$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa File: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (raw, json) Hash identifier: 8Wzv5veel/E+M5qspAlwBsfA0pAvjm21LyceiyRo5cA= Subject key identifier: E6:9B:23:36:DE:36:94:DC:94:2E:3D:A9:34:1F:91:E0:E9:5E:F3:0D Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: 02 Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa Signing time: Mon 13 Jan 2025 07:24:58 +0000 ROA not before: Mon 13 Jan 2025 07:24:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137054 IP address blocks: 160.191.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2 Validity Not Before: Jan 13 07:24:58 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6784bfc9-ee02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:df:da:61:62:9c:24:9d:d7:16:a7:f5:48:26: 5b:88:d4:3a:43:ba:18:16:d2:bc:09:4e:76:11:e9: e8:d7:64:17:d0:59:cc:75:a9:5c:53:f0:ce:4a:84: be:d4:7b:8e:d6:c0:c8:cf:26:a1:8f:a0:c1:55:47: ca:3e:d5:16:11:34:57:1d:25:6b:12:83:4c:e7:86: e0:0b:6f:fe:b6:2e:00:17:49:03:c8:50:5e:05:c8: a7:90:a8:f8:a1:34:6c:b8:ac:6a:da:37:ac:8c:35: 37:67:cc:87:0c:1f:e3:00:61:f0:00:87:98:81:15: a0:9c:ed:ec:33:64:ae:c6:72:21:cb:92:fd:d0:ce: 50:4b:fb:e8:d6:17:50:52:47:d2:1d:b7:e2:b6:2f: ce:32:92:bd:22:5e:b8:8d:a4:12:e2:1d:d5:50:23: 49:ff:15:e1:b5:b5:40:92:9e:0f:25:c6:89:86:43: e1:a0:be:5c:df:73:d8:37:2f:b9:42:db:e6:57:27: a8:c3:20:71:70:ee:64:f0:75:36:b3:cf:39:e9:a0: 40:56:98:64:0e:eb:18:85:02:58:51:45:e7:60:0c: 76:70:35:88:48:e8:d6:94:f2:cb:49:81:5e:13:0d: 34:78:29:b0:90:f0:60:32:d0:f0:ae:6d:4e:4b:80: 3b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:9B:23:36:DE:36:94:DC:94:2E:3D:A9:34:1F:91:E0:E9:5E:F3:0D X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.118.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:15:12:69:10:a5:27:96:e6:12:2f:87:20:21:40:e6:a6:ca: 7a:02:9e:b7:bd:1a:c4:8a:8d:bd:61:f1:37:6d:a6:94:3f:85: 39:91:ac:b7:3f:74:fa:50:17:05:47:53:64:8e:77:1f:cd:0e: 98:e8:c8:d0:c8:5f:54:28:49:79:c3:8d:43:f0:7b:69:a4:91: 41:56:90:de:c1:db:84:8c:20:7c:ed:7c:28:42:54:f5:ca:3a: 40:88:c4:18:7f:16:7d:2b:85:77:97:69:03:f1:4a:79:9f:c4: 38:bd:05:4b:6f:3f:68:b9:67:40:62:e7:1e:2a:fc:6a:0c:15: cd:ce:67:50:0b:34:8a:56:1f:3c:08:d2:09:6f:bf:db:46:5c: 6c:c7:3b:e9:3a:05:24:f5:35:8b:e0:1f:4e:70:54:96:4f:43: e3:ed:ed:5e:f0:e0:bd:53:b1:96:67:9e:57:42:60:00:96:80: 0f:2a:c3:ac:ce:9b:73:55:31:4d:57:ed:7a:37:25:cd:74:bf: 54:3c:40:3e:1b:35:5d:c9:84:92:8d:66:e7:d0:b6:71:ec:dc: bb:89:9b:4a:89:9c:6f:4d:f0:46:d9:bb:cf:0e:c5:20:d5:10: 3b:e7:2a:e6:b9:85:eb:7d:ae:48:cf:a7:80:38:8d:da:8a:25: 0f:3a:03:30 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODZDMjExMC8GA1UEBRMoQzYyNjU4MzI5ODU3OEQxRDRBRjcyNzNFQkQ3OTFDNzIz MEEzNzQ0OTAeFw0yNTAxMTMwNzI0NThaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODRiZmM5LWVlMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG39phYpwkndcWp/VIJluI1DpDuhgW0rwJTnYR6ejXZBfQWcx1qVxT8M5KhL7U e47WwMjPJqGPoMFVR8o+1RYRNFcdJWsSg0znhuALb/62LgAXSQPIUF4FyKeQqPih NGy4rGraN6yMNTdnzIcMH+MAYfAAh5iBFaCc7ewzZK7GciHLkv3QzlBL++jWF1BS R9Idt+K2L84ykr0iXriNpBLiHdVQI0n/FeG1tUCSng8lxomGQ+Ggvlzfc9g3L7lC 2+ZXJ6jDIHFw7mTwdTazzznpoEBWmGQO6xiFAlhRRedgDHZwNYhI6NaU8stJgV4T DTR4KbCQ8GAy0PCubU5LgDuvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5psjNt42 lNyULj2pNB+R4Ole8w0wHwYDVR0jBBgwFoAUxiZYMphXjR1K9yc+vXkccjCjdEkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NkMyLzFEMkYwNzI0RDE3 RjExRUZCMzg0NjkyOEM0RjlBRTAyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRF ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveGlaWU1waFhqUjFLOXljLXZYa2NjakNqZEVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODZDMi8xRDJGMDcyNEQxN0YxMUVGQjM4NDY5MjhDNEY5QUUwMi83REZGQ0RBNEQx N0YxMUVGOEZBRTQ1MkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/djANBgkqhkiG9w0BAQsFAAOCAQEAixUSaRClJ5bmEi+H ICFA5qbKegKet70axIqNvWHxN22mlD+FOZGstz90+lAXBUdTZI53H80OmOjI0Mhf VChJecONQ/B7aaSRQVaQ3sHbhIwgfO18KEJU9co6QIjEGH8WfSuFd5dpA/FKeZ/E OL0FS28/aLlnQGLnHir8agwVzc5nUAs0ilYfPAjSCW+/20ZcbMc76ToFJPU1i+Af TnBUlk9D4+3tXvDgvVOxlmeeV0JgAJaADyrDrM6bc1UxTVftejclzXS/VDxAPhs1 XcmEko1m59C2cezcu4mbSomcb03wRtm7zw7FINUQO+cq5rmF632uSM+ngDiN2ool DzoDMA== -----END CERTIFICATE-----Generated at Wed Feb 5 21:51:32 2025 by rpki-client