$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/B81F8808A72E11EDA708F167C4F9AE02.roa File: B81F8808A72E11EDA708F167C4F9AE02.roa (raw, json) Hash identifier: Z2dLuMhuyDXP8u0M5/zr5SN45Z4g/1oBaib9ftgLQ0k= Subject key identifier: EF:D9:D9:7D:1D:6A:49:E5:C8:41:6F:92:4B:8D:03:58:52:6B:32:5A Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 06D1 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/B81F8808A72E11EDA708F167C4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:45 +0000 ROA not before: Mon 14 Oct 2024 22:52:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 55454 IP address blocks: 182.23.176.0/21 maxlen: 24 202.50.246.0/24 maxlen: 24 2404:1c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1745 (0x6d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA Validity Not Before: Oct 14 22:52:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0bd-ab9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8b:25:ad:69:85:87:16:eb:33:b2:98:98:c5: a5:a2:8e:d0:8e:cd:26:73:6e:c7:e0:a1:95:bc:eb: 54:95:e6:14:35:f1:51:56:35:86:9d:66:11:e8:8b: 97:9d:a3:78:3e:24:dc:0a:45:f5:d6:e3:e2:1d:6f: 18:e9:5c:03:52:fa:92:50:b2:6f:e9:74:e5:3d:d5: 70:cd:7d:74:1f:ce:d8:d7:41:dd:c6:69:bf:f8:17: a1:78:ab:d9:02:17:fd:aa:7d:17:b6:87:ee:3d:e4: 1d:2a:98:47:8f:eb:83:8c:e2:71:95:d2:b2:a5:8d: 01:5c:f2:f2:96:1a:a2:43:be:54:98:c7:8a:27:37: b9:04:f7:f1:e8:44:f4:8c:12:7f:05:35:14:65:32: 35:70:df:0b:7b:a2:8a:e0:21:a1:89:c3:a9:7c:f9: 66:cd:aa:f6:47:35:a1:01:4d:e5:6f:f5:9a:4b:0c: bc:40:09:6f:79:bb:cc:a0:20:2f:cb:db:a7:4b:56: 60:5c:8d:a5:58:82:25:be:37:e1:60:fc:14:5a:7a: 34:3d:38:a4:4c:89:b0:25:67:f3:c6:da:18:49:e5: 60:ae:19:1e:f0:e3:d3:35:e8:69:84:c0:1c:6d:5e: 07:b3:0c:24:18:88:24:fc:01:b9:0d:35:a0:0d:43: ac:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D9:D9:7D:1D:6A:49:E5:C8:41:6F:92:4B:8D:03:58:52:6B:32:5A X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/B81F8808A72E11EDA708F167C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.23.176.0/21 202.50.246.0/24 IPv6: 2404:1c00::/32 Signature Algorithm: sha256WithRSAEncryption 0e:c2:67:f3:58:06:af:a7:47:af:39:48:36:26:01:06:38:b4: 5d:b1:10:d6:8c:bd:d3:a2:64:7c:34:77:fc:88:03:3c:97:ad: d8:78:37:31:87:40:83:be:4a:e0:3b:68:f7:0c:d9:75:f5:65: 43:f6:9d:a8:32:20:ea:c8:c9:e7:16:57:4d:7c:88:da:4c:aa: 72:46:d2:a6:6d:37:8f:b6:09:d3:c6:25:ec:2d:d8:37:50:cc: 51:20:e8:15:48:a0:98:6f:16:55:ea:70:d0:f1:e6:66:4e:3f: cb:bb:64:90:00:da:b9:6b:bf:25:45:e6:45:29:e3:f5:4a:20: 63:90:f1:c7:08:59:e4:5e:9a:b3:17:ee:7f:53:f6:d6:b1:df: 4a:2c:3a:8d:7a:5b:20:4b:4b:e9:6f:37:2b:1e:5a:c3:65:de: e0:8c:cb:9a:50:6e:98:20:ae:68:e2:77:f3:b6:70:66:78:97: 5f:ef:7f:0c:7e:a6:2e:1a:05:1d:72:5b:09:98:73:84:9a:0f: a7:79:1a:ef:ee:ba:50:bd:42:25:9a:3c:6d:43:30:aa:73:34: 0c:b5:ed:ec:95:3f:72:6c:75:47:dd:73:5d:c3:cc:d2:a8:f5: a2:5e:7b:f5:ad:e1:c6:7d:8c:90:9a:5c:f2:1b:ae:d5:6d:5f: d5:0a:5b:19 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjQxMDE0MjI1MjQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBiZC1hYjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oslrWmFhxbrM7KYmMWloo7Qjs0mc27H4KGVvOtUleYUNfFRVjWGnWYR6IuX naN4PiTcCkX11uPiHW8Y6VwDUvqSULJv6XTlPdVwzX10H87Y10Hdxmm/+BeheKvZ Ahf9qn0XtofuPeQdKphHj+uDjOJxldKypY0BXPLylhqiQ75UmMeKJze5BPfx6ET0 jBJ/BTUUZTI1cN8Le6KK4CGhicOpfPlmzar2RzWhAU3lb/WaSwy8QAlvebvMoCAv y9unS1ZgXI2lWIIlvjfhYPwUWno0PTikTImwJWfzxtoYSeVgrhke8OPTNehphMAc bV4HswwkGIgk/AG5DTWgDUOsXQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFO/Z2X0d aknlyEFvkkuNA1hSazJaMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvQjgxRjg4MDhB NzJFMTFFREE3MDhGMTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAO2F7ADBADKMvYwDQQCAAIwBwMFACQEHAAwDQYJKoZIhvcN AQELBQADggEBAA7CZ/NYBq+nR685SDYmAQY4tF2xENaMvdOiZHw0d/yIAzyXrdh4 NzGHQIO+SuA7aPcM2XX1ZUP2nagyIOrIyecWV018iNpMqnJG0qZtN4+2CdPGJewt 2DdQzFEg6BVIoJhvFlXqcNDx5mZOP8u7ZJAA2rlrvyVF5kUp4/VKIGOQ8ccIWeRe mrMX7n9T9tax30osOo16WyBLS+lvNyseWsNl3uCMy5pQbpggrmjid/O2cGZ4l1/v fwx+pi4aBR1yWwmYc4SaD6d5Gu/uulC9QiWaPG1DMKpzNAy17eyVP3JsdUfdc13D zNKo9aJee/Wt4cZ9jJCaXPIbrtVtX9UKWxk= -----END CERTIFICATE-----Generated at Sun Feb 16 20:26:27 2025 by rpki-client