$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/BC582AA44FEA11EFBFC72970C4F9AE02.roa File: BC582AA44FEA11EFBFC72970C4F9AE02.roa (raw, json) Hash identifier: LDQwB/Aaa/EPGkedxIat/R/y9ZuThpBdxq2PBP79Mgo= Subject key identifier: 67:83:C6:9B:AC:B6:AC:B2:13:CC:82:D4:89:07:44:1D:B1:41:3E:D4 Certificate issuer: /CN=A91CE3C4/serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Certificate serial: 0692 Authority key identifier: FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/BC582AA44FEA11EFBFC72970C4F9AE02.roa Signing time: Wed 30 Apr 2025 22:33:54 +0000 ROA not before: Wed 30 Apr 2025 22:33:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 163.47.92.0/24 maxlen: 24 163.47.93.0/24 maxlen: 24 163.47.94.0/24 maxlen: 24 163.47.95.0/24 maxlen: 24 2400:cc00:3000::/48 maxlen: 48 2400:cc00:3001::/48 maxlen: 48 2400:cc00:3002::/48 maxlen: 48 2400:cc00:3005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Validity Not Before: Apr 30 22:33:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812a552-a814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:47:79:4b:b6:ee:66:aa:ca:b9:25:d5:76:93: 56:24:83:fe:57:b1:d1:41:22:0e:c5:c3:e6:2f:70: 8c:cf:93:05:5b:ce:f7:ba:83:1a:41:42:61:a7:f7: a9:9c:e4:7d:e3:98:b8:00:2b:e2:24:0a:fc:79:b9: 76:5f:c2:dd:01:9e:1a:4b:de:92:da:fa:44:eb:16: 43:aa:e3:ce:f7:a3:ea:ad:e4:e3:1d:da:f9:0a:0c: 70:50:04:82:de:86:b2:d6:24:26:d5:82:57:af:e7: 5a:cb:72:2f:29:e4:56:44:cc:69:1f:fe:37:d8:a3: d7:a1:44:23:62:b1:60:4a:e9:c8:9c:6a:5f:5a:fd: e9:c6:4f:e5:d1:f6:64:8c:7e:ea:93:9f:9f:af:d6: da:fe:31:98:8e:f7:9a:d8:be:20:72:2c:41:2d:ca: c1:03:34:05:bb:a7:0f:73:f0:d8:5d:bd:eb:e4:7b: fd:d5:9a:21:af:7a:83:aa:9e:5e:85:b6:65:b0:33: 69:da:ca:dd:37:0a:ef:b6:ba:bd:ca:60:ac:09:fd: 35:5a:76:6b:82:bb:95:8c:dd:6a:32:ad:f3:57:bd: 62:93:4c:96:5b:a9:e3:a0:c9:5f:d7:81:58:83:4b: bc:22:29:88:10:10:ae:ce:33:9e:36:c6:8f:5e:62: 3b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:83:C6:9B:AC:B6:AC:B2:13:CC:82:D4:89:07:44:1D:B1:41:3E:D4 X509v3 Authority Key Identifier: keyid:FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/BC582AA44FEA11EFBFC72970C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.47.92.0/22 IPv6: 2400:cc00:3000::-2400:cc00:3002:ffff:ffff:ffff:ffff:ffff 2400:cc00:3005::/48 Signature Algorithm: sha256WithRSAEncryption 0b:2b:06:a5:7c:2f:58:3c:22:f5:b0:82:7d:f3:9e:3e:b9:8b: c6:c7:fd:a9:10:49:ba:46:98:e0:ac:b8:56:78:e5:76:48:c0: b6:7d:8c:c2:9b:a6:e0:f2:69:04:de:7a:f2:91:c9:09:94:b9: 78:f5:21:b1:49:bb:5c:2d:a7:7a:de:7d:be:c6:a4:c8:2c:19: 43:a8:ad:5c:2b:62:05:ab:aa:db:09:cc:26:b6:02:d9:99:56: ee:05:7e:8f:d3:bd:eb:cd:1a:8b:00:78:b4:59:26:ca:12:58: fe:89:cc:5a:e5:b1:79:d3:6e:b4:88:f4:6c:6d:95:0c:48:10: 09:0a:35:6d:00:64:0f:1c:88:ca:93:c6:80:1f:65:3a:75:cf: 39:99:32:36:e5:6c:64:0d:3b:55:3e:59:ea:81:29:1f:b5:8a: 2e:1f:1c:eb:11:a0:b8:e9:5d:a7:5f:f6:e8:af:33:06:af:aa: 84:29:de:22:63:97:53:ff:09:8d:56:5d:8b:d1:75:16:fa:91: 72:91:b7:f1:f1:b8:d0:28:67:91:13:6c:75:e9:70:71:46:ef: 11:61:10:21:45:f1:c8:93:c7:b6:ec:b3:60:d2:4c:bc:18:7f: 7a:0c:9f:4f:7b:ac:dc:1e:6a:85:fb:b3:d8:7e:9e:e4:06:7e: dd:b3:ba:62 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEZDQUQ0NjExNTdERjY4MUMwNTBCRDNCRUVFQTJFQUNE RkI2RDUyNEIwHhcNMjUwNDMwMjIzMzU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYTU1Mi1hODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUd5S7buZqrKuSXVdpNWJIP+V7HRQSIOxcPmL3CMz5MFW873uoMaQUJhp/ep nOR945i4ACviJAr8ebl2X8LdAZ4aS96S2vpE6xZDquPO96PqreTjHdr5CgxwUASC 3oay1iQm1YJXr+day3IvKeRWRMxpH/432KPXoUQjYrFgSunInGpfWv3pxk/l0fZk jH7qk5+fr9ba/jGYjvea2L4gcixBLcrBAzQFu6cPc/DYXb3r5Hv91Zohr3qDqp5e hbZlsDNp2srdNwrvtrq9ymCsCf01WnZrgruVjN1qMq3zV71ik0yWW6njoMlf14FY g0u8IimIEBCuzjOeNsaPXmI7WQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFGeDxpus tqyyE8yC1IkHRB2xQT7UMB8GA1UdIwQYMBaAFPytRhFX32gcBQvTvu6i6s37bVJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC83NjkyMjc4QTdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi9fSzFHRVZmZmFCd0ZDOU8tN3FMcXpmdHRV a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19LMUdFVmZmYUJ3RkM5Ty03cUxxemZ0dFVrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNzY5MjI3OEE3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvQkM1ODJBQTQ0 RkVBMTFFRkJGQzcyOTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMAwEAgABMAYDBAKjL1wwIgQCAAIwHDARAwYEJADMADADBwAkAMwAMAIDBwAk AMwAMAUwDQYJKoZIhvcNAQELBQADggEBAAsrBqV8L1g8IvWwgn3znj65i8bH/akQ SbpGmOCsuFZ45XZIwLZ9jMKbpuDyaQTeevKRyQmUuXj1IbFJu1wtp3refb7GpMgs GUOorVwrYgWrqtsJzCa2AtmZVu4Ffo/TvevNGosAeLRZJsoSWP6JzFrlsXnTbrSI 9GxtlQxIEAkKNW0AZA8ciMqTxoAfZTp1zzmZMjblbGQNO1U+WeqBKR+1ii4fHOsR oLjpXadf9uivMwavqoQp3iJjl1P/CY1WXYvRdRb6kXKRt/HxuNAoZ5ETbHXpcHFG 7xFhECFF8ciTx7bss2DSTLwYf3oMn097rNweaoX7s9h+nuQGft2zumI= -----END CERTIFICATE-----Generated at Tue May 13 05:04:27 2025 by rpki-client