$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/7DDA28EC8D9511EB9ECE6042C4F9AE02.roa File: 7DDA28EC8D9511EB9ECE6042C4F9AE02.roa (raw, json) Hash identifier: u9Tgdh2mj51OfGhJuvlQ1Gy4m51DMyrbUiBF/Y8Vkj0= Subject key identifier: 07:77:0E:96:3E:BF:81:35:0F:3A:79:81:1E:40:11:F2:83:62:AA:99 Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 3098 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/7DDA28EC8D9511EB9ECE6042C4F9AE02.roa Signing time: Wed 30 Apr 2025 15:52:49 +0000 ROA not before: Wed 30 Apr 2025 15:52:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24429 IP address blocks: 116.0.81.0/24 maxlen: 24 116.0.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12440 (0x3098) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68124751-0337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:87:59:51:9f:e9:dd:02:ed:7f:19:ee:b7:52: 9f:88:b3:85:f2:d6:76:f2:0f:59:77:fc:d7:a6:25: 08:0d:e8:fc:37:64:e0:2e:1c:df:4c:70:1d:06:59: 16:c0:50:d9:bc:4e:bc:88:46:51:e7:0a:78:e7:ea: ce:31:d9:d8:34:82:af:50:f4:8d:fa:69:d3:14:79: 24:21:9d:a3:e8:1b:df:fb:d4:a1:04:62:4a:c8:af: e7:e4:58:6a:cd:b7:3e:b3:4b:01:9e:79:94:91:5e: 00:a0:81:56:c3:05:21:5c:63:c8:8f:70:d4:f0:41: ad:ab:c9:cf:3a:fb:90:8a:f3:54:50:7a:5f:12:93: bf:ca:d6:83:49:81:11:d4:f2:77:a8:2f:cb:e2:80: cf:4e:58:3f:6e:58:bf:51:3f:ba:6a:3b:32:41:23: eb:67:eb:48:10:b3:d6:45:e7:15:56:b6:65:ab:b8: af:76:9a:a3:53:5c:91:3f:1b:8c:13:ae:26:92:af: 95:6e:80:19:bd:e0:88:b2:ad:b0:21:25:19:64:f6: 3a:d1:d0:12:9d:8e:78:53:d5:2d:a5:98:30:4e:ad: f0:ae:d2:26:6a:07:67:0e:c3:f8:53:64:68:e3:4b: 06:af:1b:18:f2:ed:e0:02:92:42:04:7b:40:a4:80: 2b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:77:0E:96:3E:BF:81:35:0F:3A:79:81:1E:40:11:F2:83:62:AA:99 X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/7DDA28EC8D9511EB9ECE6042C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.0.81.0/24 116.0.89.0/24 Signature Algorithm: sha256WithRSAEncryption 58:19:3a:ae:98:f8:17:a1:3d:1f:9b:70:9e:5c:a2:d3:bb:f2: 4b:97:d4:5d:50:df:29:6e:a6:97:ec:07:a7:ed:a7:81:7b:37: 95:8c:0e:32:1e:85:88:46:6c:38:9f:de:0f:c7:80:cc:ee:42: a7:8a:97:b4:45:9e:2c:f3:11:28:1b:88:26:d4:88:5d:e2:c2: 53:97:31:e6:45:0c:e1:64:64:f0:5a:e0:4b:78:88:ba:a4:88: 43:f6:5e:24:77:59:94:af:5d:8e:97:87:a0:73:1a:ef:3c:0d: 70:7a:5f:e8:b8:23:66:d4:dc:49:62:86:a6:da:b9:4f:ed:70: 2c:b6:5a:41:d9:89:d2:7b:0d:b4:74:c5:fb:19:d2:3b:2c:b3: 33:4b:b7:ba:83:fa:27:00:11:0a:89:75:d9:09:26:3b:b9:52: f3:f6:db:f9:5a:42:12:b4:75:ea:1b:c4:be:65:38:02:c3:42: 5e:16:df:f6:f0:59:b3:4a:44:31:09:bc:8b:02:d2:cd:7a:71: fd:da:c8:d1:5c:bb:2b:b2:28:cf:94:8d:7b:4f:af:2c:5e:da: 88:5d:2d:07:37:43:be:0a:31:b7:07:9f:1a:c9:cf:bc:8c:cc: a5:b1:11:a1:38:cc:6b:1b:ac:49:d2:b5:6b:3d:24:a4:5b:db: 18:cf:05:60 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICMJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjUwNDMwMTU1MjQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNDc1MS0wMzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14dZUZ/p3QLtfxnut1KfiLOF8tZ28g9Zd/zXpiUIDej8N2TgLhzfTHAdBlkW wFDZvE68iEZR5wp45+rOMdnYNIKvUPSN+mnTFHkkIZ2j6Bvf+9ShBGJKyK/n5Fhq zbc+s0sBnnmUkV4AoIFWwwUhXGPIj3DU8EGtq8nPOvuQivNUUHpfEpO/ytaDSYER 1PJ3qC/L4oDPTlg/bli/UT+6ajsyQSPrZ+tIELPWRecVVrZlq7ivdpqjU1yRPxuM E64mkq+VboAZveCIsq2wISUZZPY60dASnY54U9UtpZgwTq3wrtImagdnDsP4U2Ro 40sGrxsY8u3gApJCBHtApIArSQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAd3DpY+ v4E1Dzp5gR5AEfKDYqqZMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvN0REQTI4RUM4 RDk1MTFFQjlFQ0U2MDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB0AFEDBAB0AFkwDQYJKoZIhvcNAQELBQADggEBAFgZOq6Y +BehPR+bcJ5cotO78kuX1F1Q3yluppfsB6ftp4F7N5WMDjIehYhGbDif3g/HgMzu QqeKl7RFnizzESgbiCbUiF3iwlOXMeZFDOFkZPBa4Et4iLqkiEP2XiR3WZSvXY6X h6BzGu88DXB6X+i4I2bU3ElihqbauU/tcCy2WkHZidJ7DbR0xfsZ0jssszNLt7qD +icAEQqJddkJJju5UvP22/laQhK0deobxL5lOALDQl4W3/bwWbNKRDEJvIsC0s16 cf3ayNFcuyuyKM+UjXtPryxe2ohdLQc3Q74KMbcHnxrJz7yMzKWxEaE4zGsbrEnS tWs9JKRb2xjPBWA= -----END CERTIFICATE-----Generated at Tue May 13 20:52:31 2025 by rpki-client