$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/D31DA3FAE55311EFA195DC68C4F9AE02.roa File: D31DA3FAE55311EFA195DC68C4F9AE02.roa (raw, json) Hash identifier: GYS8k9UwWROEU4CPy3zJZbjxwuE5OSbNBFEHxATP3jE= Subject key identifier: 04:EB:CB:95:EE:D8:38:F6:0A:45:A8:8D:BD:93:63:80:4C:2C:B3:F2 Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Certificate serial: 40 Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/D31DA3FAE55311EFA195DC68C4F9AE02.roa Signing time: Fri 07 Feb 2025 13:02:46 +0000 ROA not before: Fri 07 Feb 2025 13:02:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149994 IP address blocks: 161.248.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1 Validity Not Before: Feb 7 13:02:46 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67a60476-cc47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ae:cd:30:49:91:2a:12:d2:32:62:00:49:52: 0b:ab:02:4b:31:36:1f:a7:dd:36:53:ff:61:a9:7b: cc:90:d5:dc:21:c5:bf:9b:a7:7c:41:d4:29:20:c5: 4b:71:a8:97:f3:7a:55:84:6a:30:54:5f:e5:01:7f: c3:e1:4a:ff:e7:7b:68:53:75:2a:3e:15:bc:59:93: e5:2e:8b:dc:1c:17:64:8a:b1:38:41:68:26:32:99: aa:e6:99:83:3c:74:79:80:ed:75:b4:f2:75:67:b6: 11:30:fa:f7:47:bb:a8:ec:f1:54:4b:ac:8e:a6:fb: 86:93:b4:0f:d1:d8:8c:76:90:68:26:75:bb:8d:9a: 56:25:91:8b:4f:56:38:2b:d8:e8:c3:b1:82:17:52: 3a:00:64:ed:cb:a5:65:75:9c:70:43:60:b0:96:39: 5f:c2:21:6f:f5:ca:b1:fe:75:ef:d3:5f:99:fa:8e: 8c:c7:9b:8d:81:ee:98:85:47:0b:63:60:4d:18:db: 0c:56:a4:42:5e:35:94:fa:50:2d:e4:09:b2:27:44: 42:4f:9c:9d:df:d3:68:39:0e:07:bf:5b:e7:c5:78: af:3c:84:e3:3f:90:4f:ce:10:20:9d:e2:af:d7:b4: 0d:58:65:dd:00:6d:36:bf:e1:98:bd:32:e0:fd:18: f4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:EB:CB:95:EE:D8:38:F6:0A:45:A8:8D:BD:93:63:80:4C:2C:B3:F2 X509v3 Authority Key Identifier: keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/D31DA3FAE55311EFA195DC68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.10.0/24 Signature Algorithm: sha256WithRSAEncryption 25:f7:90:6a:a5:90:76:e1:de:f1:2d:60:9e:e9:b7:bd:c3:ac: b3:7c:dd:e8:91:85:a8:f7:e2:f0:1f:0a:5f:0b:ab:79:fe:a1: 00:d4:8f:87:7d:45:3a:80:92:e5:5f:09:f2:14:7b:7d:11:f9: 8b:c5:4d:c0:41:c8:ad:18:f3:45:17:3f:41:7c:07:4c:ff:63: e1:3c:49:5e:d0:b9:7d:46:17:a6:9b:f9:7d:0f:82:22:ac:3a: 54:ac:d1:f7:34:68:fa:96:e3:38:46:3d:12:74:30:7d:54:c8: 97:b2:db:5e:66:e2:c2:ca:21:f6:14:ae:dc:78:d9:46:ab:f0: dd:3f:e4:1c:d0:80:62:01:6a:c4:f6:e0:0d:70:a8:61:4d:b6: f8:61:9f:46:e0:5f:7f:e5:ab:df:c5:6f:86:78:53:a2:e6:42: a4:68:b2:1d:6d:3b:2c:9f:44:60:ae:4e:2c:33:18:7c:1a:dd: 92:8c:a2:54:f9:28:7e:e0:e0:80:f3:31:7e:28:52:75:86:07: aa:f8:05:57:18:8a:19:36:94:8d:6d:a8:3b:86:ae:5e:0e:68: f2:a3:11:89:3f:a4:87:a7:00:d6:c6:5b:f1:a5:2b:a7:25:05: 56:d1:ca:0a:3d:63:0c:59:9f:4d:86:13:16:f4:d5:6d:81:91: 2c:92:f9:85 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjNDMTExMC8GA1UEBRMoNERDN0UyOEI1NDZGMkEwQjUzOEU4Q0RGODMyRDlBQTFG MzdDQzhFNDAeFw0yNTAyMDcxMzAyNDZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTYwNDc2LWNjNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7rs0wSZEqEtIyYgBJUgurAksxNh+n3TZT/2Gpe8yQ1dwhxb+bp3xB1CkgxUtx qJfzelWEajBUX+UBf8PhSv/ne2hTdSo+FbxZk+Uui9wcF2SKsThBaCYymarmmYM8 dHmA7XW08nVnthEw+vdHu6js8VRLrI6m+4aTtA/R2Ix2kGgmdbuNmlYlkYtPVjgr 2OjDsYIXUjoAZO3LpWV1nHBDYLCWOV/CIW/1yrH+de/TX5n6jozHm42B7piFRwtj YE0Y2wxWpEJeNZT6UC3kCbInREJPnJ3f02g5Dge/W+fFeK88hOM/kE/OECCd4q/X tA1YZd0AbTa/4Zi9MuD9GPQZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBOvLle7Y OPYKRaiNvZNjgEwss/IwHwYDVR0jBBgwFoAUTcfii1RvKgtTjozfgy2aofN8yOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyM0MxL0QwMzIwRUY4QkY0 RjExRUZCQ0Y2ODk0NEM0RjlBRTAyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVGNmaWkxUnZLZ3RUam96Zmd5MmFvZk44eU9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNDMS9EMDMyMEVGOEJGNEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9EMzFEQTNGQUU1 NTMxMUVGQTE5NURDNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH4CjANBgkqhkiG9w0BAQsFAAOCAQEAJfeQaqWQduHe8S1g num3vcOss3zd6JGFqPfi8B8KXwuref6hANSPh31FOoCS5V8J8hR7fRH5i8VNwEHI rRjzRRc/QXwHTP9j4TxJXtC5fUYXppv5fQ+CIqw6VKzR9zRo+pbjOEY9EnQwfVTI l7LbXmbiwsoh9hSu3HjZRqvw3T/kHNCAYgFqxPbgDXCoYU22+GGfRuBff+Wr38Vv hnhTouZCpGiyHW07LJ9EYK5OLDMYfBrdkoyiVPkofuDggPMxfihSdYYHqvgFVxiK GTaUjW2oO4auXg5o8qMRiT+kh6cA1sZb8aUrpyUFVtHKCj1jDFmfTYYTFvTVbYGR LJL5hQ== -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:13 2025 by rpki-client