$ rpki-client -vvf rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/286AB0F22CB011F084E4A915C4F9AE02.roa File: 286AB0F22CB011F084E4A915C4F9AE02.roa (raw, json) Hash identifier: vZWC1pyitJpkKdITTAunKDCWOD3MkKIrS8Vik2p3gr4= Subject key identifier: 7C:37:D5:55:EB:77:FE:DD:26:3A:94:0B:85:1E:2A:87:B8:A2:5A:55 Certificate issuer: /CN=A91B61A7/serialNumber=BAEF78F78DC7CBF9B731270AAB1069F5E3433CBB Certificate serial: 95 Authority key identifier: BA:EF:78:F7:8D:C7:CB:F9:B7:31:27:0A:AB:10:69:F5:E3:43:3C:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uu94943Hy_m3MScKqxBp9eNDPLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/286AB0F22CB011F084E4A915C4F9AE02.roa Signing time: Fri 09 May 2025 08:32:35 +0000 ROA not before: Fri 09 May 2025 08:32:35 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153494 IP address blocks: 116.206.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/uu94943Hy_m3MScKqxBp9eNDPLs.crl rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/uu94943Hy_m3MScKqxBp9eNDPLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uu94943Hy_m3MScKqxBp9eNDPLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B61A7, serialNumber=BAEF78F78DC7CBF9B731270AAB1069F5E3433CBB Validity Not Before: May 9 08:32:35 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=681dbda3-a71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fe:f9:ec:6a:c1:67:30:e8:cd:aa:b2:d6:cd: 2c:2b:6e:ad:69:9a:e0:3b:ca:bc:ee:2d:a8:d3:50: 95:22:42:94:37:10:91:9d:16:b1:03:f6:44:e1:cb: 2e:a9:a4:80:6a:4c:aa:59:f2:f6:4d:6f:0f:23:d5: e2:d0:87:11:fd:b8:a7:ba:52:3d:68:07:0e:45:e3: f4:97:0e:7f:22:90:e2:db:9e:5b:a3:e9:e1:11:b7: f1:f4:80:59:10:5e:ff:5f:71:dc:47:99:79:c5:03: 17:3a:79:00:44:de:15:26:63:43:7d:e8:76:ae:4e: c0:63:03:27:c2:96:94:9e:ae:79:0c:99:bc:d4:6d: f3:a0:ca:c7:f2:cf:9d:af:a6:44:f9:5a:f0:92:f0: d0:2a:54:40:8d:0d:dd:4b:ba:5a:60:05:0a:00:eb: f4:bd:ef:4d:5b:32:29:d2:6b:6d:0f:16:b7:be:bb: f1:6f:d3:14:3b:e0:75:5a:7e:0c:d4:eb:9e:35:91: 76:73:57:93:2b:54:73:33:ec:ca:7f:10:a1:93:02: e3:53:d1:d5:81:70:ed:e4:11:71:18:f0:a6:34:85: 09:0a:1b:89:25:75:eb:8b:0c:21:00:62:12:96:fd: f2:9f:cf:53:e0:cb:33:fa:bf:cc:6f:c0:76:0b:a3: 57:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:37:D5:55:EB:77:FE:DD:26:3A:94:0B:85:1E:2A:87:B8:A2:5A:55 X509v3 Authority Key Identifier: keyid:BA:EF:78:F7:8D:C7:CB:F9:B7:31:27:0A:AB:10:69:F5:E3:43:3C:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/uu94943Hy_m3MScKqxBp9eNDPLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uu94943Hy_m3MScKqxBp9eNDPLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/286AB0F22CB011F084E4A915C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.206.52.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:64:e4:1e:6c:82:a8:9d:cb:d9:99:10:69:b0:a1:9c:c9:bd: 1d:94:17:33:09:19:d3:a9:7e:4e:ac:c7:83:50:d1:3d:4f:a1: 94:8b:f2:0b:25:86:c7:c6:b3:9f:3b:1b:f4:4b:52:2e:d0:45: 8b:b5:63:50:76:f4:b8:47:05:cf:13:66:a2:97:ce:8e:34:97: 65:01:8e:95:2b:aa:c6:eb:81:ed:33:29:89:c4:42:b3:d9:ca: c0:6f:bd:2c:41:b7:6b:b7:d0:d2:eb:17:fd:6f:d3:d2:94:a0: 48:25:88:e8:0b:a9:d1:53:83:62:04:9b:35:85:e3:a3:85:77: 64:95:ce:59:07:23:70:98:09:ad:74:b5:15:49:79:87:f6:cd: db:58:4a:6f:4a:e7:e1:af:cf:8e:06:90:33:bf:0d:4f:36:0b: b9:f8:95:e5:73:8e:cf:e7:9d:6b:c1:76:c9:d0:23:0b:4a:ab: c2:a6:72:15:95:fd:3f:1f:ee:b8:05:a3:e4:5e:9a:b5:04:1b: a7:db:40:42:a1:ba:02:c0:20:50:73:3d:e3:68:2f:e9:d4:e1: d6:46:bf:16:e4:86:4a:6e:c4:98:51:cd:0a:c6:78:f8:a3:6d: ad:24:08:64:8d:f0:4d:7e:08:23:01:c8:97:34:98:54:ce:3d: 04:d8:c0:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYxQTcxMTAvBgNVBAUTKEJBRUY3OEY3OERDN0NCRjlCNzMxMjcwQUFCMTA2OUY1 RTM0MzNDQkIwHhcNMjUwNTA5MDgzMjM1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkYmRhMy1hNzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzP757GrBZzDozaqy1s0sK26taZrgO8q87i2o01CVIkKUNxCRnRaxA/ZE4csu qaSAakyqWfL2TW8PI9Xi0IcR/binulI9aAcOReP0lw5/IpDi255bo+nhEbfx9IBZ EF7/X3HcR5l5xQMXOnkARN4VJmNDfeh2rk7AYwMnwpaUnq55DJm81G3zoMrH8s+d r6ZE+VrwkvDQKlRAjQ3dS7paYAUKAOv0ve9NWzIp0mttDxa3vrvxb9MUO+B1Wn4M 1OueNZF2c1eTK1RzM+zKfxChkwLjU9HVgXDt5BFxGPCmNIUJChuJJXXriwwhAGIS lv3yn89T4Msz+r/Mb8B2C6NXswIDAQABo4IClTCCApEwHQYDVR0OBBYEFHw31VXr d/7dJjqUC4UeKoe4olpVMB8GA1UdIwQYMBaAFLrvePeNx8v5tzEnCqsQafXjQzy7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjFBNy8wRjQ5OTIwNDVC QTExMUVGOUE3OUU5NjFDNEY5QUUwMi91dTk0OTQzSHlfbTNNU2NLcXhCcDllTkRQ THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V1OTQ5NDNIeV9tM01TY0txeEJwOWVORFBMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYxQTcvMEY0OTkyMDQ1QkExMTFFRjlBNzlFOTYxQzRGOUFFMDIvMjg2QUIwRjIy Q0IwMTFGMDg0RTRBOTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0zjQwDQYJKoZIhvcNAQELBQADggEBAF5k5B5sgqidy9mZ EGmwoZzJvR2UFzMJGdOpfk6sx4NQ0T1PoZSL8gslhsfGs587G/RLUi7QRYu1Y1B2 9LhHBc8TZqKXzo40l2UBjpUrqsbrge0zKYnEQrPZysBvvSxBt2u30NLrF/1v09KU oEgliOgLqdFTg2IEmzWF46OFd2SVzlkHI3CYCa10tRVJeYf2zdtYSm9K5+Gvz44G kDO/DU82C7n4leVzjs/nnWvBdsnQIwtKq8KmchWV/T8f7rgFo+RemrUEG6fbQEKh ugLAIFBzPeNoL+nU4dZGvxbkhkpuxJhRzQrGePijba0kCGSN8E1+CCMByJc0mFTO PQTYwNg= -----END CERTIFICATE-----Generated at Fri May 16 13:16:41 2025 by rpki-client