$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/23B68638C5DD11EABC58FD24C4F9AE02.roa File: 23B68638C5DD11EABC58FD24C4F9AE02.roa (raw, json) Hash identifier: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE= Subject key identifier: C8:22:80:CA:1D:94:C0:25:AE:DD:3C:2D:3D:D9:17:C1:B8:02:92:D5 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 0FCA Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/23B68638C5DD11EABC58FD24C4F9AE02.roa Signing time: Mon 30 Dec 2024 14:24:49 +0000 ROA not before: Mon 30 Dec 2024 14:24:49 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 24560 IP address blocks: 136.185.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 14:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4042 (0xfca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3 Validity Not Before: Dec 30 14:24:49 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6772ad31-03e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:87:ee:99:65:62:b8:11:ff:a0:e5:e0:c0:df: e0:31:49:e3:d3:b4:d1:09:dd:fa:63:4c:5f:7e:e2: 34:8b:ec:47:11:3d:66:4e:0f:46:4c:2e:50:2e:42: 9d:fe:b4:11:50:77:9a:9e:bd:ad:05:f1:0a:74:b1: 34:a0:ec:2e:ea:70:de:7f:0a:bf:fb:75:f9:ed:9d: 55:b5:49:9d:37:29:35:c7:ac:96:8c:ec:94:41:cb: da:6c:13:59:a4:94:6d:81:6d:be:0a:f4:20:a0:f9: 41:7f:33:f8:e9:1c:dc:9d:21:34:fa:a7:e8:c8:54: 00:0f:27:5f:a4:64:82:c6:73:c7:76:e6:72:2b:93: 81:fe:fe:ee:e6:ee:e1:d7:29:66:23:d3:e9:20:82: 2b:40:0f:05:45:9f:ac:68:46:49:77:6c:dc:5a:3e: 78:e9:48:62:95:f4:21:f6:d8:a3:9b:d1:3d:9b:5d: f6:6f:a7:d9:15:e2:61:60:47:73:72:c0:67:9d:74: 6b:88:a3:73:b0:21:41:1e:3e:6f:d3:2a:08:01:b9: 75:fa:16:8f:c8:36:4b:42:cf:ce:2d:ca:23:45:6a: bd:df:8d:da:45:aa:cb:d9:91:66:8f:80:00:56:25: ae:00:b4:0a:1f:dd:e1:f5:7e:f6:73:74:dd:97:f0: 58:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:22:80:CA:1D:94:C0:25:AE:DD:3C:2D:3D:D9:17:C1:B8:02:92:D5 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/23B68638C5DD11EABC58FD24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.185.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:19:ff:02:ad:5c:10:d0:e6:19:d5:60:54:db:e4:fc:c0:6d: 28:c5:87:e9:01:c5:b1:ad:cb:01:e3:72:15:25:24:bb:10:26: 04:71:a0:48:fa:ea:dd:7e:7f:d1:c6:02:51:88:e8:fa:b6:33: 45:65:4b:31:05:8e:d8:1a:32:d7:d3:0f:7a:18:bb:1f:29:c0: 23:11:a8:9e:45:8d:cd:8a:af:df:62:05:b4:ec:e6:ee:29:b0: 5c:4b:ac:a9:de:90:89:4f:c8:77:3a:2b:18:c0:c4:72:fb:71: 88:94:41:13:02:83:38:83:62:03:22:22:e3:b4:e6:0b:15:e0: f5:59:08:97:4b:22:56:ca:24:4b:e9:aa:46:e6:1e:4e:ce:a7: 51:37:86:90:ca:be:76:a8:9a:3c:2e:c0:05:69:17:2d:b4:a4: f0:ee:24:80:3d:2d:71:c4:92:56:09:b2:37:f8:a9:5c:c3:07: 24:ce:de:0e:3f:7a:bf:5d:43:ac:bf:08:76:52:90:23:a3:df: a5:29:3c:c6:29:0d:db:b9:58:94:19:48:ea:f1:6f:ba:3e:3e: 20:38:ec:5f:12:8d:bb:6b:78:61:2d:80:64:05:f4:5c:96:d4: 0b:62:b5:1e:d0:15:7e:16:5f:01:57:f6:75:c4:b4:c6:bd:4c: 94:07:fe:ac -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICD8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjQxMjMwMTQyNDQ5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyYWQzMS0wM2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4fumWViuBH/oOXgwN/gMUnj07TRCd36Y0xffuI0i+xHET1mTg9GTC5QLkKd /rQRUHeanr2tBfEKdLE0oOwu6nDefwq/+3X57Z1VtUmdNyk1x6yWjOyUQcvabBNZ pJRtgW2+CvQgoPlBfzP46RzcnSE0+qfoyFQADydfpGSCxnPHduZyK5OB/v7u5u7h 1ylmI9PpIIIrQA8FRZ+saEZJd2zcWj546UhilfQh9tijm9E9m132b6fZFeJhYEdz csBnnXRriKNzsCFBHj5v0yoIAbl1+haPyDZLQs/OLcojRWq9343aRarL2ZFmj4AA ViWuALQKH93h9X72c3Tdl/BYwwIDAQABo4IClDCCApAwHQYDVR0OBBYEFMgigMod lMAlrt08LT3ZF8G4ApLVMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvMkE1OTQwRjI0QkIzMTFFOUFCMTUxQzE3QzRGOUFFMDIvMjNCNjg2MzhD NUREMTFFQUJDNThGRDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCIuTANBgkqhkiG9w0BAQsFAAOCAQEAGRn/Aq1cENDmGdVg VNvk/MBtKMWH6QHFsa3LAeNyFSUkuxAmBHGgSPrq3X5/0cYCUYjo+rYzRWVLMQWO 2Boy19MPehi7HynAIxGonkWNzYqv32IFtOzm7imwXEusqd6QiU/IdzorGMDEcvtx iJRBEwKDOINiAyIi47TmCxXg9VkIl0siVsokS+mqRuYeTs6nUTeGkMq+dqiaPC7A BWkXLbSk8O4kgD0tccSSVgmyN/ipXMMHJM7eDj96v11DrL8IdlKQI6PfpSk8xikN 27lYlBlI6vFvuj4+IDjsXxKNu2t4YS2AZAX0XJbUC2K1HtAVfhZfAVf2dcS0xr1M lAf+rA== -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:26 2025 by rpki-client