$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/9E8B4A3AB3B111EF8237BD72C4F9AE02.roa File: 9E8B4A3AB3B111EF8237BD72C4F9AE02.roa (raw, json) Hash identifier: yr2wfquGHtrtVK4EjS3koNoxx+PtkmLBM4rgPfXzU3k= Subject key identifier: DF:A4:D3:BD:9D:4F:3E:C5:E5:4F:FD:59:A5:68:D4:04:F3:76:79:64 Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 05A5 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/9E8B4A3AB3B111EF8237BD72C4F9AE02.roa Signing time: Fri 06 Dec 2024 09:08:12 +0000 ROA not before: Fri 06 Dec 2024 09:08:12 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55808 IP address blocks: 110.164.135.0/24 maxlen: 24 110.164.146.0/24 maxlen: 24 110.164.203.0/24 maxlen: 24 110.164.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561 Validity Not Before: Dec 6 09:08:12 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6752befc-df94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:58:d8:76:f7:aa:2d:f3:16:ee:7d:52:6b:37: aa:64:f8:b9:ce:01:6b:13:f3:76:c3:12:05:a9:ab: 6c:04:28:f6:b0:9c:75:a4:f5:68:a0:57:c5:40:f1: 60:e2:1e:1e:0c:7f:83:04:c3:0d:e4:96:ea:b8:26: 91:c5:68:a1:de:c6:66:96:30:c8:ff:08:4a:e0:28: cf:2b:7d:0e:ac:f7:3a:ad:6b:d5:7c:a5:02:33:d6: f1:94:37:90:d8:a9:a0:c9:ef:81:33:f9:40:ae:f2: 2d:0e:c4:4f:3e:e7:65:f7:e9:49:8e:84:5f:6a:bc: ec:60:6b:a6:ee:9a:bb:d9:e4:1d:c2:bc:df:71:82: a6:f2:57:80:b7:e1:7e:59:8b:ef:92:74:7a:0a:f9: cd:24:fd:3e:74:4f:65:d1:b9:d2:d4:a2:e8:1f:f4: 00:26:89:81:1d:5c:a2:44:01:c0:eb:4b:21:74:bf: 3e:ad:2a:ea:78:16:3e:5c:57:54:c4:3b:7f:84:d5: 46:92:43:16:7d:a0:19:f1:9a:2f:09:c2:f5:d3:97: e2:f1:45:f3:6b:34:4e:c7:b3:7e:74:7c:15:95:96: 82:a5:2a:78:9a:5f:e9:65:13:5f:c7:01:8e:14:aa: 1d:dc:69:9e:2f:24:fb:17:61:8a:d1:38:d8:eb:a4: d8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A4:D3:BD:9D:4F:3E:C5:E5:4F:FD:59:A5:68:D4:04:F3:76:79:64 X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/9E8B4A3AB3B111EF8237BD72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.164.135.0/24 110.164.146.0/24 110.164.203.0/24 110.164.236.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:87:1a:a4:ac:41:e3:98:d1:64:36:1e:49:a9:1b:dc:1c:0f: ed:6f:25:f0:21:ee:13:7b:94:f8:c8:fa:13:8f:67:f2:07:af: 2c:bc:a3:fd:1a:83:b5:3d:5f:9e:54:57:b3:25:6c:e4:d6:9b: d7:f8:9b:39:b0:8e:c1:b7:d6:3d:c2:51:d4:7d:fd:9c:4a:8c: 14:30:b4:5f:22:c6:a4:ed:47:f4:b3:ab:7c:08:46:92:c0:c3: 69:13:d7:d4:4d:a8:a8:a2:a7:e3:65:9c:2c:2f:71:43:03:48: ef:d4:ba:20:53:fc:52:3c:75:53:c6:53:d4:39:69:fb:59:b2: d9:75:d6:d0:77:c5:d3:4a:88:f6:16:8b:9c:0f:4d:72:61:6e: b7:3e:e0:5e:fa:a1:e2:0b:a6:30:7a:37:57:5d:7d:40:87:3c: 46:c1:51:8a:52:66:4c:b0:c8:d0:b5:4b:8d:77:8c:e4:d9:8e: ee:57:c4:59:bf:93:38:cf:e8:23:75:b4:8d:3b:5f:af:3f:6a: 71:27:c1:d8:0c:2b:3f:84:31:b3:cc:b2:15:1a:91:e0:05:50: 66:d3:92:d4:25:5c:ec:18:f8:92:55:f5:00:10:ab:85:44:1d: 55:9f:73:9f:8f:24:7b:fe:79:55:b8:a2:c9:03:9e:fa:bb:0c: 27:8f:93:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjQxMjA2MDkwODEyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUyYmVmYy1kZjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1jYdveqLfMW7n1SazeqZPi5zgFrE/N2wxIFqatsBCj2sJx1pPVooFfFQPFg 4h4eDH+DBMMN5JbquCaRxWih3sZmljDI/whK4CjPK30OrPc6rWvVfKUCM9bxlDeQ 2Kmgye+BM/lArvItDsRPPudl9+lJjoRfarzsYGum7pq72eQdwrzfcYKm8leAt+F+ WYvvknR6CvnNJP0+dE9l0bnS1KLoH/QAJomBHVyiRAHA60shdL8+rSrqeBY+XFdU xDt/hNVGkkMWfaAZ8ZovCcL105fi8UXzazROx7N+dHwVlZaCpSp4ml/pZRNfxwGO FKod3GmeLyT7F2GK0TjY66TYQQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFN+k072d Tz7F5U/9WaVo1ATzdnlkMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvOUU4QjRBM0FC M0IxMTFFRjgyMzdCRDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABupIcDBABupJIDBABupMsDBABupOwwDQYJKoZIhvcNAQEL BQADggEBACqHGqSsQeOY0WQ2HkmpG9wcD+1vJfAh7hN7lPjI+hOPZ/IHryy8o/0a g7U9X55UV7MlbOTWm9f4mzmwjsG31j3CUdR9/ZxKjBQwtF8ixqTtR/Szq3wIRpLA w2kT19RNqKiip+NlnCwvcUMDSO/UuiBT/FI8dVPGU9Q5aftZstl11tB3xdNKiPYW i5wPTXJhbrc+4F76oeILpjB6N1ddfUCHPEbBUYpSZkywyNC1S413jOTZju5XxFm/ kzjP6CN1tI07X68/anEnwdgMKz+EMbPMshUakeAFUGbTktQlXOwY+JJV9QAQq4VE HVWfc5+PJHv+eVW4oskDnvq7DCePk1A= -----END CERTIFICATE-----Generated at Sat Apr 5 07:19:14 2025 by rpki-client