$ rpki-client -vvf rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/723F9406E9EC11EF9AC2151CC4F9AE02.roa File: 723F9406E9EC11EF9AC2151CC4F9AE02.roa (raw, json) Hash identifier: IU1Sto6R/eoM72dkcviucBTl2Wo6d0jfNJDSJ53kN6A= Subject key identifier: 59:B4:F5:F5:C6:B7:66:10:CD:82:C9:E1:AA:AB:A2:19:00:AD:1A:E4 Certificate issuer: /CN=A9110477/serialNumber=A9230AE990A0367AE59A0F21BFEEFECD95D74A81 Certificate serial: 02 Authority key identifier: A9:23:0A:E9:90:A0:36:7A:E5:9A:0F:21:BF:EE:FE:CD:95:D7:4A:81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/723F9406E9EC11EF9AC2151CC4F9AE02.roa Signing time: Thu 13 Feb 2025 09:25:21 +0000 ROA not before: Thu 13 Feb 2025 09:25:21 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137936 IP address blocks: 161.248.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.crl rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110477 Validity Not Before: Feb 13 09:25:21 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67adba81-822d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:08:f4:6a:44:ae:e7:c4:53:49:25:01:b6:83: ef:c5:b2:69:a2:3c:2b:7a:c5:e4:c9:ba:8f:7e:ac: ba:ad:d6:a9:22:a0:5a:cc:c6:15:a4:b1:42:8e:73: 2d:ae:06:ae:0b:61:df:b8:d4:99:be:01:8d:4e:c5: 2f:40:d4:a3:34:88:ff:bb:09:a9:ee:6f:79:ac:df: 17:48:9d:ae:77:a8:7e:ec:21:67:48:08:3a:85:85: fa:a7:81:5a:bb:70:4d:ed:34:b0:91:66:5b:17:bb: af:07:2e:01:41:3b:16:61:71:d3:ff:f3:5d:b3:39: 1a:4c:ee:f8:e4:c6:2c:1c:df:f3:12:fa:67:1c:99: 38:4d:d7:2f:32:74:23:76:70:31:fa:21:b4:8a:f8: bd:9f:1a:cf:47:16:f2:a4:ad:21:93:ae:c4:e7:a0: 84:69:07:1d:bf:45:8b:05:98:3d:41:2c:cf:1a:8b: 7e:91:a9:27:43:b8:dc:0b:bc:32:01:6a:f7:15:40: 19:62:e3:04:b2:cc:d1:8f:3e:29:cd:55:6d:dd:fe: 39:ea:30:a7:38:f5:e3:02:1c:55:f1:5e:e3:a1:5e: 38:2a:88:ee:7f:00:7c:86:17:90:82:56:0a:28:08: 6b:6e:16:48:e6:1e:14:7a:56:ba:14:b2:08:cc:9d: a2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B4:F5:F5:C6:B7:66:10:CD:82:C9:E1:AA:AB:A2:19:00:AD:1A:E4 X509v3 Authority Key Identifier: keyid:A9:23:0A:E9:90:A0:36:7A:E5:9A:0F:21:BF:EE:FE:CD:95:D7:4A:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/723F9406E9EC11EF9AC2151CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.36.0/24 Signature Algorithm: sha256WithRSAEncryption cb:67:bd:5d:f3:bb:1c:17:7d:be:a2:f5:fb:bc:3b:3d:66:bb: 78:dc:23:42:24:2e:93:4d:00:8b:ac:e4:bb:dc:5a:94:75:44: 11:b5:4b:10:41:8e:51:c2:19:cb:54:91:76:f6:7e:49:25:fc: a5:99:62:c8:ac:b0:9a:69:84:a3:c5:e1:a7:74:28:6c:0d:24: 43:34:c0:e0:52:fa:76:50:fd:0a:db:a1:7a:d3:ca:5d:0d:7f: fb:ec:4c:d4:15:64:21:00:b4:72:85:a6:ab:12:78:fd:6c:d8: 85:9a:7a:b4:41:69:d5:49:a3:a1:0e:b9:72:b4:03:f0:f5:bb: 86:bc:29:1e:da:19:24:83:62:ed:a8:e3:39:f4:8f:e5:b8:79: fe:8b:6f:37:ce:49:f5:99:4a:eb:79:fa:39:21:68:a4:6c:30: 1a:0a:41:d1:81:11:5b:1e:28:2a:68:b8:ba:e9:ec:cc:cc:bb: 30:47:af:d3:f3:9b:e5:fe:6f:96:a2:61:49:ee:a7:77:31:3d: f5:69:20:6d:77:bb:e0:72:b4:6b:01:6a:de:89:1d:b0:52:4d: 98:d7:d2:e0:48:52:6f:e3:69:b1:dd:43:d8:5f:3c:50:65:5f: 1b:c3:0a:91:79:fd:6e:fa:1f:6b:48:64:eb:76:e9:d2:97:b3: cc:ff:ba:c2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDQ3NzExMC8GA1UEBRMoQTkyMzBBRTk5MEEwMzY3QUU1OUEwRjIxQkZFRUZFQ0Q5 NUQ3NEE4MTAeFw0yNTAyMTMwOTI1MjFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWRiYTgxLTgyMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaCPRqRK7nxFNJJQG2g+/FsmmiPCt6xeTJuo9+rLqt1qkioFrMxhWksUKOcy2u Bq4LYd+41Jm+AY1OxS9A1KM0iP+7Canub3ms3xdIna53qH7sIWdICDqFhfqngVq7 cE3tNLCRZlsXu68HLgFBOxZhcdP/812zORpM7vjkxiwc3/MS+mccmThN1y8ydCN2 cDH6IbSK+L2fGs9HFvKkrSGTrsTnoIRpBx2/RYsFmD1BLM8ai36RqSdDuNwLvDIB avcVQBli4wSyzNGPPinNVW3d/jnqMKc49eMCHFXxXuOhXjgqiO5/AHyGF5CCVgoo CGtuFkjmHhR6VroUsgjMnaI/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWbT19ca3 ZhDNgsnhqquiGQCtGuQwHwYDVR0jBBgwFoAUqSMK6ZCgNnrlmg8hv+7+zZXXSoEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwNDc3LzREMjdEMUNDRTlF OTExRUZCNTAyQTU1RkM0RjlBRTAyL3FTTUs2WkNnTm5ybG1nOGh2LTctelpYWFNv RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcVNNSzZaQ2dObnJsbWc4aHYtNy16WlhYU29FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDQ3Ny80RDI3RDFDQ0U5RTkxMUVGQjUwMkE1NUZDNEY5QUUwMi83MjNGOTQwNkU5 RUMxMUVGOUFDMjE1MUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH4JDANBgkqhkiG9w0BAQsFAAOCAQEAy2e9XfO7HBd9vqL1 +7w7PWa7eNwjQiQuk00Ai6zku9xalHVEEbVLEEGOUcIZy1SRdvZ+SSX8pZliyKyw mmmEo8Xhp3QobA0kQzTA4FL6dlD9CtuhetPKXQ1/++xM1BVkIQC0coWmqxJ4/WzY hZp6tEFp1UmjoQ65crQD8PW7hrwpHtoZJINi7ajjOfSP5bh5/otvN85J9ZlK63n6 OSFopGwwGgpB0YERWx4oKmi4uunszMy7MEev0/Ob5f5vlqJhSe6ndzE99WkgbXe7 4HK0awFq3okdsFJNmNfS4EhSb+Npsd1D2F88UGVfG8MKkXn9bvofa0hk63bp0pez zP+6wg== -----END CERTIFICATE-----Generated at Tue Apr 8 19:08:39 2025 by rpki-client