$ rpki-client -vvf rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/B1C9E322E9EE11EF9D68D841C4F9AE02.roa File: B1C9E322E9EE11EF9D68D841C4F9AE02.roa (raw, json) Hash identifier: ALIstNSOUyPJoG6tUF7wdbXN7LDhADIjhA1ktsIa/iA= Subject key identifier: 3F:F3:53:F6:F5:95:5C:C8:51:C5:9C:E4:10:C4:14:2A:52:92:18:2F Certificate issuer: /CN=A9110477/serialNumber=A9230AE990A0367AE59A0F21BFEEFECD95D74A81 Certificate serial: 04 Authority key identifier: A9:23:0A:E9:90:A0:36:7A:E5:9A:0F:21:BF:EE:FE:CD:95:D7:4A:81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/B1C9E322E9EE11EF9D68D841C4F9AE02.roa Signing time: Thu 13 Feb 2025 09:41:27 +0000 ROA not before: Thu 13 Feb 2025 09:41:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9658 IP address blocks: 161.248.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.crl rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110477 Validity Not Before: Feb 13 09:41:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67adbe46-5ccc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c3:9d:4c:11:75:18:95:e6:c6:62:a0:fd:cf: 08:04:eb:a2:e9:c4:63:36:f0:f0:03:c2:73:0a:bb: 34:f7:52:0f:25:83:ec:d9:46:e8:d6:20:19:a4:a3: de:9c:0f:67:ba:01:72:3f:c3:0f:fc:94:80:0a:a5: 88:2b:de:b4:d9:48:54:1a:61:f3:91:88:b5:0d:be: b8:79:22:58:a6:3b:e8:94:5e:a8:5b:f8:f7:ca:55: 9e:c3:c2:35:0c:d2:43:38:95:37:2a:d7:e2:d4:73: 22:1e:3b:f4:f7:10:24:48:f3:f7:d0:2f:86:8d:08: d0:4b:9c:06:2b:66:97:71:b8:cf:f8:9f:10:cd:fd: 82:a8:c7:3f:78:4b:4d:b9:a2:a2:2e:34:3d:48:63: 31:54:91:7f:db:77:f9:d1:9d:02:b9:2c:b2:c7:81: 1e:11:2d:96:fa:a6:b6:2d:38:08:e6:bf:90:ff:87: 21:16:e9:dd:36:d6:d0:01:7c:31:52:90:5f:9a:ca: 2a:62:77:34:c1:f4:06:44:0a:0e:69:63:95:42:de: 1a:57:cc:2b:20:0b:31:70:99:9d:40:0a:47:0e:6b: 81:07:cd:24:af:53:61:73:b8:29:c6:f6:3d:18:a3: 7e:53:18:19:63:d3:2f:a1:50:11:0e:be:f2:b6:7f: 04:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F3:53:F6:F5:95:5C:C8:51:C5:9C:E4:10:C4:14:2A:52:92:18:2F X509v3 Authority Key Identifier: keyid:A9:23:0A:E9:90:A0:36:7A:E5:9A:0F:21:BF:EE:FE:CD:95:D7:4A:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/B1C9E322E9EE11EF9D68D841C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.36.0/24 Signature Algorithm: sha256WithRSAEncryption 73:cf:de:b9:14:a1:61:be:a2:3e:7e:97:7f:1b:68:6a:4e:10: e7:39:9e:f8:87:e4:5a:8f:be:f8:64:09:1f:0f:ff:0b:85:ee: dc:10:9b:89:88:b1:33:86:a3:ba:7c:2b:90:4a:e0:6e:90:8b: 97:91:19:63:20:58:dc:04:d1:84:ae:f2:72:53:ae:58:b7:36: 85:63:93:b0:7e:fb:8e:3f:02:3f:b2:1f:b7:7c:65:87:41:50: 7f:bd:6a:45:bd:15:56:a1:24:de:d4:9e:bb:31:dd:8c:c8:10: 76:b9:1b:9a:55:af:d9:e6:ea:0d:21:1c:b6:5f:18:48:71:30: 80:10:fb:49:37:d8:bf:32:c8:0d:63:f1:67:23:06:b5:90:c2: 9f:4f:d5:1a:40:f7:42:2e:f5:2e:25:8d:18:0a:6a:87:b7:ee: fd:ae:58:14:09:df:82:22:e7:76:2e:44:99:46:51:c3:c1:cb: a2:a0:72:c4:5c:f6:08:2f:ef:03:91:6f:44:d6:91:6c:f8:77: 07:6c:d4:5b:60:73:93:2a:9e:df:82:07:a0:ed:71:10:aa:46: e1:b6:45:90:e9:d6:16:c5:20:01:bf:9e:08:66:9b:b3:b9:0a: 0f:47:11:8f:5e:42:4a:bb:4b:08:5e:ef:f7:1c:ac:b4:86:16: 9c:b8:48:e4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDQ3NzExMC8GA1UEBRMoQTkyMzBBRTk5MEEwMzY3QUU1OUEwRjIxQkZFRUZFQ0Q5 NUQ3NEE4MTAeFw0yNTAyMTMwOTQxMjdaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWRiZTQ2LTVjY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGw51MEXUYlebGYqD9zwgE66LpxGM28PADwnMKuzT3Ug8lg+zZRujWIBmko96c D2e6AXI/ww/8lIAKpYgr3rTZSFQaYfORiLUNvrh5IlimO+iUXqhb+PfKVZ7DwjUM 0kM4lTcq1+LUcyIeO/T3ECRI8/fQL4aNCNBLnAYrZpdxuM/4nxDN/YKoxz94S025 oqIuND1IYzFUkX/bd/nRnQK5LLLHgR4RLZb6prYtOAjmv5D/hyEW6d021tABfDFS kF+ayipidzTB9AZECg5pY5VC3hpXzCsgCzFwmZ1ACkcOa4EHzSSvU2FzuCnG9j0Y o35TGBlj0y+hUBEOvvK2fwSFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUP/NT9vWV XMhRxZzkEMQUKlKSGC8wHwYDVR0jBBgwFoAUqSMK6ZCgNnrlmg8hv+7+zZXXSoEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwNDc3LzREMjdEMUNDRTlF OTExRUZCNTAyQTU1RkM0RjlBRTAyL3FTTUs2WkNnTm5ybG1nOGh2LTctelpYWFNv RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcVNNSzZaQ2dObnJsbWc4aHYtNy16WlhYU29FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDQ3Ny80RDI3RDFDQ0U5RTkxMUVGQjUwMkE1NUZDNEY5QUUwMi9CMUM5RTMyMkU5 RUUxMUVGOUQ2OEQ4NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH4JDANBgkqhkiG9w0BAQsFAAOCAQEAc8/euRShYb6iPn6X fxtoak4Q5zme+IfkWo+++GQJHw//C4Xu3BCbiYixM4ajunwrkErgbpCLl5EZYyBY 3ATRhK7yclOuWLc2hWOTsH77jj8CP7Ift3xlh0FQf71qRb0VVqEk3tSeuzHdjMgQ drkbmlWv2ebqDSEctl8YSHEwgBD7STfYvzLIDWPxZyMGtZDCn0/VGkD3Qi71LiWN GApqh7fu/a5YFAnfgiLndi5EmUZRw8HLoqByxFz2CC/vA5FvRNaRbPh3B2zUW2Bz kyqe34IHoO1xEKpG4bZFkOnWFsUgAb+eCGabs7kKD0cRj15CSrtLCF7v9xystIYW nLhI5A== -----END CERTIFICATE-----Generated at Tue Apr 8 21:49:47 2025 by rpki-client