$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa File: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (raw, json) Hash identifier: KE984DbFRTO0XDJnJvkUh9nTQI9OdADddfHh/b8sXns= Subject key identifier: 59:B8:32:5A:39:8D:87:31:20:0F:96:0C:4D:23:74:D8:84:96:18:80 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 10F1 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa Signing time: Tue 10 Dec 2024 17:45:28 +0000 ROA not before: Tue 10 Dec 2024 17:45:28 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133136 IP address blocks: 66.96.219.0/24 maxlen: 24 66.96.220.0/24 maxlen: 24 66.96.221.0/24 maxlen: 24 66.96.223.0/24 maxlen: 24 158.140.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:22:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4337 (0x10f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB Validity Not Before: Dec 10 17:45:28 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67587e38-510c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:69:d7:c8:62:af:25:21:1e:31:34:1e:1e:77: ec:7c:a9:ed:b3:88:db:c9:95:72:1a:9d:91:f0:12: a4:bb:89:b0:3f:23:f9:7c:3a:b3:38:8c:e3:c8:75: 5e:89:38:85:08:14:85:5c:d0:31:ab:cb:00:88:fe: 84:3b:2a:f7:af:a4:ed:83:2c:dc:a6:45:1d:b7:1f: ff:1e:6c:dd:4f:5a:c7:91:c2:9d:a0:52:bc:18:16: 05:52:49:29:6f:f3:aa:c6:5d:5e:46:ba:a5:6f:eb: 91:56:25:e0:42:ef:42:51:3a:89:b3:1f:63:6e:ec: 5e:db:b9:08:68:73:45:db:0e:b8:90:5f:14:64:d7: 7f:7b:f7:8b:a7:ec:5c:0f:2d:7c:fe:a7:ed:78:08: c2:00:ae:bf:62:e4:52:8d:48:77:e5:9e:08:16:b2: 00:43:03:cc:b3:92:fc:66:10:54:30:e1:b6:3c:f0: 16:84:ac:dd:92:20:3a:c2:80:12:e3:41:ba:6e:bf: f7:19:aa:03:96:08:f1:75:e7:32:3f:f1:30:eb:85: b0:db:47:38:12:28:1a:04:1d:f1:1f:e1:c8:0a:f5: 17:a8:89:a0:f0:97:10:84:1c:d8:2b:f1:20:61:a0: 01:03:09:98:87:ca:15:fb:86:61:6a:ea:3b:08:c0: 93:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B8:32:5A:39:8D:87:31:20:0F:96:0C:4D:23:74:D8:84:96:18:80 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 66.96.219.0-66.96.221.255 66.96.223.0/24 158.140.151.0/24 Signature Algorithm: sha256WithRSAEncryption d1:7e:86:68:66:0b:50:6d:a6:fc:e4:5a:4c:8a:29:72:dd:79: 97:ef:db:57:9e:2f:8d:58:3e:13:a1:c5:6d:ae:90:67:ef:c5: 11:33:33:14:39:97:2b:4b:38:1e:e7:e0:e1:39:e6:a4:93:07: c8:23:a3:7b:db:1d:6b:b9:4c:a9:9a:20:88:49:56:02:83:09: 16:59:2f:d7:7a:84:ec:37:a5:d4:dd:79:17:46:c5:79:e1:af: 7f:67:4a:f8:41:12:01:54:8f:42:dd:7b:7e:92:62:bb:0d:f3: f6:8b:c9:d2:c8:b4:08:b2:eb:a3:37:70:ba:fe:25:45:c6:9e: a0:d9:3f:81:20:81:f1:40:d2:cb:1b:c2:5e:ec:ba:75:57:03: c7:55:27:36:ad:4a:74:66:db:bc:2e:c8:8a:09:89:16:94:97: 2e:99:fa:e1:58:fe:bb:59:e5:02:0a:ff:c2:83:42:65:d2:c6: 3c:3c:53:7d:a3:e4:41:4e:2f:a9:a9:80:fa:d3:44:3d:57:c0: 64:24:a5:40:48:6b:03:2c:5e:36:90:a3:a7:05:61:c6:62:2e: c0:25:59:d8:ce:a1:ef:bf:80:37:a8:07:48:2b:14:be:7a:d6: 64:b5:6f:42:1e:30:4c:a8:bd:b4:d2:fb:e9:63:37:6b:77:07: 0a:68:52:47 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICEPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjQxMjEwMTc0NTI4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4N2UzOC01MTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GnXyGKvJSEeMTQeHnfsfKnts4jbyZVyGp2R8BKku4mwPyP5fDqzOIzjyHVe iTiFCBSFXNAxq8sAiP6EOyr3r6TtgyzcpkUdtx//HmzdT1rHkcKdoFK8GBYFUkkp b/Oqxl1eRrqlb+uRViXgQu9CUTqJsx9jbuxe27kIaHNF2w64kF8UZNd/e/eLp+xc Dy18/qfteAjCAK6/YuRSjUh35Z4IFrIAQwPMs5L8ZhBUMOG2PPAWhKzdkiA6woAS 40G6br/3GaoDlgjxdecyP/Ew64Ww20c4EigaBB3xH+HICvUXqImg8JcQhBzYK/Eg YaABAwmYh8oV+4Zhauo7CMCT5wIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFFm4Mlo5 jYcxIA+WDE0jdNiElhiAMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQkRGQkYxODYwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvNTQ4OEY2RUEw RjFBMTFFOUIzRjJBNzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAEJg2wMEAUJg3AMEAEJg3wMEAJ6MlzANBgkqhkiG9w0B AQsFAAOCAQEA0X6GaGYLUG2m/ORaTIopct15l+/bV54vjVg+E6HFba6QZ+/FETMz FDmXK0s4Hufg4TnmpJMHyCOje9sda7lMqZogiElWAoMJFlkv13qE7Del1N15F0bF eeGvf2dK+EESAVSPQt17fpJiuw3z9ovJ0si0CLLrozdwuv4lRcaeoNk/gSCB8UDS yxvCXuy6dVcDx1UnNq1KdGbbvC7IigmJFpSXLpn64Vj+u1nlAgr/woNCZdLGPDxT faPkQU4vqamA+tNEPVfAZCSlQEhrAyxeNpCjpwVhxmIuwCVZ2M6h77+AN6gHSCsU vnrWZLVvQh4wTKi9tNL76WM3a3cHCmhSRw== -----END CERTIFICATE-----Generated at Sat Apr 5 15:28:01 2025 by rpki-client