$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/945922AECEBA11EDBBFD9E28C4F9AE02.roa File: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (raw, json) Hash identifier: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk= Subject key identifier: F4:36:20:42:7F:A4:9E:D7:AC:44:4B:0D:D7:9B:21:8C:1C:9B:9F:1D Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3593 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/945922AECEBA11EDBBFD9E28C4F9AE02.roa Signing time: Wed 18 Dec 2024 14:40:32 +0000 ROA not before: Wed 18 Dec 2024 14:40:32 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138985 IP address blocks: 116.90.106.0/24 maxlen: 24 116.90.107.0/24 maxlen: 24 116.90.108.0/24 maxlen: 24 116.90.109.0/24 maxlen: 24 202.69.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13715 (0x3593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E Validity Not Before: Dec 18 14:40:32 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6762dee0-0739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c3:28:88:f8:e0:05:9d:08:43:e5:0b:be:e7: 43:d5:8a:5c:e4:99:b3:4c:ca:c1:d8:5f:53:c2:e9: f8:6e:dd:71:92:7d:b0:73:e1:da:26:56:a1:e7:c2: a0:5b:3e:ac:cd:db:06:58:0f:17:30:4a:a8:56:90: 75:64:8a:05:53:96:06:54:bd:44:01:24:8a:00:f8: ac:a4:c3:c4:46:a8:6d:8a:4c:c8:d3:61:48:69:c0: f1:6d:04:80:26:23:b7:c8:15:8b:7e:b2:08:3e:ec: ed:aa:b0:f5:6f:fe:b9:10:31:a1:84:da:cc:cd:2f: d1:c5:9d:b7:48:56:25:25:c8:32:dd:23:5e:b7:6e: 5b:5c:2e:14:4a:0b:ed:30:cc:66:3a:e1:bf:72:75: f3:d9:10:40:65:3d:09:5e:aa:24:86:6f:f6:e9:b7: de:af:3a:b2:25:6f:2c:a7:08:61:18:50:cd:79:5c: 66:8f:77:67:b1:63:4a:ff:ed:f1:be:d4:14:4b:03: 06:98:86:48:37:04:b9:1c:21:7b:76:5c:80:84:d2: cd:90:2c:b2:97:ea:70:fb:15:6e:51:57:99:ee:f6: cf:a1:33:9b:f9:0b:d6:0d:e6:2f:d0:8b:26:0f:e4: b9:c4:b9:42:2e:37:ee:e8:3c:04:e0:1a:be:d8:27: be:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:36:20:42:7F:A4:9E:D7:AC:44:4B:0D:D7:9B:21:8C:1C:9B:9F:1D X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/945922AECEBA11EDBBFD9E28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.106.0-116.90.109.255 202.69.42.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:b9:bb:38:b5:83:92:22:0d:bc:ed:9e:39:2a:9b:c9:c4:b9: 67:de:cc:ad:b3:7d:82:a3:7c:a5:76:e0:89:c5:6c:53:07:12: e8:6d:11:4a:99:cb:68:32:42:15:79:b3:2c:62:c8:65:99:19: b9:eb:3a:96:e7:ab:3d:30:65:b3:87:ca:72:32:48:5d:9a:ac: 4e:15:11:03:dc:14:c5:56:1f:34:be:a2:70:e5:d2:f6:0d:6d: e6:43:f9:11:8b:aa:ce:76:e4:ec:89:86:3b:eb:b8:a7:c9:89: 97:8a:b9:cd:4c:67:7f:6c:56:c1:44:40:7c:d4:00:1b:7c:e1: 36:33:64:40:a2:6d:c7:51:b8:aa:60:23:28:22:50:91:79:e4: be:10:23:44:a7:9f:bc:80:3e:1c:c2:33:6c:62:72:fa:e4:29: 18:7a:0a:97:f4:31:75:90:8e:54:72:44:3d:d1:c4:78:03:0a: 21:a2:06:37:0c:9f:5d:9b:05:86:e7:3f:98:86:be:aa:38:13: d5:04:1b:d0:c1:d6:c7:ad:9a:c3:68:19:8e:d4:8d:79:1f:e1: 5b:c6:88:73:b3:ab:09:f4:1d:20:df:81:51:b8:04:ec:05:d0: 01:7d:1a:34:60:08:29:01:36:ef:17:fe:81:bc:0a:66:f0:eb: 6c:e4:5c:4b -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQxMjE4MTQ0MDMyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZGVlMC0wNzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcMoiPjgBZ0IQ+ULvudD1Ypc5JmzTMrB2F9Twun4bt1xkn2wc+HaJlah58Kg Wz6szdsGWA8XMEqoVpB1ZIoFU5YGVL1EASSKAPispMPERqhtikzI02FIacDxbQSA JiO3yBWLfrIIPuztqrD1b/65EDGhhNrMzS/RxZ23SFYlJcgy3SNet25bXC4USgvt MMxmOuG/cnXz2RBAZT0JXqokhm/26bferzqyJW8spwhhGFDNeVxmj3dnsWNK/+3x vtQUSwMGmIZINwS5HCF7dlyAhNLNkCyyl+pw+xVuUVeZ7vbPoTOb+QvWDeYv0Ism D+S5xLlCLjfu6DwE4Bq+2Ce+bQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFPQ2IEJ/ pJ7XrERLDdebIYwcm58dMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvOTQ1OTIyQUVD RUJBMTFFREJCRkQ5RTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAXRaagMEAXRabAMEAMpFKjANBgkqhkiG9w0BAQsFAAOC AQEADLm7OLWDkiINvO2eOSqbycS5Z97MrbN9gqN8pXbgicVsUwcS6G0RSpnLaDJC FXmzLGLIZZkZues6luerPTBls4fKcjJIXZqsThURA9wUxVYfNL6icOXS9g1t5kP5 EYuqznbk7ImGO+u4p8mJl4q5zUxnf2xWwURAfNQAG3zhNjNkQKJtx1G4qmAjKCJQ kXnkvhAjRKefvIA+HMIzbGJy+uQpGHoKl/QxdZCOVHJEPdHEeAMKIaIGNwyfXZsF huc/mIa+qjgT1QQb0MHWx62aw2gZjtSNeR/hW8aIc7OrCfQdIN+BUbgE7AXQAX0a NGAIKQE27xf+gbwKZvDrbORcSw== -----END CERTIFICATE-----Generated at Sat Apr 5 01:28:01 2025 by rpki-client