$ rpki-client -vvf rpki.apnic.net/member_repository/A9135FB6/8647E41EAC6411EFB684267BC4F9AE02/F5B752E4AC6411EF85E4707CC4F9AE02.roa File: F5B752E4AC6411EF85E4707CC4F9AE02.roa (raw, json) Hash identifier: Bsg5k0qU8j6671l5YxjaD4zP3w4U1PtCaRkw1jmRyr8= Subject key identifier: B2:1F:52:F5:ED:3D:E0:2B:42:2E:ED:0A:90:AA:73:14:13:3E:2A:CF Certificate issuer: /CN=A9135FB6/serialNumber=49397E33B31C0A8F68FCD2072BDA9ACCB65D02EC Certificate serial: 02 Authority key identifier: 49:39:7E:33:B3:1C:0A:8F:68:FC:D2:07:2B:DA:9A:CC:B6:5D:02:EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/STl-M7McCo9o_NIHK9qazLZdAuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135FB6/8647E41EAC6411EFB684267BC4F9AE02/F5B752E4AC6411EF85E4707CC4F9AE02.roa Signing time: Wed 27 Nov 2024 02:11:49 +0000 ROA not before: Wed 27 Nov 2024 02:11:49 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 146.116.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135FB6/8647E41EAC6411EFB684267BC4F9AE02/STl-M7McCo9o_NIHK9qazLZdAuw.crl rsync://rpki.apnic.net/member_repository/A9135FB6/8647E41EAC6411EFB684267BC4F9AE02/STl-M7McCo9o_NIHK9qazLZdAuw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/STl-M7McCo9o_NIHK9qazLZdAuw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 04:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135FB6 Validity Not Before: Nov 27 02:11:49 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=67467fe5-0c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c2:71:d3:58:b8:0e:e2:47:b6:d3:fd:da:b1: 84:aa:6f:12:a7:3c:4c:b6:19:12:37:46:d3:2c:81: 76:e5:1b:69:61:db:ec:48:50:63:2a:4f:28:13:46: 87:b0:4f:ad:3b:fe:a3:ac:67:c0:24:0c:1e:85:5c: 87:41:54:e6:4f:b6:8e:af:23:02:d7:fe:dd:30:44: 8f:43:12:4a:48:4c:e9:dd:17:25:5f:7b:ca:1c:c9: 5a:50:3b:f4:b8:8c:b3:bc:ee:11:55:4e:b0:c2:fe: 52:09:4d:b7:ef:14:95:83:05:47:d7:f7:a9:35:05: 35:9c:6c:61:25:92:2c:ec:a8:cb:ff:84:f6:55:77: 31:b2:17:10:d3:e7:79:51:5a:cf:8f:6d:3f:a0:71: 0d:25:d2:e0:f6:c9:d1:68:c1:79:25:39:64:3f:41: 36:3a:33:1b:4f:38:7c:08:95:5e:69:d4:81:22:98: 11:5e:09:98:09:6e:2a:65:e7:a4:a8:c6:f3:c6:2f: 9d:1e:1f:ba:4c:1a:75:df:e9:c5:67:e9:2e:cd:9b: 8c:7c:f7:ad:cb:d4:3f:c8:b5:ec:ff:09:8b:49:53: fe:69:f4:b7:28:a3:0c:6d:cd:b8:5d:c9:ae:cd:7e: ff:53:b7:0d:13:ae:5b:b1:a2:df:5b:06:fe:4b:b0: 0b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1F:52:F5:ED:3D:E0:2B:42:2E:ED:0A:90:AA:73:14:13:3E:2A:CF X509v3 Authority Key Identifier: keyid:49:39:7E:33:B3:1C:0A:8F:68:FC:D2:07:2B:DA:9A:CC:B6:5D:02:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135FB6/8647E41EAC6411EFB684267BC4F9AE02/STl-M7McCo9o_NIHK9qazLZdAuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/STl-M7McCo9o_NIHK9qazLZdAuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135FB6/8647E41EAC6411EFB684267BC4F9AE02/F5B752E4AC6411EF85E4707CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.116.248.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:98:79:64:4d:60:d6:8b:e2:e9:89:de:bf:77:04:4c:73:f9: 0a:41:d6:7d:22:e4:37:c8:2c:28:99:c6:3c:d8:e4:bd:57:0e: 75:24:bd:3c:fa:ec:7b:32:f1:e9:42:76:b7:cf:10:9b:33:0e: 6a:93:96:54:f7:0c:7f:e5:16:ac:5f:83:ca:14:a7:eb:9d:6d: c4:9b:eb:88:5c:56:69:af:1c:0d:07:39:32:c2:5d:f6:5d:e4: 15:5e:36:30:38:e4:07:a8:d1:a1:58:8a:06:53:3e:2f:68:45: 20:c0:71:88:04:4c:ae:68:8c:5d:4f:20:24:e1:8f:8b:46:66: 1c:cd:ef:55:30:65:c3:12:12:c4:1b:da:7d:76:41:47:e1:94: 3f:23:17:6b:d6:65:1b:47:3a:84:be:e5:ea:5e:31:10:52:fb: af:54:77:e3:e6:34:73:5f:a0:e9:e1:b4:82:ec:b5:bf:2e:40: c8:15:a6:03:46:fc:3b:b9:8d:12:ed:56:97:70:dc:31:26:7f: 3d:36:53:1b:65:2d:3a:8b:f8:6d:6c:5d:c5:de:b0:6b:7a:e3: 02:60:37:4e:1c:aa:ac:88:55:02:64:6b:36:e4:8a:dc:a8:fb: 5c:59:15:f1:a9:76:b0:9f:37:4e:ea:07:6e:52:39:66:82:7d: 67:48:cb:98 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NUZCNjExMC8GA1UEBRMoNDkzOTdFMzNCMzFDMEE4RjY4RkNEMjA3MkJEQTlBQ0NC NjVEMDJFQzAeFw0yNDExMjcwMjExNDlaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NDY3ZmU1LTBjMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTwnHTWLgO4ke20/3asYSqbxKnPEy2GRI3RtMsgXblG2lh2+xIUGMqTygTRoew T607/qOsZ8AkDB6FXIdBVOZPto6vIwLX/t0wRI9DEkpITOndFyVfe8ocyVpQO/S4 jLO87hFVTrDC/lIJTbfvFJWDBUfX96k1BTWcbGElkizsqMv/hPZVdzGyFxDT53lR Ws+PbT+gcQ0l0uD2ydFowXklOWQ/QTY6MxtPOHwIlV5p1IEimBFeCZgJbipl56So xvPGL50eH7pMGnXf6cVn6S7Nm4x8963L1D/Itez/CYtJU/5p9Lcoowxtzbhdya7N fv9Ttw0Trluxot9bBv5LsAsLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsh9S9e09 4CtCLu0KkKpzFBM+Ks8wHwYDVR0jBBgwFoAUSTl+M7McCo9o/NIHK9qazLZdAuww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1RkI2Lzg2NDdFNDFFQUM2 NDExRUZCNjg0MjY3QkM0RjlBRTAyL1NUbC1NN01jQ285b19OSUhLOXFhekxaZEF1 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU1RsLU03TWNDbzlvX05JSEs5cWF6TFpkQXV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUZCNi84NjQ3RTQxRUFDNjQxMUVGQjY4NDI2N0JDNEY5QUUwMi9GNUI3NTJFNEFD NjQxMUVGODVFNDcwN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJJ0+DANBgkqhkiG9w0BAQsFAAOCAQEAH5h5ZE1g1ovi6Yne v3cETHP5CkHWfSLkN8gsKJnGPNjkvVcOdSS9PPrsezLx6UJ2t88QmzMOapOWVPcM f+UWrF+DyhSn651txJvriFxWaa8cDQc5MsJd9l3kFV42MDjkB6jRoViKBlM+L2hF IMBxiARMrmiMXU8gJOGPi0ZmHM3vVTBlwxISxBvafXZBR+GUPyMXa9ZlG0c6hL7l 6l4xEFL7r1R34+Y0c1+g6eG0guy1vy5AyBWmA0b8O7mNEu1Wl3DcMSZ/PTZTG2Ut Oov4bWxdxd6wa3rjAmA3ThyqrIhVAmRrNuSK3Kj7XFkV8al2sJ83TuoHblI5ZoJ9 Z0jLmA== -----END CERTIFICATE-----Generated at Wed Feb 5 09:48:16 2025 by rpki-client