$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/13A1C0BAE09911EAB8D3B833C4F9AE02.roa File: 13A1C0BAE09911EAB8D3B833C4F9AE02.roa (raw, json) Hash identifier: wLLmVC0SWl0ZV8inkOYwu+rXfwtuFkyqT9a9NHg4fsQ= Subject key identifier: 2E:B1:55:7F:61:CD:DE:DB:AA:6F:FB:71:0D:89:86:84:05:11:35:FB Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 30A1 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/13A1C0BAE09911EAB8D3B833C4F9AE02.roa Signing time: Wed 30 Apr 2025 15:52:57 +0000 ROA not before: Wed 30 Apr 2025 15:52:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9299 IP address blocks: 180.87.82.0/24 maxlen: 24 180.87.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12449 (0x30a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68124759-c3c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:95:45:e5:50:7b:44:7c:ce:d2:86:23:05: 72:2e:27:0d:a6:b1:e1:90:63:d6:b7:c9:25:a3:20: 0c:08:b8:ef:72:e7:a7:6e:f1:42:47:c4:b6:74:12: 9e:8c:19:2c:1c:60:b4:24:5e:12:18:87:a7:49:3a: d9:40:e2:a4:c0:50:55:7f:c0:e8:d2:56:3f:f4:31: d5:c7:fc:b5:07:13:e9:1b:bd:17:ae:83:30:29:d2: cf:51:c7:e5:ea:5b:6e:77:36:f8:b2:31:30:f3:4f: 7f:5a:53:d9:ee:68:37:5b:6b:d5:8d:d6:0d:a8:e7: 76:e1:79:20:86:1e:c7:0b:7e:c7:ad:07:a6:2e:0a: 2f:47:2b:40:51:a5:b8:9e:fa:8e:59:99:c8:13:62: 53:b1:d7:9d:f3:14:e9:37:a2:13:19:57:90:71:59: 9c:ca:00:03:57:fa:e7:0f:17:b2:42:c9:00:24:46: 84:52:58:b8:5b:38:dc:48:e2:11:f7:ff:c6:e1:f9: 21:5e:37:b6:8d:41:cf:c6:d4:d9:68:45:e3:ba:95: 12:7e:d7:8f:83:a6:e5:3f:b0:3e:c0:e4:1b:03:eb: 08:94:89:20:ba:dd:fc:15:04:44:cc:20:22:6f:62: f3:e3:6d:9b:b7:31:52:85:46:e1:cf:dc:6f:38:09: 6a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B1:55:7F:61:CD:DE:DB:AA:6F:FB:71:0D:89:86:84:05:11:35:FB X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/13A1C0BAE09911EAB8D3B833C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.87.82.0/24 180.87.94.0/24 Signature Algorithm: sha256WithRSAEncryption 69:4e:99:06:81:97:5e:18:1b:09:37:fd:e0:19:ba:f0:ae:d9: 39:85:8e:e4:c3:99:04:d2:9c:43:bb:b7:75:c2:20:bd:cf:f7: c3:33:8e:de:97:82:c8:90:c1:2a:16:a1:2b:1f:64:75:43:79: c9:d1:33:0a:7d:33:65:f0:0b:ae:e0:d6:51:88:01:aa:2e:78: 00:67:08:15:27:26:af:d6:b3:0f:06:f0:ce:7e:c6:c3:77:5f: a9:2d:89:de:44:b0:d5:20:01:46:4e:22:51:98:58:b3:4f:9e: a7:8d:7d:46:9b:57:1d:ca:d6:08:b6:5d:ec:59:d3:b1:8d:ef: 5e:bc:4d:30:55:49:44:ae:e2:86:63:ca:20:14:4a:e0:fe:af: dc:06:a7:f6:a8:31:e0:c6:02:c6:30:78:84:44:60:68:81:14: f7:cd:e1:48:33:13:7e:45:7c:5b:06:d2:12:bc:cd:49:45:91: 92:96:5f:c7:67:2b:39:06:f7:ca:28:29:2f:d3:66:aa:28:ce: b8:81:3e:ed:37:2e:38:5f:fa:e5:cc:be:b0:c2:63:05:be:7c: f4:1c:1e:a2:63:47:07:83:1e:8b:12:1d:3f:57:f1:7b:4d:80: 5b:7f:ae:d0:2e:96:89:b0:41:19:fd:0d:a5:31:33:15:34:91: 80:62:a6:87 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICMKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjUwNDMwMTU1MjU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNDc1OS1jM2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmGVReVQe0R8ztKGIwVyLicNprHhkGPWt8kloyAMCLjvcuenbvFCR8S2dBKe jBksHGC0JF4SGIenSTrZQOKkwFBVf8Do0lY/9DHVx/y1BxPpG70XroMwKdLPUcfl 6ltudzb4sjEw809/WlPZ7mg3W2vVjdYNqOd24Xkghh7HC37HrQemLgovRytAUaW4 nvqOWZnIE2JTsded8xTpN6ITGVeQcVmcygADV/rnDxeyQskAJEaEUli4WzjcSOIR 9//G4fkhXje2jUHPxtTZaEXjupUSftePg6blP7A+wOQbA+sIlIkgut38FQREzCAi b2Lz422btzFShUbhz9xvOAlqKQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFC6xVX9h zd7bqm/7cQ2JhoQFETX7MB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvMTNBMUMwQkFF MDk5MTFFQUI4RDNCODMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAC0V1IDBAC0V14wDQYJKoZIhvcNAQELBQADggEBAGlOmQaB l14YGwk3/eAZuvCu2TmFjuTDmQTSnEO7t3XCIL3P98Mzjt6XgsiQwSoWoSsfZHVD ecnRMwp9M2XwC67g1lGIAaoueABnCBUnJq/Wsw8G8M5+xsN3X6ktid5EsNUgAUZO IlGYWLNPnqeNfUabVx3K1gi2XexZ07GN7168TTBVSUSu4oZjyiAUSuD+r9wGp/ao MeDGAsYweIREYGiBFPfN4UgzE35FfFsG0hK8zUlFkZKWX8dnKzkG98ooKS/TZqoo zriBPu03Ljhf+uXMvrDCYwW+fPQcHqJjRweDHosSHT9X8XtNgFt/rtAulomwQRn9 DaUxMxU0kYBipoc= -----END CERTIFICATE-----Generated at Thu May 15 18:17:03 2025 by rpki-client