$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D166652A072211EF9AC24D5BC4F9AE02.roa File: D166652A072211EF9AC24D5BC4F9AE02.roa (raw, json) Hash identifier: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs= Subject key identifier: A2:0C:E1:3F:DE:8D:D0:76:2B:13:8E:16:96:21:77:E0:D2:9E:02:03 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3599 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D166652A072211EF9AC24D5BC4F9AE02.roa Signing time: Wed 18 Dec 2024 14:40:37 +0000 ROA not before: Wed 18 Dec 2024 14:40:37 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150750 IP address blocks: 116.90.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13721 (0x3599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E Validity Not Before: Dec 18 14:40:37 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6762dee5-9afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:81:49:d6:5b:02:ec:08:35:59:9a:b7:ea:5e: 93:7a:7b:9e:7b:4c:92:df:3b:28:4b:35:d8:a0:35: f1:c6:32:91:28:65:73:9a:cd:c4:cd:ae:3c:a7:6c: 1e:96:e6:f7:72:fe:c9:30:1a:65:c9:f4:c9:42:7d: 13:65:a3:0c:3c:51:85:bd:c2:65:41:0b:ba:17:69: 7e:01:19:73:3f:95:6a:fd:37:ba:30:0c:64:91:5a: de:8c:ee:4e:c0:ab:9f:f7:8d:7a:36:9c:ea:f8:74: ed:60:12:ce:96:0c:26:1e:56:0b:30:c3:c3:f3:3b: bb:7c:ca:83:a6:8b:df:e1:a6:69:cf:47:06:2d:c3: 82:90:f0:fe:ee:b0:9f:da:40:1b:08:24:e8:dd:cd: 5f:ac:ed:16:09:94:d7:25:79:4b:d8:9d:0c:07:b2: e9:f4:81:c5:4d:d2:91:86:15:37:25:9e:57:3a:9b: 8c:91:22:06:ad:55:a6:47:1f:1c:21:dc:4b:77:2f: 71:08:93:b6:3e:1a:2b:86:e9:7c:9a:c8:44:f4:49: df:a0:db:6e:59:a7:96:fe:1b:c4:6d:d5:5f:8a:3a: 55:ee:41:e9:c6:12:19:56:72:0b:70:09:40:fe:4f: bc:1b:36:e8:21:0d:55:a8:da:0c:f7:d6:0c:54:50: ba:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0C:E1:3F:DE:8D:D0:76:2B:13:8E:16:96:21:77:E0:D2:9E:02:03 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D166652A072211EF9AC24D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.121.0/24 Signature Algorithm: sha256WithRSAEncryption 00:1c:31:5a:e8:09:47:2d:ea:4f:7f:d1:67:23:cc:13:0d:9d: 27:6e:b2:a6:67:2a:96:07:58:27:f8:c2:b2:fe:8a:28:f1:09: 79:9a:be:49:b4:81:f4:6b:d4:e9:b6:5e:db:01:21:8a:60:1d: 23:5d:44:80:fc:b3:b0:86:6a:e3:e8:a3:a3:ca:b9:64:dc:ff: 23:25:9b:08:45:d2:04:4b:94:86:71:c1:d4:a1:04:8d:19:11: c4:2c:8e:2c:b9:1a:7e:05:6a:41:5e:00:16:86:70:ae:68:37: d6:2e:c4:45:4d:1c:ba:80:d1:cd:25:81:0d:82:42:d7:a6:c6: ca:21:56:49:a1:42:45:d7:17:47:dc:85:e7:e2:1e:be:72:29: e2:ca:fa:47:a3:99:bb:74:02:49:4d:18:50:56:db:87:ee:09: 23:7c:ca:ae:52:aa:cd:6e:7b:b8:30:d7:3a:f6:89:a3:40:2e: e2:6f:6b:30:c6:21:b9:f1:61:46:14:eb:2d:9d:a7:99:67:b7: 33:e1:e1:b3:f0:c9:b1:e1:b1:e9:52:38:d8:db:22:29:69:82: 64:2f:b6:20:be:6e:42:e2:a4:4f:8c:86:84:70:7e:59:87:f5: 98:7b:b7:c6:ab:bf:1d:c2:d5:3e:4b:fe:77:2b:0b:cc:e1:5d: 37:a9:ca:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQxMjE4MTQ0MDM3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZGVlNS05YWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IFJ1lsC7Ag1WZq36l6Tenuee0yS3zsoSzXYoDXxxjKRKGVzms3Eza48p2we lub3cv7JMBplyfTJQn0TZaMMPFGFvcJlQQu6F2l+ARlzP5Vq/Te6MAxkkVrejO5O wKuf9416Npzq+HTtYBLOlgwmHlYLMMPD8zu7fMqDpovf4aZpz0cGLcOCkPD+7rCf 2kAbCCTo3c1frO0WCZTXJXlL2J0MB7Lp9IHFTdKRhhU3JZ5XOpuMkSIGrVWmRx8c IdxLdy9xCJO2Phorhul8mshE9EnfoNtuWaeW/hvEbdVfijpV7kHpxhIZVnILcAlA /k+8GzboIQ1VqNoM99YMVFC6kwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKIM4T/e jdB2KxOOFpYhd+DSngIDMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvRDE2NjY1MkEw NzIyMTFFRjlBQzI0RDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0WnkwDQYJKoZIhvcNAQELBQADggEBAAAcMVroCUct6k9/ 0WcjzBMNnSdusqZnKpYHWCf4wrL+iijxCXmavkm0gfRr1Om2XtsBIYpgHSNdRID8 s7CGauPoo6PKuWTc/yMlmwhF0gRLlIZxwdShBI0ZEcQsjiy5Gn4FakFeABaGcK5o N9YuxEVNHLqA0c0lgQ2CQtemxsohVkmhQkXXF0fchefiHr5yKeLK+kejmbt0AklN GFBW24fuCSN8yq5Sqs1ue7gw1zr2iaNALuJvazDGIbnxYUYU6y2dp5lntzPh4bPw ybHhselSONjbIilpgmQvtiC+bkLipE+MhoRwflmH9Zh7t8arvx3C1T5L/ncrC8zh XTepyu8= -----END CERTIFICATE-----Generated at Sat Apr 5 01:47:47 2025 by rpki-client