$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/B6F12A04A72E11EDA708F167C4F9AE02.roa File: B6F12A04A72E11EDA708F167C4F9AE02.roa (raw, json) Hash identifier: NBYPHGQ3msrlwjVdtvyMkfdcyhdI0r9bdRo5u6FYwlo= Subject key identifier: 1B:89:4B:CD:10:24:70:A7:2D:56:2D:AB:BB:44:6B:29:38:5C:0D:88 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 06C7 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/B6F12A04A72E11EDA708F167C4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:36 +0000 ROA not before: Mon 14 Oct 2024 22:52:36 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136494 IP address blocks: 202.180.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1735 (0x6c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA Validity Not Before: Oct 14 22:52:36 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0b4-3f1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:47:91:16:1f:f0:85:ba:50:26:c1:94:aa:7a: ea:66:9a:a3:fb:8e:cc:8f:fe:e1:c9:e4:0f:29:89: 16:5b:b6:a4:20:64:8f:08:0a:8b:9b:a0:c9:a9:ef: fc:4e:15:ed:04:fd:df:8e:89:7b:29:7c:47:f8:99: 02:17:49:17:85:4c:27:ad:6d:1b:1c:06:3b:8e:d3: 9b:1b:44:e5:48:d2:93:f9:9a:c2:64:22:62:21:e7: cd:3a:51:51:fb:f7:54:1f:a8:0a:7a:c2:02:43:f2: 55:b6:11:9e:dd:5d:ae:a0:9e:40:8a:2f:ac:0f:4b: cc:0f:33:55:3a:a8:66:89:1c:11:d2:2c:22:1b:4f: 98:41:5a:9a:b6:9b:ce:79:86:4c:4c:48:96:3b:d4: a2:41:25:68:ce:f1:7f:39:bb:1c:ca:bb:9a:2b:8c: 23:05:02:71:e1:1a:94:2e:61:fc:58:71:8a:e0:7e: 5c:f6:0f:e7:17:8d:34:9f:d0:8f:15:c4:81:a8:0e: 04:79:6c:af:93:69:46:72:75:50:8d:e5:b0:a2:ec: ab:cf:f7:49:e5:5e:20:79:5d:a8:7b:fc:c9:39:97: 2b:dc:29:87:84:84:60:60:5b:84:8a:10:f4:1f:99: aa:2d:a7:25:3c:47:a4:f1:e6:ab:41:e6:3b:9a:fc: 52:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:89:4B:CD:10:24:70:A7:2D:56:2D:AB:BB:44:6B:29:38:5C:0D:88 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/B6F12A04A72E11EDA708F167C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.180.79.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:6f:04:54:a5:7f:25:1b:25:bc:73:b1:e9:7f:e6:ae:70:fd: 22:96:e7:14:59:20:e3:3f:54:18:13:1c:68:e4:20:fd:80:09: cb:e5:79:64:cf:d9:3f:ef:65:9b:8a:86:81:02:e2:d6:1b:7f: 86:8b:7e:e0:82:fe:c5:82:78:37:4a:6a:75:46:bb:ff:a4:4e: f6:1f:e8:e7:f8:89:ce:aa:fe:88:82:e6:14:73:3a:f3:da:9f: 65:b3:80:ad:a2:18:de:7b:14:7a:4d:70:c8:07:8b:b7:de:2b: fb:9a:07:18:6e:36:af:6b:dd:61:b5:49:12:ab:0e:84:1b:7e: d3:03:88:62:7c:99:e1:88:ff:18:c7:d5:25:54:a9:ae:ea:a8: 5b:e9:fe:45:bf:c1:32:57:55:c8:db:52:f3:33:4e:4d:a0:dc: 2a:4f:04:24:df:ad:0b:c5:0b:8e:b5:3b:6b:20:4e:d3:7f:35: a1:c4:9d:b0:23:da:6e:8e:5c:c5:b3:61:6a:78:5a:08:7f:52: 05:60:5c:c3:64:5d:5d:67:ee:08:19:49:67:95:cd:31:74:60: 58:fa:4c:d5:b0:6b:59:fd:26:24:cc:0b:85:b5:4c:81:9d:af: d5:f5:ab:55:05:b9:f4:57:43:b0:0a:6c:87:db:62:b4:97:48: b2:7b:cb:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjQxMDE0MjI1MjM2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBiNC0zZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0eRFh/whbpQJsGUqnrqZpqj+47Mj/7hyeQPKYkWW7akIGSPCAqLm6DJqe/8 ThXtBP3fjol7KXxH+JkCF0kXhUwnrW0bHAY7jtObG0TlSNKT+ZrCZCJiIefNOlFR +/dUH6gKesICQ/JVthGe3V2uoJ5Aii+sD0vMDzNVOqhmiRwR0iwiG0+YQVqatpvO eYZMTEiWO9SiQSVozvF/ObscyruaK4wjBQJx4RqULmH8WHGK4H5c9g/nF400n9CP FcSBqA4EeWyvk2lGcnVQjeWwouyrz/dJ5V4geV2oe/zJOZcr3CmHhIRgYFuEihD0 H5mqLaclPEek8earQeY7mvxS/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBuJS80Q JHCnLVYtq7tEayk4XA2IMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvQjZGMTJBMDRB NzJFMTFFREE3MDhGMTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKtE8wDQYJKoZIhvcNAQELBQADggEBAFxvBFSlfyUbJbxz sel/5q5w/SKW5xRZIOM/VBgTHGjkIP2ACcvleWTP2T/vZZuKhoEC4tYbf4aLfuCC /sWCeDdKanVGu/+kTvYf6Of4ic6q/oiC5hRzOvPan2WzgK2iGN57FHpNcMgHi7fe K/uaBxhuNq9r3WG1SRKrDoQbftMDiGJ8meGI/xjH1SVUqa7qqFvp/kW/wTJXVcjb UvMzTk2g3CpPBCTfrQvFC461O2sgTtN/NaHEnbAj2m6OXMWzYWp4Wgh/UgVgXMNk XV1n7ggZSWeVzTF0YFj6TNWwa1n9JiTMC4W1TIGdr9X1q1UFufRXQ7AKbIfbYrSX SLJ7y7k= -----END CERTIFICATE-----Generated at Sun Feb 16 20:30:22 2025 by rpki-client