$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/EF789834F4DA11EFB3FF6B19C4F9AE02.roa File: EF789834F4DA11EFB3FF6B19C4F9AE02.roa (raw, json) Hash identifier: x6KLXmxialEvQm9chZWjV+m4aGyDo45aTYp7F93yY6s= Subject key identifier: 7E:79:3F:5A:2C:D8:2A:0A:A4:51:DC:FF:74:4F:A0:AE:FD:E2:D1:05 Certificate issuer: /CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Certificate serial: 030A Authority key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/EF789834F4DA11EFB3FF6B19C4F9AE02.roa Signing time: Thu 27 Feb 2025 07:19:49 +0000 ROA not before: Thu 27 Feb 2025 07:19:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132742 IP address blocks: 45.122.136.0/23 maxlen: 24 45.122.139.0/24 maxlen: 24 103.63.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 778 (0x30a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E08 Validity Not Before: Feb 27 07:19:49 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67c01214-f11d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fe:8e:77:63:cd:32:e2:af:f9:35:8b:eb:48: 3c:4b:7c:1d:38:f2:51:a2:4f:e6:e5:b3:35:e8:00: 9a:b2:86:c5:3d:e6:f8:72:0b:16:d6:f2:09:6f:bb: 90:2e:71:47:c5:99:4a:df:40:6c:ef:60:1e:00:69: e5:0d:a2:34:df:16:33:ae:db:b4:d4:8d:28:63:e4: 2a:fc:ea:62:35:1d:82:89:0c:29:07:24:f6:3d:da: ec:ab:b1:45:67:0c:bc:7c:3d:e6:1a:e1:c5:89:7f: a4:2e:a9:c8:c3:99:98:b6:bd:65:dc:c0:b9:1f:b3: 0d:7a:41:e5:7d:b3:d8:be:74:8b:7d:f4:09:05:49: c0:17:31:09:88:dd:a0:76:23:8b:fa:95:9f:cf:82: 27:23:48:49:52:0c:b1:4b:4d:cd:3c:db:c6:3d:75: 9c:7a:94:22:6a:18:00:46:9a:6a:47:80:24:31:a5: 92:9e:d1:6c:f0:42:d2:ef:be:e9:7f:dc:22:3f:2f: 26:5c:eb:82:4c:ff:3e:7a:03:41:b5:f2:68:57:6a: 20:bf:ec:dc:13:1e:88:6f:d1:72:8e:4a:40:20:aa: 36:9d:82:bc:d8:f4:94:a1:42:b8:c3:b1:7e:72:05: c0:7d:7f:22:c7:5e:a3:58:16:65:4d:0b:e1:ef:f9: 1c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:79:3F:5A:2C:D8:2A:0A:A4:51:DC:FF:74:4F:A0:AE:FD:E2:D1:05 X509v3 Authority Key Identifier: keyid:33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/EF789834F4DA11EFB3FF6B19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.122.136.0/23 45.122.139.0/24 103.63.4.0/22 Signature Algorithm: sha256WithRSAEncryption 16:2b:53:00:d8:83:55:09:54:8a:40:02:36:72:d0:30:97:ae: 37:d3:31:c9:30:85:90:47:90:e7:05:94:73:a4:86:44:0b:cd: 36:b9:b4:c3:d5:60:16:49:82:4f:32:d0:bb:e8:cc:80:00:bc: ed:9b:94:e4:f4:a2:82:41:02:79:63:15:45:59:4d:04:2c:35: 68:fc:32:39:85:5d:b3:e5:91:ae:3e:ee:54:91:87:75:34:c8: d0:26:ef:10:69:06:5d:0a:9f:e8:bb:7e:66:b8:5e:e5:d1:3c: 22:e0:d9:fe:8c:51:b9:0b:45:7d:fa:cc:4c:e9:3e:b9:e5:b0: 68:0e:55:8a:7a:29:17:5b:b5:2f:41:df:84:99:d5:44:9a:e3: a0:2f:bb:44:38:6a:ab:9a:05:d6:47:49:1e:3f:48:da:60:97: d4:ef:97:dd:6d:6e:e0:1f:5c:8e:e6:a3:c0:c2:7c:38:67:2d: b5:31:27:40:6a:a5:1d:0a:aa:77:06:d0:d3:62:4e:e6:8e:8d: 59:cc:92:e2:6e:e1:34:80:cb:d5:ec:9c:c6:e9:58:9c:3b:b9: 53:97:6e:b4:df:76:9d:71:3c:7e:8a:47:a0:07:45:76:17:9e: 9b:58:ea:a8:47:ae:b9:22:a4:1b:87:40:e3:07:24:d9:9d:74: 77:3b:2c:9f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMDgxMTAvBgNVBAUTKDMzQjY5NTMyOTU4MDEwMzhGMDE3RkE2NUQ0NzA3ODFB NUNDNzcyQzAwHhcNMjUwMjI3MDcxOTQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MwMTIxNC1mMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwP6Od2PNMuKv+TWL60g8S3wdOPJRok/m5bM16ACasobFPeb4cgsW1vIJb7uQ LnFHxZlK30Bs72AeAGnlDaI03xYzrtu01I0oY+Qq/OpiNR2CiQwpByT2Pdrsq7FF Zwy8fD3mGuHFiX+kLqnIw5mYtr1l3MC5H7MNekHlfbPYvnSLffQJBUnAFzEJiN2g diOL+pWfz4InI0hJUgyxS03NPNvGPXWcepQiahgARppqR4AkMaWSntFs8ELS777p f9wiPy8mXOuCTP8+egNBtfJoV2ogv+zcEx6Ib9FyjkpAIKo2nYK82PSUoUK4w7F+ cgXAfX8ix16jWBZlTQvh7/kcoQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH55P1os 2CoKpFHc/3RPoK794tEFMB8GA1UdIwQYMBaAFDO2lTKVgBA48Bf6ZdRweBpcx3LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUwOC85RUM2MzFFQ0M2 MDkxMUVDQjQ2MEVDNTdDNEY5QUUwMi9NN2FWTXBXQUVEandGX3BsMUhCNEdsekhj c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003YVZNcFdBRURqd0ZfcGwxSEI0R2x6SGNzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMDgvOUVDNjMxRUNDNjA5MTFFQ0I0NjBFQzU3QzRGOUFFMDIvRUY3ODk4MzRG NERBMTFFRkIzRkY2QjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEteogDBAAteosDBAJnPwQwDQYJKoZIhvcNAQELBQADggEB ABYrUwDYg1UJVIpAAjZy0DCXrjfTMckwhZBHkOcFlHOkhkQLzTa5tMPVYBZJgk8y 0LvozIAAvO2blOT0ooJBAnljFUVZTQQsNWj8MjmFXbPlka4+7lSRh3U0yNAm7xBp Bl0Kn+i7fma4XuXRPCLg2f6MUbkLRX36zEzpPrnlsGgOVYp6KRdbtS9B34SZ1USa 46Avu0Q4aquaBdZHSR4/SNpgl9Tvl91tbuAfXI7mo8DCfDhnLbUxJ0BqpR0KqncG 0NNiTuaOjVnMkuJu4TSAy9XsnMbpWJw7uVOXbrTfdp1xPH6KR6AHRXYXnptY6qhH rrkipBuHQOMHJNmddHc7LJ8= -----END CERTIFICATE-----Generated at Sun Apr 6 01:36:50 2025 by rpki-client