$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa File: 01A59B2EB72111EC9885AF51C4F9AE02.roa (raw, json) Hash identifier: 5iaQX9XKqLB0pjKfgXrVj5EtfRljVVlRlGJBzw/ir1E= Subject key identifier: D6:8B:21:70:6D:40:00:22:24:7A:29:A3:79:9A:BE:E0:09:F7:11:F9 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 6041 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa Signing time: Wed 30 Apr 2025 20:29:16 +0000 ROA not before: Wed 30 Apr 2025 20:29:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24462 IP address blocks: 210.0.224.0/24 maxlen: 24 218.188.80.0/24 maxlen: 24 218.189.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 20:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24641 (0x6041) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 30 20:29:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6812881c-2ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dd:34:37:36:4e:f6:89:75:ea:f3:ca:4b:73: 22:fb:e7:98:45:17:f0:a3:4d:0d:ea:1b:fa:db:2a: 4d:56:92:88:b9:09:c8:75:f6:84:0c:26:ab:e6:f5: 82:58:27:29:ef:0c:a1:87:ab:6c:83:b6:ac:0c:3c: ba:42:78:ca:83:dd:43:9a:6c:16:d1:e9:38:68:3f: 3a:bb:8e:9b:41:f3:47:6f:72:7f:fb:bb:39:56:ec: 3e:38:ad:3d:c7:e1:5f:6c:05:a5:af:e0:ed:4f:85: bd:67:75:7f:c2:1f:06:f7:aa:ba:0d:83:41:db:49: e2:24:0e:eb:99:1d:c4:cc:5e:4b:a0:2e:8f:4d:f4: 3b:b5:21:0b:07:8e:cf:b9:8d:d1:f7:fd:18:7d:42: 3b:ab:f0:f0:cd:ee:22:fc:82:0b:66:f9:11:dc:15: ac:1f:5e:15:1b:6d:18:76:f6:b9:6f:a7:ae:bd:88: 5d:0c:a3:ab:38:d5:7a:a0:4f:73:ed:c0:c5:eb:58: ab:fc:75:8e:dd:64:f0:f1:aa:b0:0c:d3:89:07:5b: 2a:9f:04:27:38:00:f1:db:f0:f7:fe:c4:d4:55:83: ed:32:21:6f:92:0a:24:8a:ce:31:83:6a:8d:18:4a: 84:f7:c9:75:c1:34:28:52:60:b7:c4:1f:8b:5f:b4: 88:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:8B:21:70:6D:40:00:22:24:7A:29:A3:79:9A:BE:E0:09:F7:11:F9 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.0.224.0/24 218.188.80.0/24 218.189.74.0/24 Signature Algorithm: sha256WithRSAEncryption 26:e6:6a:cf:6f:17:ed:76:84:6c:a1:01:e5:13:c1:a8:3c:b1: 8f:49:c7:86:15:f6:c3:26:ec:28:94:18:22:95:28:66:0d:de: 57:c0:95:be:46:d8:3e:f1:06:1c:c3:df:de:08:9e:a6:08:5f: a1:df:d1:31:b2:83:12:b9:42:bd:b7:dc:39:cf:71:8e:aa:6f: cd:8c:c1:1e:e6:0b:96:0e:c2:2a:47:08:31:88:9b:8b:4c:36: 51:1a:3f:02:07:0c:69:3f:7f:f5:f2:fa:6b:b5:10:0d:49:8c: 82:2c:0a:8f:cd:3b:c9:06:e2:3f:a1:52:32:e5:48:1b:5a:04: f2:70:9d:ac:1d:6f:af:98:cc:4a:0a:7d:0b:b8:52:00:ed:20: f9:6f:5c:2d:fe:a0:b5:be:92:ba:7e:2d:e6:1a:20:59:8f:17: 4b:25:52:8a:f0:02:0a:ca:45:c8:5f:4e:c2:ce:2d:c6:85:bf: 4e:e5:e2:44:03:9a:5c:4a:de:c3:f1:94:3b:5b:a6:c3:d6:94: bf:5b:8e:84:f2:0d:be:f6:10:a6:10:a2:a3:e8:74:24:22:25: 0f:dd:e9:cb:6f:7a:d0:7b:6c:b1:59:40:eb:23:eb:bf:b7:86: b4:85:1f:2f:44:67:59:06:9d:4a:6c:53:c4:25:4c:bc:f0:33: e3:e1:82:35 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICYEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDMwMjAyOTE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODgxYy0yZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwt00NzZO9ol16vPKS3Mi++eYRRfwo00N6hv62ypNVpKIuQnIdfaEDCar5vWC WCcp7wyhh6tsg7asDDy6QnjKg91DmmwW0ek4aD86u46bQfNHb3J/+7s5Vuw+OK09 x+FfbAWlr+DtT4W9Z3V/wh8G96q6DYNB20niJA7rmR3EzF5LoC6PTfQ7tSELB47P uY3R9/0YfUI7q/Dwze4i/IILZvkR3BWsH14VG20Ydva5b6euvYhdDKOrONV6oE9z 7cDF61ir/HWO3WTw8aqwDNOJB1sqnwQnOADx2/D3/sTUVYPtMiFvkgokis4xg2qN GEqE98l1wTQoUmC3xB+LX7SI+wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNaLIXBt QAAiJHopo3mavuAJ9xH5MB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvMDFBNTlCMkVC NzIxMTFFQzk4ODVBRjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADSAOADBADavFADBADavUowDQYJKoZIhvcNAQELBQADggEB ACbmas9vF+12hGyhAeUTwag8sY9Jx4YV9sMm7CiUGCKVKGYN3lfAlb5G2D7xBhzD 394InqYIX6Hf0TGygxK5Qr233DnPcY6qb82MwR7mC5YOwipHCDGIm4tMNlEaPwIH DGk/f/Xy+mu1EA1JjIIsCo/NO8kG4j+hUjLlSBtaBPJwnawdb6+YzEoKfQu4UgDt IPlvXC3+oLW+krp+LeYaIFmPF0slUorwAgrKRchfTsLOLcaFv07l4kQDmlxK3sPx lDtbpsPWlL9bjoTyDb72EKYQoqPodCQiJQ/d6ctvetB7bLFZQOsj67+3hrSFHy9E Z1kGnUpsU8QlTLzwM+PhgjU= -----END CERTIFICATE-----Generated at Sat May 10 10:41:03 2025 by rpki-client