$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/6D6692CAAA0211EEAADA3D32C4F9AE02.roa File: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (raw, json) Hash identifier: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4= Subject key identifier: 19:BB:EE:6F:3F:69:78:27:1A:66:0F:16:FD:2F:02:28:04:F4:87:A2 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 1324 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/6D6692CAAA0211EEAADA3D32C4F9AE02.roa Signing time: Wed 22 Jan 2025 17:24:52 +0000 ROA not before: Wed 22 Jan 2025 17:24:52 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 10204 IP address blocks: 146.88.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4900 (0x1324) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8 Validity Not Before: Jan 22 17:24:52 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679129e4-d73c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:04:f9:0c:af:ab:8d:9c:92:15:21:ba:a9:b5: aa:af:16:81:e4:38:e4:b0:72:b4:f9:29:c5:80:22: e5:8e:5b:d9:8b:1d:06:9e:3f:31:1e:59:23:37:86: 9d:fa:47:fe:0f:ed:50:2d:bd:50:49:77:44:17:7c: db:2a:48:e4:a9:33:99:e4:2e:50:49:b1:e0:6a:58: 3b:9f:c7:8c:a7:fb:09:45:de:19:da:c9:0c:c2:0a: a6:2d:39:ce:3f:f3:aa:58:69:82:61:b1:91:28:5b: 1e:a2:b4:9c:35:99:32:ea:5c:af:cc:77:e9:30:17: cc:e8:39:fb:12:de:31:32:49:a7:0c:4a:46:9b:3f: f8:63:14:26:60:53:ed:2d:bd:41:e2:9a:9a:cf:de: 73:47:ab:ce:e9:56:5b:5c:41:e8:8e:f6:c7:02:53: e8:65:26:4d:00:8f:cb:b6:16:95:aa:22:0d:0f:cc: 5a:ce:9e:ce:dc:94:e9:56:d5:a8:fc:62:aa:56:39: a0:24:6f:f5:c9:21:96:d2:b2:aa:ba:8c:d0:d4:5b: 77:c5:ee:6c:44:03:90:d4:01:33:95:77:34:63:ef: 54:be:ad:6b:31:f1:fb:59:73:5d:04:75:6d:fb:19: 19:00:24:77:f5:1a:ed:59:ee:7b:37:ae:43:10:cd: 64:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BB:EE:6F:3F:69:78:27:1A:66:0F:16:FD:2F:02:28:04:F4:87:A2 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/6D6692CAAA0211EEAADA3D32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.88.196.0/22 Signature Algorithm: sha256WithRSAEncryption 29:4f:9d:c6:8a:0f:01:b4:19:fa:42:0f:bf:f4:a1:31:a9:9f: 72:00:b7:b5:fb:76:61:79:f5:f7:e9:0c:65:c6:75:55:8e:86: 5c:39:b9:e4:c9:26:b0:5c:c4:55:d2:88:41:23:ce:1f:f3:6b: 13:50:84:97:06:90:67:4b:a9:10:fb:1b:c6:f4:c3:33:57:8c: 15:d0:fc:82:d6:42:b7:9c:0c:95:14:f9:07:94:8a:77:78:5d: 7a:22:83:57:34:31:0a:3c:3c:47:f5:26:52:62:21:b0:f8:79: 4d:1f:61:31:59:b3:2b:4e:0d:33:76:51:4c:eb:08:f9:f0:d1: fd:c9:3d:16:3c:2a:58:14:15:4f:16:db:16:8d:54:54:43:bb: b2:f3:8e:a0:63:12:e3:f2:c7:bc:7a:71:74:1b:3a:98:e9:fc: 50:4e:11:ef:b3:46:ac:96:e1:2c:24:48:25:6a:c8:da:78:42: 96:5e:1e:5f:01:1f:00:7f:d1:a6:be:0e:9e:f2:87:f1:68:6b: e4:49:15:77:97:ee:9f:21:ea:02:e3:fa:18:a3:1d:4d:d8:2f: 20:84:30:85:68:c5:5a:9d:c7:3c:36:ff:9a:ed:25:55:86:bf: 57:b9:a0:91:23:44:17:64:eb:02:83:77:96:41:b0:a9:b1:2b: 65:9a:1f:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUwMTIyMTcyNDUyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxMjllNC1kNzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwT5DK+rjZySFSG6qbWqrxaB5DjksHK0+SnFgCLljlvZix0Gnj8xHlkjN4ad +kf+D+1QLb1QSXdEF3zbKkjkqTOZ5C5QSbHgalg7n8eMp/sJRd4Z2skMwgqmLTnO P/OqWGmCYbGRKFseorScNZky6lyvzHfpMBfM6Dn7Et4xMkmnDEpGmz/4YxQmYFPt Lb1B4pqaz95zR6vO6VZbXEHojvbHAlPoZSZNAI/LthaVqiIND8xazp7O3JTpVtWo /GKqVjmgJG/1ySGW0rKquozQ1Ft3xe5sRAOQ1AEzlXc0Y+9Uvq1rMfH7WXNdBHVt +xkZACR39RrtWe57N65DEM1kzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBm77m8/ aXgnGmYPFv0vAigE9IeiMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFEQjgvMEQ5OTMxQkFBMTFFMTFFODlFNjM2NzEwQzRGOUFFMDIvNkQ2NjkyQ0FB QTAyMTFFRUFBREEzRDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKSWMQwDQYJKoZIhvcNAQELBQADggEBAClPncaKDwG0GfpC D7/0oTGpn3IAt7X7dmF59ffpDGXGdVWOhlw5ueTJJrBcxFXSiEEjzh/zaxNQhJcG kGdLqRD7G8b0wzNXjBXQ/ILWQrecDJUU+QeUind4XXoig1c0MQo8PEf1JlJiIbD4 eU0fYTFZsytODTN2UUzrCPnw0f3JPRY8KlgUFU8W2xaNVFRDu7LzjqBjEuPyx7x6 cXQbOpjp/FBOEe+zRqyW4SwkSCVqyNp4QpZeHl8BHwB/0aa+Dp7yh/Foa+RJFXeX 7p8h6gLj+hijHU3YLyCEMIVoxVqdxzw2/5rtJVWGv1e5oJEjRBdk6wKDd5ZBsKmx K2WaH3I= -----END CERTIFICATE-----Generated at Sun Apr 6 03:55:14 2025 by rpki-client