$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/DDBC2904F43811EB996EF71CC4F9AE02.roa File: DDBC2904F43811EB996EF71CC4F9AE02.roa (raw, json) Hash identifier: xKkFJtQkOK5cO2nhAWEKFd82aYDnpqj8OOUnSdck+xg= Subject key identifier: 7F:25:B3:9B:97:15:F9:25:69:E5:AD:E1:C8:10:F4:D4:9C:2E:9A:77 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 603A Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/DDBC2904F43811EB996EF71CC4F9AE02.roa Signing time: Wed 30 Apr 2025 20:29:09 +0000 ROA not before: Wed 30 Apr 2025 20:29:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 10082 IP address blocks: 218.188.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 20:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24634 (0x603a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 30 20:29:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68128815-0ff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:8a:41:2e:d8:9b:af:d9:5a:ae:b3:8d:ce: 07:d8:37:d5:cc:26:29:e0:a5:fd:4e:e1:99:55:4d: d8:7d:84:6a:28:f6:ad:3f:b9:d0:72:79:ec:89:8e: 75:36:99:f4:70:7d:5a:55:a1:01:ea:7e:e7:f9:0c: 29:b0:39:43:ac:37:4b:03:b9:91:54:cc:61:28:36: fd:36:79:74:63:19:df:1b:57:5b:c4:ef:2d:46:0d: 9e:30:dd:6d:ae:67:d2:62:91:6b:22:f4:d3:1e:87: 90:ef:e9:26:c4:00:96:82:3c:b7:33:2a:dc:7c:39: c2:d2:90:c1:ec:d6:ba:bd:fa:eb:a2:3f:b9:df:9e: b8:e8:aa:74:d0:e2:64:23:73:ca:90:e5:06:4b:79: ab:11:8d:1f:40:2c:cf:71:05:9d:51:bd:a5:55:7a: 0c:44:9c:13:4e:0b:c7:33:44:4e:15:59:52:12:dd: ab:b9:af:3a:fe:5a:5a:75:ce:cb:f5:94:51:c3:6c: 21:5b:1a:3f:53:cc:fc:02:60:42:ce:45:06:8b:03: ae:cb:80:43:1d:ac:fd:c7:45:da:1b:d5:24:6f:df: 40:75:1c:fa:6e:f9:cc:4b:b8:52:f0:d1:66:be:c8: 9c:14:9a:85:60:94:28:c5:77:58:11:18:9e:46:3a: 04:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:25:B3:9B:97:15:F9:25:69:E5:AD:E1:C8:10:F4:D4:9C:2E:9A:77 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/DDBC2904F43811EB996EF71CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.188.93.0/24 Signature Algorithm: sha256WithRSAEncryption 96:f4:3f:15:09:ef:38:da:82:96:de:e5:bf:f2:9d:9f:e3:82: 73:0b:26:42:79:34:fa:66:b6:70:d2:5b:5a:50:35:97:39:b6: 1f:6a:69:91:9d:65:ba:c9:82:aa:7a:ad:ac:82:37:a5:23:17: ca:71:93:74:ce:06:66:e3:02:a3:61:15:4b:2b:e2:13:04:07: 0f:54:d5:3e:70:45:7e:49:e2:7b:02:48:b5:7f:69:f6:87:65: a7:22:6b:c8:8d:85:15:71:60:cf:33:07:73:12:c2:3a:09:57: cb:00:a8:37:ff:00:09:fd:a8:77:d1:7d:79:ef:a6:85:3c:b6: 86:cf:bc:a8:76:b9:d6:6f:7c:4c:98:5a:ea:3c:1d:3c:56:1d: 22:9b:57:56:8c:f6:76:24:e5:09:97:f4:f3:0b:f3:35:91:65: 9d:9b:11:30:0a:e5:4c:24:24:21:ea:cf:03:3f:f5:ca:6b:48: e2:fa:5d:b2:ad:58:24:4f:c4:ba:37:33:a6:58:a9:ba:98:06: 4a:50:ab:9f:3b:67:0f:e5:42:18:c9:c0:3f:a7:25:3b:45:f0: 9b:39:da:b4:e6:d7:70:c5:19:4a:1a:dc:81:86:f7:52:25:bb: 80:8d:a2:23:50:14:23:e7:1f:ba:a7:66:97:47:d9:cf:bc:a1: de:dc:5d:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICYDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDMwMjAyOTA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODgxNS0wZmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA032KQS7Ym6/ZWq6zjc4H2DfVzCYp4KX9TuGZVU3YfYRqKPatP7nQcnnsiY51 Npn0cH1aVaEB6n7n+QwpsDlDrDdLA7mRVMxhKDb9Nnl0YxnfG1dbxO8tRg2eMN1t rmfSYpFrIvTTHoeQ7+kmxACWgjy3MyrcfDnC0pDB7Na6vfrroj+535646Kp00OJk I3PKkOUGS3mrEY0fQCzPcQWdUb2lVXoMRJwTTgvHM0ROFVlSEt2rua86/lpadc7L 9ZRRw2whWxo/U8z8AmBCzkUGiwOuy4BDHaz9x0XaG9Ukb99AdRz6bvnMS7hS8NFm vsicFJqFYJQoxXdYERieRjoEjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH8ls5uX FfklaeWt4cgQ9NScLpp3MB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvRERCQzI5MDRG NDM4MTFFQjk5NkVGNzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADavF0wDQYJKoZIhvcNAQELBQADggEBAJb0PxUJ7zjagpbe 5b/ynZ/jgnMLJkJ5NPpmtnDSW1pQNZc5th9qaZGdZbrJgqp6rayCN6UjF8pxk3TO BmbjAqNhFUsr4hMEBw9U1T5wRX5J4nsCSLV/afaHZacia8iNhRVxYM8zB3MSwjoJ V8sAqDf/AAn9qHfRfXnvpoU8tobPvKh2udZvfEyYWuo8HTxWHSKbV1aM9nYk5QmX 9PML8zWRZZ2bETAK5UwkJCHqzwM/9cprSOL6XbKtWCRPxLo3M6ZYqbqYBkpQq587 Zw/lQhjJwD+nJTtF8Js52rTm13DFGUoa3IGG91Ilu4CNoiNQFCPnH7qnZpdH2c+8 od7cXUk= -----END CERTIFICATE-----Generated at Thu May 8 21:32:30 2025 by rpki-client