$ rpki-client -vvf rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/21D32B1EC54211EFBA442C85C4F9AE02.roa File: 21D32B1EC54211EFBA442C85C4F9AE02.roa (raw, json) Hash identifier: xY5rRYGsWrcsy57HxUo/DUZymmQ+QbhnmZvTvm4JJxQ= Subject key identifier: 75:9D:06:70:A4:7F:A8:BE:CB:B3:5E:AD:3D:74:89:7C:7C:77:C8:9E Certificate issuer: /CN=A9122B85/serialNumber=C5564DEC101663BF43D3F2E340394C00766A63E3 Certificate serial: 24 Authority key identifier: C5:56:4D:EC:10:16:63:BF:43:D3:F2:E3:40:39:4C:00:76:6A:63:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/21D32B1EC54211EFBA442C85C4F9AE02.roa Signing time: Sun 29 Dec 2024 03:57:08 +0000 ROA not before: Sun 29 Dec 2024 03:57:08 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 151786 IP address blocks: 160.191.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.crl rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122B85 Validity Not Before: Dec 29 03:57:08 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6770c894-2453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:90:aa:48:be:91:8e:a1:54:1e:ee:73:30:c5: 59:45:5a:95:7b:07:3f:74:55:78:45:46:38:93:af: 49:90:36:6a:02:55:19:34:89:a2:f8:5d:90:36:f9: 76:1c:8d:9f:d1:eb:a4:bf:c6:32:96:35:11:89:8a: 18:86:e6:20:09:be:c6:a8:ec:31:c4:58:bc:5c:51: 54:af:76:51:fc:88:c5:4e:b0:bd:b6:74:aa:2e:24: b5:cf:1f:71:f4:11:8e:f3:4c:04:90:e0:57:a6:2a: ca:0b:54:9a:4e:3a:57:3f:8f:2c:f1:5d:0f:fc:d0: 8e:c5:6c:39:b6:b4:b8:ec:1e:fe:55:a3:44:13:5f: 64:96:70:b1:08:1b:e4:b8:72:5b:16:4c:8c:ce:d0: 0c:a5:c7:3e:39:f4:db:16:e3:1b:e4:2b:3d:d1:30: 04:52:ae:62:2a:2a:3f:74:dc:9a:3e:53:cd:75:19: 57:6e:cf:2d:d5:32:ea:c5:9e:49:71:80:fd:60:b1: bf:b8:71:44:1f:dc:4e:cc:d0:7f:b4:f5:05:63:23: 49:c4:44:cd:53:a7:13:25:de:9e:0e:e1:d1:82:44: 18:ac:e4:a0:93:ec:99:dd:88:26:1b:fb:53:5c:6a: 70:29:99:72:05:ec:5c:da:64:24:c4:71:35:b1:53: 76:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9D:06:70:A4:7F:A8:BE:CB:B3:5E:AD:3D:74:89:7C:7C:77:C8:9E X509v3 Authority Key Identifier: keyid:C5:56:4D:EC:10:16:63:BF:43:D3:F2:E3:40:39:4C:00:76:6A:63:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/21D32B1EC54211EFBA442C85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.212.0/24 Signature Algorithm: sha256WithRSAEncryption 40:42:c4:cf:50:2c:78:7b:fc:d4:eb:55:69:c9:a8:a1:4f:3e: 98:9d:d4:6b:5d:a2:de:bc:68:2c:f8:61:35:1d:2a:96:a2:33: 6f:0b:29:9d:89:f5:a4:ae:e2:09:54:3c:e6:d5:c7:71:1f:8f: 4a:5e:47:50:5b:26:25:19:54:ba:83:12:c2:41:e1:e5:a3:30: 95:ea:b9:53:0b:6e:2c:79:6e:57:ae:ac:bd:9c:d6:a6:e4:87: 2c:80:18:97:ac:52:2d:ca:ec:cf:30:ac:2e:40:b5:73:0a:85: 08:56:38:0f:81:a1:3e:8a:6b:f5:56:57:6b:84:b6:e2:bd:11: 35:a8:2a:fd:4c:32:05:d4:b5:d4:19:6e:80:51:24:ee:ee:61: 67:80:66:1a:62:c7:6c:7d:fb:2e:c2:ea:95:73:a2:59:7e:44: 39:24:ce:59:50:56:4b:68:0e:f5:49:13:1c:6a:b7:2c:ac:6f: d2:48:26:68:ac:09:b2:9b:a4:09:80:83:bb:fb:d7:de:dc:80: 2b:17:a2:3c:66:ea:9d:b7:d4:9b:05:92:86:3c:e2:51:57:e3: 4e:5c:b5:bd:c4:09:6d:e0:a4:a5:34:b9:8e:82:24:d4:17:50: 78:22:4d:4f:fd:9b:bf:9c:19:bf:1d:75:60:3e:fa:bd:33:f3: 9d:a5:84:9e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MkI4NTExMC8GA1UEBRMoQzU1NjRERUMxMDE2NjNCRjQzRDNGMkUzNDAzOTRDMDA3 NjZBNjNFMzAeFw0yNDEyMjkwMzU3MDhaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzBjODk0LTI0NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDokKpIvpGOoVQe7nMwxVlFWpV7Bz90VXhFRjiTr0mQNmoCVRk0iaL4XZA2+XYc jZ/R66S/xjKWNRGJihiG5iAJvsao7DHEWLxcUVSvdlH8iMVOsL22dKouJLXPH3H0 EY7zTASQ4FemKsoLVJpOOlc/jyzxXQ/80I7FbDm2tLjsHv5Vo0QTX2SWcLEIG+S4 clsWTIzO0Aylxz459NsW4xvkKz3RMARSrmIqKj903Jo+U811GVduzy3VMurFnklx gP1gsb+4cUQf3E7M0H+09QVjI0nERM1TpxMl3p4O4dGCRBis5KCT7JndiCYb+1Nc anApmXIF7FzaZCTEcTWxU3aPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUdZ0GcKR/ qL7Ls16tPXSJfHx3yJ4wHwYDVR0jBBgwFoAUxVZN7BAWY79D0/LjQDlMAHZqY+Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyQjg1L0NDQkJBQkVBOUY2 NDExRUZBOTMxNDczQ0M0RjlBRTAyL3hWWk43QkFXWTc5RDBfTGpRRGxNQUhacVkt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveFZaTjdCQVdZNzlEMF9MalFEbE1BSFpxWS1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkI4NS9DQ0JCQUJFQTlGNjQxMUVGQTkzMTQ3M0NDNEY5QUUwMi8yMUQzMkIxRUM1 NDIxMUVGQkE0NDJDODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/1DANBgkqhkiG9w0BAQsFAAOCAQEAQELEz1AseHv81OtV acmooU8+mJ3Ua12i3rxoLPhhNR0qlqIzbwspnYn1pK7iCVQ85tXHcR+PSl5HUFsm JRlUuoMSwkHh5aMwleq5UwtuLHluV66svZzWpuSHLIAYl6xSLcrszzCsLkC1cwqF CFY4D4GhPopr9VZXa4S24r0RNagq/UwyBdS11BlugFEk7u5hZ4BmGmLHbH37LsLq lXOiWX5EOSTOWVBWS2gO9UkTHGq3LKxv0kgmaKwJspukCYCDu/vX3tyAKxeiPGbq nbfUmwWShjziUVfjTly1vcQJbeCkpTS5joIk1BdQeCJNT/2bv5wZvx11YD76vTPz naWEng== -----END CERTIFICATE-----Generated at Thu Mar 13 06:31:39 2025 by rpki-client