$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/D61299F2D8C011EFB41E1319C4F9AE02.roa File: D61299F2D8C011EFB41E1319C4F9AE02.roa (raw, json) Hash identifier: scuWPF8fyZMdaSfCNBdTGSbSe43VNo97CkMVeZgVKFs= Subject key identifier: 93:9E:8F:AE:D1:FD:FC:4B:63:81:35:79:0D:57:10:96:8F:6E:54:28 Certificate issuer: /CN=A91FA5A2/serialNumber=5B59FCB65341FD33789BFBAFA9637DF0CE404DAB Certificate serial: DF Authority key identifier: 5B:59:FC:B6:53:41:FD:33:78:9B:FB:AF:A9:63:7D:F0:CE:40:4D:AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1n8tlNB_TN4m_uvqWN98M5ATas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/D61299F2D8C011EFB41E1319C4F9AE02.roa Signing time: Wed 22 Jan 2025 13:00:21 +0000 ROA not before: Wed 22 Jan 2025 13:00:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140577 IP address blocks: 168.100.128.0/19 maxlen: 19 168.100.128.0/20 maxlen: 20 168.100.128.0/21 maxlen: 21 168.100.136.0/21 maxlen: 24 168.100.144.0/20 maxlen: 20 168.100.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/W1n8tlNB_TN4m_uvqWN98M5ATas.crl rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/W1n8tlNB_TN4m_uvqWN98M5ATas.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1n8tlNB_TN4m_uvqWN98M5ATas.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA5A2 Validity Not Before: Jan 22 13:00:21 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6790ebe5-9826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:46:b1:1f:61:da:96:4d:c2:f4:68:12:81:67: a2:23:10:a4:ac:50:64:11:bf:89:be:e7:c8:02:4e: 9b:d9:e1:44:8e:6a:a0:9d:a4:d6:93:76:53:fb:d6: 00:88:ed:d3:79:d1:e6:3a:dc:3f:89:d4:c4:7e:c1: a4:04:3a:97:fc:1e:06:aa:df:6d:0b:63:d7:0d:92: 0f:c2:80:18:5f:1b:eb:c5:31:44:d9:37:80:f3:a8: da:25:83:08:6b:1a:df:4f:8a:f6:f0:84:b6:48:7e: b6:24:92:e7:24:f1:5a:6f:50:56:2e:4b:6c:67:91: fb:2b:58:de:cc:9a:8f:38:9f:16:18:0f:ba:8b:a8: b0:83:3e:d4:87:e6:02:db:74:b3:29:cc:3d:44:50: 83:72:6c:6c:cf:24:88:a9:83:bd:bb:d1:b0:1d:e2: 42:81:98:80:83:cd:18:05:9d:23:1a:08:d2:21:e7: 83:a7:ea:a7:c8:ab:26:7a:21:fb:d1:3d:c7:8f:69: 63:73:cb:45:02:43:64:f1:47:ce:cc:27:95:38:8d: 57:90:87:5e:ab:15:da:1d:25:6d:b1:65:29:e4:f7: 2e:36:58:21:80:7b:55:66:07:10:de:37:e4:36:d3: e6:d4:de:1b:f2:45:c0:71:1a:65:a1:f0:9d:ef:ab: 64:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:9E:8F:AE:D1:FD:FC:4B:63:81:35:79:0D:57:10:96:8F:6E:54:28 X509v3 Authority Key Identifier: keyid:5B:59:FC:B6:53:41:FD:33:78:9B:FB:AF:A9:63:7D:F0:CE:40:4D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/W1n8tlNB_TN4m_uvqWN98M5ATas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1n8tlNB_TN4m_uvqWN98M5ATas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/3E16416898F611EEBBF1F417C4F9AE02/D61299F2D8C011EFB41E1319C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.100.128.0/19 Signature Algorithm: sha256WithRSAEncryption 27:c0:78:07:01:7d:24:47:12:62:8b:a7:aa:84:69:e3:21:71: 8d:24:bb:3d:3d:c4:a4:a7:03:f8:53:cf:a6:c5:3b:28:4e:88: f9:66:66:c4:cd:1a:0e:4c:63:87:ac:ba:58:f7:60:3f:7d:ef: 46:79:fd:1b:ed:0a:4f:9d:71:07:53:3c:e3:0c:01:93:d7:8a: 1e:5c:74:4e:39:cf:8d:fe:63:ab:ee:f9:78:12:6e:2e:a9:55: fd:dd:69:c8:7c:ae:12:2e:7d:55:f7:af:f1:9c:9c:5f:67:1f: e4:2d:84:fb:9f:11:cf:01:0f:0d:db:d0:58:6c:c7:cd:0d:8f: 90:25:5b:01:b9:4d:ea:f2:ce:82:c4:6e:9f:c3:a7:fb:db:fb: 5d:34:ce:00:7a:4f:2c:6b:5a:b8:b6:ae:ef:5c:5a:a5:91:06: db:80:07:a0:b6:c7:2d:e8:b6:38:a7:94:06:23:2c:fe:03:e3: e5:28:9d:2c:31:1a:70:16:86:40:38:07:fd:84:06:b1:94:78: ab:d4:b6:d3:b5:12:e6:21:9c:d8:0d:29:35:22:ad:20:fe:9b: df:b9:8f:4d:d1:8e:d5:d2:a7:60:b8:6d:b2:61:34:9e:c5:b6: 33:70:f4:40:53:e5:bd:7c:68:f2:36:2d:b2:be:aa:fc:bf:0d: df:d2:85:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1QTIxMTAvBgNVBAUTKDVCNTlGQ0I2NTM0MUZEMzM3ODlCRkJBRkE5NjM3REYw Q0U0MDREQUIwHhcNMjUwMTIyMTMwMDIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkwZWJlNS05ODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0axH2Halk3C9GgSgWeiIxCkrFBkEb+JvufIAk6b2eFEjmqgnaTWk3ZT+9YA iO3TedHmOtw/idTEfsGkBDqX/B4Gqt9tC2PXDZIPwoAYXxvrxTFE2TeA86jaJYMI axrfT4r28IS2SH62JJLnJPFab1BWLktsZ5H7K1jezJqPOJ8WGA+6i6iwgz7Uh+YC 23SzKcw9RFCDcmxszySIqYO9u9GwHeJCgZiAg80YBZ0jGgjSIeeDp+qnyKsmeiH7 0T3Hj2ljc8tFAkNk8UfOzCeVOI1XkIdeqxXaHSVtsWUp5PcuNlghgHtVZgcQ3jfk NtPm1N4b8kXAcRplofCd76tkdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJOej67R /fxLY4E1eQ1XEJaPblQoMB8GA1UdIwQYMBaAFFtZ/LZTQf0zeJv7r6ljffDOQE2r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTVBMi8zRTE2NDE2ODk4 RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi9XMW44dGxOQl9UTjRtX3V2cVdOOThNNUFU YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1cxbjh0bE5CX1RONG1fdXZxV045OE01QVRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE1QTIvM0UxNjQxNjg5OEY2MTFFRUJCRjFGNDE3QzRGOUFFMDIvRDYxMjk5RjJE OEMwMTFFRkI0MUUxMzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWoZIAwDQYJKoZIhvcNAQELBQADggEBACfAeAcBfSRHEmKL p6qEaeMhcY0kuz09xKSnA/hTz6bFOyhOiPlmZsTNGg5MY4esulj3YD9970Z5/Rvt Ck+dcQdTPOMMAZPXih5cdE45z43+Y6vu+XgSbi6pVf3dach8rhIufVX3r/GcnF9n H+QthPufEc8BDw3b0Fhsx80Nj5AlWwG5TeryzoLEbp/Dp/vb+100zgB6TyxrWri2 ru9cWqWRBtuAB6C2xy3otjinlAYjLP4D4+UonSwxGnAWhkA4B/2EBrGUeKvUttO1 EuYhnNgNKTUirSD+m9+5j03RjtXSp2C4bbJhNJ7FtjNw9EBT5b18aPI2LbK+qvy/ Dd/ShTQ= -----END CERTIFICATE-----Generated at Sat Apr 5 23:43:36 2025 by rpki-client