$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/317095E0A28911ECBC355360C4F9AE02.roa File: 317095E0A28911ECBC355360C4F9AE02.roa (raw, json) Hash identifier: IjGCmqfeR6dWCwkTJerprQJ5jh4UJlY6ZGEM3z029yo= Subject key identifier: 60:35:0E:C0:A0:A0:80:80:AA:8F:25:9D:3B:EE:7E:25:66:53:7E:A7 Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Certificate serial: 06DF Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/317095E0A28911ECBC355360C4F9AE02.roa Signing time: Fri 24 Jan 2025 22:32:06 +0000 ROA not before: Fri 24 Jan 2025 22:32:06 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 6453 IP address blocks: 166.81.51.0/24 maxlen: 24 166.81.52.0/24 maxlen: 24 166.81.54.0/24 maxlen: 24 166.81.55.0/24 maxlen: 24 166.81.56.0/24 maxlen: 24 166.81.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC31B Validity Not Before: Jan 24 22:32:06 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679414e6-3931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:44:4a:1d:ea:b6:b6:79:8e:c1:55:9d:f7: 98:cf:a3:9c:cd:8b:bf:60:a6:8c:eb:05:8e:f3:86: df:89:48:a6:ef:2e:5f:f3:ce:bb:e0:d0:d7:1d:83: b2:50:2f:47:49:3f:b5:6a:60:99:f0:9e:e1:ff:a7: 00:e7:4e:88:6d:80:d8:7a:66:39:ee:c2:a9:ad:f8: 77:58:17:bd:29:b5:10:8c:ee:b4:ca:6e:d2:ad:1e: d7:d6:aa:75:bf:2f:17:58:97:18:b8:b2:13:b3:93: 8e:c7:ea:33:9e:bc:07:55:9b:fa:c1:30:88:64:7d: 23:b7:b5:ca:4c:6e:55:36:9d:d3:ed:77:91:16:97: 26:d0:8e:31:73:1b:a9:ef:f6:50:1c:e2:e7:06:a1: 70:e3:ad:11:4f:41:8d:e2:db:b6:15:ad:69:be:68: 3e:3c:93:76:c1:37:f3:37:56:fc:e5:1a:9d:83:04: 03:2b:e1:5a:fc:19:bf:03:b9:c5:31:c6:b8:4b:5e: 7b:87:03:0d:74:79:92:da:95:78:a7:92:1e:66:13: b9:78:51:b1:b9:f1:eb:b9:6a:cd:48:e2:30:fe:bb: e1:af:10:b4:59:71:76:09:b1:c3:8e:d4:31:f1:c1: 93:14:d6:70:f9:e0:e9:e9:41:8e:e3:96:6d:d3:54: 62:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:35:0E:C0:A0:A0:80:80:AA:8F:25:9D:3B:EE:7E:25:66:53:7E:A7 X509v3 Authority Key Identifier: keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/317095E0A28911ECBC355360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.81.51.0-166.81.52.255 166.81.54.0-166.81.57.255 Signature Algorithm: sha256WithRSAEncryption 6c:76:fe:db:97:6e:0b:40:8f:5f:6a:2c:da:27:32:64:5f:16: 13:cc:c9:65:1e:d9:e0:3f:11:76:dc:27:10:7f:54:b1:20:71: c2:99:3c:e8:ab:61:1f:28:13:d5:cd:ed:17:9e:5e:63:3a:72: fb:4e:cf:5b:75:a1:ee:7c:f8:12:3b:2d:d7:e0:f4:cc:58:c2: 93:9b:56:4a:b9:c9:cd:32:83:09:a1:85:be:81:0b:e6:e5:82: ba:db:07:07:fb:51:a3:0a:a6:d4:f8:19:80:2d:05:b1:2d:4d: 65:95:62:11:d6:dc:9e:1b:2d:35:64:38:e5:d0:5d:7d:ee:f1: 71:5e:41:70:63:9f:16:66:e1:77:c3:a2:da:9d:fb:30:bc:e2: 00:65:fb:62:e0:34:66:da:20:a1:07:65:1c:64:9d:0f:1c:af: b4:8f:0c:69:d1:a4:e8:94:61:21:dc:2c:f4:1b:c2:f1:eb:1c: 39:9d:f2:0b:f6:33:0d:5b:24:9d:00:01:2f:dd:d0:09:48:61: 2e:b6:2d:24:e3:ad:fa:b8:94:c2:75:1a:ae:6a:50:a2:97:19: 15:6a:dc:ac:ce:45:07:42:3c:04:f0:78:7e:fb:0d:ce:0a:42: 0e:51:4a:86:46:90:05:44:ee:2e:7c:5f:bf:b4:a5:44:13:63: 94:30:29:6a -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMUIxMTAvBgNVBAUTKDhCOEFENUNBMUMzRThCOENGNDY4QjVGNDk2QTkxQUJC MEU0OENGQTgwHhcNMjUwMTI0MjIzMjA2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MTRlNi0zOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuRESh3qtrZ5jsFVnfeYz6OczYu/YKaM6wWO84bfiUim7y5f88674NDXHYOy UC9HST+1amCZ8J7h/6cA506IbYDYemY57sKprfh3WBe9KbUQjO60ym7SrR7X1qp1 vy8XWJcYuLITs5OOx+oznrwHVZv6wTCIZH0jt7XKTG5VNp3T7XeRFpcm0I4xcxup 7/ZQHOLnBqFw460RT0GN4tu2Fa1pvmg+PJN2wTfzN1b85RqdgwQDK+Fa/Bm/A7nF Mca4S157hwMNdHmS2pV4p5IeZhO5eFGxufHruWrNSOIw/rvhrxC0WXF2CbHDjtQx 8cGTFNZw+eDp6UGO45Zt01RiQwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFGA1DsCg oICAqo8lnTvufiVmU36nMB8GA1UdIwQYMBaAFIuK1cocPouM9Gi19JapGrsOSM+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMxQi9EMEVDQ0Q0ODg5 M0QxMUVCOTE2REYwMjJDNEY5QUUwMi9pNHJWeWh3LWk0ejBhTFgwbHFrYXV3NUl6 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2k0clZ5aHctaTR6MGFMWDBscWthdXc1SXo2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMUIvRDBFQ0NENDg4OTNEMTFFQjkxNkRGMDIyQzRGOUFFMDIvMzE3MDk1RTBB Mjg5MTFFQ0JDMzU1MzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAKZRMwMEAKZRNDAMAwQBplE2AwQBplE4MA0GCSqGSIb3 DQEBCwUAA4IBAQBsdv7bl24LQI9faizaJzJkXxYTzMllHtngPxF23CcQf1SxIHHC mTzoq2EfKBPVze0Xnl5jOnL7Ts9bdaHufPgSOy3X4PTMWMKTm1ZKucnNMoMJoYW+ gQvm5YK62wcH+1GjCqbU+BmALQWxLU1llWIR1tyeGy01ZDjl0F197vFxXkFwY58W ZuF3w6LanfswvOIAZfti4DRm2iChB2UcZJ0PHK+0jwxp0aTolGEh3Cz0G8Lx6xw5 nfIL9jMNWySdAAEv3dAJSGEuti0k4636uJTCdRqualCilxkVatyszkUHQjwE8Hh+ +w3OCkIOUUqGRpAFRO4ufF+/tKVEE2OUMClq -----END CERTIFICATE-----Generated at Sat Apr 5 19:18:50 2025 by rpki-client