$ rpki-client -vvf rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/CA2A06D6D5E511EE9B319A12C4F9AE02.roa File: CA2A06D6D5E511EE9B319A12C4F9AE02.roa (raw, json) Hash identifier: U37kWMCNqNpu+UU1MaVXsy3rFn8/VgyQ4MzDX4Ugs7s= Subject key identifier: C3:AB:99:FA:37:A4:94:90:A3:E5:22:89:D6:F5:4C:21:B9:9F:4C:8A Certificate issuer: /CN=A91C38CC/serialNumber=CBC0AD1965851641F66111E8E2902698A9B9ED80 Certificate serial: B2 Authority key identifier: CB:C0:AD:19:65:85:16:41:F6:61:11:E8:E2:90:26:98:A9:B9:ED:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/CA2A06D6D5E511EE9B319A12C4F9AE02.roa Signing time: Wed 29 Jan 2025 07:32:29 +0000 ROA not before: Wed 29 Jan 2025 07:32:28 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 2713 IP address blocks: 61.245.96.0/21 maxlen: 21 210.79.173.0/24 maxlen: 24 2001:df3:3b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.crl rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 04:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C38CC, serialNumber=CBC0AD1965851641F66111E8E2902698A9B9ED80 Validity Not Before: Jan 29 07:32:28 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6799d98c-e7f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:0e:4a:4c:90:32:e8:db:48:6f:e3:4f:bd: cc:8e:2e:32:f3:d4:6a:53:4a:4a:b0:73:de:99:1c: 5d:ec:b5:08:b4:17:83:3d:0a:c9:57:02:e7:c9:f1: 60:7f:fa:b3:99:b6:f3:b3:86:d1:71:6d:9b:ba:4b: 47:20:4d:5a:92:a1:a3:bf:cb:ad:2b:dd:b3:f0:02: ef:b4:99:80:99:2f:80:c9:ad:73:6e:e6:f6:54:5b: 03:31:51:5d:71:8f:e9:59:36:29:d3:14:b0:7d:c5: 65:4f:86:05:05:84:84:05:11:8f:51:8d:49:74:fb: e9:57:c1:7b:56:71:5a:36:d3:f7:ec:ad:8e:da:c0: 19:62:bd:18:05:26:2c:86:f6:80:38:62:40:44:34: fe:e8:3f:5e:20:70:05:8d:a7:65:da:af:1e:40:8b: 7b:09:b6:dd:0e:ed:6f:83:b0:93:1c:1a:69:fb:ca: d9:98:c1:26:1d:68:e8:92:ed:33:f2:04:33:e3:7c: 66:ea:56:ff:dd:39:3a:80:46:75:9c:dc:7a:e9:04: 06:8f:2b:a4:7f:aa:d8:74:8e:ea:ba:b3:66:67:9f: 77:c8:09:4a:39:73:a7:ff:7e:ae:d8:5b:e0:1a:48: ae:03:87:03:28:8a:db:a5:80:83:51:1d:45:5e:02: 79:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:AB:99:FA:37:A4:94:90:A3:E5:22:89:D6:F5:4C:21:B9:9F:4C:8A X509v3 Authority Key Identifier: keyid:CB:C0:AD:19:65:85:16:41:F6:61:11:E8:E2:90:26:98:A9:B9:ED:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/CA2A06D6D5E511EE9B319A12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.245.96.0/21 210.79.173.0/24 IPv6: 2001:df3:3b40::/48 Signature Algorithm: sha256WithRSAEncryption ce:a5:1d:8d:f1:94:ab:83:82:89:74:cc:b5:81:85:2c:0c:94: 29:d7:8b:19:c6:d5:72:bc:cc:14:af:2e:57:a1:a9:8f:5a:9e: c0:2e:0c:10:b2:38:f0:9f:94:e3:db:e5:8d:d0:18:e0:64:39: cb:a7:c2:6e:76:62:1e:17:6d:c0:5c:b7:80:97:77:f4:fb:db: a0:6f:90:3d:9a:7f:31:a0:05:1f:e5:4e:81:a3:97:d9:a0:90: e0:f4:22:ca:40:44:3e:6c:7d:fc:8b:1b:cc:68:12:85:24:d9: 79:cb:e0:61:e6:8a:7b:01:ab:a5:a9:14:39:6f:3a:e6:66:85: cf:c4:b2:12:47:46:f6:ea:e4:ef:26:b7:76:63:57:cd:1d:26: 6d:13:bf:4e:c7:66:e7:96:24:2a:39:52:13:9e:b6:fd:9d:c6: f5:05:bd:49:99:20:e7:7b:b7:e5:d6:67:fa:2c:0b:39:d6:15: b9:b2:63:4e:27:f9:82:ee:ba:7c:b6:46:19:ad:a9:84:86:57: 4b:c2:13:49:a7:38:71:c1:dc:19:60:e5:d9:c5:2a:db:b4:8c: 9d:86:f4:45:5c:56:40:68:34:90:1a:22:d3:9c:6b:45:01:1b: 3e:6c:a8:90:d7:20:67:f2:98:34:f0:72:0f:c8:5f:22:82:c5: 49:4b:9b:02 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4Q0MxMTAvBgNVBAUTKENCQzBBRDE5NjU4NTE2NDFGNjYxMTFFOEUyOTAyNjk4 QTlCOUVEODAwHhcNMjUwMTI5MDczMjI4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5ZDk4Yy1lN2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSQOSkyQMujbSG/jT73Mji4y89RqU0pKsHPemRxd7LUItBeDPQrJVwLnyfFg f/qzmbbzs4bRcW2buktHIE1akqGjv8utK92z8ALvtJmAmS+Aya1zbub2VFsDMVFd cY/pWTYp0xSwfcVlT4YFBYSEBRGPUY1JdPvpV8F7VnFaNtP37K2O2sAZYr0YBSYs hvaAOGJARDT+6D9eIHAFjadl2q8eQIt7CbbdDu1vg7CTHBpp+8rZmMEmHWjoku0z 8gQz43xm6lb/3Tk6gEZ1nNx66QQGjyukf6rYdI7qurNmZ593yAlKOXOn/36u2Fvg GkiuA4cDKIrbpYCDUR1FXgJ5AQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMOrmfo3 pJSQo+Uiidb1TCG5n0yKMB8GA1UdIwQYMBaAFMvArRllhRZB9mER6OKQJpipue2A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzhDQy8zQUM1N0M4Q0Q1 RTUxMUVFQjc3OTIyM0VDNEY5QUUwMi95OEN0R1dXRkZrSDJZUkhvNHBBbW1LbTU3 WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k4Q3RHV1dGRmtIMllSSG80cEFtbUttNTdZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzM4Q0MvM0FDNTdDOENENUU1MTFFRUI3NzkyMjNFQzRGOUFFMDIvQ0EyQTA2RDZE NUU1MTFFRTlCMzE5QTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAM99WADBADST60wDwQCAAIwCQMHACABDfM7QDANBgkqhkiG 9w0BAQsFAAOCAQEAzqUdjfGUq4OCiXTMtYGFLAyUKdeLGcbVcrzMFK8uV6Gpj1qe wC4MELI48J+U49vljdAY4GQ5y6fCbnZiHhdtwFy3gJd39PvboG+QPZp/MaAFH+VO gaOX2aCQ4PQiykBEPmx9/IsbzGgShSTZecvgYeaKewGrpakUOW865maFz8SyEkdG 9urk7ya3dmNXzR0mbRO/Tsdm55YkKjlSE562/Z3G9QW9SZkg53u35dZn+iwLOdYV ubJjTif5gu66fLZGGa2phIZXS8ITSac4ccHcGWDl2cUq27SMnYb0RVxWQGg0kBoi 05xrRQEbPmyokNcgZ/KYNPByD8hfIoLFSUubAg== -----END CERTIFICATE-----Generated at Tue May 6 14:50:39 2025 by rpki-client