$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa File: 65A422A8C3F411EEB1191654C4F9AE02.roa (raw, json) Hash identifier: iZmR1FbskCchxXKnxnbe4xzmmTQB2zEX5unoWSw1o+g= Subject key identifier: 56:71:50:22:DD:95:21:6F:A4:F8:7D:58:E0:4C:88:A7:EF:83:1E:72 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 014C Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa Signing time: Mon 02 Dec 2024 18:06:40 +0000 ROA not before: Mon 02 Dec 2024 18:06:40 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4767 IP address blocks: 192.41.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 17:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02 Validity Not Before: Dec 2 18:06:40 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674df730-c19e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:22:70:22:a2:d3:fd:13:85:13:f6:dd:7b:8d: f5:7f:bc:50:59:22:a1:1c:11:90:bc:29:af:7a:0d: bd:48:b7:af:9b:31:36:59:a6:3d:58:f2:38:76:11: 27:f6:26:78:57:3f:b1:2f:e4:e4:da:7d:f8:80:09: 58:5c:d1:90:e4:d7:02:f4:f8:9e:16:53:5c:53:f4: 67:5b:a0:81:d0:66:f4:cf:56:07:1c:57:b2:eb:e8: f4:34:4f:e8:fb:e1:1b:f5:10:b3:16:81:7b:f1:10: 1e:2c:b8:3c:2e:0f:15:73:a1:59:70:e1:00:4d:98: 7d:20:2f:40:25:87:36:33:f2:d5:5e:95:e7:d9:dc: 72:b7:b0:27:03:4a:ec:83:1b:f0:3d:0d:1d:2b:22: 40:0a:b9:e7:f5:54:5b:c4:a7:cd:e7:f8:38:af:c8: 3b:b7:25:2f:31:ac:ef:9b:9b:ce:61:fa:7a:24:53: ac:e1:6e:b0:f6:62:d1:1d:f9:2f:ab:d4:25:e2:c0: bd:b3:0e:25:83:7b:17:44:d6:64:fa:e3:92:5f:5d: 4d:81:21:e9:87:a6:d3:12:54:a6:e2:d6:27:6f:25: 34:d3:82:da:85:34:7c:f3:ae:1b:e1:12:a0:c2:77: 7e:fa:3a:4d:0f:53:38:50:cb:c3:14:c5:5d:0f:0a: 06:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:71:50:22:DD:95:21:6F:A4:F8:7D:58:E0:4C:88:A7:EF:83:1E:72 X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.41.170.0/24 Signature Algorithm: sha256WithRSAEncryption 10:d5:42:40:d0:5f:9e:72:18:2d:48:5c:55:65:ba:57:ed:79: 17:75:2b:99:28:91:5d:2b:a6:f5:b0:dd:b7:a6:47:94:6a:e3: c5:e2:50:03:c7:86:0c:7e:85:35:96:74:ca:7c:70:05:cb:53: 36:e7:44:00:ae:f0:74:12:f5:d0:0c:44:51:ad:f5:0d:25:ea: 80:22:d1:06:19:46:01:28:d1:d5:e9:cf:4b:64:9f:47:c8:a8: 64:a4:9a:6f:6e:17:e3:cf:8b:18:33:b8:24:87:21:da:6e:55: 1d:85:31:cd:7c:eb:28:4e:88:9e:bf:f5:69:76:ce:99:65:43: 40:4c:ea:de:89:91:f0:c1:6a:a9:84:72:90:5c:c3:1e:ba:8e: 84:61:4c:0a:43:62:65:5e:4d:d0:c3:3f:7e:0e:92:1d:e5:e2: 9f:bf:bf:8e:7f:be:31:f4:0d:8c:bb:cb:27:53:bf:7e:22:e1: 4d:9a:9e:3f:65:53:4b:4b:61:11:a4:a2:4d:fa:bc:68:a0:ee: da:16:72:5a:12:9d:b4:fa:d1:57:86:83:5b:2b:af:e9:07:46: 34:ef:a3:f7:7e:f2:cd:e6:3b:51:44:1c:8f:df:95:bd:84:24: e8:af:b0:d4:7c:4e:22:10:38:d8:9e:16:3a:fe:23:5e:00:34: 5a:da:b7:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjQxMjAyMTgwNjQwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkZjczMC1jMTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriJwIqLT/ROFE/bde431f7xQWSKhHBGQvCmveg29SLevmzE2WaY9WPI4dhEn 9iZ4Vz+xL+Tk2n34gAlYXNGQ5NcC9PieFlNcU/RnW6CB0Gb0z1YHHFey6+j0NE/o ++Eb9RCzFoF78RAeLLg8Lg8Vc6FZcOEATZh9IC9AJYc2M/LVXpXn2dxyt7AnA0rs gxvwPQ0dKyJACrnn9VRbxKfN5/g4r8g7tyUvMazvm5vOYfp6JFOs4W6w9mLRHfkv q9Ql4sC9sw4lg3sXRNZk+uOSX11NgSHph6bTElSm4tYnbyU004LahTR8864b4RKg wnd++jpND1M4UMvDFMVdDwoGDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFZxUCLd lSFvpPh9WOBMiKfvgx5yMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFGMDIvMjYxRjM0RDhDMUY3MTFFREI0MjY3NDdCQzRGOUFFMDIvNjVBNDIyQThD M0Y0MTFFRUIxMTkxNjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAKaowDQYJKoZIhvcNAQELBQADggEBABDVQkDQX55yGC1I XFVlulfteRd1K5kokV0rpvWw3bemR5Rq48XiUAPHhgx+hTWWdMp8cAXLUzbnRACu 8HQS9dAMRFGt9Q0l6oAi0QYZRgEo0dXpz0tkn0fIqGSkmm9uF+PPixgzuCSHIdpu VR2FMc186yhOiJ6/9Wl2zpllQ0BM6t6JkfDBaqmEcpBcwx66joRhTApDYmVeTdDD P34Okh3l4p+/v45/vjH0DYy7yydTv34i4U2anj9lU0tLYRGkok36vGig7toWcloS nbT60VeGg1srr+kHRjTvo/d+8s3mO1FEHI/flb2EJOivsNR8TiIQONieFjr+I14A NFrat20= -----END CERTIFICATE-----Generated at Wed Apr 9 04:55:04 2025 by rpki-client