$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/4999305414DF11EEAB46A86DC4F9AE02.roa File: 4999305414DF11EEAB46A86DC4F9AE02.roa (raw, json) Hash identifier: Bl17bhrifD1PMrI4c5ur7v5yVCt37LP+FsjpzcQgt1k= Subject key identifier: B6:22:04:9B:21:CD:C4:FA:67:F4:54:A2:09:11:B1:E3:19:1A:AD:7E Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1DC0 Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/4999305414DF11EEAB46A86DC4F9AE02.roa Signing time: Wed 18 Dec 2024 16:13:35 +0000 ROA not before: Wed 18 Dec 2024 16:13:35 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 173 IP address blocks: 163.138.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7616 (0x1dc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A Validity Not Before: Dec 18 16:13:35 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6762f4af-0dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3c:63:10:81:23:61:36:14:c0:6b:29:88:88: 2c:b4:b9:97:61:d1:24:02:73:22:01:c0:43:c6:ff: e4:65:ea:95:0e:6c:bc:14:b2:32:a9:5c:32:5d:6a: 73:56:a6:6e:60:02:c7:cf:93:ad:31:30:7f:29:cd: 61:b6:b7:fc:92:1a:61:80:b9:11:a4:7c:82:cf:12: 01:c9:a2:a4:b2:4a:6f:1a:2b:e7:57:24:df:1e:32: 7a:1c:a0:0f:05:ae:40:3c:a2:6b:22:73:7f:c8:f6: c0:cb:bc:66:14:29:ca:10:4c:78:72:cf:e7:7d:84: e1:1b:a9:57:94:96:90:db:88:8a:26:22:25:4b:9a: 85:4a:8e:cf:8c:8d:66:5d:6f:c6:50:a0:f2:49:d5: 39:b4:bb:be:7d:f3:25:2d:96:22:d4:5e:2d:39:7c: 1d:90:57:78:ac:4f:29:25:6b:0e:65:0e:b3:6f:ce: f4:f0:80:26:ac:62:d9:16:69:4e:e9:a4:2b:57:80: 19:0f:a1:4b:4a:96:fe:4c:21:47:1c:54:a2:2a:f5: 98:39:c5:fe:80:16:b4:cb:40:3b:8f:0e:a8:75:24: df:f8:02:02:aa:17:87:12:69:93:ab:02:22:66:76: 11:fe:62:b0:2a:0b:01:a1:4a:d7:1c:01:28:ed:ef: 6f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:22:04:9B:21:CD:C4:FA:67:F4:54:A2:09:11:B1:E3:19:1A:AD:7E X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/4999305414DF11EEAB46A86DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.138.160.0/19 Signature Algorithm: sha256WithRSAEncryption c7:bd:6e:1b:48:1e:29:b5:3a:c6:be:63:3c:37:95:c1:b0:38: e9:38:d5:1f:a6:36:f3:78:82:bb:ba:39:09:f7:4a:48:5e:55: 64:36:c3:5b:6d:2f:d5:9e:00:c8:5c:1d:96:df:6c:3b:43:57: 9c:e8:e3:2f:ed:7f:f6:33:28:e4:c0:1e:46:12:6b:ca:57:ff: c3:d1:72:d1:c0:8d:c5:7e:8d:db:3d:2a:ac:46:e6:c9:68:7b: 28:30:7d:bb:9e:f5:a2:51:32:2f:71:0d:ba:ff:4e:d1:cf:f9: 71:8d:5d:a1:6d:fc:db:41:0c:3c:b6:e2:e2:90:e1:c6:b5:72: e8:30:3e:4d:e0:76:85:d6:71:4b:96:ee:2e:f8:19:4a:37:cf: 72:08:82:1c:1e:3f:28:38:ed:a0:fa:ea:0e:cc:17:cf:6b:d4: 6a:56:e9:f4:d4:d2:56:b3:91:43:88:de:89:8d:00:18:c4:75: a5:52:07:97:3d:ce:32:7d:03:8b:11:5b:ec:f5:26:a1:57:e6: f8:3f:e4:2b:f4:cc:ad:f5:d5:34:da:12:38:f4:3e:e6:c3:85: 36:f3:4e:b5:bd:21:59:7d:3c:d9:f1:cf:dc:ab:a5:71:31:06: 88:15:84:cc:ce:76:c4:ee:29:a7:5c:7d:6e:1b:bf:2c:9b:29: ca:88:c6:80 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjQxMjE4MTYxMzM1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZjRhZi0wZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DxjEIEjYTYUwGspiIgstLmXYdEkAnMiAcBDxv/kZeqVDmy8FLIyqVwyXWpz VqZuYALHz5OtMTB/Kc1htrf8khphgLkRpHyCzxIByaKkskpvGivnVyTfHjJ6HKAP Ba5APKJrInN/yPbAy7xmFCnKEEx4cs/nfYThG6lXlJaQ24iKJiIlS5qFSo7PjI1m XW/GUKDySdU5tLu+ffMlLZYi1F4tOXwdkFd4rE8pJWsOZQ6zb8708IAmrGLZFmlO 6aQrV4AZD6FLSpb+TCFHHFSiKvWYOcX+gBa0y0A7jw6odSTf+AICqheHEmmTqwIi ZnYR/mKwKgsBoUrXHAEo7e9vCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLYiBJsh zcT6Z/RUogkRseMZGq1+MB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMUEvNURENDhBQjY4OUYyMTFFNjlFNUY2MzM5QzRGOUFFMDIvNDk5OTMwNTQx NERGMTFFRUFCNDZBODZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWjiqAwDQYJKoZIhvcNAQELBQADggEBAMe9bhtIHim1Osa+ Yzw3lcGwOOk41R+mNvN4gru6OQn3SkheVWQ2w1ttL9WeAMhcHZbfbDtDV5zo4y/t f/YzKOTAHkYSa8pX/8PRctHAjcV+jds9KqxG5sloeygwfbue9aJRMi9xDbr/TtHP +XGNXaFt/NtBDDy24uKQ4ca1cugwPk3gdoXWcUuW7i74GUo3z3IIghwePyg47aD6 6g7MF89r1GpW6fTU0lazkUOI3omNABjEdaVSB5c9zjJ9A4sRW+z1JqFX5vg/5Cv0 zK311TTaEjj0PubDhTbzTrW9IVl9PNnxz9yrpXExBogVhMzOdsTuKadcfW4bvyyb KcqIxoA= -----END CERTIFICATE-----Generated at Sat Apr 5 07:19:22 2025 by rpki-client