$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/9EF5320617C811ED95FB874FC4F9AE02.roa File: 9EF5320617C811ED95FB874FC4F9AE02.roa (raw, json) Hash identifier: XIc/AyMUX9siFTRMY6HuK+rG5t8yZXubBohVftbRn/I= Subject key identifier: 5E:C2:B1:BF:35:3A:FC:35:86:54:70:58:DB:01:87:D2:06:C2:59:89 Certificate issuer: /CN=A91EEE1B/serialNumber=85902908828B0331E948D46EDB3825FF603DB986 Certificate serial: 06A8 Authority key identifier: 85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/9EF5320617C811ED95FB874FC4F9AE02.roa Signing time: Tue 18 Feb 2025 23:41:19 +0000 ROA not before: Tue 18 Feb 2025 23:41:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 10122 IP address blocks: 45.249.44.0/24 maxlen: 24 45.249.45.0/24 maxlen: 24 45.249.46.0/23 maxlen: 23 45.249.46.0/24 maxlen: 24 45.249.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.crl rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE1B Validity Not Before: Feb 18 23:41:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b51a9e-f2ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:02:b6:bd:57:98:d4:12:86:b1:5f:e2:a1:4e: ee:4b:58:44:18:a4:90:44:cf:2a:6b:1a:f8:16:1a: ba:0c:e0:dc:5e:1f:ba:96:ff:c8:98:97:4f:21:40: fe:65:5d:40:56:9a:c6:f3:2d:80:50:74:03:88:ba: 88:f3:88:e8:d8:90:ef:c5:96:a2:da:95:51:f7:7e: 89:c5:98:de:e7:a3:0f:bc:3a:5f:40:2f:94:3a:7b: e0:1c:ba:31:91:83:de:c5:c9:e1:4a:b1:c0:75:04: 7b:ff:e0:35:18:f6:4a:5f:da:e9:75:d1:76:27:e2: d3:21:92:85:6e:2f:b1:23:36:ee:da:1a:94:a1:14: d9:dc:dc:7a:48:86:31:50:94:7b:3b:ba:ce:20:df: e2:6e:80:bf:2d:d1:9d:1e:c7:98:c4:1d:3c:01:a9: 4a:03:9a:1f:c8:9d:86:73:a3:40:25:af:de:ba:eb: 02:ec:12:2f:00:0f:3a:d3:7d:2c:72:6f:09:2e:d7: 05:a7:f2:0f:cc:0d:7e:af:27:f3:07:ed:6f:bf:bb: 0e:66:be:52:6e:cf:1f:0e:3d:31:0b:ea:80:34:fc: 6f:40:33:98:38:3e:8a:8a:3e:bd:59:5e:5c:f2:d4: e1:6b:67:d2:04:1f:9e:8d:79:1e:a9:c5:b8:56:b4: bb:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C2:B1:BF:35:3A:FC:35:86:54:70:58:DB:01:87:D2:06:C2:59:89 X509v3 Authority Key Identifier: keyid:85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/9EF5320617C811ED95FB874FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.44.0/22 Signature Algorithm: sha256WithRSAEncryption d1:d9:7a:42:5b:77:84:13:c3:4b:ea:70:aa:6e:4c:0d:c0:8b: 38:e3:21:bd:46:b9:4c:6d:86:4b:4b:30:22:f4:bc:3f:5d:a7: 85:af:94:b5:c7:57:54:e8:e0:21:9e:f1:cf:93:f5:03:60:a1: 65:1e:4f:3b:23:2c:a4:5c:09:98:43:38:4f:b9:37:5a:46:c4: 09:38:8a:e9:43:27:b7:2f:a4:14:b9:bf:a1:6d:46:94:05:34: dd:c3:4e:43:48:9a:7a:f4:61:cd:fb:58:d8:87:1a:27:40:9f: cb:82:7c:59:c5:c4:13:85:e6:6f:f4:3c:b7:f1:15:92:cd:d9: 27:3b:b6:58:2d:54:1e:0d:a1:9e:9c:52:6f:17:7d:97:dc:f9: 2a:da:0c:32:d9:d2:48:c1:a5:62:14:f1:01:82:79:f2:8f:22: b0:71:59:a6:51:0a:41:07:16:26:1d:c9:bf:00:44:d9:93:33: 1d:0e:7b:b7:09:75:50:15:26:fa:74:b1:08:49:71:e9:52:6d: 2a:78:b4:d1:f6:37:d6:dc:49:cc:80:ef:5a:2a:8e:ca:d5:91: c0:5e:ae:b7:23:4b:eb:92:c5:25:1c:f0:4c:54:e3:5a:73:63: ff:19:40:e7:04:6b:d0:26:9b:99:81:20:4f:43:80:84:71:d0: ce:ea:37:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFMUIxMTAvBgNVBAUTKDg1OTAyOTA4ODI4QjAzMzFFOTQ4RDQ2RURCMzgyNUZG NjAzREI5ODYwHhcNMjUwMjE4MjM0MTE5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I1MWE5ZS1mMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AK2vVeY1BKGsV/ioU7uS1hEGKSQRM8qaxr4Fhq6DODcXh+6lv/ImJdPIUD+ ZV1AVprG8y2AUHQDiLqI84jo2JDvxZai2pVR936JxZje56MPvDpfQC+UOnvgHLox kYPexcnhSrHAdQR7/+A1GPZKX9rpddF2J+LTIZKFbi+xIzbu2hqUoRTZ3Nx6SIYx UJR7O7rOIN/iboC/LdGdHseYxB08AalKA5ofyJ2Gc6NAJa/euusC7BIvAA86030s cm8JLtcFp/IPzA1+ryfzB+1vv7sOZr5Sbs8fDj0xC+qANPxvQDOYOD6Kij69WV5c 8tTha2fSBB+ejXkeqcW4VrS7WQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF7Csb81 Ovw1hlRwWNsBh9IGwlmJMB8GA1UdIwQYMBaAFIWQKQiCiwMx6UjUbts4Jf9gPbmG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUUxQi8yMDZERkMyODY0 MzgxMUVCOTQ2ODNCNEVDNEY5QUUwMi9oWkFwQ0lLTEF6SHBTTlJ1MnpnbF8yQTl1 WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haQXBDSUtMQXpIcFNOUnUyemdsXzJBOXVZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFMUIvMjA2REZDMjg2NDM4MTFFQjk0NjgzQjRFQzRGOUFFMDIvOUVGNTMyMDYx N0M4MTFFRDk1RkI4NzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIt+SwwDQYJKoZIhvcNAQELBQADggEBANHZekJbd4QTw0vq cKpuTA3AizjjIb1GuUxthktLMCL0vD9dp4WvlLXHV1To4CGe8c+T9QNgoWUeTzsj LKRcCZhDOE+5N1pGxAk4iulDJ7cvpBS5v6FtRpQFNN3DTkNImnr0Yc37WNiHGidA n8uCfFnFxBOF5m/0PLfxFZLN2Sc7tlgtVB4NoZ6cUm8XfZfc+SraDDLZ0kjBpWIU 8QGCefKPIrBxWaZRCkEHFiYdyb8ARNmTMx0Oe7cJdVAVJvp0sQhJcelSbSp4tNH2 N9bcScyA71oqjsrVkcBerrcjS+uSxSUc8ExU41pzY/8ZQOcEa9Amm5mBIE9DgIRx 0M7qN5M= -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:39 2025 by rpki-client