$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAECE/3DF4DC92134A11F0A6968487C4F9AE02/07063FA4134B11F0B48EFA0AC4F9AE02.roa File: 07063FA4134B11F0B48EFA0AC4F9AE02.roa (raw, json) Hash identifier: WNVrInNAUMIDrW85MacHTXC8HeXu1LqrkLU97EbnyxY= Subject key identifier: 87:AD:3A:AA:6C:ED:3E:53:1D:44:41:7B:5F:9E:78:80:13:A0:AD:60 Certificate issuer: /CN=A91CAECE/serialNumber=304B02A2566A163ADACE1FA521A30A7E626AC11E Certificate serial: 02 Authority key identifier: 30:4B:02:A2:56:6A:16:3A:DA:CE:1F:A5:21:A3:0A:7E:62:6A:C1:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MEsColZqFjrazh-lIaMKfmJqwR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAECE/3DF4DC92134A11F0A6968487C4F9AE02/07063FA4134B11F0B48EFA0AC4F9AE02.roa Signing time: Mon 07 Apr 2025 00:55:42 +0000 ROA not before: Mon 07 Apr 2025 00:55:42 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152164 IP address blocks: 210.79.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAECE/3DF4DC92134A11F0A6968487C4F9AE02/MEsColZqFjrazh-lIaMKfmJqwR4.crl rsync://rpki.apnic.net/member_repository/A91CAECE/3DF4DC92134A11F0A6968487C4F9AE02/MEsColZqFjrazh-lIaMKfmJqwR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MEsColZqFjrazh-lIaMKfmJqwR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAECE, serialNumber=304B02A2566A163ADACE1FA521A30A7E626AC11E Validity Not Before: Apr 7 00:55:42 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67f3228d-3e8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:16:50:7d:06:17:e8:84:58:2a:cb:11:d0:ce: ef:a1:a7:90:9f:9c:a5:b2:47:83:40:00:91:bf:b9: 9a:2e:94:be:9a:07:29:95:86:3b:2e:78:99:25:70: e6:3a:99:0b:de:0e:23:f7:07:e9:4f:ff:20:04:2a: 98:2b:cc:d5:f4:a8:1f:72:3e:47:71:72:cf:5b:e8: eb:23:60:d0:dc:86:2d:f7:7b:4d:e1:8c:3f:c4:27: 4b:46:82:93:26:52:3f:fd:d2:fe:10:27:ee:e7:c6: 33:0f:b9:61:c8:ed:45:73:6e:e6:e4:72:88:5c:71: e0:15:45:28:38:36:80:dd:d2:87:9a:34:25:78:3c: 3b:42:dc:31:74:b6:61:99:4e:85:49:cc:87:e1:f8: 40:25:53:25:3b:05:b6:8b:52:d9:d6:23:8e:be:5c: ce:c6:b6:9d:0a:c6:f0:e0:e3:c0:97:4c:27:11:92: 46:74:ce:bf:ee:67:39:82:ab:47:dc:a8:1a:59:ce: bd:98:31:d3:55:33:e7:23:58:19:fc:a5:42:39:a5: d5:f6:e9:52:3a:bc:c8:94:78:b8:bf:61:49:d1:b7: 29:c9:9a:26:8a:1e:69:fd:16:d6:1d:7d:6b:12:f1: d2:67:fd:b2:c7:1d:a2:90:ff:ff:1d:f7:36:b0:6f: 27:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:AD:3A:AA:6C:ED:3E:53:1D:44:41:7B:5F:9E:78:80:13:A0:AD:60 X509v3 Authority Key Identifier: keyid:30:4B:02:A2:56:6A:16:3A:DA:CE:1F:A5:21:A3:0A:7E:62:6A:C1:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAECE/3DF4DC92134A11F0A6968487C4F9AE02/MEsColZqFjrazh-lIaMKfmJqwR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MEsColZqFjrazh-lIaMKfmJqwR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAECE/3DF4DC92134A11F0A6968487C4F9AE02/07063FA4134B11F0B48EFA0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.79.153.0/24 Signature Algorithm: sha256WithRSAEncryption 46:5c:e0:39:9f:49:d0:e0:9e:60:d9:38:b7:8d:cd:a8:e1:ae: 18:0d:b3:66:79:9f:7c:d8:d2:28:33:5c:ce:df:ca:9e:ce:93: 60:59:17:91:e4:04:de:36:bf:6f:7d:16:01:2a:f2:5c:0d:76: 42:b3:55:37:e9:e5:e9:2a:1e:a5:21:71:04:18:5b:6d:db:a1: 24:12:71:9b:e0:f3:fe:98:d5:08:79:1d:51:7c:44:f8:28:7d: 09:9f:d9:9b:e2:21:89:fb:3e:e9:8b:74:fe:15:44:86:19:cf: 66:22:5b:b0:c7:b4:98:28:c3:37:62:ba:b0:69:a8:c4:2b:1b: 3d:30:97:ac:11:87:20:fd:0d:11:f3:f1:94:ff:2c:e5:73:84: ae:1d:58:b6:cc:a2:60:6d:b9:3f:9f:ee:cc:11:92:50:77:91: f4:44:39:c6:57:45:85:e0:65:0a:86:d0:4c:cc:bc:81:d2:25: b6:99:0c:d0:80:05:82:37:d4:08:60:63:9b:2a:18:88:45:41: 3d:11:fb:83:39:2b:43:08:8d:3b:e9:88:3a:bb:6f:f2:d9:b8: 70:af:c6:13:17:94:b2:82:b7:8c:33:b7:7e:10:88:c8:96:51: a1:02:e7:27:b9:b3:07:e7:21:a1:ad:af:47:df:a6:14:96:77: 86:67:2b:02 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QUVDRTExMC8GA1UEBRMoMzA0QjAyQTI1NjZBMTYzQURBQ0UxRkE1MjFBMzBBN0U2 MjZBQzExRTAeFw0yNTA0MDcwMDU1NDJaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjMyMjhkLTNlOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgFlB9BhfohFgqyxHQzu+hp5CfnKWyR4NAAJG/uZoulL6aBymVhjsueJklcOY6 mQveDiP3B+lP/yAEKpgrzNX0qB9yPkdxcs9b6OsjYNDchi33e03hjD/EJ0tGgpMm Uj/90v4QJ+7nxjMPuWHI7UVzbubkcohcceAVRSg4NoDd0oeaNCV4PDtC3DF0tmGZ ToVJzIfh+EAlUyU7BbaLUtnWI46+XM7Gtp0KxvDg48CXTCcRkkZ0zr/uZzmCq0fc qBpZzr2YMdNVM+cjWBn8pUI5pdX26VI6vMiUeLi/YUnRtynJmiaKHmn9FtYdfWsS 8dJn/bLHHaKQ//8d9zawbydVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUh606qmzt PlMdREF7X554gBOgrWAwHwYDVR0jBBgwFoAUMEsColZqFjrazh+lIaMKfmJqwR4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBRUNFLzNERjREQzkyMTM0 QTExRjBBNjk2ODQ4N0M0RjlBRTAyL01Fc0NvbFpxRmpyYXpoLWxJYU1LZm1KcXdS NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUVzQ29sWnFGanJhemgtbElhTUtmbUpxd1I0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUVDRS8zREY0REM5MjEzNEExMUYwQTY5Njg0ODdDNEY5QUUwMi8wNzA2M0ZBNDEz NEIxMUYwQjQ4RUZBMEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEANJPmTANBgkqhkiG9w0BAQsFAAOCAQEARlzgOZ9J0OCeYNk4 t43NqOGuGA2zZnmffNjSKDNczt/Kns6TYFkXkeQE3ja/b30WASryXA12QrNVN+nl 6SoepSFxBBhbbduhJBJxm+Dz/pjVCHkdUXxE+Ch9CZ/Zm+Ihifs+6Yt0/hVEhhnP ZiJbsMe0mCjDN2K6sGmoxCsbPTCXrBGHIP0NEfPxlP8s5XOErh1YtsyiYG25P5/u zBGSUHeR9EQ5xldFheBlCobQTMy8gdIltpkM0IAFgjfUCGBjmyoYiEVBPRH7gzkr QwiNO+mIOrtv8tm4cK/GExeUsoK3jDO3fhCIyJZRoQLnJ7mzB+choa2vR9+mFJZ3 hmcrAg== -----END CERTIFICATE-----Generated at Sun May 11 22:17:22 2025 by rpki-client