$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa File: 7A9CD75E23E311F0BB28EA29C4F9AE02.roa (raw, json) Hash identifier: yftNfagXlQP7kWCYM4or16TNugYWxYDf4262IfQW/IU= Subject key identifier: EB:69:75:BD:DE:6F:64:AE:69:46:EB:05:30:59:19:0C:B0:1A:56:99 Certificate issuer: /CN=A91C9606/serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Certificate serial: 0D1A Authority key identifier: 1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa Signing time: Mon 28 Apr 2025 03:47:17 +0000 ROA not before: Mon 28 Apr 2025 03:47:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55342 IP address blocks: 202.131.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3354 (0xd1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9606, serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Validity Not Before: Apr 28 03:47:17 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=680efa45-edd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:12:5f:08:44:21:3e:a1:5f:84:cd:81:a7:45: 10:b8:2e:34:07:4e:37:cb:49:e7:6b:bf:47:64:54: cd:4b:65:16:42:90:8a:44:40:dc:e9:be:35:1c:fb: 09:64:80:29:4f:35:1a:5b:e9:8c:bd:45:e0:3a:fc: 6e:44:e4:78:43:e8:36:67:45:04:c4:6b:d5:48:c1: a8:c8:6d:d6:7a:2b:63:24:eb:c3:46:3d:c6:7e:d5: 29:a5:cf:19:f1:75:fa:07:c1:0a:6d:94:8c:f8:a5: 9d:43:b9:3f:c8:68:c9:f5:f0:e2:0f:16:e9:ba:0f: c2:9f:c2:ae:15:67:29:f7:91:ea:a9:75:73:40:59: 0b:c7:7f:28:07:8b:de:eb:b2:92:6c:46:af:bf:8e: 28:5f:34:94:46:45:5c:bd:b0:ea:8c:5b:09:78:eb: 41:31:7f:49:e6:0e:73:2e:67:cf:79:3b:a6:f4:60: da:d5:b3:d2:67:f1:d8:37:0f:77:b5:00:bb:cd:88: bf:52:25:d4:c2:6a:34:13:3f:9c:37:51:8e:fc:43: 9a:9c:6f:20:5b:31:47:ac:ed:c4:0b:de:17:a5:99: 22:7b:86:28:d6:11:05:de:bc:39:29:99:6a:9f:32: 6b:36:63:80:40:71:b0:5e:ac:78:cb:6e:08:6a:cf: 31:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:69:75:BD:DE:6F:64:AE:69:46:EB:05:30:59:19:0C:B0:1A:56:99 X509v3 Authority Key Identifier: keyid:1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.131.1.0/24 Signature Algorithm: sha256WithRSAEncryption 02:7b:ed:89:1a:62:e5:2f:bd:22:55:aa:43:13:26:84:30:ce: 2f:42:d5:29:70:37:bb:95:1d:5d:43:18:41:96:a8:0b:59:0b: 44:97:91:34:b1:60:92:99:ce:4e:0f:ff:3c:84:b8:86:08:da: 85:76:38:af:b3:33:bf:bf:33:20:f6:d8:1f:f6:0e:d2:44:f1: d9:12:55:0e:1f:d5:c8:e8:ca:78:17:88:2c:9e:52:a0:45:47: 78:87:21:0f:87:a5:b8:b2:f7:c8:70:65:83:f2:b6:8e:fb:3c: 3d:04:96:c4:db:b3:7a:d6:b8:76:e2:3e:4e:17:26:82:4e:87: f4:9a:3b:6d:11:39:71:65:55:e8:41:6b:26:d4:cc:b3:6d:0b: e8:fd:11:50:de:47:ee:8d:4a:0d:5c:74:51:11:06:90:e6:7e: fe:82:54:19:e3:9d:da:19:3c:3e:a9:04:59:cd:6f:c8:45:ae: 9e:ef:0e:36:37:31:65:8a:15:91:af:ce:ca:40:10:b8:3d:ca: f8:0c:5d:69:37:8b:8b:62:3e:07:e8:f3:c8:3d:72:83:cc:d0: 11:ac:47:86:0b:ba:aa:a0:63:ec:23:11:ce:18:e5:c0:f2:57: ee:c2:38:ef:6c:e6:ee:1f:c6:51:58:3c:77:6f:a6:07:32:44: ed:57:e3:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk2MDYxMTAvBgNVBAUTKDFCNDcxREFEQ0Q5MTIwOTMzNTEzNkVBQ0Y2Q0M5ODg4 Mjg2NTRCMkEwHhcNMjUwNDI4MDM0NzE3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBlZmE0NS1lZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xJfCEQhPqFfhM2Bp0UQuC40B043y0nna79HZFTNS2UWQpCKREDc6b41HPsJ ZIApTzUaW+mMvUXgOvxuROR4Q+g2Z0UExGvVSMGoyG3WeitjJOvDRj3GftUppc8Z 8XX6B8EKbZSM+KWdQ7k/yGjJ9fDiDxbpug/Cn8KuFWcp95HqqXVzQFkLx38oB4ve 67KSbEavv44oXzSURkVcvbDqjFsJeOtBMX9J5g5zLmfPeTum9GDa1bPSZ/HYNw93 tQC7zYi/UiXUwmo0Ez+cN1GO/EOanG8gWzFHrO3EC94XpZkie4Yo1hEF3rw5KZlq nzJrNmOAQHGwXqx4y24Ias8xqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOtpdb3e b2SuaUbrBTBZGQywGlaZMB8GA1UdIwQYMBaAFBtHHa3NkSCTNRNurPbMmIgoZUsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTYwNi85QzlGOUY5QURC OTAxMUU5QTNDMTJGMkNDNEY5QUUwMi9HMGNkcmMyUklKTTFFMjZzOXN5WWlDaGxT eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cwY2RyYzJSSUpNMUUyNnM5c3lZaUNobFN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk2MDYvOUM5RjlGOUFEQjkwMTFFOUEzQzEyRjJDQzRGOUFFMDIvN0E5Q0Q3NUUy M0UzMTFGMEJCMjhFQTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKgwEwDQYJKoZIhvcNAQELBQADggEBAAJ77YkaYuUvvSJV qkMTJoQwzi9C1SlwN7uVHV1DGEGWqAtZC0SXkTSxYJKZzk4P/zyEuIYI2oV2OK+z M7+/MyD22B/2DtJE8dkSVQ4f1cjoyngXiCyeUqBFR3iHIQ+Hpbiy98hwZYPyto77 PD0ElsTbs3rWuHbiPk4XJoJOh/SaO20ROXFlVehBaybUzLNtC+j9EVDeR+6NSg1c dFERBpDmfv6CVBnjndoZPD6pBFnNb8hFrp7vDjY3MWWKFZGvzspAELg9yvgMXWk3 i4tiPgfo88g9coPM0BGsR4YLuqqgY+wjEc4Y5cDyV+7COO9s5u4fxlFYPHdvpgcy RO1X42g= -----END CERTIFICATE-----Generated at Mon May 12 16:10:48 2025 by rpki-client