$ rpki-client -vvf rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/42582BE6C54211EFBC189185C4F9AE02.roa File: 42582BE6C54211EFBC189185C4F9AE02.roa (raw, json) Hash identifier: 3NBZi9t73NGUqewcrwzUwAEjzkPNxuY/EA9dZDJA11Y= Subject key identifier: E5:1D:62:53:57:D8:70:59:51:73:FF:96:63:AD:52:C0:38:FB:10:5D Certificate issuer: /CN=A9122B85/serialNumber=C5564DEC101663BF43D3F2E340394C00766A63E3 Certificate serial: 23 Authority key identifier: C5:56:4D:EC:10:16:63:BF:43:D3:F2:E3:40:39:4C:00:76:6A:63:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/42582BE6C54211EFBC189185C4F9AE02.roa Signing time: Sun 29 Dec 2024 03:57:07 +0000 ROA not before: Sun 29 Dec 2024 03:57:07 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138998 IP address blocks: 160.191.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.crl rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122B85 Validity Not Before: Dec 29 03:57:07 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6770c893-df2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a6:17:83:10:e5:68:b3:8b:ab:9a:f3:21:77: 60:1f:7a:48:5c:1b:c3:c0:49:f4:c2:2c:2f:1a:e1: ea:96:15:cb:9b:97:84:ff:e1:d6:39:1d:dd:82:41: 62:17:d2:cc:9b:c6:cd:d4:a5:b5:cc:3d:f6:37:51: 2e:6b:5f:de:c9:c4:2d:0e:2c:fa:32:01:f6:68:0b: 7e:aa:6b:d9:7d:b4:6f:19:4f:90:ee:33:5b:6f:a0: 70:9c:ec:fd:7e:b2:0f:78:4b:86:51:23:90:ba:3b: 78:b4:9f:46:b0:36:d9:0d:f7:fe:eb:16:57:18:02: 4f:50:47:ff:da:c3:e0:74:49:d6:10:b5:81:82:1c: 1d:81:b5:f9:a5:06:47:3d:16:7b:86:4d:08:b6:7b: a7:d1:7a:21:2a:96:cf:66:d8:f8:19:4f:04:92:c7: 51:e9:c4:d7:15:eb:91:eb:4e:02:ff:24:05:ca:67: 3d:f7:d9:1e:82:d3:45:57:ac:cd:0a:86:fc:56:a9: 29:71:85:1b:15:27:53:9b:7d:1b:33:18:9f:b1:d1: 0e:f7:c3:dc:e2:ad:c4:fd:e4:ad:6d:bf:67:b3:5f: 2d:a9:7f:1b:fb:52:7f:64:1c:77:97:f5:5a:77:a3: 6e:b9:50:59:44:ce:74:49:72:c4:e5:0e:c4:61:fe: fa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1D:62:53:57:D8:70:59:51:73:FF:96:63:AD:52:C0:38:FB:10:5D X509v3 Authority Key Identifier: keyid:C5:56:4D:EC:10:16:63:BF:43:D3:F2:E3:40:39:4C:00:76:6A:63:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/42582BE6C54211EFBC189185C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.212.0/24 Signature Algorithm: sha256WithRSAEncryption 48:b7:96:f5:49:2d:32:5b:e4:31:bd:9b:05:fa:03:30:73:a6: e8:08:65:9d:32:6a:d8:e3:20:ae:04:5c:65:27:22:0e:39:04: d0:10:d6:db:f2:e6:81:39:8b:92:52:73:6c:78:38:69:e3:09: 35:f7:41:73:75:70:d1:f4:c8:12:31:a4:f0:27:78:ba:02:21: 7c:37:cc:87:74:77:38:d8:eb:e3:91:4c:37:43:f1:2b:20:1c: 32:27:0e:93:79:61:82:c2:9a:a8:72:e5:ce:d5:12:d2:de:80: 51:84:bf:63:89:1f:5f:63:87:f3:1c:b9:74:10:d8:4f:67:51: c0:a4:c2:d7:c3:d5:a7:61:ae:5e:e5:76:df:8e:d8:6d:53:f9: bc:65:03:11:8e:6a:3b:fe:d2:18:cf:c0:05:ab:c6:df:c0:bf: c3:51:ac:5e:70:2f:0f:4a:0b:ff:dc:e1:f3:5e:d6:bb:77:1d: 71:c9:a5:96:a9:4c:81:53:e8:89:1a:ee:f1:03:f6:cf:a3:e4: 19:9d:c9:10:1d:f9:76:f3:df:cb:a5:e8:cd:be:7a:51:8f:0b: fc:ca:b4:d3:f9:fc:27:4f:f2:29:5d:8e:2e:fc:68:46:21:ed: c0:3e:69:60:e1:ca:87:50:a7:e0:1a:bc:2b:93:e5:14:35:51: 82:39:6f:7d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MkI4NTExMC8GA1UEBRMoQzU1NjRERUMxMDE2NjNCRjQzRDNGMkUzNDAzOTRDMDA3 NjZBNjNFMzAeFw0yNDEyMjkwMzU3MDdaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzBjODkzLWRmMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDepheDEOVos4urmvMhd2AfekhcG8PASfTCLC8a4eqWFcubl4T/4dY5Hd2CQWIX 0sybxs3UpbXMPfY3US5rX97JxC0OLPoyAfZoC36qa9l9tG8ZT5DuM1tvoHCc7P1+ sg94S4ZRI5C6O3i0n0awNtkN9/7rFlcYAk9QR//aw+B0SdYQtYGCHB2BtfmlBkc9 FnuGTQi2e6fReiEqls9m2PgZTwSSx1HpxNcV65HrTgL/JAXKZz332R6C00VXrM0K hvxWqSlxhRsVJ1ObfRszGJ+x0Q73w9zircT95K1tv2ezXy2pfxv7Un9kHHeX9Vp3 o265UFlEznRJcsTlDsRh/votAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5R1iU1fY cFlRc/+WY61SwDj7EF0wHwYDVR0jBBgwFoAUxVZN7BAWY79D0/LjQDlMAHZqY+Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyQjg1L0NDQkJBQkVBOUY2 NDExRUZBOTMxNDczQ0M0RjlBRTAyL3hWWk43QkFXWTc5RDBfTGpRRGxNQUhacVkt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveFZaTjdCQVdZNzlEMF9MalFEbE1BSFpxWS1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkI4NS9DQ0JCQUJFQTlGNjQxMUVGQTkzMTQ3M0NDNEY5QUUwMi80MjU4MkJFNkM1 NDIxMUVGQkMxODkxODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/1DANBgkqhkiG9w0BAQsFAAOCAQEASLeW9UktMlvkMb2b BfoDMHOm6AhlnTJq2OMgrgRcZSciDjkE0BDW2/LmgTmLklJzbHg4aeMJNfdBc3Vw 0fTIEjGk8Cd4ugIhfDfMh3R3ONjr45FMN0PxKyAcMicOk3lhgsKaqHLlztUS0t6A UYS/Y4kfX2OH8xy5dBDYT2dRwKTC18PVp2GuXuV2347YbVP5vGUDEY5qO/7SGM/A BavG38C/w1GsXnAvD0oL/9zh817Wu3cdccmllqlMgVPoiRru8QP2z6PkGZ3JEB35 dvPfy6Xozb56UY8L/Mq00/n8J0/yKV2OLvxoRiHtwD5pYOHKh1Cn4Bq8K5PlFDVR gjlvfQ== -----END CERTIFICATE-----Generated at Thu Mar 13 06:54:26 2025 by rpki-client