$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/69E6E12EDC9011EF9BE91E56C4F9AE02.roa File: 69E6E12EDC9011EF9BE91E56C4F9AE02.roa (raw, json) Hash identifier: zuRfKPBiMg/0Mslmtugdqzm62DtXgtpgLrZeNAFrfxM= Subject key identifier: D4:45:24:E3:92:B3:4C:52:95:E8:AC:1F:55:7F:4F:44:A1:AB:57:2E Certificate issuer: /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Certificate serial: 0791 Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/69E6E12EDC9011EF9BE91E56C4F9AE02.roa Signing time: Fri 02 May 2025 21:33:54 +0000 ROA not before: Fri 02 May 2025 21:33:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 147040 IP address blocks: 139.5.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1937 (0x791) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF312, serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Validity Not Before: May 2 21:33:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68153a42-16c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:cc:81:73:8a:e6:18:59:23:82:15:cd:fe:1e: b6:f4:45:49:a7:43:5d:2d:6c:c1:80:a1:56:6a:b2: b9:32:6e:70:f5:6c:33:e2:20:3f:f7:8f:35:7c:b2: 64:bf:2f:18:e3:a5:4e:09:68:78:82:46:fa:f1:1a: d2:65:dd:87:4a:5c:73:5c:cb:c9:7a:1e:6b:bf:f9: 97:ef:12:4b:97:56:f5:e6:af:5d:fe:50:3c:4d:f5: 99:7f:7f:60:3c:65:63:ea:2c:dd:2b:3e:ab:19:de: c8:36:dd:64:9a:2a:96:12:e0:d2:43:ba:95:51:c4: 3f:1f:39:d2:8c:73:89:ca:46:bf:71:46:4c:f8:72: 06:bb:3e:23:77:03:27:0f:b5:b0:16:6d:8d:3b:30: e4:f0:08:a3:f4:ea:d8:b2:b4:e9:64:ee:f2:d1:e0: eb:80:5c:c3:21:18:60:52:94:c2:d7:f3:ab:96:0c: a6:5d:ff:5e:0b:eb:b2:0b:5d:18:b0:53:5e:77:94: d5:a8:c0:96:45:18:37:4d:aa:5a:3b:56:0e:1a:da: 01:a4:73:7c:a0:42:7e:c7:84:39:ab:c2:7c:99:27: 23:ef:df:fe:d7:b2:bd:ae:61:89:a8:43:48:89:88: e6:9e:94:c5:bb:c4:7b:da:84:cd:d5:09:ab:33:0e: dc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:45:24:E3:92:B3:4C:52:95:E8:AC:1F:55:7F:4F:44:A1:AB:57:2E X509v3 Authority Key Identifier: keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/69E6E12EDC9011EF9BE91E56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.5.178.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:58:e5:21:2e:a6:10:01:e4:09:39:56:e6:cf:15:bf:d9:49: 45:18:00:25:94:05:2d:32:53:e1:0b:79:3e:df:cd:92:2b:6f: fd:26:dc:c1:44:2e:3e:86:6c:5a:be:f0:53:b7:1b:f4:93:16: e8:b8:e9:2d:aa:a7:45:78:2d:5a:59:8c:bd:c0:22:e9:a8:fd: da:a6:2a:0d:6b:bc:72:d1:8f:69:d2:6f:40:c7:be:ab:67:0d: 06:51:92:27:13:a1:8c:00:d1:45:a4:13:66:e3:22:c0:e0:29: 5a:b2:f5:51:44:ab:41:ec:26:ef:f5:70:0f:93:f8:d7:cd:f4: 94:02:eb:46:70:e7:89:ab:3f:3a:b6:d8:dd:b3:87:a5:26:e6: 2e:4a:14:28:ad:b4:08:3c:9a:0e:14:5f:4a:62:d0:f6:74:60: 84:fd:92:c3:f5:67:83:2f:49:36:40:37:9e:8a:77:4f:e2:2b: 2f:41:c4:6c:91:45:79:ca:06:bb:22:1e:b0:8d:c5:f1:ae:e0: eb:c2:fe:e8:53:50:7e:f1:2c:ef:b0:3e:6a:5c:d9:cc:84:e2: 89:0f:d0:fb:e1:de:b2:0f:6e:b1:14:33:14:92:29:97:af:5a: 49:01:24:6c:01:e2:c7:8f:27:39:4d:7d:e0:8e:12:7d:78:fb: 6b:23:fa:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMTIxMTAvBgNVBAUTKEYwMjk3RDBFNDUzMUExRDYyQTk1QUY1RDJGMjJFRjI0 MDhEQUQyOUMwHhcNMjUwNTAyMjEzMzU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1M2E0Mi0xNmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA88yBc4rmGFkjghXN/h629EVJp0NdLWzBgKFWarK5Mm5w9Wwz4iA/9481fLJk vy8Y46VOCWh4gkb68RrSZd2HSlxzXMvJeh5rv/mX7xJLl1b15q9d/lA8TfWZf39g PGVj6izdKz6rGd7INt1kmiqWEuDSQ7qVUcQ/HznSjHOJyka/cUZM+HIGuz4jdwMn D7WwFm2NOzDk8Aij9OrYsrTpZO7y0eDrgFzDIRhgUpTC1/OrlgymXf9eC+uyC10Y sFNed5TVqMCWRRg3TapaO1YOGtoBpHN8oEJ+x4Q5q8J8mScj79/+17K9rmGJqENI iYjmnpTFu8R72oTN1QmrMw7cKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNRFJOOS s0xSleisH1V/T0Shq1cuMB8GA1UdIwQYMBaAFPApfQ5FMaHWKpWvXS8i7yQI2tKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMxMi9BQTkyQjk3ODBD MjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9kWXFsYTlkTHlMdkpBamEw cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDbDlEa1V4b2RZcWxhOWRMeUx2SkFqYTBwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYzMTIvQUE5MkI5NzgwQzI5MTFFQjk1NDBERDYxQzRGOUFFMDIvNjlFNkUxMkVE QzkwMTFFRjlCRTkxRTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACLBbIwDQYJKoZIhvcNAQELBQADggEBADtY5SEuphAB5Ak5 VubPFb/ZSUUYACWUBS0yU+ELeT7fzZIrb/0m3MFELj6GbFq+8FO3G/STFui46S2q p0V4LVpZjL3AIumo/dqmKg1rvHLRj2nSb0DHvqtnDQZRkicToYwA0UWkE2bjIsDg KVqy9VFEq0HsJu/1cA+T+NfN9JQC60Zw54mrPzq22N2zh6Um5i5KFCittAg8mg4U X0pi0PZ0YIT9ksP1Z4MvSTZAN56Kd0/iKy9BxGyRRXnKBrsiHrCNxfGu4OvC/uhT UH7xLO+wPmpc2cyE4okP0Pvh3rIPbrEUMxSSKZevWkkBJGwB4sePJzlNfeCOEn14 +2sj+qk= -----END CERTIFICATE-----Generated at Wed May 14 01:12:10 2025 by rpki-client