$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/CADB5E342D2211EE87D1FB10C4F9AE02.roa File: CADB5E342D2211EE87D1FB10C4F9AE02.roa (raw, json) Hash identifier: ANPFXZ/MODmFF7nlnZ/RlpMFmEKghJgCnmJnXWdlj98= Subject key identifier: 48:62:DF:A3:A3:70:44:06:DE:00:2E:95:9F:4B:E1:D4:37:78:F6:38 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 603E Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/CADB5E342D2211EE87D1FB10C4F9AE02.roa Signing time: Wed 30 Apr 2025 20:29:13 +0000 ROA not before: Wed 30 Apr 2025 20:29:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17794 IP address blocks: 203.184.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 20:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24638 (0x603e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 30 20:29:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68128819-a043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bc:b7:a6:bd:75:70:52:f7:03:8c:c6:6c:46: 6a:d5:39:b8:0f:e0:b9:d0:d3:5f:bc:fd:41:79:a6: 56:f3:1c:6d:46:1a:8c:32:af:d8:d0:5e:39:a2:40: 24:62:c2:1d:f1:48:08:bf:8b:10:1b:e3:c7:52:f2: 4f:c3:32:de:6a:c0:de:1d:4e:62:15:72:bb:df:da: 1f:73:40:e0:7a:d1:0c:b0:89:b3:ec:0b:ae:87:f2: 9e:8e:a0:2a:ea:63:46:f9:2f:ec:05:bb:fc:db:ed: db:a0:69:10:6e:96:a3:70:ea:34:15:27:ca:84:01: 7f:4b:73:16:60:91:ef:e6:47:c9:3c:57:7d:39:86: c5:0b:66:4d:2a:86:1a:03:c9:b4:7c:eb:eb:fc:b0: 66:cf:97:ba:30:cb:4a:c1:cf:6f:63:5d:45:29:cd: 97:76:06:b4:5c:9e:1d:43:86:ae:32:b8:c2:da:c8: 99:46:34:18:17:c5:8b:39:84:2d:73:bf:2c:fc:30: 78:d2:1a:e1:df:f9:45:2c:ef:d8:bc:05:b7:51:e9: af:15:bb:cc:ca:d4:32:71:f6:94:81:b6:41:e4:82: 14:60:3f:7b:ee:71:0f:f9:ef:a0:fb:77:33:63:d5: a4:05:71:6c:d5:14:29:7f:b7:24:09:0f:12:74:8b: 92:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:62:DF:A3:A3:70:44:06:DE:00:2E:95:9F:4B:E1:D4:37:78:F6:38 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/CADB5E342D2211EE87D1FB10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.184.147.0/24 Signature Algorithm: sha256WithRSAEncryption 85:76:d6:63:70:c9:d0:42:d4:3c:2a:b8:4c:85:14:2c:40:ee: 97:01:ca:48:ae:2b:f4:37:d0:07:a1:44:e2:9c:92:13:e6:15: 99:de:98:91:9f:49:df:26:bf:b7:4d:8c:52:bc:45:9f:e5:41: 4c:6c:de:e4:31:08:49:14:1a:5b:2d:fe:d0:21:4d:1c:49:cf: 86:20:58:61:41:11:a1:60:69:34:90:10:57:27:d6:c7:24:64: 4e:b7:e5:82:50:15:a6:fb:eb:19:80:96:3c:1f:7b:ec:bb:b6: 32:3f:1b:6f:fd:a6:e2:e9:1b:60:1c:70:9e:0c:c9:4e:bd:f1: 35:89:d1:89:e2:f7:4e:69:c2:1b:f3:ab:43:24:cd:04:a7:ac: ef:e7:be:0b:08:da:55:52:a9:d2:56:1c:0b:58:cd:73:21:4c: 19:5f:1e:04:40:c7:0a:ed:4a:e5:e9:2d:7b:39:33:39:2f:fa: 63:d3:b0:86:5d:7f:6b:d3:b6:ec:ab:90:cb:b3:46:91:35:3e: 0f:31:32:1e:3b:22:68:7d:c3:1e:39:e2:db:fe:bd:f9:b2:85: 4f:f3:cf:7b:9e:d7:48:10:6f:ff:49:11:f1:2d:ad:54:3a:f2: 4e:6e:91:c8:b7:35:a4:8a:25:ef:ab:d2:63:c9:ce:7d:57:14: a8:43:66:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICYD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDMwMjAyOTEzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODgxOS1hMDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7y3pr11cFL3A4zGbEZq1Tm4D+C50NNfvP1BeaZW8xxtRhqMMq/Y0F45okAk YsId8UgIv4sQG+PHUvJPwzLeasDeHU5iFXK739ofc0DgetEMsImz7Auuh/KejqAq 6mNG+S/sBbv82+3boGkQbpajcOo0FSfKhAF/S3MWYJHv5kfJPFd9OYbFC2ZNKoYa A8m0fOvr/LBmz5e6MMtKwc9vY11FKc2Xdga0XJ4dQ4auMrjC2siZRjQYF8WLOYQt c78s/DB40hrh3/lFLO/YvAW3UemvFbvMytQycfaUgbZB5IIUYD977nEP+e+g+3cz Y9WkBXFs1RQpf7ckCQ8SdIuSiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEhi36Oj cEQG3gAulZ9L4dQ3ePY4MB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvQ0FEQjVFMzQy RDIyMTFFRTg3RDFGQjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLuJMwDQYJKoZIhvcNAQELBQADggEBAIV21mNwydBC1Dwq uEyFFCxA7pcBykiuK/Q30AehROKckhPmFZnemJGfSd8mv7dNjFK8RZ/lQUxs3uQx CEkUGlst/tAhTRxJz4YgWGFBEaFgaTSQEFcn1sckZE635YJQFab76xmAljwfe+y7 tjI/G2/9puLpG2AccJ4MyU698TWJ0Yni905pwhvzq0MkzQSnrO/nvgsI2lVSqdJW HAtYzXMhTBlfHgRAxwrtSuXpLXs5Mzkv+mPTsIZdf2vTtuyrkMuzRpE1Pg8xMh47 Imh9wx454tv+vfmyhU/zz3ue10gQb/9JEfEtrVQ68k5ukci3NaSKJe+r0mPJzn1X FKhDZgI= -----END CERTIFICATE-----Generated at Mon May 5 14:09:34 2025 by rpki-client