$ rpki-client -vvf rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/9E1A4B86526511EE869BEC82C4F9AE02.roa File: 9E1A4B86526511EE869BEC82C4F9AE02.roa (raw, json) Hash identifier: lOrA6k7sYmhjZNB1ZlbvSFLY4z9Dna+Fs7CLS+wxvaQ= Subject key identifier: BB:91:24:1C:8C:EE:99:1A:9C:61:A3:86:1B:98:E8:0C:59:EA:08:86 Certificate issuer: /CN=A9153646/serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06 Certificate serial: 06E9 Authority key identifier: 34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/9E1A4B86526511EE869BEC82C4F9AE02.roa Signing time: Sun 22 Dec 2024 18:26:29 +0000 ROA not before: Sun 22 Dec 2024 18:26:29 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 141731 IP address blocks: 223.29.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1769 (0x6e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153646 Validity Not Before: Dec 22 18:26:29 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=676859d5-df51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:cb:7f:bf:0a:71:33:3e:7d:b2:a2:a0:75: e0:08:e5:6b:ef:cb:50:4f:f3:1d:53:85:1b:a1:98: de:64:76:a4:6c:2d:69:3b:63:08:22:b4:ba:a3:0a: 90:00:d0:a5:64:01:2e:c5:24:53:56:ea:30:1f:ac: 42:f8:81:cd:c4:cb:99:e5:2d:d9:b2:20:c2:34:60: 54:51:5b:54:74:04:45:85:03:a4:5c:54:85:cb:11: 35:21:bb:53:30:4a:e0:61:d9:1b:b0:8d:02:30:b7: 41:5e:11:87:17:ab:b8:95:e1:2a:14:bf:fa:e3:81: c2:68:fe:dd:3c:3f:88:e0:5b:74:0a:a9:71:c4:5a: 53:10:1e:05:f2:a5:f2:85:62:19:3a:48:16:68:aa: 0a:9e:da:1a:c7:98:52:80:65:00:d1:48:54:5e:7e: b8:5c:81:c8:0c:1a:ea:d7:cf:e4:70:be:ed:04:c5: 7b:a4:31:bb:3e:26:79:31:b3:7b:7f:24:9f:ef:4a: a2:d8:71:bc:85:6a:e3:9c:1a:00:ce:01:e0:a5:48: 60:0a:e9:34:d0:5b:4d:f3:aa:01:d1:64:d9:2b:c6: cd:af:4c:5a:44:bc:43:d4:92:69:ab:66:45:70:a5: 05:1a:b0:68:52:fa:25:1e:8f:60:8b:9b:d7:d4:02: 62:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:91:24:1C:8C:EE:99:1A:9C:61:A3:86:1B:98:E8:0C:59:EA:08:86 X509v3 Authority Key Identifier: keyid:34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/9E1A4B86526511EE869BEC82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.29.214.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:dd:4e:80:da:a1:60:bb:a4:64:47:68:99:2c:a7:5c:c1:01: 13:ce:e1:f1:22:ae:b7:94:30:93:5d:96:c2:5c:b7:b1:4f:45: 24:c2:84:b2:d7:04:da:c8:4e:63:41:ff:21:49:81:04:85:b4: 70:88:db:34:fd:0f:0b:23:fc:9c:d7:34:4c:a1:88:49:fb:57: 54:b9:0b:a8:dc:06:c8:8b:fa:a5:12:bc:c3:d6:00:a8:99:0f: 54:05:d5:49:ef:2e:c0:24:7a:c2:91:ff:82:33:e1:69:2e:99: 9e:8d:49:5b:66:b8:dc:3f:d5:3a:f4:2d:ab:e7:2d:78:b9:d4: 74:24:64:65:bd:ac:02:b5:73:80:a8:bb:6a:b6:36:2d:85:89: b1:cd:ed:be:48:99:8d:38:4f:76:9e:cc:25:20:28:97:46:c0: b2:d4:8a:86:65:db:5e:c5:f3:fe:d3:b3:95:8c:4f:2c:dd:ed: 29:38:81:a3:f7:20:82:50:f1:85:ca:78:c1:e5:47:95:5f:c7: 33:9a:d9:fe:44:2b:ee:0b:c6:65:d4:0f:78:14:78:92:11:76: a1:ff:c0:ca:1d:be:3a:85:39:f7:e7:f9:e7:9d:66:22:75:10: ba:a3:a8:1c:91:ca:be:e6:ea:28:2e:3c:67:f8:f9:45:9b:ef: 5d:26:77:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2NDYxMTAvBgNVBAUTKDM0OTJFRkZFOTYyMkIxRkZGODgxNTk3MDAzNzYzQzFC QTI0QTFFMDYwHhcNMjQxMjIyMTgyNjI5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY4NTlkNS1kZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrnLf78KcTM+fbKioHXgCOVr78tQT/MdU4UboZjeZHakbC1pO2MIIrS6owqQ ANClZAEuxSRTVuowH6xC+IHNxMuZ5S3ZsiDCNGBUUVtUdARFhQOkXFSFyxE1IbtT MErgYdkbsI0CMLdBXhGHF6u4leEqFL/644HCaP7dPD+I4Ft0CqlxxFpTEB4F8qXy hWIZOkgWaKoKntoax5hSgGUA0UhUXn64XIHIDBrq18/kcL7tBMV7pDG7PiZ5MbN7 fySf70qi2HG8hWrjnBoAzgHgpUhgCuk00FtN86oB0WTZK8bNr0xaRLxD1JJpq2ZF cKUFGrBoUvolHo9gi5vX1AJi/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLuRJByM 7pkanGGjhhuY6AxZ6giGMB8GA1UdIwQYMBaAFDSS7/6WIrH/+IFZcAN2PBuiSh4G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzY0Ni82QjhFRkE1QUZG OTgxMUU5ODdDODBBNkFDNEY5QUUwMi9OSkx2X3BZaXNmXzRnVmx3QTNZOEc2SktI Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KTHZfcFlpc2ZfNGdWbHdBM1k4RzZKS0hnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM2NDYvNkI4RUZBNUFGRjk4MTFFOTg3QzgwQTZBQzRGOUFFMDIvOUUxQTRCODY1 MjY1MTFFRTg2OUJFQzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfHdYwDQYJKoZIhvcNAQELBQADggEBADzdToDaoWC7pGRH aJksp1zBARPO4fEirreUMJNdlsJct7FPRSTChLLXBNrITmNB/yFJgQSFtHCI2zT9 Dwsj/JzXNEyhiEn7V1S5C6jcBsiL+qUSvMPWAKiZD1QF1UnvLsAkesKR/4Iz4Wku mZ6NSVtmuNw/1Tr0LavnLXi51HQkZGW9rAK1c4Cou2q2Ni2FibHN7b5ImY04T3ae zCUgKJdGwLLUioZl217F8/7Ts5WMTyzd7Sk4gaP3IIJQ8YXKeMHlR5VfxzOa2f5E K+4LxmXUD3gUeJIRdqH/wModvjqFOffn+eedZiJ1ELqjqByRyr7m6iguPGf4+UWb 710md/Y= -----END CERTIFICATE-----Generated at Sat Apr 5 20:07:42 2025 by rpki-client