$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa File: 8FFA8D36FF0C11EA854DE24CC4F9AE02.roa (raw, json) Hash identifier: pLdCFlBQg8Bkyg6fps4n9kXUlQ86zmUDGcprEnLqMQI= Subject key identifier: B4:83:C8:A3:0B:6B:AA:14:33:A2:94:9A:D7:49:85:A9:68:A2:BB:93 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 6042 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa Signing time: Wed 30 Apr 2025 20:29:17 +0000 ROA not before: Wed 30 Apr 2025 20:29:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55355 IP address blocks: 118.143.207.0/24 maxlen: 24 118.143.209.0/24 maxlen: 24 218.188.96.0/24 maxlen: 24 218.188.97.0/24 maxlen: 24 218.188.98.0/24 maxlen: 24 218.188.99.0/24 maxlen: 24 218.188.100.0/24 maxlen: 24 218.188.101.0/24 maxlen: 24 218.188.102.0/24 maxlen: 24 218.189.10.0/24 maxlen: 24 218.189.124.0/24 maxlen: 24 218.189.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24642 (0x6042) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 30 20:29:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6812881d-8f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:87:93:bc:aa:16:6d:b3:a8:5a:5f:e8:56:06: dc:db:4c:7b:71:11:73:44:85:ab:d4:1f:3f:8d:42: 79:6f:25:d4:8e:25:1d:47:40:a5:96:ea:db:67:2e: 54:dc:19:74:a1:83:c0:6a:13:b8:ac:22:77:55:9a: 48:dc:fc:0b:14:1e:22:c4:d1:28:b1:80:68:99:35: 86:5a:31:5a:21:ce:8c:96:0b:38:a1:3c:2d:a6:b7: 29:f8:10:90:eb:d1:0e:c9:93:43:77:ff:e8:8a:b6: fa:b4:cf:e1:5e:21:fb:88:83:b8:65:53:31:09:e6: 82:2f:78:41:f4:8d:5b:69:a2:da:c7:0b:3c:ab:a8: 1b:e3:73:83:77:7a:18:fe:c8:5f:e6:d2:6c:5a:c1: 46:34:ce:6b:2f:ae:0f:96:8a:c1:5c:81:ae:cc:53: 39:a3:e1:a0:02:ce:de:f6:df:1d:79:5f:5a:50:0d: ae:f1:68:39:8e:73:16:a2:cd:14:ae:61:7f:0f:cf: 27:80:e5:92:46:a8:39:a8:f0:01:56:35:29:5b:1b: 02:61:20:c8:7f:a7:bd:df:bb:0c:c5:30:12:25:49: e5:5c:b5:56:4a:13:4d:eb:92:42:24:bb:bd:c4:df: 18:41:f2:e5:0c:cb:ff:1e:05:8b:f4:48:9c:eb:03: 21:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:83:C8:A3:0B:6B:AA:14:33:A2:94:9A:D7:49:85:A9:68:A2:BB:93 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.143.207.0/24 118.143.209.0/24 218.188.96.0-218.188.102.255 218.189.10.0/24 218.189.124.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:d9:7e:ff:71:4d:df:f4:e8:92:12:9c:10:f6:49:3d:7b:ee: 29:ee:0f:a9:14:cf:76:17:c0:d3:38:6e:a8:3c:dc:58:03:f9: 83:12:aa:01:f6:10:20:53:9b:ec:a3:d1:8d:c9:e6:ec:65:fe: ea:58:e4:6f:35:be:54:76:91:0e:fd:ba:d3:7d:0f:17:dc:42: 77:cb:1d:29:5a:5f:e3:4d:b8:0d:40:b0:a8:ab:2f:04:c8:7a: 61:ec:52:57:af:10:d5:9d:39:7d:b9:a7:ee:f1:59:d8:32:96: 4f:8b:19:a9:14:cb:5b:db:0f:6d:dc:3e:8f:76:02:c4:e8:db: 05:10:b3:2f:fa:00:7b:11:76:e2:11:46:8a:36:59:03:92:4a: bf:e1:a1:be:72:fd:cb:8b:ef:65:d9:77:41:08:fe:a6:5d:04: 14:41:eb:74:fc:ed:f1:ac:97:a0:cf:2f:94:63:f1:7b:e4:0a: 76:57:04:5f:62:e7:36:64:06:86:c0:5d:fd:44:5d:08:68:a4: 77:b0:b2:a1:09:b8:2a:58:2b:fe:fa:7a:1c:d8:c6:03:4f:6a: 51:06:e6:01:46:f3:58:d4:55:32:f1:a8:49:01:53:7b:c9:f7: fc:b9:65:de:84:b6:eb:fc:5b:65:12:d9:38:73:33:36:94:17: 57:77:c4:f8 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICYEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDMwMjAyOTE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODgxZC04ZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIeTvKoWbbOoWl/oVgbc20x7cRFzRIWr1B8/jUJ5byXUjiUdR0CllurbZy5U 3Bl0oYPAahO4rCJ3VZpI3PwLFB4ixNEosYBomTWGWjFaIc6Mlgs4oTwtprcp+BCQ 69EOyZNDd//oirb6tM/hXiH7iIO4ZVMxCeaCL3hB9I1baaLaxws8q6gb43ODd3oY /shf5tJsWsFGNM5rL64PlorBXIGuzFM5o+GgAs7e9t8deV9aUA2u8Wg5jnMWos0U rmF/D88ngOWSRqg5qPABVjUpWxsCYSDIf6e937sMxTASJUnlXLVWShNN65JCJLu9 xN8YQfLlDMv/HgWL9Eic6wMhpQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFLSDyKML a6oUM6KUmtdJhalooruTMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvOEZGQThEMzZG RjBDMTFFQTg1NERFMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAB2j88DBAB2j9EwDAMEBdq8YAMEANq8ZgMEANq9CgMEAdq9 fDANBgkqhkiG9w0BAQsFAAOCAQEATNl+/3FN3/TokhKcEPZJPXvuKe4PqRTPdhfA 0zhuqDzcWAP5gxKqAfYQIFOb7KPRjcnm7GX+6ljkbzW+VHaRDv26030PF9xCd8sd KVpf4024DUCwqKsvBMh6YexSV68Q1Z05fbmn7vFZ2DKWT4sZqRTLW9sPbdw+j3YC xOjbBRCzL/oAexF24hFGijZZA5JKv+GhvnL9y4vvZdl3QQj+pl0EFEHrdPzt8ayX oM8vlGPxe+QKdlcEX2LnNmQGhsBd/URdCGikd7CyoQm4Klgr/vp6HNjGA09qUQbm AUbzWNRVMvGoSQFTe8n3/Lll3oS26/xbZRLZOHMzNpQXV3fE+A== -----END CERTIFICATE-----Generated at Sun May 11 04:24:13 2025 by rpki-client