$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/EC427D64B16311ECA18ED12FC4F9AE02.roa File: EC427D64B16311ECA18ED12FC4F9AE02.roa (raw, json) Hash identifier: Ga4Z3DpE9aUbX7W5p2tUSOPgf7WkxMTRgFBKaq09Cxs= Subject key identifier: 73:F6:5B:CC:CD:BC:D0:33:3E:40:8E:84:B1:B2:09:2A:56:A4:04:EF Certificate issuer: /CN=A91CE3C4/serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Certificate serial: 0671 Authority key identifier: B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/EC427D64B16311ECA18ED12FC4F9AE02.roa Signing time: Wed 30 Apr 2025 22:33:50 +0000 ROA not before: Wed 30 Apr 2025 22:33:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17477 IP address blocks: 194.193.0.0/19 maxlen: 21 194.193.0.0/20 maxlen: 24 194.193.20.0/22 maxlen: 24 194.193.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=B6FD6F4B4FB7C3247C599299B2E8BAFB5A8BBA72 Validity Not Before: Apr 30 22:33:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812a54e-037f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1d:d6:80:72:32:12:f7:fd:92:7f:d7:8a:f1: 37:4f:f5:58:05:01:ce:80:cd:0c:c8:37:59:89:0c: ba:4b:00:0d:fd:7b:fd:4e:dd:c3:e5:20:24:6b:65: 77:7d:0b:1d:d2:12:56:98:a4:7c:bc:9e:43:90:bb: 30:f1:81:73:d5:97:4a:b5:01:eb:cd:91:5e:a2:b2: 7c:d5:40:7c:e2:c0:ca:70:82:f6:18:4e:a1:54:9e: 45:31:4a:35:d3:d5:a7:f0:74:21:af:e0:a3:2c:26: f1:b3:a3:fa:e4:d8:3b:47:d1:de:ed:2f:3f:69:ad: 18:ff:a7:3c:c6:73:4a:47:dd:9a:21:2f:74:cc:e0: ec:4b:1b:bf:cc:6b:93:cc:ce:35:3f:5e:b3:9e:6d: c0:80:0f:eb:60:0f:9e:3e:ff:ab:7b:83:5d:66:b6: 0b:ed:02:bf:93:96:14:cd:47:d4:12:4b:1a:a8:83: 23:d5:86:84:6e:f5:95:24:e2:e3:cf:3f:8f:4d:34: 41:02:2b:81:df:84:c5:ef:88:8d:b6:bb:29:d4:0f: 89:31:98:8a:82:4d:e3:8a:a3:73:13:1b:93:93:0e: 02:54:e3:c9:c0:09:22:7f:0a:c7:fb:61:1d:71:40: ac:45:fb:86:14:2b:85:65:a6:60:cc:ce:c4:46:97: d9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F6:5B:CC:CD:BC:D0:33:3E:40:8E:84:B1:B2:09:2A:56:A4:04:EF X509v3 Authority Key Identifier: keyid:B6:FD:6F:4B:4F:B7:C3:24:7C:59:92:99:B2:E8:BA:FB:5A:8B:BA:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/tv1vS0-3wyR8WZKZsui6-1qLunI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tv1vS0-3wyR8WZKZsui6-1qLunI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/6DD9F3347F9711EBADDC5F15C4F9AE02/EC427D64B16311ECA18ED12FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 194.193.0.0/19 Signature Algorithm: sha256WithRSAEncryption 90:0f:fb:7e:06:cb:df:94:2a:ed:74:fb:96:fb:50:10:a0:21: 04:4b:fe:85:11:79:e0:3b:96:e1:4b:27:ea:35:1c:ab:d8:da: ca:3f:49:ac:f6:13:2e:7b:3d:b9:10:73:44:f1:2a:16:ad:34: 8d:41:15:20:45:a5:0d:6f:75:49:1f:f7:a9:2d:8e:be:09:40: 70:5f:2f:20:83:4b:0c:c2:6a:f8:39:db:a0:37:57:4c:4e:9a: 1b:f3:fa:13:72:95:e5:e1:1e:0e:e8:9d:12:f8:3e:af:f0:98: b4:4e:63:24:f9:24:4a:cd:57:c1:95:10:a6:fd:0f:7f:92:bf: 8c:4a:82:65:36:2e:6f:85:d6:63:39:7f:65:ba:21:5b:01:0f: e8:5f:81:5a:35:0f:92:ef:ee:bc:32:00:15:4e:86:40:08:8a: d1:d6:6c:93:b0:d0:62:d5:2b:e2:d0:c1:e5:55:7b:94:1f:da: 38:85:63:3f:85:2e:d5:10:45:3a:56:cc:c9:7f:79:57:62:9e: 7c:49:3f:fb:59:e8:51:ab:27:70:f2:2e:6b:7f:d2:47:f8:60: 24:b6:42:ac:6c:c5:ac:f4:bd:47:ee:a8:b5:09:18:57:7b:e0: 96:40:03:31:e2:51:a2:1d:a9:83:91:35:4e:35:73:26:2f:38: 76:e9:00:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEI2RkQ2RjRCNEZCN0MzMjQ3QzU5OTI5OUIyRThCQUZC NUE4QkJBNzIwHhcNMjUwNDMwMjIzMzUwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYTU0ZS0wMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1x3WgHIyEvf9kn/XivE3T/VYBQHOgM0MyDdZiQy6SwAN/Xv9Tt3D5SAka2V3 fQsd0hJWmKR8vJ5DkLsw8YFz1ZdKtQHrzZFeorJ81UB84sDKcIL2GE6hVJ5FMUo1 09Wn8HQhr+CjLCbxs6P65Ng7R9He7S8/aa0Y/6c8xnNKR92aIS90zODsSxu/zGuT zM41P16znm3AgA/rYA+ePv+re4NdZrYL7QK/k5YUzUfUEksaqIMj1YaEbvWVJOLj zz+PTTRBAiuB34TF74iNtrsp1A+JMZiKgk3jiqNzExuTkw4CVOPJwAkifwrH+2Ed cUCsRfuGFCuFZaZgzM7ERpfZYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHP2W8zN vNAzPkCOhLGyCSpWpATvMB8GA1UdIwQYMBaAFLb9b0tPt8MkfFmSmbLouvtai7py MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC82REQ5RjMzNDdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi90djF2UzAtM3d5UjhXWktac3VpNi0xcUx1 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3R2MXZTMC0zd3lSOFdaS1pzdWk2LTFxTHVuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNkREOUYzMzQ3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvRUM0MjdENjRC MTYzMTFFQ0ExOEVEMTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXCwQAwDQYJKoZIhvcNAQELBQADggEBAJAP+34Gy9+UKu10 +5b7UBCgIQRL/oUReeA7luFLJ+o1HKvY2so/Saz2Ey57PbkQc0TxKhatNI1BFSBF pQ1vdUkf96ktjr4JQHBfLyCDSwzCavg526A3V0xOmhvz+hNyleXhHg7onRL4Pq/w mLROYyT5JErNV8GVEKb9D3+Sv4xKgmU2Lm+F1mM5f2W6IVsBD+hfgVo1D5Lv7rwy ABVOhkAIitHWbJOw0GLVK+LQweVVe5Qf2jiFYz+FLtUQRTpWzMl/eVdinnxJP/tZ 6FGrJ3DyLmt/0kf4YCS2Qqxsxaz0vUfuqLUJGFd74JZAAzHiUaIdqYORNU41cyYv OHbpAJg= -----END CERTIFICATE-----Generated at Tue May 13 06:30:35 2025 by rpki-client