$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/D55D5DE2F07011EDAD0F5D62C4F9AE02.roa File: D55D5DE2F07011EDAD0F5D62C4F9AE02.roa (raw, json) Hash identifier: /1MqSHd9nBk2qp9htlm8FxJMAo4wrus2nnyIHoN3C0s= Subject key identifier: 33:36:0D:F8:84:92:98:46:A6:FD:01:40:F2:7C:45:4D:34:C6:5C:FA Certificate issuer: /CN=A91CE3C4/serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Certificate serial: 0690 Authority key identifier: FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/D55D5DE2F07011EDAD0F5D62C4F9AE02.roa Signing time: Wed 30 Apr 2025 22:33:52 +0000 ROA not before: Wed 30 Apr 2025 22:33:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140637 IP address blocks: 163.47.92.0/22 maxlen: 24 2400:cc00:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Validity Not Before: Apr 30 22:33:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812a550-f1de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:b0:eb:20:7e:31:5b:97:98:67:56:f1:b2: bc:e5:95:de:64:df:65:df:e0:1d:55:98:7c:85:3c: 1c:88:69:64:f1:42:57:0d:46:c0:17:55:1d:26:6f: d9:44:6e:65:5c:ee:6f:63:dd:5a:d2:f7:7f:53:3d: 78:6d:a3:71:a4:08:b7:91:e7:63:24:d4:23:d2:cb: bf:19:2a:86:87:ea:3d:7a:04:ac:4f:bf:a1:03:15: 02:f4:5a:f2:cc:00:f6:22:be:49:a8:9a:52:90:5f: 0b:8d:82:a3:17:45:6f:7a:f8:7e:7e:13:8f:1f:ab: 23:22:2d:de:cb:de:e4:36:3a:6d:db:3e:47:00:29: da:33:f6:d1:25:ea:d2:a6:ac:7d:c8:86:80:ea:35: 63:a6:d2:f6:30:ee:24:69:9c:10:5a:14:27:49:e6: 6c:75:c5:2d:2b:fa:cb:1f:7d:91:19:4a:54:17:4d: 40:59:b9:29:39:00:8b:94:ab:cf:6a:fe:4b:43:a7: ef:cb:13:78:ad:20:cf:a2:7c:1e:b2:fb:3a:ec:37: 3e:b4:c2:31:e3:9c:5f:a8:a7:c6:1e:26:18:15:b7: 35:ec:20:82:62:e3:ef:20:4b:4b:69:e3:e6:69:37: 28:92:7d:a8:be:aa:71:da:ab:26:52:63:14:19:41: c5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:36:0D:F8:84:92:98:46:A6:FD:01:40:F2:7C:45:4D:34:C6:5C:FA X509v3 Authority Key Identifier: keyid:FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/D55D5DE2F07011EDAD0F5D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.47.92.0/22 IPv6: 2400:cc00:3000::/36 Signature Algorithm: sha256WithRSAEncryption 38:9e:f6:60:b1:e6:fb:74:0d:dd:93:58:11:86:88:fe:56:b4: 18:d5:89:ee:25:8f:83:25:ae:50:91:f9:16:14:5d:87:6f:9b: 72:b3:55:c0:5d:2f:84:f3:86:f0:d6:73:98:3e:42:79:71:e6: 52:60:40:9d:44:5a:9c:52:d8:21:b3:ed:e4:49:9b:d2:05:73: 3a:43:f9:ba:60:f0:7b:32:40:f0:a9:cd:0a:57:3a:0d:93:9a: 7e:ac:d9:8b:02:2e:00:6a:ec:cb:cb:2a:f6:0e:7d:bb:5f:eb: 30:b4:dc:0c:82:ad:9c:8c:bc:f5:b2:a3:28:6a:83:a3:29:6c: 33:63:26:af:f3:32:c2:34:f8:25:2a:6f:37:36:f0:bd:16:7a: 81:60:51:eb:13:ae:1f:6f:ea:7e:61:6f:2a:e5:55:27:5d:bf: f3:b0:2a:20:c8:53:92:fa:34:46:d5:81:06:c8:d9:4f:8d:7e: d2:7c:86:5d:d9:3d:3c:c4:b4:12:f5:7b:63:e2:2c:8f:ac:38: 4d:7b:a1:11:76:8e:20:fd:38:f6:cb:e5:65:84:68:1f:17:99: e3:59:72:a7:2b:13:04:c8:6a:69:89:1d:ea:8a:4e:8f:69:cb: 79:69:82:62:32:c4:07:15:7f:24:04:08:13:23:8a:fe:22:0b: 2c:e5:0d:19 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEZDQUQ0NjExNTdERjY4MUMwNTBCRDNCRUVFQTJFQUNE RkI2RDUyNEIwHhcNMjUwNDMwMjIzMzUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYTU1MC1mMWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmGw6yB+MVuXmGdW8bK85ZXeZN9l3+AdVZh8hTwciGlk8UJXDUbAF1UdJm/Z RG5lXO5vY91a0vd/Uz14baNxpAi3kedjJNQj0su/GSqGh+o9egSsT7+hAxUC9Fry zAD2Ir5JqJpSkF8LjYKjF0Vvevh+fhOPH6sjIi3ey97kNjpt2z5HACnaM/bRJerS pqx9yIaA6jVjptL2MO4kaZwQWhQnSeZsdcUtK/rLH32RGUpUF01AWbkpOQCLlKvP av5LQ6fvyxN4rSDPonwesvs67Dc+tMIx45xfqKfGHiYYFbc17CCCYuPvIEtLaePm aTcokn2ovqpx2qsmUmMUGUHFAwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDM2DfiE kphGpv0BQPJ8RU00xlz6MB8GA1UdIwQYMBaAFPytRhFX32gcBQvTvu6i6s37bVJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC83NjkyMjc4QTdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi9fSzFHRVZmZmFCd0ZDOU8tN3FMcXpmdHRV a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19LMUdFVmZmYUJ3RkM5Ty03cUxxemZ0dFVrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNzY5MjI3OEE3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvRDU1RDVERTJG MDcwMTFFREFEMEY1RDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAKjL1wwDgQCAAIwCAMGBCQAzAAwMA0GCSqGSIb3DQEBCwUA A4IBAQA4nvZgseb7dA3dk1gRhoj+VrQY1YnuJY+DJa5QkfkWFF2Hb5tys1XAXS+E 84bw1nOYPkJ5ceZSYECdRFqcUtghs+3kSZvSBXM6Q/m6YPB7MkDwqc0KVzoNk5p+ rNmLAi4AauzLyyr2Dn27X+swtNwMgq2cjLz1sqMoaoOjKWwzYyav8zLCNPglKm83 NvC9FnqBYFHrE64fb+p+YW8q5VUnXb/zsCogyFOS+jRG1YEGyNlPjX7SfIZd2T08 xLQS9Xtj4iyPrDhNe6ERdo4g/Tj2y+VlhGgfF5njWXKnKxMEyGppiR3qik6Pact5 aYJiMsQHFX8kBAgTI4r+Igss5Q0Z -----END CERTIFICATE-----Generated at Wed May 14 10:51:21 2025 by rpki-client