$ rpki-client -vvf rpki.apnic.net/member_repository/A9113B62/26619D44C6E811EFBB520B0DC4F9AE02/01238706C86211EFBDCCC22AC4F9AE02.roa File: 01238706C86211EFBDCCC22AC4F9AE02.roa (raw, json) Hash identifier: sqsd36HvdOtJGpobxnch2UziqlMaZAChQP7HevqvsWs= Subject key identifier: F7:12:52:41:00:D2:39:F1:BB:F2:BE:D9:BC:62:A4:51:75:54:D1:A8 Certificate issuer: /CN=A9113B62/serialNumber=42FEF331741A54D5A0AE7553108D4D2D32B057B0 Certificate serial: 04 Authority key identifier: 42:FE:F3:31:74:1A:54:D5:A0:AE:75:53:10:8D:4D:2D:32:B0:57:B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qv7zMXQaVNWgrnVTEI1NLTKwV7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113B62/26619D44C6E811EFBB520B0DC4F9AE02/01238706C86211EFBDCCC22AC4F9AE02.roa Signing time: Wed 01 Jan 2025 17:01:12 +0000 ROA not before: Wed 01 Jan 2025 17:01:12 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138151 IP address blocks: 161.248.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113B62/26619D44C6E811EFBB520B0DC4F9AE02/Qv7zMXQaVNWgrnVTEI1NLTKwV7A.crl rsync://rpki.apnic.net/member_repository/A9113B62/26619D44C6E811EFBB520B0DC4F9AE02/Qv7zMXQaVNWgrnVTEI1NLTKwV7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qv7zMXQaVNWgrnVTEI1NLTKwV7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113B62 Validity Not Before: Jan 1 17:01:12 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677574d8-af2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:da:4a:bd:f0:8f:bf:6f:79:92:a5:20:f2:c7: 7e:c3:8e:db:3b:54:a2:b4:a3:f3:92:83:9d:62:37: 61:4a:e6:1f:d9:ba:77:72:b7:d1:4e:fc:a5:d1:a9: 3c:89:26:2b:92:13:ea:d1:8b:74:46:1c:cf:b7:5a: 4b:4f:8d:9b:3f:cb:3a:2e:49:8c:2b:f5:e4:4e:f1: c3:cb:95:d9:61:4c:30:3b:be:f3:a3:bf:e8:6a:15: 18:59:a1:ad:2f:19:d7:7e:65:76:b2:47:0b:7f:c7: 91:e2:b4:8e:f8:9b:9b:fa:fa:71:4f:7b:2e:63:d1: 1e:3e:b3:19:be:f3:59:45:dc:08:f6:b0:3f:fe:16: 94:10:e9:03:38:a0:26:6e:23:30:b9:87:cd:a1:92: b3:8f:9b:8e:2f:81:f8:41:75:82:a2:f0:cd:60:d1: eb:3b:0f:f0:0d:59:13:61:b8:95:85:2f:ad:d9:3c: ab:24:22:5f:46:64:68:72:49:c7:85:19:bc:a9:77: ff:f2:b9:2f:49:f4:2e:0c:c2:d9:c3:10:3a:42:87: 3e:4f:5c:e1:ef:22:c4:21:ad:13:12:ab:30:3b:66: 6e:59:39:e6:2c:bb:2e:70:7b:b8:71:1a:67:be:03: df:da:a7:9d:56:af:2b:79:4c:f7:af:67:20:d2:ef: f3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:12:52:41:00:D2:39:F1:BB:F2:BE:D9:BC:62:A4:51:75:54:D1:A8 X509v3 Authority Key Identifier: keyid:42:FE:F3:31:74:1A:54:D5:A0:AE:75:53:10:8D:4D:2D:32:B0:57:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113B62/26619D44C6E811EFBB520B0DC4F9AE02/Qv7zMXQaVNWgrnVTEI1NLTKwV7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qv7zMXQaVNWgrnVTEI1NLTKwV7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113B62/26619D44C6E811EFBB520B0DC4F9AE02/01238706C86211EFBDCCC22AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.52.0/24 Signature Algorithm: sha256WithRSAEncryption 40:c7:41:26:50:ec:0f:e0:f7:72:cc:bb:7b:b9:03:af:af:4a: 09:3e:8a:8d:54:f8:73:44:8e:a2:e0:56:17:42:20:90:27:6a: 06:e2:83:63:7a:9a:3b:8b:f3:ce:58:ef:bf:33:0a:c3:45:79: 73:d7:77:fc:58:63:22:f7:11:87:30:db:37:8d:af:83:46:38: 01:e7:75:80:5c:14:a1:2a:05:77:e8:f3:e6:bb:79:da:90:e1: cc:f0:fd:5a:46:80:9c:cd:cb:07:77:0c:8d:4c:ac:a8:7b:62: 0c:e4:35:0d:6d:81:52:b0:eb:0d:a2:46:d1:ab:6d:6d:34:99: 58:9a:40:05:31:7c:d8:7d:76:eb:5b:65:73:a4:b5:8e:28:c1: f7:56:17:6e:89:37:a8:e7:5f:8c:f3:50:69:55:7d:98:f3:51: d6:9a:4b:3a:d4:9e:1f:05:88:ab:31:1a:ed:d1:ab:35:47:fd: 4b:65:38:50:31:33:69:26:18:1e:84:d4:b3:ac:b0:46:18:29: 4e:8f:e0:4c:60:92:0b:a7:86:48:df:fb:51:57:2e:90:c4:d6: b1:e4:54:86:91:c4:e7:06:a7:cb:24:69:40:18:17:6f:40:5c: 82:6d:7e:3d:70:52:03:6e:3c:98:36:7b:97:64:9c:0f:66:16: 6c:55:7e:e7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx M0I2MjExMC8GA1UEBRMoNDJGRUYzMzE3NDFBNTRENUEwQUU3NTUzMTA4RDREMkQz MkIwNTdCMDAeFw0yNTAxMDExNzAxMTJaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzU3NGQ4LWFmMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDa2kq98I+/b3mSpSDyx37Djts7VKK0o/OSg51iN2FK5h/Zundyt9FO/KXRqTyJ JiuSE+rRi3RGHM+3WktPjZs/yzouSYwr9eRO8cPLldlhTDA7vvOjv+hqFRhZoa0v Gdd+ZXayRwt/x5HitI74m5v6+nFPey5j0R4+sxm+81lF3Aj2sD/+FpQQ6QM4oCZu IzC5h82hkrOPm44vgfhBdYKi8M1g0es7D/ANWRNhuJWFL63ZPKskIl9GZGhySceF Gbypd//yuS9J9C4MwtnDEDpChz5PXOHvIsQhrRMSqzA7Zm5ZOeYsuy5we7hxGme+ A9/ap51Wryt5TPevZyDS7/OrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9xJSQQDS OfG78r7ZvGKkUXVU0agwHwYDVR0jBBgwFoAUQv7zMXQaVNWgrnVTEI1NLTKwV7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzQjYyLzI2NjE5RDQ0QzZF ODExRUZCQjUyMEIwREM0RjlBRTAyL1F2N3pNWFFhVk5XZ3JuVlRFSTFOTFRLd1Y3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUXY3ek1YUWFWTldncm5WVEVJMU5MVEt3VjdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0I2Mi8yNjYxOUQ0NEM2RTgxMUVGQkI1MjBCMERDNEY5QUUwMi8wMTIzODcwNkM4 NjIxMUVGQkRDQ0MyMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH4NDANBgkqhkiG9w0BAQsFAAOCAQEAQMdBJlDsD+D3csy7 e7kDr69KCT6KjVT4c0SOouBWF0IgkCdqBuKDY3qaO4vzzljvvzMKw0V5c9d3/Fhj IvcRhzDbN42vg0Y4Aed1gFwUoSoFd+jz5rt52pDhzPD9WkaAnM3LB3cMjUysqHti DOQ1DW2BUrDrDaJG0attbTSZWJpABTF82H1261tlc6S1jijB91YXbok3qOdfjPNQ aVV9mPNR1ppLOtSeHwWIqzEa7dGrNUf9S2U4UDEzaSYYHoTUs6ywRhgpTo/gTGCS C6eGSN/7UVcukMTWseRUhpHE5wanyyRpQBgXb0Bcgm1+PXBSA248mDZ7l2ScD2YW bFV+5w== -----END CERTIFICATE-----Generated at Wed Feb 5 23:12:43 2025 by rpki-client