$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/1167F6B2A18211EFA7475221C4F9AE02.roa File: 1167F6B2A18211EFA7475221C4F9AE02.roa (raw, json) Hash identifier: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs= Subject key identifier: 50:04:0D:00:C1:C0:87:70:B9:1B:71:B8:C8:33:DB:65:70:80:B2:08 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: 10 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/1167F6B2A18211EFA7475221C4F9AE02.roa Signing time: Mon 02 Dec 2024 23:52:43 +0000 ROA not before: Mon 02 Dec 2024 23:52:43 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133120 IP address blocks: 204.15.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039 Validity Not Before: Dec 2 23:52:43 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674e484a-f8fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d1:3d:b6:8f:53:b3:55:f9:49:35:16:d5:1e: d2:1a:c4:8a:0d:66:ad:00:64:e4:79:5c:ff:41:7f: d2:08:91:84:c2:cb:bc:e0:ac:38:9e:af:17:f4:a2: 65:5d:eb:41:9c:cf:43:67:92:2f:f3:08:6c:28:38: ba:3f:d8:5c:ac:cc:97:88:ed:5c:8f:14:f3:8b:19: 74:01:01:09:30:f6:18:52:7b:aa:ad:31:c3:7e:26: 15:ab:7f:87:90:48:b4:5d:38:38:2b:39:4b:83:98: e5:16:b9:89:e8:b5:a9:51:a3:b1:d2:5f:b5:ae:e5: 9f:24:60:9c:c1:0b:6b:99:aa:74:55:f2:0a:46:d8: b4:94:bf:14:92:f5:e7:6d:18:33:f9:93:c1:f4:35: 3b:67:95:0a:2c:ff:96:67:2b:a6:e8:a7:e8:4b:82: 39:a0:bd:98:b6:9e:3f:d4:88:2a:37:da:c2:2e:93: 41:3b:de:7c:12:f6:09:30:18:d9:4e:fb:42:2f:64: 0d:e3:80:65:6b:38:b8:60:3b:1e:c9:47:6e:e7:29: b5:28:e3:b0:a0:e5:fb:de:70:7f:f8:e8:07:de:64: a6:0f:f7:34:c8:36:37:dd:32:61:ce:4a:87:26:33: d1:79:3a:ce:53:87:8c:72:38:7a:4f:da:f4:97:f9: df:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:04:0D:00:C1:C0:87:70:B9:1B:71:B8:C8:33:DB:65:70:80:B2:08 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/1167F6B2A18211EFA7475221C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.15.40.0/23 Signature Algorithm: sha256WithRSAEncryption 04:0b:bb:9b:f9:0a:85:dd:bb:ed:e4:21:64:9e:1a:29:e0:f9: 10:23:28:8e:e6:d6:f5:46:ba:bc:35:cf:c5:6a:0b:2f:8f:7e: 1e:d9:85:4b:2a:62:5d:c4:e3:d6:96:dc:75:ad:62:27:ce:78: 64:b9:4e:84:11:84:db:fb:0d:4b:f0:49:ea:d6:da:88:38:27: e7:dd:89:58:67:80:5d:de:cd:0e:81:55:90:dd:2f:19:8d:41: 58:65:95:1a:2e:bc:ee:e2:4c:3f:c5:c0:bb:52:2a:ef:e9:50: d2:0c:c8:6e:24:25:26:5b:6d:6a:e4:db:c8:20:20:c4:ab:ae: 57:51:4b:14:71:0e:90:29:ac:d6:5c:a5:ab:58:1c:97:dc:72: 58:5a:3f:0b:4d:bb:7b:24:4c:15:b6:a3:6e:c4:eb:e2:66:e3: b4:d2:a1:c7:c6:9d:fe:9d:36:cb:a4:4e:f5:d2:e9:aa:76:62: 15:ec:43:6c:d5:ce:5f:3b:46:88:ea:0c:f8:a7:d0:ca:1a:e0: 33:f0:47:fa:6c:ea:8a:31:ff:be:02:64:f6:67:a6:52:d4:3e: 42:82:5b:60:69:50:de:24:e4:9b:b9:66:4c:02:fd:af:1b:b1: d7:e6:b0:e0:48:a9:50:cc:99:1b:dd:a8:dc:5b:91:ea:cc:33: c9:9f:e6:bf -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzAzOTExMC8GA1UEBRMoOTEwODI1NzhGNzFFNEI4NjA1N0RDM0VCMDcwM0ZFNjU4 OUU2Njg5MTAeFw0yNDEyMDIyMzUyNDNaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGU0ODRhLWY4ZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCX0T22j1OzVflJNRbVHtIaxIoNZq0AZOR5XP9Bf9IIkYTCy7zgrDierxf0omVd 60Gcz0Nnki/zCGwoOLo/2FyszJeI7VyPFPOLGXQBAQkw9hhSe6qtMcN+JhWrf4eQ SLRdODgrOUuDmOUWuYnotalRo7HSX7Wu5Z8kYJzBC2uZqnRV8gpG2LSUvxSS9edt GDP5k8H0NTtnlQos/5ZnK6bop+hLgjmgvZi2nj/UiCo32sIuk0E73nwS9gkwGNlO +0IvZA3jgGVrOLhgOx7JR27nKbUo47Cg5fvecH/46AfeZKYP9zTINjfdMmHOSocm M9F5Os5Th4xyOHpP2vSX+d/LAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUAQNAMHA h3C5G3G4yDPbZXCAsggwHwYDVR0jBBgwFoAUkQglePceS4YFfcPrBwP+ZYnmaJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDMDM5LzE1MzRBMDVBQTE3 NDExRUZCRjYxNjYyNEM0RjlBRTAyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva1FnbGVQY2VTNFlGZmNQckJ3UC1aWW5tYUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi8xMTY3RjZCMkEx ODIxMUVGQTc0NzUyMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcwPKDANBgkqhkiG9w0BAQsFAAOCAQEABAu7m/kKhd277eQh ZJ4aKeD5ECMojubW9Ua6vDXPxWoLL49+HtmFSypiXcTj1pbcda1iJ854ZLlOhBGE 2/sNS/BJ6tbaiDgn592JWGeAXd7NDoFVkN0vGY1BWGWVGi687uJMP8XAu1Iq7+lQ 0gzIbiQlJlttauTbyCAgxKuuV1FLFHEOkCms1lylq1gcl9xyWFo/C027eyRMFbaj bsTr4mbjtNKhx8ad/p02y6RO9dLpqnZiFexDbNXOXztGiOoM+KfQyhrgM/BH+mzq ijH/vgJk9memUtQ+QoJbYGlQ3iTkm7lmTAL9rxux1+aw4EipUMyZG92o3FuR6swz yZ/mvw== -----END CERTIFICATE-----Generated at Sat Apr 5 21:08:03 2025 by rpki-client