$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A3FED87EFC7C11EF9988DB39C4F9AE02.roa File: A3FED87EFC7C11EF9988DB39C4F9AE02.roa (raw, json) Hash identifier: HufjtxS9V62aBPDs1nCT/g+uxta2mCt5mh51y4BjuFs= Subject key identifier: 77:45:F1:4B:F4:DF:FB:0D:5B:A5:76:8E:76:0B:92:29:7A:4B:A2:63 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 603B Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A3FED87EFC7C11EF9988DB39C4F9AE02.roa Signing time: Wed 30 Apr 2025 20:29:10 +0000 ROA not before: Wed 30 Apr 2025 20:29:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133929 IP address blocks: 210.0.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24635 (0x603b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 30 20:29:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68128816-c753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1b:90:f6:22:d4:c4:1f:26:2c:86:cf:7b:da: 4a:6a:4b:13:97:96:02:ab:7b:0b:59:5a:1e:e3:9d: 86:03:b4:b6:06:a6:11:02:c3:c3:8c:be:47:b8:9e: 91:a1:af:b7:30:ed:c8:1c:2d:63:7a:8c:8b:95:92: 52:0b:74:8c:19:c6:8a:18:86:8c:db:31:cf:c0:28: 90:0a:f2:32:86:c7:ce:b7:fc:58:0a:58:98:e9:6c: b8:f9:23:d7:e0:e8:d3:65:08:f5:45:06:92:61:e0: 2a:57:3e:fa:fc:e9:85:7d:e1:ea:e4:f2:fb:64:41: b4:59:ad:60:db:8d:ca:e3:cc:b9:b2:35:d6:83:2e: c1:84:de:1d:0e:45:18:a1:2b:f2:9c:d6:b3:00:18: c6:fe:2c:7a:b6:ad:9c:a2:04:43:10:fd:f2:1b:9e: 8c:8d:87:ea:f1:fe:a2:e5:42:93:04:a2:7f:85:b8: e1:9a:79:86:08:5a:68:60:46:97:29:c7:53:7e:2c: 51:e2:33:d4:79:63:27:aa:30:f2:52:04:f1:4b:68: 66:c5:3f:b9:1f:0f:01:59:f9:58:26:7c:c7:57:f1: e2:ad:02:3a:ea:0c:1e:9f:7e:32:37:79:80:01:73: 6f:86:d3:3d:1c:05:b4:ac:36:6d:bc:6b:c0:27:56: 4f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:45:F1:4B:F4:DF:FB:0D:5B:A5:76:8E:76:0B:92:29:7A:4B:A2:63 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A3FED87EFC7C11EF9988DB39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.0.225.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:5f:77:00:94:b6:48:34:4d:61:e5:d0:8a:7a:87:95:19:d5: 8b:8e:03:f1:e5:e3:f4:50:63:d0:2b:26:98:25:be:a9:d8:91: 60:44:a4:fb:3c:d4:87:1f:ae:24:73:8d:1c:f3:6d:1c:d2:a1: e9:69:4e:c6:04:1a:c2:17:6b:fe:ba:0d:85:a8:c5:ce:7b:62: 32:5a:4a:25:90:3b:1e:62:eb:ad:4b:02:29:b5:d2:f7:64:db: c1:4e:f6:97:81:87:ce:78:6d:7d:9b:47:45:39:a9:2b:e5:6f: 73:6c:71:23:dd:95:cb:cb:40:e5:ee:bb:86:af:52:6b:4b:9a: 01:fa:c8:ac:62:1e:a6:41:f3:0e:ef:64:22:65:05:e9:db:32: 6d:b4:05:fd:39:39:a5:d1:9d:66:20:14:3b:08:b6:26:8d:32: 6c:7c:64:c8:6e:6e:70:09:f1:87:53:69:33:ff:b3:56:a7:39: c9:05:e8:7e:98:9e:61:08:c5:dd:42:ac:44:18:1e:d4:9a:26: 2a:6d:62:7d:8b:e9:1c:7b:21:2e:be:f8:42:9b:7e:31:b9:75: f7:ba:b9:d9:42:90:21:89:2c:fb:70:42:7e:4b:07:05:c4:30: 13:2b:f2:b1:ce:b6:da:14:b6:ed:e4:ba:db:b7:c2:e0:1f:c4: a9:2c:9c:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICYDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDMwMjAyOTEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODgxNi1jNzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBuQ9iLUxB8mLIbPe9pKaksTl5YCq3sLWVoe452GA7S2BqYRAsPDjL5HuJ6R oa+3MO3IHC1jeoyLlZJSC3SMGcaKGIaM2zHPwCiQCvIyhsfOt/xYCliY6Wy4+SPX 4OjTZQj1RQaSYeAqVz76/OmFfeHq5PL7ZEG0Wa1g243K48y5sjXWgy7BhN4dDkUY oSvynNazABjG/ix6tq2cogRDEP3yG56MjYfq8f6i5UKTBKJ/hbjhmnmGCFpoYEaX KcdTfixR4jPUeWMnqjDyUgTxS2hmxT+5Hw8BWflYJnzHV/HirQI66gwen34yN3mA AXNvhtM9HAW0rDZtvGvAJ1ZPGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHdF8Uv0 3/sNW6V2jnYLkil6S6JjMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvQTNGRUQ4N0VG QzdDMTFFRjk5ODhEQjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSAOEwDQYJKoZIhvcNAQELBQADggEBAC9fdwCUtkg0TWHl 0Ip6h5UZ1YuOA/Hl4/RQY9ArJpglvqnYkWBEpPs81IcfriRzjRzzbRzSoelpTsYE GsIXa/66DYWoxc57YjJaSiWQOx5i661LAim10vdk28FO9peBh854bX2bR0U5qSvl b3NscSPdlcvLQOXuu4avUmtLmgH6yKxiHqZB8w7vZCJlBenbMm20Bf05OaXRnWYg FDsItiaNMmx8ZMhubnAJ8YdTaTP/s1anOckF6H6YnmEIxd1CrEQYHtSaJiptYn2L 6Rx7IS6++EKbfjG5dfe6udlCkCGJLPtwQn5LBwXEMBMr8rHOttoUtu3kutu3wuAf xKksnAc= -----END CERTIFICATE-----Generated at Mon May 12 21:39:35 2025 by rpki-client