF8C3D3B Validity Not Before: Apr 30 19:29:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68127a29-bdf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:48:be:09:5d:dd:7c:e6:7a:19:d9:ca:c8:02: c9:28:19:78:7b:ed:e0:8c:6a:26:fc:98:66:2e:23: 5d:42:95:f0:47:cb:f4:c6:8c:1b:d8:f3:7a:cd:20: 64:9a:a2:2d:d0:f0:da:df:16:af:1b:7a:78:32:86: 60:84:68:f5:b9:55:91:e5:ed:b5:f7:84:7c:21:56: 4e:8e:7e:ee:cf:8c:f4:02:61:31:a9:e4:09:16:44: f0:5a:14:ce:5d:a2:bc:e6:9a:a6:9b:47:aa:14:ef: cb:8d:25:76:dd:b6:69:de:29:e5:3e:1b:61:2b:28: b1:1b:96:4e:c1:16:34:92:5f:6c:f5:52:76:b2:b8: 5f:36:3b:dc:62:77:29:10:44:d7:7e:76:01:08:1f: 06:74:8b:02:b3:8c:59:8f:53:0b:e0:f3:6e:a8:a0: e5:f9:49:1c:9b:d8:b0:7a:0c:ba:4b:d6:05:12:a2: 45:5a:29:0e:a7:8c:79:cb:61:0b:de:a4:52:82:dc: ea:0a:9d:fd:11:ea:64:d7:b1:6d:32:74:2e:9c:5b: a5:60:7a:b7:c1:98:7e:95:94:72:c5:83:0a:f5:df: 1d:24:1c:34:04:18:74:9d:52:90:d9:a2:8d:c5:8b: 2b:da:4a:ce:d4:00:2e:c8:ba:4e:df:86:85:98:ca: bb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:6C:31:B3:B4:3E:91:E4:22:05:51:F8:02:EB:7E:54:91:C4:32:8E X509v3 Authority Key Identifier: keyid:05:08:CB:E9:AB:6E:E7:F6:29:F1:E1:73:85:F3:E0:FD:EF:8C:3D:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/4793567206A211EEBDA4D34BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 85.113.70.0/24 91.199.209.0/24 Signature Algorithm: sha256WithRSAEncryption 79:c6:46:40:fc:ce:29:e7:14:aa:60:3f:69:52:f8:bb:66:ba: 0e:4a:d6:92:86:86:61:11:20:44:e7:81:28:cb:dd:41:c8:dd: 73:e9:b5:c6:22:5d:44:58:1f:77:17:33:d3:6f:67:98:f8:94: 8f:13:2d:bd:3b:fb:3d:d3:ea:8d:13:de:28:d2:8d:b0:ce:8b: 4e:ef:95:31:61:7b:61:73:ec:3c:4c:2d:9f:d6:02:6c:8a:d3: c5:de:41:30:4b:9f:9f:e7:b6:f3:c7:2d:09:11:c3:49:16:c7: 3d:fe:eb:b2:b4:f2:74:dc:c0:00:6d:bd:e9:53:7f:54:65:be: b4:06:3e:7d:fd:07:b5:7b:97:01:f5:0b:bf:c2:a9:84:a2:bf: e9:0d:a2:0c:e0:bd:1d:b8:26:55:9e:3b:e0:02:e7:13:4d:84: e3:bd:9d:27:31:d2:15:92:92:38:e4:33:6e:9c:52:9f:92:82: 29:d9:55:54:05:d3:1a:6c:db:95:68:eb:7c:02:da:0c:c2:f6: 1c:76:bb:90:ac:53:cf:f1:0c:a8:f8:2e:c6:96:77:c4:dc:51: 94:fb:85:aa:06:cb:2f:70:f2:ee:a5:d4:56:80:e9:98:a5:62: 9f:92:4e:8d:11:1c:cb:f6:5f:69:50:a7:6b:45:1e:53:49:e6: bb:c4:a7:5a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDA1MDhDQkU5QUI2RUU3RjYyOUYxRTE3Mzg1RjNFMEZE RUY4QzNEM0IwHhcNMjUwNDMwMTkyOTQ1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyN2EyOS1iZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ui+CV3dfOZ6GdnKyALJKBl4e+3gjGom/JhmLiNdQpXwR8v0xowb2PN6zSBk mqIt0PDa3xavG3p4MoZghGj1uVWR5e2194R8IVZOjn7uz4z0AmExqeQJFkTwWhTO XaK85pqmm0eqFO/LjSV23bZp3inlPhthKyixG5ZOwRY0kl9s9VJ2srhfNjvcYncp EETXfnYBCB8GdIsCs4xZj1ML4PNuqKDl+Ukcm9iwegy6S9YFEqJFWikOp4x5y2EL 3qRSgtzqCp39Eepk17FtMnQunFulYHq3wZh+lZRyxYMK9d8dJBw0BBh0nVKQ2aKN xYsr2krO1AAuyLpO34aFmMq7wwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNNsMbO0 PpHkIgVR+ALrflSRxDKOMB8GA1UdIwQYMBaAFAUIy+mrbuf2KfHhc4Xz4P3vjD07 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC8wQzQ3NDkwQUVB QjMxMUVCOTgxMUE0NjVDNEY5QUUwMi9CUWpMNmF0dTVfWXA4ZUZ6aGZQZ19lLU1Q VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JRakw2YXR1NV9ZcDhlRnpoZlBnX2UtTVBUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvMEM0NzQ5MEFFQUIzMTFFQjk4MTFBNDY1QzRGOUFFMDIvNDc5MzU2NzIw NkEyMTFFRUJEQTREMzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABVcUYDBABbx9EwDQYJKoZIhvcNAQELBQADggEBAHnGRkD8 zinnFKpgP2lS+Ltmug5K1pKGhmERIETngSjL3UHI3XPptcYiXURYH3cXM9NvZ5j4 lI8TLb07+z3T6o0T3ijSjbDOi07vlTFhe2Fz7DxMLZ/WAmyK08XeQTBLn5/ntvPH LQkRw0kWxz3+67K08nTcwABtvelTf1RlvrQGPn39B7V7lwH1C7/CqYSiv+kNogzg vR24JlWeO+AC5xNNhOO9nScx0hWSkjjkM26cUp+SginZVVQF0xps25Vo63wC2gzC 9hx2u5CsU8/xDKj4LsaWd8TcUZT7haoGyy9w8u6l1FaA6ZilYp+STo0RHMv2X2lQ p2tFHlNJ5rvEp1o= -----END CERTIFICATE-----Generated at Fri May 16 06:14:12 2025 by rpki-client