$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B493EDC2D7D911EFA5B97067C4F9AE02.roa File: B493EDC2D7D911EFA5B97067C4F9AE02.roa (raw, json) Hash identifier: k69GIxaAC5mdrCMFYz85AOp9UnpYjs6ZdV3gjQXsrHI= Subject key identifier: BA:F7:B9:16:27:21:F7:1F:C5:84:49:36:68:54:F4:BD:E9:A1:22:0A Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 04F9 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B493EDC2D7D911EFA5B97067C4F9AE02.roa Signing time: Tue 21 Jan 2025 09:25:51 +0000 ROA not before: Tue 21 Jan 2025 09:25:51 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153500 IP address blocks: 161.248.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 14:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Jan 21 09:25:51 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=678f681f-3a92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fd:6d:71:37:05:97:c5:ea:f2:c8:f6:7b:d4: 42:be:66:33:a1:95:a5:aa:e1:2e:49:73:dc:43:d5: ac:ea:7a:a1:f5:f4:1d:d7:20:10:09:74:72:0a:82: 26:c9:fb:93:8a:c1:fb:a2:39:eb:d6:eb:54:06:c6: 6d:f7:79:04:35:4a:63:a9:fa:4c:3f:48:4f:f8:6e: d3:00:6b:ad:83:c6:d7:97:94:d8:00:88:61:f9:d5: 3c:21:80:fd:95:44:98:d0:b0:73:4c:39:a0:c3:12: 6b:87:4b:f8:28:45:71:9b:73:db:a9:ea:83:0f:90: cc:be:b1:be:fc:0f:0c:31:da:0c:b2:f3:f7:65:49: 8c:57:c7:4d:84:88:31:3a:39:55:45:85:8c:97:2f: 5f:81:4b:d4:9c:74:39:fd:58:df:f7:89:a9:09:a2: c7:14:8b:7d:71:59:96:fb:6e:2c:72:78:c3:c4:fb: 84:91:67:7c:c3:70:fc:03:28:eb:55:48:7c:82:15: c0:34:0b:12:4e:2f:53:63:dd:f6:3c:09:9e:4d:42: da:75:dd:bf:60:9f:a4:4e:37:ca:d1:81:34:c2:ef: d8:54:a5:59:1b:83:e0:85:1b:a2:0b:49:ed:bc:c6: 2d:bf:c9:ef:f8:c2:8f:8d:ab:27:58:e6:8a:0f:26: 16:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F7:B9:16:27:21:F7:1F:C5:84:49:36:68:54:F4:BD:E9:A1:22:0A X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/B493EDC2D7D911EFA5B97067C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.78.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:29:96:f7:3d:a0:08:0c:8b:94:3b:54:e8:5f:2c:b0:ff:fa: 66:fe:61:07:06:c9:9b:36:59:29:9d:7e:a9:6a:d5:61:94:39: ad:cb:2b:1d:84:07:e7:e4:56:a8:fb:79:8c:4e:f8:ac:a8:65: e3:8c:85:da:72:63:d2:dd:8c:19:af:c7:eb:98:66:18:76:30: 73:8a:dc:b6:33:2e:f8:69:94:40:54:dc:14:db:1c:aa:44:48: be:8d:46:2a:b1:60:4d:33:b2:61:44:bd:17:36:d7:ff:14:91: 3a:f3:f3:69:86:d8:19:80:9c:95:3a:c5:b7:13:3d:3e:bf:0c: 45:84:28:d8:fc:27:00:77:12:67:71:12:9a:ee:2d:9a:60:72: 41:a8:b5:c7:10:33:00:e9:c0:19:2b:92:9a:2e:99:44:e3:80: ba:6e:3b:0a:df:b6:3c:a7:09:b8:9b:29:d5:5d:a9:e1:ba:64: 32:d8:77:1d:3a:94:6a:f9:cf:d7:5f:6b:fc:ab:9c:37:0b:5d: c7:5b:46:3b:a3:49:b3:9d:ec:72:36:c0:8a:f3:6f:d0:f5:9f: 18:7b:7d:d2:39:9a:3f:1e:41:f3:bb:99:f4:90:9e:09:85:bb: c3:64:14:ec:f9:7f:a3:43:8f:74:96:0d:c0:42:35:4e:c6:78: 59:a1:66:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwMTIxMDkyNTUxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhmNjgxZi0zYTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/1tcTcFl8Xq8sj2e9RCvmYzoZWlquEuSXPcQ9Ws6nqh9fQd1yAQCXRyCoIm yfuTisH7ojnr1utUBsZt93kENUpjqfpMP0hP+G7TAGutg8bXl5TYAIhh+dU8IYD9 lUSY0LBzTDmgwxJrh0v4KEVxm3PbqeqDD5DMvrG+/A8MMdoMsvP3ZUmMV8dNhIgx OjlVRYWMly9fgUvUnHQ5/Vjf94mpCaLHFIt9cVmW+24scnjDxPuEkWd8w3D8Ayjr VUh8ghXANAsSTi9TY932PAmeTULadd2/YJ+kTjfK0YE0wu/YVKVZG4PghRuiC0nt vMYtv8nv+MKPjasnWOaKDyYWgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLr3uRYn IfcfxYRJNmhU9L3poSIKMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQjQ5M0VEQzJE N0Q5MTFFRkE1Qjk3MDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+E4wDQYJKoZIhvcNAQELBQADggEBAGoplvc9oAgMi5Q7 VOhfLLD/+mb+YQcGyZs2WSmdfqlq1WGUOa3LKx2EB+fkVqj7eYxO+KyoZeOMhdpy Y9LdjBmvx+uYZhh2MHOK3LYzLvhplEBU3BTbHKpESL6NRiqxYE0zsmFEvRc21/8U kTrz82mG2BmAnJU6xbcTPT6/DEWEKNj8JwB3EmdxEpruLZpgckGotccQMwDpwBkr kpoumUTjgLpuOwrftjynCbibKdVdqeG6ZDLYdx06lGr5z9dfa/yrnDcLXcdbRjuj SbOd7HI2wIrzb9D1nxh7fdI5mj8eQfO7mfSQngmFu8NkFOz5f6NDj3SWDcBCNU7G eFmhZrM= -----END CERTIFICATE-----Generated at Mon Apr 7 19:31:55 2025 by rpki-client