$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A4857438FC7C11EF9988DB39C4F9AE02.roa File: A4857438FC7C11EF9988DB39C4F9AE02.roa (raw, json) Hash identifier: +yNJSXFQNInOjYUxra1QZMa3LxdB/E0cjab1r/50Aww= Subject key identifier: D4:42:F8:99:10:1A:8A:DB:C5:8D:54:D0:24:74:14:42:C9:03:DB:85 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 603C Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A4857438FC7C11EF9988DB39C4F9AE02.roa Signing time: Wed 30 Apr 2025 20:29:11 +0000 ROA not before: Wed 30 Apr 2025 20:29:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152136 IP address blocks: 210.0.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24636 (0x603c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 30 20:29:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68128817-e77e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:fb:c5:82:10:82:ab:e0:0c:a2:f6:4f:14:eb: 56:b2:f8:74:f7:66:d5:07:05:a8:da:62:79:fb:3a: 37:f7:b1:b4:da:35:c1:a6:bb:1b:b3:5f:7a:c2:b5: e4:86:d5:8f:76:ec:20:63:ae:5c:55:f6:70:04:3a: 62:28:2e:8c:76:2f:ef:d6:8d:39:c2:12:e6:59:80: 8d:07:40:c1:88:4e:65:71:e8:1f:87:90:20:d8:ba: 61:72:02:f4:57:cd:3a:35:ca:4f:82:80:75:b4:7b: d0:f4:6d:7e:df:9f:6a:3e:d7:a7:a7:42:43:c0:19: b1:c6:05:8d:03:b8:71:23:85:1a:2a:3c:35:c5:75: e3:ac:70:ac:cc:ae:bb:b2:d7:58:a5:db:24:df:81: 2c:72:bd:eb:dd:9c:2b:bf:e3:f9:76:39:b6:e1:98: 6d:cb:4d:8c:5a:5f:9f:04:0f:ac:55:b9:6f:8b:70: 33:b1:39:c4:55:d6:90:fa:64:99:d7:75:c5:52:6c: ab:98:ec:25:69:c4:dd:b5:ce:d5:3b:c3:58:6e:5a: c1:55:23:88:d8:b4:47:20:20:eb:e0:d5:69:24:c4: 86:7b:bb:26:d7:e2:8f:91:77:a7:97:4a:88:9b:79: f0:0d:b8:b8:d9:ae:95:10:25:30:e0:14:0b:d8:aa: 35:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:42:F8:99:10:1A:8A:DB:C5:8D:54:D0:24:74:14:42:C9:03:DB:85 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A4857438FC7C11EF9988DB39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.0.238.0/24 Signature Algorithm: sha256WithRSAEncryption ae:a3:b8:f9:4a:4d:89:4f:5b:b4:a0:5c:de:d2:5f:b4:72:d4: 7e:cf:22:b4:bf:db:2c:b3:d7:45:4e:7b:21:65:0f:c9:60:4e: 1b:9a:a8:e1:87:82:82:46:3c:73:58:dc:c2:89:01:35:89:65: 13:a8:c3:99:c3:d2:28:37:52:d6:07:7e:37:30:93:99:a6:fb: 94:b7:c2:cf:2d:6f:a9:68:77:89:34:24:38:ce:be:32:3e:40: d1:d7:a2:66:c4:6e:07:6c:5e:e4:cc:64:a4:b4:8b:b2:ac:c5: 62:4a:26:1a:1a:ec:5c:d2:06:7e:eb:08:44:90:3d:e1:2d:a3: c7:27:b3:08:05:fe:92:24:f3:c4:a4:c5:30:ff:89:13:55:60: 25:a0:e9:8c:dd:bd:79:5b:be:1b:79:28:0f:2e:b6:cb:c7:06: 5b:be:c1:57:21:7b:bc:56:cf:7d:72:0e:e8:11:82:cd:48:c7: e3:68:1b:ec:8b:d5:08:40:0c:a7:88:54:2b:16:56:22:af:a6: 81:52:33:f3:28:d0:a9:8d:46:d6:bd:a2:f6:4a:f3:e7:ef:bf: ec:9b:db:c4:33:32:77:b6:70:b1:c0:67:68:44:c0:b2:f8:93: a0:e1:9e:69:b4:f3:8f:ae:09:ba:9f:46:c0:61:4e:ad:a8:87: fc:5a:cd:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICYDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDMwMjAyOTExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODgxNy1lNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlPvFghCCq+AMovZPFOtWsvh092bVBwWo2mJ5+zo397G02jXBprsbs196wrXk htWPduwgY65cVfZwBDpiKC6Mdi/v1o05whLmWYCNB0DBiE5lcegfh5Ag2LphcgL0 V806NcpPgoB1tHvQ9G1+359qPtenp0JDwBmxxgWNA7hxI4UaKjw1xXXjrHCszK67 stdYpdsk34Escr3r3Zwrv+P5djm24Zhty02MWl+fBA+sVblvi3AzsTnEVdaQ+mSZ 13XFUmyrmOwlacTdtc7VO8NYblrBVSOI2LRHICDr4NVpJMSGe7sm1+KPkXenl0qI m3nwDbi42a6VECUw4BQL2Ko1RwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNRC+JkQ GorbxY1U0CR0FELJA9uFMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvQTQ4NTc0MzhG QzdDMTFFRjk5ODhEQjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSAO4wDQYJKoZIhvcNAQELBQADggEBAK6juPlKTYlPW7Sg XN7SX7Ry1H7PIrS/2yyz10VOeyFlD8lgThuaqOGHgoJGPHNY3MKJATWJZROow5nD 0ig3UtYHfjcwk5mm+5S3ws8tb6lod4k0JDjOvjI+QNHXombEbgdsXuTMZKS0i7Ks xWJKJhoa7FzSBn7rCESQPeEto8cnswgF/pIk88SkxTD/iRNVYCWg6YzdvXlbvht5 KA8utsvHBlu+wVche7xWz31yDugRgs1Ix+NoG+yL1QhADKeIVCsWViKvpoFSM/Mo 0KmNRta9ovZK8+fvv+yb28QzMne2cLHAZ2hEwLL4k6Dhnmm084+uCbqfRsBhTq2o h/xazfA= -----END CERTIFICATE-----Generated at Sun May 11 18:57:09 2025 by rpki-client