$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/C82D6ACC969A11EB9BC1FA1BC4F9AE02.roa File: C82D6ACC969A11EB9BC1FA1BC4F9AE02.roa (raw, json) Hash identifier: rNmuk0Zw99f4Kzt4k/QReGgYLjG+b50IvgI4wD110cw= Subject key identifier: 1A:F3:4C:F8:FA:BF:37:49:68:99:DB:2B:1E:C5:CC:6B:15:B3:97:C2 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2787 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/C82D6ACC969A11EB9BC1FA1BC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:34 +0000 ROA not before: Tue 08 Apr 2025 15:53:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139867 IP address blocks: 124.107.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10119 (0x2787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5467e-19e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:af:85:bb:aa:94:99:d8:7f:58:31:7d:ad:33: a8:13:f9:a2:65:ed:5c:43:96:dd:14:68:ef:b6:01: c4:13:78:60:7e:a4:eb:6b:4d:98:b9:e1:62:66:c6: a8:b0:e3:0f:67:d3:45:42:dc:21:89:9c:67:e4:64: b8:74:c0:f0:dc:68:93:12:b0:35:e2:83:7c:a7:db: 1f:da:eb:35:1d:7e:62:91:40:86:75:b0:06:9b:9a: c5:63:33:16:e1:5a:87:b6:29:19:5b:e0:02:8b:c0: bb:bf:56:2d:a8:9e:b5:77:ad:24:ed:d4:6d:2b:19: 5c:71:50:9a:aa:73:73:55:f0:85:34:5d:73:d6:09: 09:a4:ab:fb:dc:0e:78:68:8a:6f:40:9f:69:cb:f9: 8b:bb:8a:ef:4d:cd:77:6d:e4:f0:b1:1a:4a:cb:33: 54:84:c4:81:a9:c4:32:2a:bd:16:b6:5c:1c:5d:a0: cc:56:01:94:d8:94:b3:a5:ca:3e:33:9c:0d:87:90: 20:5b:c2:b7:dd:6c:cb:c8:04:81:43:31:af:11:e5: ab:c3:43:c7:bb:83:33:e3:25:44:5e:c1:af:07:97: 01:ae:2f:53:78:88:7d:d3:f5:e3:1c:97:6b:da:83: 3a:68:bf:1f:4b:10:54:5c:a4:1e:0c:81:25:13:f5: 98:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F3:4C:F8:FA:BF:37:49:68:99:DB:2B:1E:C5:CC:6B:15:B3:97:C2 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/C82D6ACC969A11EB9BC1FA1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.107.226.0/24 Signature Algorithm: sha256WithRSAEncryption a9:05:2f:30:9a:bf:52:d0:fc:ee:2f:40:6e:63:c0:cf:0a:54: b1:e1:37:ec:c6:64:eb:1d:45:ea:08:8f:69:f1:bb:95:7e:ed: da:50:32:2b:20:f6:46:8d:c0:c5:4c:12:e4:0a:dc:63:67:33: ba:ab:68:c6:a1:c4:b6:46:df:00:30:29:7f:a1:50:c7:2a:a0: 86:4c:ef:b3:9f:86:69:9c:15:06:21:67:9a:ea:e1:9e:02:3d: 64:06:ae:38:7f:ce:f9:a5:18:af:be:74:20:49:9e:c4:ab:e8: 11:e5:90:5b:c2:8b:3d:f0:ce:73:8f:6f:b2:74:42:56:b0:e0: ba:7a:07:f5:80:58:ee:ef:8a:b7:c3:ba:d2:f5:d6:37:78:41: 8f:2e:0a:04:f6:c4:ba:ed:7e:dd:ed:c1:0c:21:91:4d:92:36: 58:1d:de:2b:33:50:7d:c3:47:37:e5:a0:93:74:a2:3b:10:84: d5:de:27:51:20:8c:32:50:8c:d9:c8:6b:af:0d:10:bc:43:74: 2a:ab:51:83:50:b2:89:60:5d:24:1c:72:60:f4:d7:5b:1b:33: fa:19:94:f5:d5:d4:9b:14:5a:0e:c7:fb:d6:ed:69:e8:0f:cc: 7a:3c:43:e0:cb:e3:bd:80:76:5e:21:07:0a:1d:7f:4e:cf:50: 2c:65:95:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY3ZS0xOWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6+Fu6qUmdh/WDF9rTOoE/miZe1cQ5bdFGjvtgHEE3hgfqTra02YueFiZsao sOMPZ9NFQtwhiZxn5GS4dMDw3GiTErA14oN8p9sf2us1HX5ikUCGdbAGm5rFYzMW 4VqHtikZW+ACi8C7v1YtqJ61d60k7dRtKxlccVCaqnNzVfCFNF1z1gkJpKv73A54 aIpvQJ9py/mLu4rvTc13beTwsRpKyzNUhMSBqcQyKr0WtlwcXaDMVgGU2JSzpco+ M5wNh5AgW8K33WzLyASBQzGvEeWrw0PHu4Mz4yVEXsGvB5cBri9TeIh90/XjHJdr 2oM6aL8fSxBUXKQeDIElE/WYOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBrzTPj6 vzdJaJnbKx7FzGsVs5fCMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQzgyRDZBQ0M5 NjlBMTFFQjlCQzFGQTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB8a+IwDQYJKoZIhvcNAQELBQADggEBAKkFLzCav1LQ/O4v QG5jwM8KVLHhN+zGZOsdReoIj2nxu5V+7dpQMisg9kaNwMVMEuQK3GNnM7qraMah xLZG3wAwKX+hUMcqoIZM77OfhmmcFQYhZ5rq4Z4CPWQGrjh/zvmlGK++dCBJnsSr 6BHlkFvCiz3wznOPb7J0Qlaw4Lp6B/WAWO7virfDutL11jd4QY8uCgT2xLrtft3t wQwhkU2SNlgd3iszUH3DRzfloJN0ojsQhNXeJ1EgjDJQjNnIa68NELxDdCqrUYNQ solgXSQccmD011sbM/oZlPXV1JsUWg7H+9btaegPzHo8Q+DL472Adl4hBwodf07P UCxllfU= -----END CERTIFICATE-----Generated at Mon May 12 15:45:34 2025 by rpki-client