$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/082AF934296111F0B256CB22C4F9AE02.roa File: 082AF934296111F0B256CB22C4F9AE02.roa (raw, json) Hash identifier: x7jEc3F5uLywEeO19+V6DG33dw4bc7+FJ1eH2DiZ7+0= Subject key identifier: 8E:EA:7E:63:DD:1D:1A:4D:55:0D:59:2A:DB:BF:D0:5B:F1:D0:61:63 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 26BC Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/082AF934296111F0B256CB22C4F9AE02.roa Signing time: Wed 07 May 2025 09:55:50 +0000 ROA not before: Wed 07 May 2025 09:55:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9009 IP address blocks: 103.151.27.0/24 maxlen: 24 113.203.224.0/24 maxlen: 24 115.167.77.0/24 maxlen: 24 175.110.81.0/24 maxlen: 24 175.110.83.0/24 maxlen: 24 202.92.18.0/24 maxlen: 24 223.29.235.0/24 maxlen: 24 223.29.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9916 (0x26bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: May 7 09:55:50 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=681b2e26-cc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:21:c4:17:31:7e:a9:14:29:87:1b:10:ec:6c: d0:41:4f:3b:9c:71:8b:9b:bc:31:c2:22:4b:f0:cc: d9:76:3a:19:c0:5d:52:6a:d5:90:d2:7b:76:eb:0b: c2:96:89:e7:c8:2d:71:2e:dd:25:eb:36:ad:10:99: 03:ac:f1:06:6d:5b:bd:d0:df:77:d0:de:7d:45:fa: ab:79:80:25:73:a3:94:a4:14:86:98:10:0c:e0:cb: 86:83:f3:2a:b2:bf:cc:cd:7c:06:e9:a6:b8:11:e1: 30:a8:10:13:6e:b2:a7:15:8a:fe:aa:4d:fa:12:8e: 38:52:d4:70:57:b1:a4:23:c8:33:dd:04:3f:d9:61: 92:b6:b1:38:91:ee:7d:cd:5a:be:4e:68:bc:29:b1: 58:7f:20:84:fa:80:e9:30:91:2f:26:2f:95:be:43: ba:47:07:0a:bc:cb:c8:94:bd:20:ca:b7:86:f0:78: 45:e5:68:01:f7:af:4c:e0:a9:62:64:54:e0:85:6d: 35:38:ac:37:95:61:39:97:ea:5f:19:bc:c2:2f:df: 67:de:fa:2d:d3:30:0d:a0:e2:c1:d9:90:90:93:85: 41:55:5e:92:71:3b:08:fb:86:f1:05:a5:66:56:c9: 0b:6e:bc:02:33:00:c6:92:f9:bb:04:46:5b:a8:fe: 42:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:EA:7E:63:DD:1D:1A:4D:55:0D:59:2A:DB:BF:D0:5B:F1:D0:61:63 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/082AF934296111F0B256CB22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.27.0/24 113.203.224.0/24 115.167.77.0/24 175.110.81.0/24 175.110.83.0/24 202.92.18.0/24 223.29.235.0/24 223.29.238.0/24 Signature Algorithm: sha256WithRSAEncryption 33:36:02:0a:1d:1e:2f:16:1e:f5:16:a6:1a:bf:41:4c:c5:46: ae:a7:41:d9:2c:43:f8:4d:b7:61:d4:e1:fc:74:90:a6:9a:b7: 01:f5:de:59:ea:48:ea:a3:13:27:17:a5:24:58:c0:1e:28:07: cb:b9:ed:f9:7f:cb:e7:68:75:b6:8b:9c:3a:a2:5d:7f:e0:bc: 16:e6:a3:70:02:0c:3a:bf:c8:79:23:73:dc:bd:17:bd:42:65: 72:13:f3:a4:89:a3:92:a4:dd:75:b4:4a:19:0e:21:5a:53:16: 6d:e5:b3:8c:16:5e:fe:0f:86:dd:51:d8:95:a6:85:c8:96:8a: e4:44:cf:7c:27:4a:7e:31:b1:fc:a6:3e:ea:91:56:64:b1:99: 67:88:ae:41:ed:25:8a:4b:cd:c0:6f:7d:42:56:f1:8d:ec:0e: 19:7a:ab:4f:81:e5:5c:ca:ab:99:cb:2c:23:df:3c:d0:a2:f5: 13:72:7e:24:a9:67:ae:4b:1c:c4:e8:ee:5d:65:f9:45:61:81: 48:21:07:62:97:6a:8a:89:9c:b2:94:dd:d2:73:e1:9d:7b:b8: 84:3e:ba:3d:d4:62:6c:45:06:35:0c:9e:2c:1e:69:0c:08:b2: 7e:0c:e6:7b:da:40:02:b7:70:ed:37:11:9a:ba:ad:92:35:0f: a6:e3:82:59 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICJrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwNTA3MDk1NTUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFiMmUyNi1jYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiHEFzF+qRQphxsQ7GzQQU87nHGLm7wxwiJL8MzZdjoZwF1SatWQ0nt26wvC lonnyC1xLt0l6zatEJkDrPEGbVu90N930N59RfqreYAlc6OUpBSGmBAM4MuGg/Mq sr/MzXwG6aa4EeEwqBATbrKnFYr+qk36Eo44UtRwV7GkI8gz3QQ/2WGStrE4ke59 zVq+Tmi8KbFYfyCE+oDpMJEvJi+VvkO6RwcKvMvIlL0gyreG8HhF5WgB969M4Kli ZFTghW01OKw3lWE5l+pfGbzCL99n3vot0zANoOLB2ZCQk4VBVV6ScTsI+4bxBaVm VskLbrwCMwDGkvm7BEZbqP5CdwIDAQABo4ICvzCCArswHQYDVR0OBBYEFI7qfmPd HRpNVQ1ZKtu/0Fvx0GFjMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMDgyQUY5MzQy OTYxMTFGMEIyNTZDQjIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBABnlxsDBABxy+ADBABzp00DBACvblEDBACvblMDBADKXBID BADfHesDBADfHe4wDQYJKoZIhvcNAQELBQADggEBADM2AgodHi8WHvUWphq/QUzF Rq6nQdksQ/hNt2HU4fx0kKaatwH13lnqSOqjEycXpSRYwB4oB8u57fl/y+dodbaL nDqiXX/gvBbmo3ACDDq/yHkjc9y9F71CZXIT86SJo5Kk3XW0ShkOIVpTFm3ls4wW Xv4Pht1R2JWmhciWiuREz3wnSn4xsfymPuqRVmSxmWeIrkHtJYpLzcBvfUJW8Y3s Dhl6q0+B5VzKq5nLLCPfPNCi9RNyfiSpZ65LHMTo7l1l+UVhgUghB2KXaoqJnLKU 3dJz4Z17uIQ+uj3UYmxFBjUMniweaQwIsn4M5nvaQAK3cO03EZq6rZI1D6bjglk= -----END CERTIFICATE-----Generated at Tue May 13 11:44:49 2025 by rpki-client