$ rpki-client -vvf rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/158B72F480FB11ED9B35954DC4F9AE02.roa File: 158B72F480FB11ED9B35954DC4F9AE02.roa (raw, json) Hash identifier: kY+A2HtaHNsj7sb4HrmiscgcVj4k7bEhm+XyPAYjO98= Subject key identifier: 02:AE:99:FC:5E:C0:F5:18:82:C3:78:CB:45:33:4B:AB:65:5F:E3:5F Certificate issuer: /CN=A919EA40/serialNumber=B6CA74E0175D67E1AEBE86BFE38C5C898F262B8C Certificate serial: 0170 Authority key identifier: B6:CA:74:E0:17:5D:67:E1:AE:BE:86:BF:E3:8C:5C:89:8F:26:2B:8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tsp04BddZ-Guvoa_44xciY8mK4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/158B72F480FB11ED9B35954DC4F9AE02.roa Signing time: Fri 29 Nov 2024 02:35:56 +0000 ROA not before: Fri 29 Nov 2024 02:35:56 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 58611 IP address blocks: 192.94.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/tsp04BddZ-Guvoa_44xciY8mK4w.crl rsync://rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/tsp04BddZ-Guvoa_44xciY8mK4w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tsp04BddZ-Guvoa_44xciY8mK4w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EA40 Validity Not Before: Nov 29 02:35:56 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6749288c-4656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2b:29:bf:4e:bd:65:4e:58:51:33:8a:a4:91: 16:9d:52:83:64:11:d7:28:05:19:da:19:fd:27:c9: 1b:09:d2:16:66:44:9c:e5:e2:46:24:e5:a2:de:c9: 32:8a:8c:cd:57:2e:ab:56:4c:7f:79:23:4b:06:f9: 66:04:3d:f7:34:de:ef:9e:3b:cc:04:3c:7c:9d:36: f4:83:19:0a:b1:17:2f:9f:ae:0b:57:bb:c4:e3:d9: 49:b0:69:c5:2c:c8:7b:53:70:4f:cf:b3:27:58:18: b1:55:d8:3d:c2:86:a2:33:02:28:3c:03:77:20:3c: dd:3f:27:3c:57:ba:4e:14:90:75:22:f9:ba:02:0b: 4c:1b:54:dc:f4:d1:b5:d2:54:00:2a:00:08:49:51: 42:41:b0:2f:ff:ef:3d:7a:df:da:81:15:ac:78:d1: 77:9a:dc:8f:d1:5f:bb:7a:86:01:f4:75:0b:84:ea: 53:bb:14:58:20:6b:c3:11:c9:c3:85:0e:a6:06:a2: 67:cf:b9:43:81:58:1d:18:76:73:91:cb:c8:b9:02: 9a:37:08:f8:e4:77:2d:1c:7c:98:cc:21:dd:17:a6: ec:6e:ec:a2:09:cb:0b:c9:d5:41:ad:b9:13:cb:5a: 32:aa:fd:f6:07:7a:85:cc:a3:c1:81:e3:24:8b:78: 0c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:AE:99:FC:5E:C0:F5:18:82:C3:78:CB:45:33:4B:AB:65:5F:E3:5F X509v3 Authority Key Identifier: keyid:B6:CA:74:E0:17:5D:67:E1:AE:BE:86:BF:E3:8C:5C:89:8F:26:2B:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/tsp04BddZ-Guvoa_44xciY8mK4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tsp04BddZ-Guvoa_44xciY8mK4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EA40/4906F2A880F011EDAAE48F7BC4F9AE02/158B72F480FB11ED9B35954DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.94.208.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:5e:b3:5c:08:22:8a:fe:bd:3d:6b:65:13:ba:91:b7:37:6f: 40:cc:53:18:7d:20:90:04:dc:53:c1:ba:8d:68:d5:1d:88:30: 9a:ca:cf:0f:63:43:f5:5a:07:81:c8:8e:32:aa:2d:94:95:82: 99:d6:1f:63:1b:0f:96:e7:34:58:5e:c1:54:46:f0:ab:d1:bc: f2:4d:f6:e5:d3:ee:c4:48:df:8c:cd:30:cc:fd:97:75:4b:87: 4d:04:54:63:19:50:5f:95:33:04:f1:d4:73:ac:ac:a5:5a:05: 34:0a:f4:5f:55:21:48:a7:16:c9:3e:3f:5f:87:8e:aa:8b:cc: 6f:c6:d0:af:b9:85:9b:e1:3c:00:da:b4:25:b7:a5:32:85:df: e8:2a:ec:17:ff:ed:0a:95:20:c2:83:f9:66:07:05:d7:24:13: ed:58:f1:30:d9:e5:f2:70:03:08:68:c9:ef:e9:7d:dc:41:61: 24:b3:b7:10:bc:ab:67:d7:97:c3:5e:fc:a6:04:f5:f0:45:fa: 85:e6:4d:53:55:c0:d2:a0:89:69:a4:3a:45:18:5d:c1:d1:29: 8d:b4:6a:ff:cd:7e:c8:34:34:b8:c2:a7:39:14:d3:52:70:93: bb:08:f1:83:6e:cd:e5:ca:8a:da:e1:37:40:3b:6c:55:4a:5c: f0:be:21:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBNDAxMTAvBgNVBAUTKEI2Q0E3NEUwMTc1RDY3RTFBRUJFODZCRkUzOEM1Qzg5 OEYyNjJCOEMwHhcNMjQxMTI5MDIzNTU2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5Mjg4Yy00NjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSspv069ZU5YUTOKpJEWnVKDZBHXKAUZ2hn9J8kbCdIWZkSc5eJGJOWi3sky iozNVy6rVkx/eSNLBvlmBD33NN7vnjvMBDx8nTb0gxkKsRcvn64LV7vE49lJsGnF LMh7U3BPz7MnWBixVdg9woaiMwIoPAN3IDzdPyc8V7pOFJB1Ivm6AgtMG1Tc9NG1 0lQAKgAISVFCQbAv/+89et/agRWseNF3mtyP0V+7eoYB9HULhOpTuxRYIGvDEcnD hQ6mBqJnz7lDgVgdGHZzkcvIuQKaNwj45HctHHyYzCHdF6bsbuyiCcsLydVBrbkT y1oyqv32B3qFzKPBgeMki3gMnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAKumfxe wPUYgsN4y0UzS6tlX+NfMB8GA1UdIwQYMBaAFLbKdOAXXWfhrr6Gv+OMXImPJiuM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUE0MC80OTA2RjJBODgw RjAxMUVEQUFFNDhGN0JDNEY5QUUwMi90c3AwNEJkZFotR3V2b2FfNDR4Y2lZOG1L NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RzcDA0QmRkWi1HdXZvYV80NHhjaVk4bUs0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVBNDAvNDkwNkYyQTg4MEYwMTFFREFBRTQ4RjdCQzRGOUFFMDIvMTU4QjcyRjQ4 MEZCMTFFRDlCMzU5NTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAXtAwDQYJKoZIhvcNAQELBQADggEBAB5es1wIIor+vT1r ZRO6kbc3b0DMUxh9IJAE3FPBuo1o1R2IMJrKzw9jQ/VaB4HIjjKqLZSVgpnWH2Mb D5bnNFhewVRG8KvRvPJN9uXT7sRI34zNMMz9l3VLh00EVGMZUF+VMwTx1HOsrKVa BTQK9F9VIUinFsk+P1+HjqqLzG/G0K+5hZvhPADatCW3pTKF3+gq7Bf/7QqVIMKD +WYHBdckE+1Y8TDZ5fJwAwhoye/pfdxBYSSztxC8q2fXl8Ne/KYE9fBF+oXmTVNV wNKgiWmkOkUYXcHRKY20av/Nfsg0NLjCpzkU01Jwk7sI8YNuzeXKitrhN0A7bFVK XPC+Ibs= -----END CERTIFICATE-----Generated at Sat Apr 5 23:02:24 2025 by rpki-client