$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa File: 453489B8BE6311EE90BF9241C4F9AE02.roa (raw, json) Hash identifier: bqFmiv55QKtXboSAyhppicmxMvI2sf59cazaYPcU9EY= Subject key identifier: CB:D7:61:2A:BF:4B:14:5B:01:11:E5:4C:FD:EB:9A:A8:5B:3C:46:B5 Certificate issuer: /CN=A9144F59/serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Certificate serial: 1683 Authority key identifier: C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa Signing time: Wed 04 Dec 2024 16:54:28 +0000 ROA not before: Wed 04 Dec 2024 16:54:28 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 152326 IP address blocks: 110.235.159.0/24 maxlen: 24 2400:6a80:8660::/46 maxlen: 46 2400:6a80:8664::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5763 (0x1683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59 Validity Not Before: Dec 4 16:54:28 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67508944-898d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:05:6d:e2:a8:bb:5f:7e:fe:6e:25:2e:03:e8: 7a:37:68:0b:d3:4d:c2:9d:e7:d5:af:a0:7c:f6:2e: fc:9f:4a:36:0d:c8:f9:f6:22:46:81:4b:e5:90:16: 83:ce:f7:ff:fc:57:41:d8:e3:b9:ac:04:b3:46:64: 29:2a:76:0a:56:86:ec:ed:0a:22:36:ad:e5:32:29: d9:18:a5:86:d9:04:e7:01:40:e5:b7:b6:86:72:bc: 1a:e4:36:51:2b:f2:bb:cd:b5:dc:8a:9e:bd:9b:bc: d1:f4:f1:81:ef:e4:d8:2c:11:57:be:7a:2e:0b:3e: b0:44:94:a6:e3:d0:31:97:84:0e:55:fb:96:89:8e: 91:10:cf:bb:62:ba:ac:d1:e9:b1:46:1e:ae:03:92: 62:78:4c:73:dc:a1:0f:08:7e:57:a1:68:6d:ac:c8: f4:2c:4e:70:0c:cb:ae:3b:7e:d4:58:c3:09:52:82: d2:7c:f2:7a:b9:8b:64:2a:7d:2a:4f:db:7f:c8:92: 1e:ba:83:80:ff:eb:53:ac:82:10:b6:cb:ad:56:83: 66:b1:c0:2b:52:a5:7e:d7:e1:a1:fa:f3:5d:8f:88: 7e:26:99:26:e0:cc:80:3e:be:23:34:cc:15:d1:e5: 17:0e:13:e4:a5:a2:cb:09:73:6c:74:7d:31:56:83: ad:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D7:61:2A:BF:4B:14:5B:01:11:E5:4C:FD:EB:9A:A8:5B:3C:46:B5 X509v3 Authority Key Identifier: keyid:C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.235.159.0/24 IPv6: 2400:6a80:8660::/45 Signature Algorithm: sha256WithRSAEncryption 51:67:14:76:c8:97:ab:59:ae:c2:26:5e:f6:c4:88:7e:8c:1e: 9d:e3:f3:6f:45:5d:1f:ef:14:33:9c:53:9a:ab:d2:0c:59:e5: 57:ef:ca:fb:21:5b:77:84:20:9a:d2:62:ab:97:5d:34:7b:4a: b5:32:3e:a0:cd:57:d9:30:f3:00:e8:0b:b5:d7:5d:1d:85:90: 8c:db:7e:69:3d:1e:64:81:a8:65:7c:91:7e:de:72:71:62:9c: dd:0e:7b:85:6d:a5:3e:6f:30:4d:93:a1:8e:d5:44:31:a5:7b: 6f:6b:d7:53:94:45:da:99:e2:b5:09:a7:a0:db:6c:0e:fd:f9: 87:9d:b6:04:89:54:3f:76:00:64:5b:d7:d5:02:0d:0a:22:42: 48:4c:1e:ca:81:99:e3:8f:a1:cf:cf:44:f5:2f:48:d4:a9:a7: aa:ce:ab:1b:39:4c:b3:fa:70:3b:51:b8:32:bd:05:9c:43:97: e5:1f:3b:95:63:a8:ee:a5:31:2f:1f:e6:7f:bc:fb:a3:a5:e6: 12:b6:48:28:ca:2c:6b:4b:40:28:25:7b:34:bd:40:5b:8f:45: 84:e5:81:17:1b:e7:80:82:09:b7:1d:9f:ee:40:9e:0c:b3:fa: 79:e3:b2:02:d5:79:41:44:7c:fa:b2:25:e9:34:dc:9f:ef:32: 33:ed:94:be -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICFoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKEM3QjI2NDczNTAzODBBNkEzNEUzNEUzMkNFRkUzNTE5 OTM3RTk3QzgwHhcNMjQxMjA0MTY1NDI4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwODk0NC04OThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQVt4qi7X37+biUuA+h6N2gL003CnefVr6B89i78n0o2Dcj59iJGgUvlkBaD zvf//FdB2OO5rASzRmQpKnYKVobs7QoiNq3lMinZGKWG2QTnAUDlt7aGcrwa5DZR K/K7zbXcip69m7zR9PGB7+TYLBFXvnouCz6wRJSm49Axl4QOVfuWiY6REM+7Yrqs 0emxRh6uA5JieExz3KEPCH5XoWhtrMj0LE5wDMuuO37UWMMJUoLSfPJ6uYtkKn0q T9t/yJIeuoOA/+tTrIIQtsutVoNmscArUqV+1+Gh+vNdj4h+Jpkm4MyAPr4jNMwV 0eUXDhPkpaLLCXNsdH0xVoOt2QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMvXYSq/ SxRbARHlTP3rmqhbPEa1MB8GA1UdIwQYMBaAFMeyZHNQOApqNONOMs7+NRmTfpfI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80Qjk1OEJDRTAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi94N0prYzFBNENtbzA0MDR5enY0MUdaTi1s OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3SmtjMUE0Q21vMDQwNHl6djQxR1pOLWw4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRGNTkvNEI5NThCQ0UwMENCMTFFOEJFQjFFRjEwQzRGOUFFMDIvNDUzNDg5QjhC RTYzMTFFRTkwQkY5MjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABu658wDwQCAAIwCQMHAyQAaoCGYDANBgkqhkiG9w0BAQsF AAOCAQEAUWcUdsiXq1muwiZe9sSIfowenePzb0VdH+8UM5xTmqvSDFnlV+/K+yFb d4QgmtJiq5ddNHtKtTI+oM1X2TDzAOgLtdddHYWQjNt+aT0eZIGoZXyRft5ycWKc 3Q57hW2lPm8wTZOhjtVEMaV7b2vXU5RF2pnitQmnoNtsDv35h522BIlUP3YAZFvX 1QINCiJCSEweyoGZ44+hz89E9S9I1Kmnqs6rGzlMs/pwO1G4Mr0FnEOX5R87lWOo 7qUxLx/mf7z7o6XmErZIKMosa0tAKCV7NL1AW49FhOWBFxvngIIJtx2f7kCeDLP6 eeOyAtV5QUR8+rIl6TTcn+8yM+2Uvg== -----END CERTIFICATE-----Generated at Sat Apr 5 07:21:05 2025 by rpki-client