$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/F91F0C028A2E11EC98A2702CC4F9AE02.roa File: F91F0C028A2E11EC98A2702CC4F9AE02.roa (raw, json) Hash identifier: EM7EONiwHXhiPFzyfONkaOBX/AROwU9rjV4ETvuVQDQ= Subject key identifier: E2:A1:C7:C6:98:13:38:CA:74:83:F6:29:7E:C8:62:42:F3:1A:5A:38 Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0402 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/F91F0C028A2E11EC98A2702CC4F9AE02.roa Signing time: Wed 04 Dec 2024 17:25:14 +0000 ROA not before: Wed 04 Dec 2024 17:25:14 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135134 IP address blocks: 45.129.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1026 (0x402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE Validity Not Before: Dec 4 17:25:14 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67509079-6d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ac:84:0e:39:b6:7e:b1:28:4c:d8:fb:ee:29: b0:5d:5a:f9:03:b3:a2:67:d1:c0:9c:d2:c8:09:0e: 0c:6b:f1:b0:6c:fa:8c:01:e5:f6:d5:f1:22:a7:a3: 99:98:63:08:65:8d:e6:c1:9c:57:97:6d:83:08:b0: c5:c5:63:e0:8e:54:b4:a9:07:43:b7:58:d6:37:1c: 1e:2b:98:1d:15:79:0a:c7:07:26:4d:90:3d:a0:ad: b6:e5:20:dd:28:95:f3:9f:95:58:3d:c1:d9:41:41: 16:5b:47:5e:ed:41:91:af:e0:5b:09:ed:d4:86:8f: 8c:78:2c:4c:f4:09:35:22:e7:ff:48:d1:a2:6d:7a: 77:2b:64:9c:3d:cc:ff:3e:c6:c7:90:5e:eb:04:1a: cf:5d:b6:9a:82:14:15:df:7a:51:ea:f2:0e:bd:1f: e9:45:62:66:80:ac:23:cd:6a:7e:cb:17:f7:e8:52: b3:15:ed:68:37:3b:41:e1:9d:72:fb:d7:85:44:fd: 17:1f:c0:55:cb:f0:5c:cc:11:33:20:8c:70:e7:12: db:c4:70:e2:98:f4:6b:87:a4:cc:f3:e6:a0:99:2a: 96:f4:92:ae:ca:a0:db:a8:14:58:54:8b:c3:dd:ae: fd:89:ed:e2:ad:13:2d:de:70:14:fb:03:3a:ac:e8: d3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A1:C7:C6:98:13:38:CA:74:83:F6:29:7E:C8:62:42:F3:1A:5A:38 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/F91F0C028A2E11EC98A2702CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.129.228.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:6a:ce:50:2a:bf:84:9a:70:67:5b:f2:e7:51:24:4e:0c:d0: 07:a6:a9:b0:13:f1:f8:93:f7:25:44:ba:a9:21:34:f9:f3:e9: 07:b0:2a:fe:9f:fb:a6:dc:16:48:06:6c:30:e6:03:5e:9d:a2: bc:7d:c5:c4:c6:b8:08:14:ed:90:de:12:32:ea:ca:59:5f:0d: 3a:fe:30:62:c6:44:03:e4:08:d7:cd:97:27:bf:21:74:a5:8b: 77:37:ab:ad:05:28:9a:c5:11:04:b3:2e:96:a9:35:0c:3d:80: 69:28:d6:99:fd:b5:e6:4d:40:d1:a2:06:ab:6b:54:b1:90:6f: 7a:9f:ef:48:32:53:b3:d1:f4:61:0c:d6:f6:26:72:4a:c4:6a: eb:d6:f2:d6:c8:93:53:76:56:f6:51:87:f1:08:23:58:dc:7f: 52:fb:2f:43:55:88:38:08:08:8d:39:df:62:56:e5:a7:75:49: 50:9d:9c:7f:57:1b:1e:15:8f:e6:e2:ad:50:42:89:31:24:02: 5a:2d:49:b8:6e:69:94:92:f5:ca:34:ea:82:cf:f6:c9:b2:10: db:da:40:8f:ce:e7:b4:2a:fe:64:f1:c3:70:98:d7:6f:fc:da: 22:08:43:45:84:11:91:a2:e5:da:24:b2:57:1f:ee:43:8a:62: 39:95:bc:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjQxMjA0MTcyNTE0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwOTA3OS02ZDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqyEDjm2frEoTNj77imwXVr5A7OiZ9HAnNLICQ4Ma/GwbPqMAeX21fEip6OZ mGMIZY3mwZxXl22DCLDFxWPgjlS0qQdDt1jWNxweK5gdFXkKxwcmTZA9oK225SDd KJXzn5VYPcHZQUEWW0de7UGRr+BbCe3Uho+MeCxM9Ak1Iuf/SNGibXp3K2ScPcz/ PsbHkF7rBBrPXbaaghQV33pR6vIOvR/pRWJmgKwjzWp+yxf36FKzFe1oNztB4Z1y +9eFRP0XH8BVy/BczBEzIIxw5xLbxHDimPRrh6TM8+agmSqW9JKuyqDbqBRYVIvD 3a79ie3irRMt3nAU+wM6rOjTrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOKhx8aY EzjKdIP2KX7IYkLzGlo4MB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNUI0QzRFMzY1OTY5MTFFQzk0QTNFNzcwQzRGOUFFMDIvRjkxRjBDMDI4 QTJFMTFFQzk4QTI3MDJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtgeQwDQYJKoZIhvcNAQELBQADggEBAH9qzlAqv4SacGdb 8udRJE4M0AemqbAT8fiT9yVEuqkhNPnz6QewKv6f+6bcFkgGbDDmA16dorx9xcTG uAgU7ZDeEjLqyllfDTr+MGLGRAPkCNfNlye/IXSli3c3q60FKJrFEQSzLpapNQw9 gGko1pn9teZNQNGiBqtrVLGQb3qf70gyU7PR9GEM1vYmckrEauvW8tbIk1N2VvZR h/EII1jcf1L7L0NViDgICI0532JW5ad1SVCdnH9XGx4Vj+birVBCiTEkAlotSbhu aZSS9co06oLP9smyENvaQI/O57Qq/mTxw3CY12/82iIIQ0WEEZGi5dokslcf7kOK YjmVvNA= -----END CERTIFICATE-----Generated at Sun Apr 6 22:03:47 2025 by rpki-client