$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa File: BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa (raw, json) Hash identifier: FpsujdeSIYLDxosFYlUPrmKqSq5TJ8BXCM8BjJrvMC0= Subject key identifier: E5:6E:39:F3:D6:94:E3:B2:AF:06:97:EE:28:95:61:44:F6:E7:33:06 Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: D3 Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa Signing time: Sat 03 May 2025 05:12:19 +0000 ROA not before: Sat 03 May 2025 05:12:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152668 IP address blocks: 117.55.254.0/24 maxlen: 24 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931, serialNumber=198C4364CF032C730D9585834982096D50A752C9 Validity Not Before: May 3 05:12:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815a5b3-9113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:92:d6:5c:2f:e2:b3:d1:5b:d4:b3:1f:48:e0: 05:d6:70:b3:5c:83:9e:90:fd:c9:15:e0:78:c0:ec: c2:6e:77:0e:2d:58:10:64:9a:9f:5d:21:65:a5:8c: 79:cc:e5:ad:4f:75:76:dd:5a:f5:68:6f:be:9a:e0: e8:72:df:94:00:0d:2a:3d:9e:ad:b4:88:e7:0a:90: cf:f1:31:c5:58:d5:41:a5:de:13:58:3a:4b:4c:c4: 0f:ed:18:d2:c0:e5:ad:d4:56:cb:34:25:26:7d:2b: e0:60:56:2d:23:c8:b9:e3:41:28:1e:c3:80:8c:3d: 31:63:5b:71:2f:02:a7:56:bb:78:6a:86:8d:0f:e2: a1:92:61:5e:8d:2f:28:27:0f:54:6c:3b:7e:c6:04: d7:cf:ee:20:d4:b7:53:a7:3d:31:b6:01:65:0e:b0: bc:c5:1a:86:d6:59:e1:7b:2e:5d:0b:8f:d3:14:51: d1:e2:4c:ea:7f:76:30:8e:68:2e:97:59:89:12:7a: c3:c7:8c:a8:b1:b8:ef:e1:e5:8d:cd:29:15:22:da: a4:6b:a2:7f:cf:bf:45:05:c1:7b:43:40:5e:11:b7: 8a:fa:b9:6b:35:1c:d3:46:d3:7e:0b:99:ae:de:69: 02:90:35:07:7e:fc:25:7f:46:ca:7e:46:03:a5:56: 99:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:6E:39:F3:D6:94:E3:B2:AF:06:97:EE:28:95:61:44:F6:E7:33:06 X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.254.0/23 Signature Algorithm: sha256WithRSAEncryption b1:e7:8f:40:b4:ec:2d:d8:7a:74:a1:83:a4:4b:e0:38:13:23: cc:9e:3f:f2:c6:ed:11:e7:7a:f3:3d:c4:5d:7a:03:f9:6c:b1: 81:b9:06:9a:ab:7b:f2:75:62:32:34:76:9e:d2:30:f3:c8:99: f3:8c:0c:ec:cb:09:91:d4:96:e0:f4:59:26:29:c5:5c:b2:f3: 4f:24:18:cb:b6:1d:cb:e3:2a:a3:9f:28:da:ec:e2:63:35:5f: 70:a7:28:b4:d7:94:28:15:1d:07:a0:d7:a9:aa:54:18:ae:98: 53:2b:5b:79:08:b9:7a:e9:f3:1f:fe:49:8f:ef:20:ba:fe:a0: 2f:8b:64:b0:a1:57:8c:72:05:e3:76:28:b4:31:ef:f4:11:dc: 4a:13:0f:bc:a2:65:7b:a0:5a:cd:54:e9:f3:f0:b4:b2:15:30: 92:a1:17:9f:d8:d7:e6:c0:f4:45:9c:14:ad:46:cb:6f:14:07: be:69:80:17:e7:6a:8f:1d:49:ab:ce:c4:e0:5e:3c:dd:12:35: 11:fe:c0:47:f2:bc:03:bc:97:2d:37:1d:8f:25:8c:b5:88:5e: c2:fb:26:15:61:2a:f0:a3:ef:c2:9e:bb:79:b1:60:44:69:52: ce:ff:6f:11:47:37:f1:4e:ed:27:af:ea:33:02:8f:f7:f5:49: 87:8f:d2:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5MzExMTAvBgNVBAUTKDE5OEM0MzY0Q0YwMzJDNzMwRDk1ODU4MzQ5ODIwOTZE NTBBNzUyQzkwHhcNMjUwNTAzMDUxMjE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YTViMy05MTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkZLWXC/is9Fb1LMfSOAF1nCzXIOekP3JFeB4wOzCbncOLVgQZJqfXSFlpYx5 zOWtT3V23Vr1aG++muDoct+UAA0qPZ6ttIjnCpDP8THFWNVBpd4TWDpLTMQP7RjS wOWt1FbLNCUmfSvgYFYtI8i540EoHsOAjD0xY1txLwKnVrt4aoaND+KhkmFejS8o Jw9UbDt+xgTXz+4g1LdTpz0xtgFlDrC8xRqG1lnhey5dC4/TFFHR4kzqf3Ywjmgu l1mJEnrDx4yosbjv4eWNzSkVItqka6J/z79FBcF7Q0BeEbeK+rlrNRzTRtN+C5mu 3mkCkDUHfvwlf0bKfkYDpVaZLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOVuOfPW lOOyrwaX7iiVYUT25zMGMB8GA1UdIwQYMBaAFBmMQ2TPAyxzDZWFg0mCCW1Qp1LJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzkzMS80QTI1QjZBMEY1 NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi9HWXhEWk04RExITU5sWVdEU1lJSmJWQ25V c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM5MzEvNEEyNUI2QTBGNTVEMTFFRTlCRTE5NzgwQzRGOUFFMDIvQkJFOUFFQzBG NTVGMTFFRUI2RjExNTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF1N/4wDQYJKoZIhvcNAQELBQADggEBALHnj0C07C3YenSh g6RL4DgTI8yeP/LG7RHnevM9xF16A/lssYG5Bpqre/J1YjI0dp7SMPPImfOMDOzL CZHUluD0WSYpxVyy808kGMu2HcvjKqOfKNrs4mM1X3CnKLTXlCgVHQeg16mqVBiu mFMrW3kIuXrp8x/+SY/vILr+oC+LZLChV4xyBeN2KLQx7/QR3EoTD7yiZXugWs1U 6fPwtLIVMJKhF5/Y1+bA9EWcFK1Gy28UB75pgBfnao8dSavOxOBePN0SNRH+wEfy vAO8ly03HY8ljLWIXsL7JhVhKvCj78Keu3mxYERpUs7/bxFHN/FO7Sev6jMCj/f1 SYeP0hQ= -----END CERTIFICATE-----Generated at Mon May 12 23:15:18 2025 by rpki-client