$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/9B0C244C73B611EEB18A0385C4F9AE02.roa File: 9B0C244C73B611EEB18A0385C4F9AE02.roa (raw, json) Hash identifier: YgWtLAFjeyb8EUf6jgk5P6z3rHF4ij9vs7WYRKlGxPw= Subject key identifier: F2:B5:C5:31:4F:BA:67:0D:29:1C:23:71:1B:55:68:03:89:DE:46:5C Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 0360 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/9B0C244C73B611EEB18A0385C4F9AE02.roa Signing time: Wed 11 Dec 2024 01:15:05 +0000 ROA not before: Wed 11 Dec 2024 01:15:05 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 9224 IP address blocks: 58.96.128.0/19 maxlen: 19 123.50.144.0/20 maxlen: 20 125.254.64.0/19 maxlen: 19 125.254.96.0/19 maxlen: 19 202.191.8.0/21 maxlen: 21 210.56.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 864 (0x360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216 Validity Not Before: Dec 11 01:15:05 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6758e799-9ba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7d:51:65:a3:e0:d8:bf:81:67:0d:ba:24:be: 46:5a:c7:77:a2:e8:36:48:0a:63:ef:86:0f:a4:64: 78:ed:64:65:7d:e1:ab:77:67:a9:e1:b1:df:fc:a2: c3:e9:00:a6:9b:1f:08:4c:fb:d5:4e:a1:5d:e5:87: f2:c9:ae:26:fe:82:82:8a:9d:da:68:6a:c7:af:5e: 1c:71:09:42:2a:6e:d3:e2:9c:35:f9:64:74:47:66: c0:b0:09:2d:c9:b4:1b:e0:cd:35:7a:b0:cd:35:f9: a1:2f:58:11:fc:6b:49:c5:ab:6e:c6:3f:97:27:9f: 3f:a0:e6:ca:96:56:14:6a:a3:99:48:7b:43:d3:da: d4:8c:d1:d4:e6:77:96:b3:c2:e2:bb:15:f8:c8:e3: a0:ff:b4:32:ca:3b:ec:65:d8:5b:d7:ac:97:e4:f0: bc:be:6f:fd:4a:b0:6b:a4:1d:a1:61:30:f9:43:9d: 61:8c:e0:3c:24:da:ce:60:ff:bf:e9:52:12:b9:8c: 09:0e:25:19:de:e8:f6:40:c6:7d:dc:59:df:66:83: 9f:8a:5d:e1:26:d9:a4:a3:52:bf:e8:14:00:46:b8: 61:5d:c4:91:27:5a:eb:43:27:9c:02:3c:cd:84:ea: 1f:06:56:5e:02:d8:97:84:84:f3:33:59:c3:53:48: cf:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B5:C5:31:4F:BA:67:0D:29:1C:23:71:1B:55:68:03:89:DE:46:5C X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/9B0C244C73B611EEB18A0385C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.96.128.0/19 123.50.144.0/20 125.254.64.0/18 202.191.8.0/21 210.56.224.0/19 Signature Algorithm: sha256WithRSAEncryption 48:aa:d3:34:db:0f:e3:08:b8:17:16:4e:4b:c6:b8:b0:77:a3: 30:32:94:f7:be:c8:5f:e1:f5:69:71:32:48:29:81:c5:04:c7: d6:ac:c4:f3:b0:a5:60:8d:cc:54:55:bf:d2:3e:4f:c7:e0:71: 58:1b:f7:0d:91:87:a3:25:df:02:62:3f:2f:86:60:31:1f:88: 89:2d:c6:fb:28:13:69:cf:94:51:83:7d:8b:43:dd:7d:fb:99: e9:8f:e5:5a:ba:0b:5f:71:c4:cf:7e:f3:33:7d:96:54:01:38: 47:e4:0e:10:75:9a:c0:1b:62:18:b2:83:7e:21:78:93:9d:54: b6:7a:d0:de:ed:3c:ac:25:63:fd:dc:13:30:43:14:19:64:f1: d0:b0:65:57:cf:45:a6:47:aa:03:64:36:24:7c:b2:9d:ec:b4: 22:22:27:9f:22:d0:20:01:ca:1c:ac:86:f9:88:79:86:6d:bf: c7:45:61:a2:69:8e:11:c4:4e:f6:be:8b:72:19:2e:39:d3:07: 5d:61:9b:c7:a6:d7:6c:0f:7f:fa:3f:aa:fb:a3:e4:78:11:17: a7:e5:01:a4:38:e9:b7:f0:e6:c8:4a:ba:e8:c5:a6:6b:57:79: f1:80:ce:56:63:0a:b2:14:b0:d0:63:71:9e:74:16:4a:f1:75: f7:19:f0:8b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICA2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjQxMjExMDExNTA1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4ZTc5OS05YmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmn1RZaPg2L+BZw26JL5GWsd3oug2SApj74YPpGR47WRlfeGrd2ep4bHf/KLD 6QCmmx8ITPvVTqFd5Yfyya4m/oKCip3aaGrHr14ccQlCKm7T4pw1+WR0R2bAsAkt ybQb4M01erDNNfmhL1gR/GtJxatuxj+XJ58/oObKllYUaqOZSHtD09rUjNHU5neW s8LiuxX4yOOg/7QyyjvsZdhb16yX5PC8vm/9SrBrpB2hYTD5Q51hjOA8JNrOYP+/ 6VISuYwJDiUZ3uj2QMZ93FnfZoOfil3hJtmko1K/6BQARrhhXcSRJ1rrQyecAjzN hOofBlZeAtiXhITzM1nDU0jPewIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFPK1xTFP umcNKRwjcRtVaAOJ3kZcMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMTYvREM3ODI2OENCOTRCMTFFQzgzMkI3NDE5QzRGOUFFMDIvOUIwQzI0NEM3 M0I2MTFFRUIxOEEwMzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAU6YIADBAR7MpADBAZ9/kADBAPKvwgDBAXSOOAwDQYJKoZI hvcNAQELBQADggEBAEiq0zTbD+MIuBcWTkvGuLB3ozAylPe+yF/h9WlxMkgpgcUE x9asxPOwpWCNzFRVv9I+T8fgcVgb9w2Rh6Ml3wJiPy+GYDEfiIktxvsoE2nPlFGD fYtD3X37memP5Vq6C19xxM9+8zN9llQBOEfkDhB1msAbYhiyg34heJOdVLZ60N7t PKwlY/3cEzBDFBlk8dCwZVfPRaZHqgNkNiR8sp3stCIiJ58i0CAByhyshvmIeYZt v8dFYaJpjhHETva+i3IZLjnTB11hm8em12wPf/o/qvuj5HgRF6flAaQ46bfw5shK uujFpmtXefGAzlZjCrIUsNBjcZ50FkrxdfcZ8Is= -----END CERTIFICATE-----Generated at Sun Apr 6 01:26:10 2025 by rpki-client