$ rpki-client -vvf rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/85B249CA30AE11ECB675E112C4F9AE02.roa File: 85B249CA30AE11ECB675E112C4F9AE02.roa (raw, json) Hash identifier: 91ojNZdpc/d8WvpoycTwxLyqjQ15ZAvRlTJU6gSTdZU= Subject key identifier: C2:49:F5:3B:76:44:9E:C8:B3:5F:E7:24:38:29:74:C4:BE:46:A2:A5 Certificate issuer: /CN=A9145EFF/serialNumber=8E8C268F104709A66C8D6F620A5B9D93C19AF050 Certificate serial: 0463 Authority key identifier: 8E:8C:26:8F:10:47:09:A6:6C:8D:6F:62:0A:5B:9D:93:C1:9A:F0:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jowmjxBHCaZsjW9iCludk8Ga8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/85B249CA30AE11ECB675E112C4F9AE02.roa Signing time: Wed 11 Dec 2024 00:14:56 +0000 ROA not before: Wed 11 Dec 2024 00:14:56 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9744 IP address blocks: 175.41.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/jowmjxBHCaZsjW9iCludk8Ga8FA.crl rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/jowmjxBHCaZsjW9iCludk8Ga8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jowmjxBHCaZsjW9iCludk8Ga8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145EFF Validity Not Before: Dec 11 00:14:56 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6758d980-3352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:02:28:8f:ba:d5:26:9a:9d:c9:e0:ca:a0:29: fa:02:91:e4:85:80:44:e3:61:b5:56:ed:a1:64:47: f5:5b:45:4c:00:df:e5:20:78:10:25:a4:35:29:50: 02:6e:8c:41:ca:9a:25:5b:31:95:dd:b0:d9:0d:fb: 26:75:52:92:bc:cd:ee:ce:f9:89:4f:bd:c0:81:8e: 8c:45:1c:81:f0:2a:ae:18:e5:61:f0:c6:3b:81:0f: ca:56:48:7a:70:bc:65:29:77:f8:73:1c:13:70:24: 4b:7e:03:40:3d:86:0e:89:46:3e:45:a8:c9:48:6b: f4:31:99:90:2f:ef:e6:d0:bb:1f:0f:94:1b:31:89: cf:a9:87:c3:88:f3:cc:cd:2a:d5:11:e5:6b:14:12: bc:6c:df:84:9f:0d:ec:79:87:0e:4d:12:f8:b9:ac: 52:a8:8f:af:05:7c:0a:03:31:a9:85:38:99:53:eb: 36:95:3d:51:59:4d:e4:db:25:eb:70:e2:97:00:39: c7:1a:c1:fb:96:19:64:cc:f2:01:b3:02:71:18:3e: bc:a9:21:97:b7:c0:fb:9a:39:43:16:25:98:1a:8c: 9f:59:21:51:88:31:e9:20:0e:dd:8d:c7:8d:b1:08: fc:88:13:1c:35:d8:d1:18:f5:e8:fa:fb:ce:fd:74: 63:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:49:F5:3B:76:44:9E:C8:B3:5F:E7:24:38:29:74:C4:BE:46:A2:A5 X509v3 Authority Key Identifier: keyid:8E:8C:26:8F:10:47:09:A6:6C:8D:6F:62:0A:5B:9D:93:C1:9A:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/jowmjxBHCaZsjW9iCludk8Ga8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jowmjxBHCaZsjW9iCludk8Ga8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/85B249CA30AE11ECB675E112C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.41.16.0/20 Signature Algorithm: sha256WithRSAEncryption ce:51:8c:c9:a5:25:0a:c9:94:f7:e7:f3:a9:a8:72:db:66:ba: 8d:1c:a1:6d:12:00:dd:b0:af:f0:a7:51:49:ce:4e:90:a2:ae: e1:54:b4:06:97:34:9d:11:42:0f:d5:cf:33:7e:3b:4b:bf:24: d6:45:14:40:07:ab:52:2b:fc:f5:d3:96:0f:87:a0:d5:ce:9c: 9b:f9:5e:7e:ee:cd:80:2d:5d:77:65:25:f8:9d:82:a1:72:ca: 68:80:5a:80:48:59:5d:93:fc:d2:33:17:90:c6:55:94:73:cd: 1e:96:b4:5e:7a:5d:ec:a8:6a:cf:78:45:00:2c:59:95:67:96: 63:0e:5d:73:ef:36:7b:e0:da:e9:9e:5a:b4:17:a6:ce:99:fb: 0c:5e:6e:b6:65:fe:a3:82:6b:e3:8c:85:15:95:4e:bf:d6:a9: a0:d3:98:cc:7c:8d:44:1d:b8:b1:08:a2:ed:0e:3d:b4:02:e8: 71:eb:dc:a5:b5:bf:67:79:81:48:ca:af:84:23:d1:4c:03:1b: ff:e6:fc:ec:b6:a2:51:a5:25:2f:df:0d:64:7d:c1:ff:6b:59: c0:be:09:ab:a1:db:82:67:22:dd:3b:49:e8:b8:d4:95:4e:ba: f6:5b:6c:f8:1b:d6:ba:89:6a:b4:b3:82:7e:3b:a4:8c:1a:17: 6b:27:16:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVFRkYxMTAvBgNVBAUTKDhFOEMyNjhGMTA0NzA5QTY2QzhENkY2MjBBNUI5RDkz QzE5QUYwNTAwHhcNMjQxMjExMDAxNDU2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4ZDk4MC0zMzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAIoj7rVJpqdyeDKoCn6ApHkhYBE42G1Vu2hZEf1W0VMAN/lIHgQJaQ1KVAC boxBypolWzGV3bDZDfsmdVKSvM3uzvmJT73AgY6MRRyB8CquGOVh8MY7gQ/KVkh6 cLxlKXf4cxwTcCRLfgNAPYYOiUY+RajJSGv0MZmQL+/m0LsfD5QbMYnPqYfDiPPM zSrVEeVrFBK8bN+Enw3seYcOTRL4uaxSqI+vBXwKAzGphTiZU+s2lT1RWU3k2yXr cOKXADnHGsH7lhlkzPIBswJxGD68qSGXt8D7mjlDFiWYGoyfWSFRiDHpIA7djceN sQj8iBMcNdjRGPXo+vvO/XRjDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMJJ9Tt2 RJ7Is1/nJDgpdMS+RqKlMB8GA1UdIwQYMBaAFI6MJo8QRwmmbI1vYgpbnZPBmvBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUVGRi80NTE3RUNFODMw QUExMUVDODQ1RERENTBDNEY5QUUwMi9qb3dtanhCSENhWnNqVzlpQ2x1ZGs4R2E4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvd21qeEJIQ2Fac2pXOWlDbHVkazhHYThGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVFRkYvNDUxN0VDRTgzMEFBMTFFQzg0NURERDUwQzRGOUFFMDIvODVCMjQ5Q0Ez MEFFMTFFQ0I2NzVFMTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBASvKRAwDQYJKoZIhvcNAQELBQADggEBAM5RjMmlJQrJlPfn 86mocttmuo0coW0SAN2wr/CnUUnOTpCiruFUtAaXNJ0RQg/VzzN+O0u/JNZFFEAH q1Ir/PXTlg+HoNXOnJv5Xn7uzYAtXXdlJfidgqFyymiAWoBIWV2T/NIzF5DGVZRz zR6WtF56Xeyoas94RQAsWZVnlmMOXXPvNnvg2umeWrQXps6Z+wxebrZl/qOCa+OM hRWVTr/WqaDTmMx8jUQduLEIou0OPbQC6HHr3KW1v2d5gUjKr4Qj0UwDG//m/Oy2 olGlJS/fDWR9wf9rWcC+Cauh24JnIt07Sei41JVOuvZbbPgb1rqJarSzgn47pIwa F2snFv4= -----END CERTIFICATE-----Generated at Sat Apr 5 08:19:06 2025 by rpki-client