$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/24D7D74C978011EE87BB7D53C4F9AE02.roa File: 24D7D74C978011EE87BB7D53C4F9AE02.roa (raw, json) Hash identifier: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k= Subject key identifier: 40:A7:A7:E3:0E:57:8D:CA:4E:91:79:9E:7F:2C:12:AF:33:89:AA:C4 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3595 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/24D7D74C978011EE87BB7D53C4F9AE02.roa Signing time: Wed 18 Dec 2024 14:40:34 +0000 ROA not before: Wed 18 Dec 2024 14:40:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 140608 IP address blocks: 116.90.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13717 (0x3595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E Validity Not Before: Dec 18 14:40:34 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6762dee2-b472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c9:f8:90:84:b8:59:68:d2:51:38:77:93:9b: 30:32:f4:c3:b6:52:d9:80:9d:2e:ce:d7:65:b0:dc: 1c:a3:c5:ac:a6:28:0e:8f:1d:77:cb:a1:6e:68:ae: 68:84:36:43:e2:61:8b:62:c1:4f:3a:98:e2:9a:c6: e0:6a:6c:33:ae:66:b6:d4:98:e9:ff:c7:bd:b2:9e: b5:fb:fa:bd:89:9d:d0:5b:90:86:30:97:aa:cd:a7: 12:42:00:4f:89:e8:45:e7:9f:b1:6a:af:eb:2c:91: 0a:d2:e8:b5:13:26:fd:dc:76:15:84:47:ad:68:49: 4e:83:5b:ff:1c:9d:4f:c1:78:ae:16:2f:4b:33:3c: c8:29:54:50:94:07:6b:9a:33:e2:e7:5a:9c:b5:de: 4b:b1:19:e1:94:d4:c9:7d:92:71:40:b3:b4:55:15: 62:b6:54:ef:da:72:8b:21:96:d5:c9:c6:f7:53:9a: d4:eb:37:39:05:76:f0:2d:60:d5:25:74:e6:8f:89: b5:69:26:0a:f1:97:86:9f:7a:ee:22:8b:bb:a0:72: 53:47:1b:1b:d3:50:4f:a9:f3:79:32:67:94:2c:ef: 8e:54:55:cd:c0:27:4d:f6:f8:d5:cd:c7:ad:07:c7: b9:f6:48:55:e2:bd:4d:3a:ba:f5:bf:9a:84:5b:fa: 7f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A7:A7:E3:0E:57:8D:CA:4E:91:79:9E:7F:2C:12:AF:33:89:AA:C4 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/24D7D74C978011EE87BB7D53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.112.0/24 Signature Algorithm: sha256WithRSAEncryption a6:36:cc:61:4b:c1:02:16:20:e3:3b:02:19:67:86:9e:c1:2e: 86:6f:ec:7e:7b:20:1f:54:f7:cf:1a:bd:90:2c:e2:a5:f9:c6: ee:d8:f4:b9:28:46:f5:aa:2a:82:86:97:fe:60:62:7d:24:db: 99:16:d9:0f:7b:65:a7:07:3d:97:6d:d6:25:06:4c:cd:7d:1f: cb:3a:66:de:28:c4:66:96:8c:f4:7a:33:0a:e2:02:67:d8:69: 7f:c2:1a:08:67:44:af:1c:3b:c0:81:c2:53:c8:6d:d3:47:e0: 17:98:2a:42:81:3b:ad:8a:a8:1a:48:18:98:3c:e2:c9:5d:f4: ba:68:2e:49:9e:fb:74:2a:d5:0f:08:95:f4:87:21:63:02:46: c9:68:d3:90:dc:32:6b:58:85:e0:87:47:30:b8:da:86:e5:bb: 27:ff:0d:ab:64:05:6c:e8:58:05:1a:5e:08:16:1c:2f:f0:14: 39:fb:76:0f:fb:51:ed:fd:8e:f3:96:78:9b:aa:b4:1b:43:ad: ba:f1:18:1a:50:39:28:0c:ca:bf:93:2e:2d:ab:d7:a7:15:a9: 7e:a6:69:e4:e1:34:a3:e6:03:1e:e9:64:ec:f9:fe:cf:7e:c7: ae:2e:51:c5:42:55:a8:ec:6c:de:20:91:9b:bf:f7:c4:39:31: 09:f4:ce:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQxMjE4MTQ0MDM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZGVlMi1iNDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcn4kIS4WWjSUTh3k5swMvTDtlLZgJ0uztdlsNwco8WspigOjx13y6FuaK5o hDZD4mGLYsFPOpjimsbgamwzrma21Jjp/8e9sp61+/q9iZ3QW5CGMJeqzacSQgBP iehF55+xaq/rLJEK0ui1Eyb93HYVhEetaElOg1v/HJ1PwXiuFi9LMzzIKVRQlAdr mjPi51qctd5LsRnhlNTJfZJxQLO0VRVitlTv2nKLIZbVycb3U5rU6zc5BXbwLWDV JXTmj4m1aSYK8ZeGn3ruIou7oHJTRxsb01BPqfN5MmeULO+OVFXNwCdN9vjVzcet B8e59khV4r1NOrr1v5qEW/p/IQIDAQABo4IClTCCApEwHQYDVR0OBBYEFECnp+MO V43KTpF5nn8sEq8ziarEMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvMjREN0Q3NEM5 NzgwMTFFRTg3QkI3RDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0WnAwDQYJKoZIhvcNAQELBQADggEBAKY2zGFLwQIWIOM7 Ahlnhp7BLoZv7H57IB9U988avZAs4qX5xu7Y9LkoRvWqKoKGl/5gYn0k25kW2Q97 ZacHPZdt1iUGTM19H8s6Zt4oxGaWjPR6MwriAmfYaX/CGghnRK8cO8CBwlPIbdNH 4BeYKkKBO62KqBpIGJg84sld9LpoLkme+3Qq1Q8IlfSHIWMCRslo05DcMmtYheCH RzC42obluyf/DatkBWzoWAUaXggWHC/wFDn7dg/7Ue39jvOWeJuqtBtDrbrxGBpQ OSgMyr+TLi2r16cVqX6maeThNKPmAx7pZOz5/s9+x64uUcVCVajsbN4gkZu/98Q5 MQn0zmI= -----END CERTIFICATE-----Generated at Sat Apr 5 02:02:48 2025 by rpki-client