$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0F0DB8A2C80411ECBA7BB174C4F9AE02.roa File: 0F0DB8A2C80411ECBA7BB174C4F9AE02.roa (raw, json) Hash identifier: OEjS5qz+Y094b9NXZxpyHneMicv8/wejwLKQ2tC/qNg= Subject key identifier: F7:E5:FB:B7:B7:4E:DC:18:9E:E8:A2:EB:8F:27:48:E1:9F:15:98:5E Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 0333 Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0F0DB8A2C80411ECBA7BB174C4F9AE02.roa Signing time: Mon 05 May 2025 01:06:51 +0000 ROA not before: Mon 05 May 2025 01:06:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134451 IP address blocks: 45.114.118.0/24 maxlen: 24 2402:2f80:5::/48 maxlen: 48 2402:2f80:6::/48 maxlen: 48 2402:2f80:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44, serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: May 5 01:06:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68180f2b-33b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:75:7e:17:0b:39:89:f7:0d:17:5a:5e:40:62: 61:bc:01:10:08:8e:fa:a1:84:25:21:94:74:ce:5e: 6e:d5:a2:a4:1c:98:71:87:7b:5a:49:dd:08:3d:f3: 15:4b:92:c6:fa:d9:c5:de:0a:b0:b7:78:fb:36:90: 4b:5f:d9:4a:44:ab:dc:52:7d:c6:1f:54:35:69:03: 97:3d:da:4f:17:48:ef:b6:26:bd:8a:03:a0:bf:71: 98:3d:db:48:05:58:d9:ae:c3:25:27:df:32:d4:4d: 53:bf:f5:7e:e9:b9:c8:e8:57:91:16:af:79:5a:00: f5:e5:d3:a1:6a:38:ae:f8:29:16:f5:8a:21:e9:f4: ea:10:9e:64:0d:ca:9b:78:c4:d8:80:90:4a:3c:7b: 90:3d:43:35:74:7a:94:6c:f7:72:43:5b:3e:88:09: ef:0c:44:6a:4d:39:6e:28:82:bc:b1:6b:d2:b1:01: d3:04:94:b1:0a:73:67:f8:5b:a9:e1:7a:33:ac:23: 62:31:05:6a:d2:5f:3c:d8:23:51:f2:f3:df:a9:6c: bc:57:97:64:b5:6e:ad:17:00:46:86:e7:ca:57:cb: fe:8b:62:17:09:b9:60:5c:ed:59:81:f4:d1:2d:3c: 51:7b:96:85:12:71:88:46:c9:4e:16:a7:26:cd:f3: 56:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E5:FB:B7:B7:4E:DC:18:9E:E8:A2:EB:8F:27:48:E1:9F:15:98:5E X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0F0DB8A2C80411ECBA7BB174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.118.0/24 IPv6: 2402:2f80:5::-2402:2f80:7:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 44:0c:ac:d8:2c:53:17:bd:0c:f6:8c:f8:36:b5:72:cb:a9:b5: 53:15:81:cf:3a:23:0a:cb:02:cf:b5:6b:13:df:26:e4:88:1e: 8d:f2:d5:0f:73:7b:a5:2c:ed:72:44:c7:0a:dd:b3:34:77:38: 23:95:a3:c1:34:61:8f:44:f7:56:98:31:03:fe:c5:59:b0:86: 65:0e:49:a2:5d:d5:a3:eb:24:05:71:df:e8:de:73:3a:a9:e3: c0:1e:9d:0e:03:b7:d3:1b:a0:92:70:47:bd:35:25:fd:7a:28: c5:34:f7:2f:b5:d2:a8:48:a2:69:c7:a4:42:9c:b2:5a:81:11: 3e:e1:3e:81:e9:96:ea:97:e2:be:56:e9:2d:bf:9d:69:db:03: 50:32:1a:cb:07:1b:c0:54:e2:2d:c7:6d:97:a3:fe:c6:ce:88: 6c:35:0f:3a:70:28:09:8f:e2:97:0a:72:ec:0b:af:1c:4e:7a: 5c:19:06:f2:b7:0f:3b:72:49:9e:79:95:15:79:e4:f9:b8:8d: 42:99:f5:9f:e2:6f:f7:3b:45:e2:0a:a4:ad:7d:a2:99:2d:12: af:de:ae:04:ec:d4:23:57:84:4d:84:dd:a0:55:28:fa:dd:74: a4:6d:41:cd:42:64:62:5f:19:cf:64:ed:f8:c7:bc:41:70:40: 20:55:7e:1e -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjUwNTA1MDEwNjUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MGYyYi0zM2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHV+Fws5ifcNF1peQGJhvAEQCI76oYQlIZR0zl5u1aKkHJhxh3taSd0IPfMV S5LG+tnF3gqwt3j7NpBLX9lKRKvcUn3GH1Q1aQOXPdpPF0jvtia9igOgv3GYPdtI BVjZrsMlJ98y1E1Tv/V+6bnI6FeRFq95WgD15dOhajiu+CkW9Yoh6fTqEJ5kDcqb eMTYgJBKPHuQPUM1dHqUbPdyQ1s+iAnvDERqTTluKIK8sWvSsQHTBJSxCnNn+Fup 4XozrCNiMQVq0l882CNR8vPfqWy8V5dktW6tFwBGhufKV8v+i2IXCblgXO1ZgfTR LTxRe5aFEnGIRslOFqcmzfNWwQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFPfl+7e3 TtwYnuii648nSOGfFZheMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMEYwREI4QTJD ODA0MTFFQ0JBN0JCMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAAtcnYwGgQCAAIwFDASAwcAJAIvgAAFAwcDJAIvgAAAMA0G CSqGSIb3DQEBCwUAA4IBAQBEDKzYLFMXvQz2jPg2tXLLqbVTFYHPOiMKywLPtWsT 3ybkiB6N8tUPc3ulLO1yRMcK3bM0dzgjlaPBNGGPRPdWmDED/sVZsIZlDkmiXdWj 6yQFcd/o3nM6qePAHp0OA7fTG6CScEe9NSX9eijFNPcvtdKoSKJpx6RCnLJagRE+ 4T6B6Zbql+K+Vuktv51p2wNQMhrLBxvAVOItx22Xo/7GzohsNQ86cCgJj+KXCnLs C68cTnpcGQbytw87ckmeeZUVeeT5uI1CmfWf4m/3O0XiCqStfaKZLRKv3q4E7NQj V4RNhN2gVSj63XSkbUHNQmRiXxnPZO34x7xBcEAgVX4e -----END CERTIFICATE-----Generated at Tue May 13 11:22:07 2025 by rpki-client