$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/A40873CE7FB811EB82018D29C4F9AE02.roa File: A40873CE7FB811EB82018D29C4F9AE02.roa (raw, json) Hash identifier: x1uMmRK43yay8ZPmLxVu8RIg3TAXDE9HwOF5tkl8BVc= Subject key identifier: 0F:7D:30:A0:EF:F9:00:82:9B:65:E7:B3:5A:FD:82:F9:50:69:10:09 Certificate issuer: /CN=A91CE3C4/serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Certificate serial: 0670 Authority key identifier: B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/A40873CE7FB811EB82018D29C4F9AE02.roa Signing time: Wed 30 Apr 2025 22:33:50 +0000 ROA not before: Wed 30 Apr 2025 22:33:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140637 IP address blocks: 194.193.16.0/22 maxlen: 24 194.193.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Validity Not Before: Apr 30 22:33:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812a54d-3f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3b:dd:b5:c1:37:6b:19:5c:81:d7:05:97:2a: d2:14:87:72:fd:4c:82:2b:db:39:84:18:44:d8:d9: d4:41:da:65:84:aa:3e:2a:1d:ed:bd:3b:7c:24:6c: 9b:8e:dd:5d:5a:41:fc:12:8c:73:3f:5c:b1:ec:08: e7:2a:8c:af:72:7d:c1:f7:fb:92:43:ce:62:ca:87: 6f:c3:ca:86:d9:e0:6b:8c:c3:48:35:d5:79:a8:1a: da:55:e2:0e:99:2c:ef:ac:9e:d0:ab:6a:2c:f1:6a: ba:fb:b8:4c:05:bf:34:8c:a1:c3:10:50:9c:3d:3b: 47:6d:c4:15:c9:19:b0:10:2a:76:ac:28:7e:3a:2e: a3:27:79:cf:9a:e4:78:17:a3:19:d9:f1:ba:55:06: a8:ee:a2:4b:1e:6b:f1:58:6d:17:c2:bd:98:35:13: 7b:51:d2:1b:70:98:c8:5f:e1:f8:12:2e:2b:b6:06: af:37:25:40:cc:59:69:47:ed:40:00:8e:08:a5:c0: 6b:fb:7b:4d:b6:84:c5:c7:92:06:f7:06:b9:71:f6: d5:03:ba:cb:88:c3:be:03:d5:82:91:35:da:d9:39: f6:7e:90:61:18:bf:8a:39:a9:b9:02:8f:75:d1:ca: 15:3d:e5:ae:8f:ff:05:e8:5b:71:0c:6e:c2:bd:56: 8f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:7D:30:A0:EF:F9:00:82:9B:65:E7:B3:5A:FD:82:F9:50:69:10:09 X509v3 Authority Key Identifier: keyid:B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/A40873CE7FB811EB82018D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 194.193.16.0/22 194.193.28.0/22 Signature Algorithm: sha256WithRSAEncryption 58:51:27:3b:d8:ef:b0:07:9a:81:87:c0:81:9b:5a:36:fe:2e: 9e:41:47:e5:4e:4f:6a:de:56:a2:95:04:f3:d6:3d:29:18:ea: c2:ae:e3:aa:87:ae:da:a6:51:31:fa:74:7d:d3:5e:38:80:30: 2f:0e:5d:35:a9:8c:68:a9:8d:22:92:82:f7:ec:2b:e3:e9:08: 06:02:30:65:c7:64:3a:65:d1:dc:31:49:f0:5e:c5:22:a0:a3: 20:00:33:e0:8b:8f:08:2e:96:7d:01:52:64:f6:6f:1d:d5:82: 46:5c:39:e5:b5:c7:a8:63:78:bd:01:21:a6:05:9f:f2:68:f1: 3c:bf:d7:e3:1c:7d:47:73:62:48:ed:73:78:6e:95:b7:e1:db: 1d:9e:5a:54:5b:13:e3:43:e1:b0:6f:72:c2:e8:41:01:36:bb: 7c:a5:79:12:28:b2:fc:67:18:d2:1c:5a:99:e4:78:a7:80:b5: 0f:dc:df:75:76:55:15:1b:28:e1:87:45:c7:b5:2d:63:24:3d: 7c:1e:0b:e9:19:ec:a5:9a:dc:43:8f:8a:16:7d:70:f4:fc:a1: bf:83:ad:a3:9d:f5:a1:d3:06:b8:f0:89:50:9a:f7:ba:f3:5b: bb:eb:9a:c6:74:ff:cb:ca:a0:8a:3e:3f:8f:73:aa:51:a2:f0: 68:ff:a2:cb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEI2RkQ2RjRCNEZCN0MzMjQ3QzU5OTI5OUIyRThCQUZC NUE4QkJBNzIwHhcNMjUwNDMwMjIzMzUwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYTU0ZC0zZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDvdtcE3axlcgdcFlyrSFIdy/UyCK9s5hBhE2NnUQdplhKo+Kh3tvTt8JGyb jt1dWkH8EoxzP1yx7AjnKoyvcn3B9/uSQ85iyodvw8qG2eBrjMNINdV5qBraVeIO mSzvrJ7Qq2os8Wq6+7hMBb80jKHDEFCcPTtHbcQVyRmwECp2rCh+Oi6jJ3nPmuR4 F6MZ2fG6VQao7qJLHmvxWG0Xwr2YNRN7UdIbcJjIX+H4Ei4rtgavNyVAzFlpR+1A AI4IpcBr+3tNtoTFx5IG9wa5cfbVA7rLiMO+A9WCkTXa2Tn2fpBhGL+KOam5Ao91 0coVPeWuj/8F6FtxDG7CvVaP6wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA99MKDv +QCCm2Xns1r9gvlQaRAJMB8GA1UdIwQYMBaAFLb9b0tPt8MkfFmSmbLouvtai7py MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC82REQ5RjMzNDdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi90djF2UzAtM3d5UjhXWktac3VpNi0xcUx1 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3R2MXZTMC0zd3lSOFdaS1pzdWk2LTFxTHVuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNkREOUYzMzQ3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvQTQwODczQ0U3 RkI4MTFFQjgyMDE4RDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALCwRADBALCwRwwDQYJKoZIhvcNAQELBQADggEBAFhRJzvY 77AHmoGHwIGbWjb+Lp5BR+VOT2reVqKVBPPWPSkY6sKu46qHrtqmUTH6dH3TXjiA MC8OXTWpjGipjSKSgvfsK+PpCAYCMGXHZDpl0dwxSfBexSKgoyAAM+CLjwguln0B UmT2bx3VgkZcOeW1x6hjeL0BIaYFn/Jo8Ty/1+McfUdzYkjtc3hulbfh2x2eWlRb E+ND4bBvcsLoQQE2u3yleRIosvxnGNIcWpnkeKeAtQ/c33V2VRUbKOGHRce1LWMk PXweC+kZ7KWa3EOPihZ9cPT8ob+DraOd9aHTBrjwiVCa97rzW7vrmsZ0/8vKoIo+ P49zqlGi8Gj/oss= -----END CERTIFICATE-----Generated at Mon May 12 17:19:05 2025 by rpki-client