$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa File: 24EF88B8F56011EEACB7CB3CC4F9AE02.roa (raw, json) Hash identifier: lDcIajuaLqzNHKrvaw5xtEMBD4ZDOs+n5ffXRVCGNBU= Subject key identifier: 7A:25:85:7B:66:E0:3D:BA:10:50:E6:D3:B0:49:CE:F9:83:64:6D:A2 Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: D2 Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa Signing time: Sat 03 May 2025 05:12:18 +0000 ROA not before: Sat 03 May 2025 05:12:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 117.55.254.0/24 maxlen: 24 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931, serialNumber=198C4364CF032C730D9585834982096D50A752C9 Validity Not Before: May 3 05:12:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815a5b2-9468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7c:d2:f7:b0:cc:d5:92:10:70:de:c8:aa:95: d0:e9:46:9d:4a:d7:60:69:39:41:03:dc:56:45:1d: ec:54:d2:9f:30:f0:b8:f1:54:08:9a:52:e3:f3:be: 3e:39:80:82:ab:e9:5d:5e:85:38:62:9f:40:ca:18: 2f:e6:a9:5b:49:57:5f:96:ce:5d:44:cf:b4:2c:d3: 14:f4:9c:84:fe:1f:b9:bd:9f:ac:fd:fc:88:62:87: e1:71:c6:cf:3d:8f:95:f9:42:60:ec:b8:1b:61:fe: fa:69:73:f8:bc:14:f1:5b:99:39:44:14:a1:56:ff: 72:e3:03:3e:b2:35:30:d9:85:bf:34:4e:9c:59:ee: 50:8e:4e:03:e4:c2:1a:63:40:35:fb:82:22:11:b2: 1a:b4:47:9e:2e:65:0e:f7:66:fc:1a:6e:55:01:e5: 85:f3:22:83:ee:e1:9e:01:eb:92:71:a3:8c:f2:e8: af:4e:63:cd:b9:85:8c:b5:29:0c:fe:79:97:52:9c: e7:03:4c:11:71:8b:1d:8a:ff:41:79:23:d1:f6:9e: e4:8f:a8:88:6a:82:23:f7:73:03:91:f9:0b:c0:f5: 4e:38:a7:66:42:5f:20:b9:c1:fd:83:e7:e6:3c:5b: 44:05:0a:d6:97:7d:15:62:5a:23:02:10:2f:71:01: fd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:25:85:7B:66:E0:3D:BA:10:50:E6:D3:B0:49:CE:F9:83:64:6D:A2 X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/24EF88B8F56011EEACB7CB3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.254.0/23 Signature Algorithm: sha256WithRSAEncryption 51:61:21:78:22:06:9a:ea:dd:ef:27:43:7b:70:a9:d1:42:7c: 93:e5:ef:e5:72:06:24:90:a2:c2:82:96:1c:fd:95:81:6a:89: 0f:ab:29:84:e8:4f:0d:c1:51:77:48:7e:4d:45:15:ad:87:a9: d9:ae:74:70:22:03:a7:04:33:de:b0:83:7e:dd:20:55:a6:73: cc:97:68:5a:f4:bf:68:fc:51:2c:ea:f8:14:5e:c8:18:e3:98: 99:32:76:75:50:b4:ff:8b:60:47:c5:4f:52:af:09:17:6a:38: 90:13:86:89:23:bb:be:49:e1:c0:4a:c0:23:e2:3a:41:87:82: c6:f8:8b:aa:4e:04:ea:52:8c:e4:64:5b:91:46:f8:43:29:b8: 4e:b5:08:f1:77:b8:48:de:61:59:40:b8:04:47:f8:da:56:1f: bf:a6:8a:eb:ae:db:d9:e2:a0:86:a7:e3:59:03:6e:7f:27:28: e3:2e:19:e4:b4:99:f9:b8:66:7e:ff:d5:bb:4c:b0:56:a9:4d: 63:e2:bd:9e:d7:36:7f:a7:91:cc:b6:c5:c5:71:5b:22:cc:c6: 3b:38:72:9f:89:1b:28:de:2a:59:9d:c1:85:c5:8e:f6:a8:c4: 4f:3c:aa:61:c4:d6:8a:f1:dd:e1:3d:3c:c0:b6:5a:52:cc:3f: 7f:65:60:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5MzExMTAvBgNVBAUTKDE5OEM0MzY0Q0YwMzJDNzMwRDk1ODU4MzQ5ODIwOTZE NTBBNzUyQzkwHhcNMjUwNTAzMDUxMjE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YTViMi05NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3zS97DM1ZIQcN7IqpXQ6UadStdgaTlBA9xWRR3sVNKfMPC48VQImlLj874+ OYCCq+ldXoU4Yp9Ayhgv5qlbSVdfls5dRM+0LNMU9JyE/h+5vZ+s/fyIYofhccbP PY+V+UJg7LgbYf76aXP4vBTxW5k5RBShVv9y4wM+sjUw2YW/NE6cWe5Qjk4D5MIa Y0A1+4IiEbIatEeeLmUO92b8Gm5VAeWF8yKD7uGeAeuScaOM8uivTmPNuYWMtSkM /nmXUpznA0wRcYsdiv9BeSPR9p7kj6iIaoIj93MDkfkLwPVOOKdmQl8gucH9g+fm PFtEBQrWl30VYlojAhAvcQH9OwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHolhXtm 4D26EFDm07BJzvmDZG2iMB8GA1UdIwQYMBaAFBmMQ2TPAyxzDZWFg0mCCW1Qp1LJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzkzMS80QTI1QjZBMEY1 NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi9HWXhEWk04RExITU5sWVdEU1lJSmJWQ25V c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM5MzEvNEEyNUI2QTBGNTVEMTFFRTlCRTE5NzgwQzRGOUFFMDIvMjRFRjg4QjhG NTYwMTFFRUFDQjdDQjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF1N/4wDQYJKoZIhvcNAQELBQADggEBAFFhIXgiBprq3e8n Q3twqdFCfJPl7+VyBiSQosKClhz9lYFqiQ+rKYToTw3BUXdIfk1FFa2HqdmudHAi A6cEM96wg37dIFWmc8yXaFr0v2j8USzq+BReyBjjmJkydnVQtP+LYEfFT1KvCRdq OJAThokju75J4cBKwCPiOkGHgsb4i6pOBOpSjORkW5FG+EMpuE61CPF3uEjeYVlA uARH+NpWH7+miuuu29nioIan41kDbn8nKOMuGeS0mfm4Zn7/1btMsFapTWPivZ7X Nn+nkcy2xcVxWyLMxjs4cp+JGyjeKlmdwYXFjvaoxE88qmHE1orx3eE9PMC2WlLM P39lYPM= -----END CERTIFICATE-----Generated at Mon May 12 18:58:55 2025 by rpki-client