$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/62743016CC1111EFA5744A6FC4F9AE02.roa File: 62743016CC1111EFA5744A6FC4F9AE02.roa (raw, json) Hash identifier: 6dXw7Y4MWNrxoZ0iMg2dM88R43+4l/3mUETzTfwLRvg= Subject key identifier: E8:76:15:1C:E9:EF:71:04:C8:11:96:D3:D2:EB:31:C9:A3:58:B1:45 Certificate issuer: /CN=A913D125/serialNumber=6F77C19F11D32AAAA42E26916F7482EFB8F97A1C Certificate serial: 04 Authority key identifier: 6F:77:C1:9F:11:D3:2A:AA:A4:2E:26:91:6F:74:82:EF:B8:F9:7A:1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b3fBnxHTKqqkLiaRb3SC77j5ehw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/62743016CC1111EFA5744A6FC4F9AE02.roa Signing time: Mon 06 Jan 2025 09:35:26 +0000 ROA not before: Mon 06 Jan 2025 09:35:26 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 153487 IP address blocks: 161.248.102.0/23 maxlen: 23 161.248.102.0/24 maxlen: 24 161.248.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.crl rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b3fBnxHTKqqkLiaRb3SC77j5ehw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:26:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125 Validity Not Before: Jan 6 09:35:26 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677ba3de-a3b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1f:c0:14:45:88:09:4f:11:f6:05:5e:c2:0f: ee:b7:36:b8:f8:d9:4c:1d:5e:3a:fd:43:1f:74:cc: 79:9c:1c:b1:47:d6:94:d7:a7:73:88:6a:75:bc:de: 0d:ad:88:a6:0c:79:28:4f:67:f7:48:38:99:29:ae: e4:ea:77:5c:a6:88:5b:e2:2e:85:1d:20:e1:7b:21: 22:5a:bc:2a:f9:0b:96:75:cc:b1:1e:2d:ac:57:34: 5d:3e:1a:da:fc:b8:19:d0:97:92:7d:a9:ea:4f:56: 3a:29:a5:db:ff:3e:5c:7e:3f:40:68:3e:43:f5:d3: 41:6e:77:31:f3:56:13:d6:b1:df:33:5f:82:68:77: 1f:0a:ba:6b:6e:6c:20:1d:60:aa:5f:d5:57:52:3e: c0:5b:78:27:a9:5a:f9:8d:47:41:6e:9a:9d:2b:8c: 2b:2d:0c:c0:0d:64:93:8e:99:f7:f4:db:22:a4:d8: 64:f9:df:e4:16:63:b4:5b:c3:42:35:8e:87:c0:cc: 08:89:94:a6:c8:47:fa:13:71:d1:7c:a1:1a:27:00: dc:b2:f7:59:72:c3:f1:0f:04:ea:b2:9f:17:86:aa: c7:f7:52:94:b7:75:13:09:fa:46:91:53:58:29:c1: 6f:26:fa:f7:c1:3f:ee:0f:58:42:e6:bd:df:1e:a5: 9d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:76:15:1C:E9:EF:71:04:C8:11:96:D3:D2:EB:31:C9:A3:58:B1:45 X509v3 Authority Key Identifier: keyid:6F:77:C1:9F:11:D3:2A:AA:A4:2E:26:91:6F:74:82:EF:B8:F9:7A:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b3fBnxHTKqqkLiaRb3SC77j5ehw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/62743016CC1111EFA5744A6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.102.0/23 Signature Algorithm: sha256WithRSAEncryption d1:b7:5f:6d:79:f3:43:a2:e0:42:48:a0:5b:99:8b:1c:79:b6: fa:c6:ad:c8:bd:64:4c:24:4c:e5:d2:96:c9:79:82:4c:53:72: 2c:6a:b2:8b:31:a0:52:af:c7:52:31:4a:37:a3:53:bb:a0:41: 79:63:73:fa:66:0f:49:a2:1d:a5:63:af:02:00:2e:57:a2:cc: 89:5e:d9:bc:db:83:cf:3b:e2:36:de:04:6b:70:f6:a6:9b:50: 00:79:a7:2e:35:26:7a:5d:d7:25:ac:42:d2:fb:7d:ea:90:b4: 4c:24:c5:9b:6d:b8:82:42:75:30:9a:02:04:f7:53:e7:ca:ec: 38:52:f6:1e:cf:0d:1e:4a:f5:a7:f9:38:61:16:db:16:9c:eb: 2e:92:e0:53:60:50:2b:f1:28:ae:9d:0c:38:e3:4d:73:c7:8f: 60:cb:dd:53:ee:7a:a9:15:67:ae:95:54:7e:02:ee:ee:72:72: 8d:ef:97:6d:2e:71:14:87:b3:19:58:c3:c4:fd:85:0e:70:76: 94:42:c8:d7:24:5e:30:bd:b2:54:13:83:68:ad:1d:ab:a0:70: ba:82:9e:47:fe:09:78:a9:ef:d7:2b:fa:d9:29:e8:50:8e:19: 80:97:03:2f:2f:23:08:31:1d:72:f1:1c:c9:0f:aa:fa:8e:da: f9:ab:8e:0a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDEyNTExMC8GA1UEBRMoNkY3N0MxOUYxMUQzMkFBQUE0MkUyNjkxNkY3NDgyRUZC OEY5N0ExQzAeFw0yNTAxMDYwOTM1MjZaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2JhM2RlLWEzYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVH8AURYgJTxH2BV7CD+63Nrj42UwdXjr9Qx90zHmcHLFH1pTXp3OIanW83g2t iKYMeShPZ/dIOJkpruTqd1ymiFviLoUdIOF7ISJavCr5C5Z1zLEeLaxXNF0+Gtr8 uBnQl5J9qepPVjoppdv/Plx+P0BoPkP100FudzHzVhPWsd8zX4Jodx8KumtubCAd YKpf1VdSPsBbeCepWvmNR0Fump0rjCstDMANZJOOmff02yKk2GT53+QWY7Rbw0I1 jofAzAiJlKbIR/oTcdF8oRonANyy91lyw/EPBOqynxeGqsf3UpS3dRMJ+kaRU1gp wW8m+vfBP+4PWELmvd8epZ1TAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6HYVHOnv cQTIEZbT0usxyaNYsUUwHwYDVR0jBBgwFoAUb3fBnxHTKqqkLiaRb3SC77j5ehww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMTI1L0Y1Rjc4NzhBQ0Mx MDExRUY4NzM5NkE2RUM0RjlBRTAyL2IzZkJueEhUS3Fxa0xpYVJiM1NDNzdqNWVo dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjNmQm54SFRLcXFrTGlhUmIzU0M3N2o1ZWh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDEyNS9GNUY3ODc4QUNDMTAxMUVGODczOTZBNkVDNEY5QUUwMi82Mjc0MzAxNkND MTExMUVGQTU3NDRBNkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4ZjANBgkqhkiG9w0BAQsFAAOCAQEA0bdfbXnzQ6LgQkig W5mLHHm2+satyL1kTCRM5dKWyXmCTFNyLGqyizGgUq/HUjFKN6NTu6BBeWNz+mYP SaIdpWOvAgAuV6LMiV7ZvNuDzzviNt4Ea3D2pptQAHmnLjUmel3XJaxC0vt96pC0 TCTFm224gkJ1MJoCBPdT58rsOFL2Hs8NHkr1p/k4YRbbFpzrLpLgU2BQK/Eorp0M OONNc8ePYMvdU+56qRVnrpVUfgLu7nJyje+XbS5xFIezGVjDxP2FDnB2lELI1yRe ML2yVBODaK0dq6BwuoKeR/4JeKnv1yv62SnoUI4ZgJcDLy8jCDEdcvEcyQ+q+o7a +auOCg== -----END CERTIFICATE-----Generated at Wed Feb 5 22:58:40 2025 by rpki-client