$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa File: 9C6F02C6249D11EF9532356DC4F9AE02.roa (raw, json) Hash identifier: H7vSiuNaTY/QVhx1Z+0HnkEM6Adv1NWsmVcvR+Op02o= Subject key identifier: 02:9D:F9:C9:E1:2E:4B:6D:AF:59:1E:55:CB:F7:17:98:11:D9:63:8F Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0173 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa Signing time: Fri 07 Feb 2025 09:55:38 +0000 ROA not before: Fri 07 Feb 2025 09:55:38 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134190 IP address blocks: 45.117.123.0/24 maxlen: 24 45.117.123.0/25 maxlen: 32 45.117.123.128/25 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2 Validity Not Before: Feb 7 09:55:38 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67a5d89a-db4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bf:26:a9:21:bc:f7:94:e9:45:70:8b:df:8d: 73:4a:13:d1:b7:5e:bd:31:8d:93:99:8b:72:b1:3e: ad:b9:d7:25:ab:1f:8b:0b:8a:b2:23:d5:02:5e:c8: 6f:af:f7:22:e5:30:c0:af:f4:e0:be:fd:a7:31:0b: 88:4e:4d:f7:f0:27:20:95:d0:70:77:09:a7:4f:4d: 80:4a:6e:61:30:9e:d1:24:e4:be:6a:55:23:b4:3f: 6b:3b:50:d3:24:d8:44:7a:ba:f1:45:10:7f:63:eb: 49:37:4c:26:20:58:0f:b7:1f:bf:32:a2:05:89:3a: 48:19:b7:dc:56:8b:ae:f8:54:06:1f:66:a9:6b:fe: 27:02:be:4a:3f:01:56:73:6d:51:df:76:82:2a:30: 16:d8:47:ae:b7:b3:fa:00:13:b7:9a:63:3b:56:fe: ff:dd:56:a4:95:87:5e:c0:c2:d5:cf:b8:4e:d7:5f: 83:15:1d:85:81:9a:74:06:3d:68:69:04:30:e4:70: 6f:c1:bc:a2:0f:fb:75:7c:77:df:0a:c2:cc:37:fa: 6e:9e:4f:5e:fc:c9:f7:d9:3d:5c:47:4f:da:4d:90: 98:18:60:15:11:c6:a5:b4:c2:e3:8f:5c:00:af:df: 10:01:34:eb:e5:07:77:74:e4:fb:98:36:b8:1a:ef: 63:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9D:F9:C9:E1:2E:4B:6D:AF:59:1E:55:CB:F7:17:98:11:D9:63:8F X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.123.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:86:51:9e:9c:e4:03:d9:d8:40:c8:01:67:f7:98:b3:93:4a: 24:7e:84:1f:c0:07:bd:22:f2:6c:b8:0b:8b:78:6f:0b:53:53: 9d:17:2f:ee:0e:7c:3a:bc:5e:9a:91:bd:6d:ca:4f:42:96:64: e0:d2:ea:9e:85:5b:cc:26:e2:51:09:df:b1:e1:2c:5f:cc:0b: 7f:27:d8:48:13:2c:38:21:d9:2c:89:63:a2:d0:10:e9:59:86: 01:8a:07:5d:fb:bc:ae:c2:29:99:1b:7b:da:b5:cf:df:6d:f2: 58:0e:a1:84:ba:2d:07:71:8e:84:82:9e:c0:4b:e1:87:d9:41: 52:e2:86:72:87:f6:8b:cc:3e:02:4f:a4:13:bc:40:94:04:fe: 12:74:bf:2e:5d:07:26:61:d3:93:f0:94:af:5c:48:a7:d9:07: b1:ed:1d:27:7a:60:e9:83:1c:8d:09:ce:1f:42:25:4a:da:91: 45:c4:c4:33:f2:a3:23:72:78:13:26:2e:6d:6a:bb:5d:ea:6a: f2:75:9d:15:e8:9f:d0:4e:5d:6a:cd:19:14:e3:0a:f3:a6:95: 0c:8a:f9:ed:ef:c1:ed:8c:8d:74:fd:14:40:dd:07:e8:5e:ea: 6f:51:49:39:62:cb:d8:cd:d2:5f:25:a1:8d:69:cf:de:31:3b: d3:ea:ad:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwMjA3MDk1NTM4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1ZDg5YS1kYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL8mqSG895TpRXCL341zShPRt169MY2TmYtysT6tudclqx+LC4qyI9UCXshv r/ci5TDAr/Tgvv2nMQuITk338CcgldBwdwmnT02ASm5hMJ7RJOS+alUjtD9rO1DT JNhEerrxRRB/Y+tJN0wmIFgPtx+/MqIFiTpIGbfcVouu+FQGH2apa/4nAr5KPwFW c21R33aCKjAW2Eeut7P6ABO3mmM7Vv7/3VaklYdewMLVz7hO11+DFR2FgZp0Bj1o aQQw5HBvwbyiD/t1fHffCsLMN/punk9e/Mn32T1cR0/aTZCYGGAVEcaltMLjj1wA r98QATTr5Qd3dOT7mDa4Gu9jCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAKd+cnh Lkttr1keVcv3F5gR2WOPMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI4RTIvOTUyRkE2MzJEMkU2MTFFRDlBNTJENTVBQzRGOUFFMDIvOUM2RjAyQzYy NDlEMTFFRjk1MzIzNTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtdXswDQYJKoZIhvcNAQELBQADggEBAB2GUZ6c5APZ2EDI AWf3mLOTSiR+hB/AB70i8my4C4t4bwtTU50XL+4OfDq8XpqRvW3KT0KWZODS6p6F W8wm4lEJ37HhLF/MC38n2EgTLDgh2SyJY6LQEOlZhgGKB137vK7CKZkbe9q1z99t 8lgOoYS6LQdxjoSCnsBL4YfZQVLihnKH9ovMPgJPpBO8QJQE/hJ0vy5dByZh05Pw lK9cSKfZB7HtHSd6YOmDHI0Jzh9CJUrakUXExDPyoyNyeBMmLm1qu13qavJ1nRXo n9BOXWrNGRTjCvOmlQyK+e3vwe2MjXT9FEDdB+he6m9RSTliy9jN0l8loY1pz94x O9PqrZ0= -----END CERTIFICATE-----Generated at Sat Apr 5 19:35:03 2025 by rpki-client