$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/67060F128B9F11EA97BB8046C4F9AE02.roa File: 67060F128B9F11EA97BB8046C4F9AE02.roa (raw, json) Hash identifier: Bja+pXwIkwi+wu7Wy1czg9tcaeGtk3ByqmVnXr1h7PU= Subject key identifier: E4:9F:70:32:9F:B2:DF:61:EE:66:2F:56:86:88:2A:F6:94:A1:70:F3 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1898 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/67060F128B9F11EA97BB8046C4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:32 +0000 ROA not before: Tue 18 Feb 2025 17:35:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45615 IP address blocks: 175.45.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6296 (0x1898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D Validity Not Before: Feb 18 17:35:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4e4-bbdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d3:fc:d0:35:92:8a:06:a3:d4:7b:e8:ff:11: 70:b0:39:35:05:a9:41:f7:0a:75:d3:17:55:52:37: 39:13:b3:25:d2:cf:5a:65:b4:35:5b:7f:01:79:c5: a8:0d:67:84:94:e6:81:1b:8b:fd:22:9e:ce:4b:5e: c2:ae:34:91:89:49:35:12:b5:50:2c:a9:16:a4:6d: 73:cb:5e:6d:88:93:3e:cb:e5:26:df:57:74:6f:14: 63:4c:94:38:87:28:b4:96:c1:71:ce:31:a8:fc:18: fd:a7:eb:6d:9c:cc:ca:e6:c1:e5:7d:05:02:02:68: 63:08:c0:88:1b:cd:6a:15:0e:9c:28:d9:5a:96:d1: 64:4c:f5:93:97:bb:85:d6:19:64:8e:e6:e2:30:e1: a0:55:c9:7b:5c:68:bb:2e:d3:03:27:db:83:de:11: 35:bf:51:3c:eb:91:bd:ea:46:e3:14:7b:84:62:9f: 75:e9:c7:ca:cf:b9:2e:6b:e0:73:67:3f:ec:62:29: 7f:1d:36:bc:fb:8e:20:fa:1b:f3:bc:86:91:15:62: 70:9e:d4:3f:15:eb:9e:6d:f2:eb:fe:01:dd:3a:98: 13:50:4e:95:88:ab:d7:4e:07:17:9d:8b:a9:81:87: 41:05:d0:0e:b8:72:ae:0d:aa:0e:1b:3d:ff:4f:25: d4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:9F:70:32:9F:B2:DF:61:EE:66:2F:56:86:88:2A:F6:94:A1:70:F3 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/67060F128B9F11EA97BB8046C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.45.76.0/24 Signature Algorithm: sha256WithRSAEncryption a2:8a:9b:80:de:a7:93:6c:fa:9e:c3:92:d9:14:e3:20:c8:d7: 46:37:58:36:f6:c6:c3:07:d2:d4:d3:6a:41:2b:f2:40:1c:d3: e7:5f:ab:b1:93:4e:6c:1b:4b:75:a8:91:77:9d:55:3a:74:95: e5:5d:42:e2:0a:12:99:80:da:26:5a:72:06:d0:23:3b:6a:c0: 06:45:19:f8:a5:18:f9:11:f6:c9:10:2f:19:17:45:29:d7:d7: d6:14:06:82:22:8a:00:b4:c2:80:d3:3c:4d:d2:f7:a7:d4:1b: b2:be:af:2c:07:4d:ae:5e:ca:f4:e6:2f:52:4c:4a:ad:21:12: 09:7e:db:9e:d9:13:7f:ad:10:76:7e:4f:f3:92:bb:06:31:85: 72:a1:7b:f9:99:13:d4:aa:8e:97:a6:a6:8e:e7:15:b6:10:83: 82:1a:5b:6c:bd:22:83:12:ff:6d:bf:8f:6a:c1:b8:2c:53:7c: 62:64:8c:af:b9:ac:87:6f:e2:ec:60:f5:97:d3:df:e2:61:bd: 2c:9d:a2:85:bd:b0:af:fb:ec:f0:69:e9:ec:45:d6:51:67:94: 21:88:f5:b4:12:70:73:70:c9:ea:fc:0c:95:74:37:75:aa:2f: c6:ee:09:d4:aa:de:77:a0:a3:f5:c7:dc:61:0e:bd:11:db:86: 74:ec:ab:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRlNC1iYmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNP80DWSigaj1Hvo/xFwsDk1BalB9wp10xdVUjc5E7Ml0s9aZbQ1W38BecWo DWeElOaBG4v9Ip7OS17CrjSRiUk1ErVQLKkWpG1zy15tiJM+y+Um31d0bxRjTJQ4 hyi0lsFxzjGo/Bj9p+ttnMzK5sHlfQUCAmhjCMCIG81qFQ6cKNlaltFkTPWTl7uF 1hlkjubiMOGgVcl7XGi7LtMDJ9uD3hE1v1E865G96kbjFHuEYp916cfKz7kua+Bz Zz/sYil/HTa8+44g+hvzvIaRFWJwntQ/FeuebfLr/gHdOpgTUE6ViKvXTgcXnYup gYdBBdAOuHKuDaoOGz3/TyXUEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOSfcDKf st9h7mYvVoaIKvaUoXDzMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvNjcwNjBGMTI4 QjlGMTFFQTk3QkI4MDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACvLUwwDQYJKoZIhvcNAQELBQADggEBAKKKm4Dep5Ns+p7D ktkU4yDI10Y3WDb2xsMH0tTTakEr8kAc0+dfq7GTTmwbS3WokXedVTp0leVdQuIK EpmA2iZacgbQIztqwAZFGfilGPkR9skQLxkXRSnX19YUBoIiigC0woDTPE3S96fU G7K+rywHTa5eyvTmL1JMSq0hEgl+257ZE3+tEHZ+T/OSuwYxhXKhe/mZE9Sqjpem po7nFbYQg4IaW2y9IoMS/22/j2rBuCxTfGJkjK+5rIdv4uxg9ZfT3+JhvSydooW9 sK/77PBp6exF1lFnlCGI9bQScHNwyer8DJV0N3WqL8buCdSq3nego/XH3GEOvRHb hnTsqzc= -----END CERTIFICATE-----Generated at Sat Apr 5 22:19:13 2025 by rpki-client