$ rpki-client -vvf rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/240B1914D90B11EF95020982C4F9AE02.roa File: 240B1914D90B11EF95020982C4F9AE02.roa (raw, json) Hash identifier: FjkNGrENcSIvFxBilAn18yNNIFNeTLoQBLQNAUhyMb0= Subject key identifier: D9:4B:4E:07:95:A5:9A:C2:9E:D7:C9:98:C8:3F:04:7C:A3:74:38:A3 Certificate issuer: /CN=A9173161/serialNumber=B49B2B11D3876DECDE13F5E8F59E641A7D093FB9 Certificate serial: 06 Authority key identifier: B4:9B:2B:11:D3:87:6D:EC:DE:13:F5:E8:F5:9E:64:1A:7D:09:3F:B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/240B1914D90B11EF95020982C4F9AE02.roa Signing time: Wed 22 Jan 2025 21:53:02 +0000 ROA not before: Wed 22 Jan 2025 21:53:02 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136557 IP address blocks: 161.248.254.0/24 maxlen: 24 161.248.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.crl rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173161 Validity Not Before: Jan 22 21:53:02 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=679168be-aae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ce:36:87:a3:c5:d2:b2:c2:b8:43:af:74:a5: c3:b9:a2:db:a3:d2:d9:51:af:c1:55:df:c8:ee:b2: 92:bb:ab:b9:ac:d7:84:f9:78:7e:c1:87:6b:5b:de: df:08:4a:a2:c2:c0:2d:b6:99:dc:c2:64:b0:eb:e3: 22:ff:7c:e2:72:35:b4:92:de:59:2f:e0:67:e7:7f: 24:7f:f0:84:47:77:f3:bb:a5:61:b9:11:9d:3b:f2: 18:3d:87:86:3a:30:ce:dd:de:28:e1:8f:f3:29:d6: 7b:da:3d:85:ce:30:6f:e1:1d:c6:60:bf:a7:c2:d0: c8:8c:a1:f0:28:e8:ad:97:0f:89:70:42:76:cb:1c: 36:2e:fc:ed:27:17:e0:16:ed:cb:23:81:82:1a:36: a2:23:59:d3:b7:f3:41:94:c6:22:a7:6a:0b:78:39: c8:64:22:2e:1a:f1:87:69:db:7e:68:9c:39:79:9a: 23:b7:15:be:58:43:6e:35:20:51:a2:53:f1:d9:e6: 9e:08:65:cc:85:71:dd:19:f4:77:ae:ca:0a:95:ea: d8:d1:31:cb:88:25:c0:06:3e:33:a4:b3:f1:4e:15: 4f:31:59:29:97:27:7f:8e:29:58:2d:1b:27:c5:9f: 33:1e:ec:26:25:75:75:c3:96:12:99:20:8c:dd:78: 39:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:4B:4E:07:95:A5:9A:C2:9E:D7:C9:98:C8:3F:04:7C:A3:74:38:A3 X509v3 Authority Key Identifier: keyid:B4:9B:2B:11:D3:87:6D:EC:DE:13:F5:E8:F5:9E:64:1A:7D:09:3F:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tJsrEdOHbezeE_Xo9Z5kGn0JP7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173161/7132EF9AD90711EFB27F7857C4F9AE02/240B1914D90B11EF95020982C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.254.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:86:ce:9e:80:ed:7c:f7:d7:ce:27:0f:92:c2:d2:ee:d7:ae: e3:66:26:1b:f9:a1:1e:05:fb:be:c8:ef:48:08:2e:e3:2c:ba: 56:86:17:6c:0a:7d:64:dd:97:7c:0d:2f:52:bf:ed:59:87:96: 83:90:b3:2b:1a:08:b7:b4:64:0d:0f:e1:17:e9:1e:c9:5f:a5: f7:5a:38:cf:6a:44:2a:ba:eb:e4:4f:52:19:26:5b:b4:3d:38: 5b:0c:9e:ac:1b:6b:77:3e:d0:e1:b9:e4:2c:48:ba:b4:2c:6b: 1f:5d:14:2f:51:c9:8d:15:6d:dd:71:14:67:78:50:90:8a:37: ba:de:1e:07:f2:7a:f7:a9:ac:b6:e5:04:14:a5:71:af:de:c8: c9:da:5c:a1:7d:6a:02:7d:1d:79:c6:2e:a1:a8:e2:3b:23:11: c2:76:f0:8e:30:20:ba:9f:49:35:d4:1c:98:91:f8:83:64:9c: 95:7f:83:d7:13:e3:32:24:44:f7:0c:95:9e:26:fd:b2:50:43: 7b:14:f0:0b:cd:93:be:10:44:2e:38:67:54:dd:9d:5f:a4:51: 02:7b:f4:16:b4:71:f6:77:18:70:a2:e3:ee:e6:74:88:8e:bd: af:6c:f2:2d:88:b1:c0:0a:a7:36:cd:8e:78:f4:dd:83:d5:fe: e6:f1:74:f8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzE2MTExMC8GA1UEBRMoQjQ5QjJCMTFEMzg3NkRFQ0RFMTNGNUU4RjU5RTY0MUE3 RDA5M0ZCOTAeFw0yNTAxMjIyMTUzMDJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTE2OGJlLWFhZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnzjaHo8XSssK4Q690pcO5otuj0tlRr8FV38juspK7q7ms14T5eH7Bh2tb3t8I SqLCwC22mdzCZLDr4yL/fOJyNbSS3lkv4GfnfyR/8IRHd/O7pWG5EZ078hg9h4Y6 MM7d3ijhj/Mp1nvaPYXOMG/hHcZgv6fC0MiMofAo6K2XD4lwQnbLHDYu/O0nF+AW 7csjgYIaNqIjWdO380GUxiKnagt4OchkIi4a8Ydp235onDl5miO3Fb5YQ241IFGi U/HZ5p4IZcyFcd0Z9HeuygqV6tjRMcuIJcAGPjOks/FOFU8xWSmXJ3+OKVgtGyfF nzMe7CYldXXDlhKZIIzdeDn/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2UtOB5Wl msKe18mYyD8EfKN0OKMwHwYDVR0jBBgwFoAUtJsrEdOHbezeE/Xo9Z5kGn0JP7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczMTYxLzcxMzJFRjlBRDkw NzExRUZCMjdGNzg1N0M0RjlBRTAyL3RKc3JFZE9IYmV6ZUVfWG85WjVrR24wSlA3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdEpzckVkT0hiZXplRV9YbzlaNWtHbjBKUDdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzE2MS83MTMyRUY5QUQ5MDcxMUVGQjI3Rjc4NTdDNEY5QUUwMi8yNDBCMTkxNEQ5 MEIxMUVGOTUwMjA5ODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4/jANBgkqhkiG9w0BAQsFAAOCAQEAfobOnoDtfPfXzicP ksLS7teu42YmG/mhHgX7vsjvSAgu4yy6VoYXbAp9ZN2XfA0vUr/tWYeWg5CzKxoI t7RkDQ/hF+keyV+l91o4z2pEKrrr5E9SGSZbtD04WwyerBtrdz7Q4bnkLEi6tCxr H10UL1HJjRVt3XEUZ3hQkIo3ut4eB/J696mstuUEFKVxr97IydpcoX1qAn0decYu oajiOyMRwnbwjjAgup9JNdQcmJH4g2SclX+D1xPjMiRE9wyVnib9slBDexTwC82T vhBELjhnVN2dX6RRAnv0FrRx9ncYcKLj7uZ0iI69r2zyLYixwAqnNs2OePTdg9X+ 5vF0+A== -----END CERTIFICATE-----Generated at Sat Apr 5 17:28:05 2025 by rpki-client