$ rpki-client -vvf rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa File: C86D4880DBDE11EAB7E6495DC4F9AE02.roa (raw, json) Hash identifier: uwJuVm6AlMvySENN89snQUpf9n5HdrFH2LmfnmM6GGU= Subject key identifier: BE:00:7B:C5:3F:DE:89:89:4A:89:18:69:0D:D9:25:4A:43:10:B8:5D Certificate issuer: /CN=A91B872C/serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Certificate serial: 077B Authority key identifier: 40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa Signing time: Fri 02 Aug 2024 22:19:59 +0000 ROA not before: Fri 02 Aug 2024 22:19:59 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137386 IP address blocks: 123.253.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B872C Validity Not Before: Aug 2 22:19:59 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad5b8f-8829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7e:99:8a:32:bc:cf:86:30:ae:39:ee:0d:e1: 8a:c4:3b:64:d5:f7:bc:4b:2c:82:c6:05:44:99:f5: fb:0e:17:12:6f:f6:dc:94:ed:26:3f:25:a8:f9:6f: 8c:8b:a8:ec:1d:ed:67:f6:48:ca:69:3c:82:7e:0f: da:cd:dc:a5:e1:49:da:f0:82:59:55:87:f1:d9:e4: 1c:5c:57:04:09:52:6a:dd:43:c0:56:cb:5e:5c:18: 6f:ad:83:45:15:7c:fd:7b:d9:f5:56:44:53:49:ac: 69:d5:fa:15:f4:6a:df:ac:be:da:cd:ca:8f:cf:3d: 13:09:88:ec:5f:05:79:0e:c2:0e:27:2f:e0:be:12: f8:55:50:f4:18:d2:fe:19:db:ba:89:b0:06:23:79: 63:80:5a:63:f1:e2:60:6e:7b:e6:71:f1:fe:fb:78: a9:b3:26:16:9d:93:28:87:8f:43:bb:01:cd:c7:ce: 75:78:a1:9f:ec:fc:42:b6:ab:07:88:a0:ad:6e:c7: 94:a5:a2:2a:df:93:6c:34:a1:dd:81:53:0d:0e:27: c1:4d:bb:bc:8d:b8:63:48:c0:4f:f2:46:f4:e8:c4: 3b:c1:01:e6:eb:99:6f:78:15:62:63:52:70:c9:78: c5:aa:e5:b6:a2:52:b8:dd:f8:ad:30:06:95:ad:b1: a3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:00:7B:C5:3F:DE:89:89:4A:89:18:69:0D:D9:25:4A:43:10:B8:5D X509v3 Authority Key Identifier: keyid:40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.219.0/24 Signature Algorithm: sha256WithRSAEncryption 82:0d:41:3e:91:49:80:4e:59:9a:f9:97:16:cb:f7:ce:4c:ba: a9:e7:24:0f:85:e3:b2:ff:39:22:54:9b:c6:4a:c1:16:79:64: 09:f9:eb:f7:1a:f1:00:78:49:55:91:88:8c:09:77:f3:c6:01: 7c:81:7a:ba:71:a3:03:06:e9:5e:cb:c9:83:a7:47:13:23:b1: e2:f9:bd:f3:a6:84:17:24:30:2f:d9:1a:ca:43:af:55:df:b1: ac:fa:1f:b7:b3:e6:bc:e9:83:28:68:45:cc:88:69:b8:7d:ed: 6a:b1:7a:08:17:af:88:6e:b1:ec:41:d7:a6:a2:53:ce:b0:5a: 53:49:81:da:8b:4d:bf:c1:67:1f:98:63:3e:ee:f0:b1:ab:8f: 81:71:4a:99:33:dd:e9:71:37:16:e3:3e:51:f6:6d:64:d4:d1: 50:fb:17:dd:78:af:76:79:d3:2b:f0:28:5c:90:d6:e9:cd:ea: a0:02:05:36:68:b3:49:20:fa:3f:47:85:95:c3:b4:ff:ba:79: ae:eb:8e:4a:52:04:07:4a:2a:1a:8d:c2:2d:f5:9b:b5:9e:f1: f2:01:5e:f7:45:98:d7:3a:09:0a:81:d6:cf:31:a7:47:0b:7c: 68:2f:a0:89:e3:18:6e:7e:19:a9:d4:88:50:2a:76:89:5d:d3: 90:bf:2e:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg3MkMxMTAvBgNVBAUTKDQwNjA2QTVCNUQyOUJCRjQyMTY3RkE2OEIzMjY4NjdF RjkwRTgyNkYwHhcNMjQwODAyMjIxOTU5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkNWI4Zi04ODI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzn6ZijK8z4YwrjnuDeGKxDtk1fe8SyyCxgVEmfX7DhcSb/bclO0mPyWo+W+M i6jsHe1n9kjKaTyCfg/azdyl4Una8IJZVYfx2eQcXFcECVJq3UPAVsteXBhvrYNF FXz9e9n1VkRTSaxp1foV9GrfrL7azcqPzz0TCYjsXwV5DsIOJy/gvhL4VVD0GNL+ Gdu6ibAGI3ljgFpj8eJgbnvmcfH++3ipsyYWnZMoh49DuwHNx851eKGf7PxCtqsH iKCtbseUpaIq35NsNKHdgVMNDifBTbu8jbhjSMBP8kb06MQ7wQHm65lveBViY1Jw yXjFquW2olK43fitMAaVrbGjQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL4Ae8U/ 3omJSokYaQ3ZJUpDELhdMB8GA1UdIwQYMBaAFEBgaltdKbv0IWf6aLMmhn75DoJv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODcyQy9GMjBFNTU5NkRC REMxMUVBOTNGRjdENDRDNEY5QUUwMi9RR0JxVzEwcHVfUWhaX3Bvc3lhR2Z2a09n bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHQnFXMTBwdV9RaFpfcG9zeWFHZnZrT2dtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg3MkMvRjIwRTU1OTZEQkRDMTFFQTkzRkY3RDQ0QzRGOUFFMDIvQzg2RDQ4ODBE QkRFMTFFQUI3RTY0OTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7/dswDQYJKoZIhvcNAQELBQADggEBAIINQT6RSYBOWZr5 lxbL985MuqnnJA+F47L/OSJUm8ZKwRZ5ZAn56/ca8QB4SVWRiIwJd/PGAXyBerpx owMG6V7LyYOnRxMjseL5vfOmhBckMC/ZGspDr1Xfsaz6H7ez5rzpgyhoRcyIabh9 7WqxeggXr4husexB16aiU86wWlNJgdqLTb/BZx+YYz7u8LGrj4FxSpkz3elxNxbj PlH2bWTU0VD7F914r3Z50yvwKFyQ1unN6qACBTZos0kg+j9HhZXDtP+6ea7rjkpS BAdKKhqNwi31m7We8fIBXvdFmNc6CQqB1s8xp0cLfGgvoInjGG5+GanUiFAqdold 05C/LvU= -----END CERTIFICATE-----Generated at Sun Apr 6 12:47:32 2025 by rpki-client