$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa File: 1229795E652C11EB9B039023C4F9AE02.roa (raw, json) Hash identifier: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY= Subject key identifier: 66:94:60:95:2B:2B:67:58:90:25:2A:F0:EF:6D:5A:18:0B:1C:23:7D Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 07AA Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa Signing time: Wed 22 Jan 2025 20:49:41 +0000 ROA not before: Wed 22 Jan 2025 20:49:41 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138423 IP address blocks: 209.150.144.0/23 maxlen: 24 209.150.146.0/23 maxlen: 24 209.150.148.0/22 maxlen: 24 209.150.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1962 (0x7aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D Validity Not Before: Jan 22 20:49:41 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679159e5-8044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a4:f1:7b:75:44:25:a1:a0:0f:f7:bf:97:14: 9c:00:c8:b2:40:29:b8:e4:65:40:77:35:c8:ee:f7: cb:02:ec:11:92:0c:6c:13:9b:00:ef:e9:4d:84:4c: 44:7c:65:bf:92:0a:80:6e:aa:9d:ba:86:7e:63:91: 47:66:70:c9:1c:53:a9:7e:c1:a0:04:6a:0f:b3:79: fa:16:0a:d6:ac:01:00:5f:26:51:b7:44:72:9b:d9: 76:5b:7b:58:7c:6b:4e:53:a7:63:46:4f:6b:51:2f: 41:71:fe:f0:a6:3f:d6:be:a5:31:ec:1a:84:49:fb: e2:62:f7:4b:95:a0:dd:4d:cb:b4:c4:a9:a7:f4:47: 8b:e8:4b:f7:b0:a8:ff:dd:bf:08:a2:1f:aa:44:b0: 05:24:40:e9:1a:4f:a8:d0:b5:ec:7b:3d:7a:a0:73: 94:77:3e:dc:a1:dc:86:1e:6a:a1:7b:f5:1f:de:9d: 4f:c8:9f:11:81:9f:49:bb:04:6d:0e:ef:fd:37:59: 01:d5:9e:87:38:fd:f1:d6:86:64:e3:87:04:6e:2f: 15:e8:dd:96:eb:a4:84:76:f6:c9:ae:d1:80:36:0a: 32:a8:9f:b5:c2:7b:b4:f5:93:43:e1:fd:57:ea:e1: 71:3e:8a:e3:88:c7:78:8a:0f:b3:ff:bd:fd:e0:83: 58:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:94:60:95:2B:2B:67:58:90:25:2A:F0:EF:6D:5A:18:0B:1C:23:7D X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 209.150.144.0/21 209.150.159.0/24 Signature Algorithm: sha256WithRSAEncryption 91:6b:8e:e9:2f:78:f9:4f:00:56:b3:ae:92:ae:6f:4a:04:91: 95:e0:b0:b8:63:ff:9d:76:fd:76:81:e9:11:2a:0b:93:46:dc: bc:17:b6:7d:7f:95:15:ce:5b:86:a7:35:7d:dc:43:83:93:b1: 21:24:da:8f:f2:a3:be:80:30:ee:e8:30:18:2c:dc:c6:11:e6: 94:97:4b:78:f7:ad:ab:cc:49:97:05:ed:53:fc:a1:87:8b:9c: c5:c2:35:68:a4:b1:96:f9:46:3f:e7:e1:9c:b8:83:4b:8c:4e: 0c:df:4d:30:bf:15:bd:aa:02:2f:f6:be:15:d0:d9:a7:e6:41: 6c:c8:fe:79:c3:ef:ef:3b:c9:2a:c4:71:8e:fb:9f:f5:77:74: 6f:2a:d4:e5:42:4f:c2:39:74:3c:21:fb:d8:f0:aa:94:c3:9b: a9:6e:fe:79:03:df:f8:f7:c6:eb:d7:46:f9:09:12:a3:9d:79: 80:54:ba:2f:e6:ed:38:10:e7:39:2f:94:06:bb:73:47:84:e4: 66:d7:31:1b:38:be:41:9e:a7:e6:7c:18:2f:51:08:5e:59:60: ce:60:ec:5b:fa:36:86:44:60:cd:0c:dc:90:06:b4:5a:d6:d1: c2:b7:3e:8a:98:94:2b:e4:f7:b4:3e:12:71:76:bf:b0:5e:b9: 2e:15:c0:b6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwMTIyMjA0OTQxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxNTllNS04MDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKTxe3VEJaGgD/e/lxScAMiyQCm45GVAdzXI7vfLAuwRkgxsE5sA7+lNhExE fGW/kgqAbqqduoZ+Y5FHZnDJHFOpfsGgBGoPs3n6FgrWrAEAXyZRt0Rym9l2W3tY fGtOU6djRk9rUS9Bcf7wpj/WvqUx7BqESfviYvdLlaDdTcu0xKmn9EeL6Ev3sKj/ 3b8Ioh+qRLAFJEDpGk+o0LXsez16oHOUdz7codyGHmqhe/Uf3p1PyJ8RgZ9JuwRt Du/9N1kB1Z6HOP3x1oZk44cEbi8V6N2W66SEdvbJrtGANgoyqJ+1wnu09ZND4f1X 6uFxPorjiMd4ig+z/7394INYMwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGaUYJUr K2dYkCUq8O9tWhgLHCN9MB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI5OEQvMkNCMTFGQ0VGMUE2MTFFQUI5NUMwRTJGQzRGOUFFMDIvMTIyOTc5NUU2 NTJDMTFFQjlCMDM5MDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAPRlpADBADRlp8wDQYJKoZIhvcNAQELBQADggEBAJFrjukv ePlPAFazrpKub0oEkZXgsLhj/512/XaB6REqC5NG3LwXtn1/lRXOW4anNX3cQ4OT sSEk2o/yo76AMO7oMBgs3MYR5pSXS3j3ravMSZcF7VP8oYeLnMXCNWiksZb5Rj/n 4Zy4g0uMTgzfTTC/Fb2qAi/2vhXQ2afmQWzI/nnD7+87ySrEcY77n/V3dG8q1OVC T8I5dDwh+9jwqpTDm6lu/nkD3/j3xuvXRvkJEqOdeYBUui/m7TgQ5zkvlAa7c0eE 5GbXMRs4vkGep+Z8GC9RCF5ZYM5g7Fv6NoZEYM0M3JAGtFrW0cK3PoqYlCvk97Q+ EnF2v7BeuS4VwLY= -----END CERTIFICATE-----Generated at Sat Apr 5 18:50:53 2025 by rpki-client