$ rpki-client -vvf rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/D4F9C46CDCA511EF9BCCFC59C4F9AE02.roa File: D4F9C46CDCA511EF9BCCFC59C4F9AE02.roa (raw, json) Hash identifier: OuazFSoXGYM6zJItNa4jp1IfJllzFolsgf+lOTd60NE= Subject key identifier: DD:FB:85:12:22:BA:20:D5:B4:F0:31:BC:12:85:24:4B:B0:A5:F1:D6 Certificate issuer: /CN=A91443DC/serialNumber=FEABAD9235AEF17023CDCFB1619026F3CEDB2C7F Certificate serial: 79 Authority key identifier: FE:AB:AD:92:35:AE:F1:70:23:CD:CF:B1:61:90:26:F3:CE:DB:2C:7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/D4F9C46CDCA511EF9BCCFC59C4F9AE02.roa Signing time: Mon 27 Jan 2025 11:57:07 +0000 ROA not before: Mon 27 Jan 2025 11:57:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149994 IP address blocks: 160.22.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.crl rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443DC Validity Not Before: Jan 27 11:57:07 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67977493-18cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a2:87:89:de:ef:04:c2:a5:40:62:e0:32:91: 92:3c:d3:a5:ae:9c:4a:99:c2:74:95:0f:e0:a7:d2: 61:a0:a1:de:54:40:ee:6b:60:78:9f:84:b6:99:13: e2:dc:1f:03:f7:76:32:9a:de:ce:98:b0:0f:a0:e6: 46:d3:f2:69:a7:e7:01:45:2f:c6:89:99:49:6d:79: d6:92:e5:85:2f:44:a7:a2:5a:9b:3e:89:af:d9:b4: 4c:d9:27:b6:2e:92:14:61:63:ea:76:00:30:6c:01: fd:c8:2b:9b:4f:f6:e2:75:fa:6f:51:28:58:96:8a: d9:ce:31:d0:35:86:a7:96:79:b2:77:6d:83:50:17: 77:cd:fb:8d:b8:e8:e8:c7:0a:33:47:d3:d9:34:20: cc:02:c9:44:28:c5:58:94:4f:71:bb:bf:66:6a:2c: dc:a0:22:14:91:eb:eb:9c:2c:8c:ff:38:64:18:eb: a6:38:5d:0b:5c:e5:5a:2d:b5:50:6c:8c:52:ef:21: f4:93:d9:56:e0:47:b2:55:8c:bb:fe:c5:20:8e:9d: 94:b3:e3:76:ce:ca:68:1c:bd:7b:51:cd:c3:ef:f6: 22:7a:fb:ad:d7:eb:42:27:90:75:11:08:8c:2c:a7: 93:b1:e5:2b:1d:4b:68:cf:75:71:1c:37:87:31:bc: 77:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FB:85:12:22:BA:20:D5:B4:F0:31:BC:12:85:24:4B:B0:A5:F1:D6 X509v3 Authority Key Identifier: keyid:FE:AB:AD:92:35:AE:F1:70:23:CD:CF:B1:61:90:26:F3:CE:DB:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/D4F9C46CDCA511EF9BCCFC59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.151.0/24 Signature Algorithm: sha256WithRSAEncryption 00:d4:ae:6b:6a:40:9e:7a:13:70:42:88:fb:a3:11:4d:36:a5: c3:1b:4e:4c:ca:85:13:c5:2f:21:bc:97:d1:b9:50:22:23:45: 30:3d:14:1f:91:3e:b1:9c:8a:53:48:6d:d8:29:4f:f0:81:e9: 11:55:c1:c9:6c:c2:88:e4:b8:08:49:18:a7:e1:1a:eb:30:ec: b5:30:6a:57:a6:08:fa:24:1c:ef:7b:ce:82:06:45:61:7e:c3: ce:8e:b0:f3:b6:0c:75:01:ba:3a:aa:f7:ff:9c:3c:a5:52:ce: 0b:f5:45:20:ac:43:12:a4:19:bf:0d:07:f8:98:b2:87:69:f2: 47:a9:23:48:c0:9e:4e:d5:c6:39:82:f6:74:30:92:b9:39:b5: ac:30:f3:5e:be:11:2d:c1:c2:33:27:65:74:e9:4c:9a:d8:23: 43:a6:cf:16:44:32:3a:ea:b3:64:44:f9:c3:67:82:f5:a4:2d: 58:d8:da:e2:52:42:9c:39:c3:88:50:ff:91:e2:d0:b3:90:3b: 13:ab:cd:57:b6:01:ae:e9:63:0b:be:8e:99:f9:f5:08:af:54: b0:1d:12:cc:5e:c5:a2:25:3d:b7:42:b3:2d:63:7e:f6:d1:e2: d9:36:0f:80:43:9a:42:be:e4:34:f0:45:64:69:3d:df:8f:4b: fd:65:b1:dc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDNEQzExMC8GA1UEBRMoRkVBQkFEOTIzNUFFRjE3MDIzQ0RDRkIxNjE5MDI2RjND RURCMkM3RjAeFw0yNTAxMjcxMTU3MDdaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTc3NDkzLTE4Y2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEooeJ3u8EwqVAYuAykZI806WunEqZwnSVD+Cn0mGgod5UQO5rYHifhLaZE+Lc HwP3djKa3s6YsA+g5kbT8mmn5wFFL8aJmUltedaS5YUvRKeiWps+ia/ZtEzZJ7Yu khRhY+p2ADBsAf3IK5tP9uJ1+m9RKFiWitnOMdA1hqeWebJ3bYNQF3fN+4246OjH CjNH09k0IMwCyUQoxViUT3G7v2ZqLNygIhSR6+ucLIz/OGQY66Y4XQtc5VottVBs jFLvIfST2VbgR7JVjLv+xSCOnZSz43bOymgcvXtRzcPv9iJ6+63X60InkHURCIws p5Ox5SsdS2jPdXEcN4cxvHeJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3fuFEiK6 INW08DG8EoUkS7Cl8dYwHwYDVR0jBBgwFoAU/qutkjWu8XAjzc+xYZAm887bLH8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0M0RDLzk3REY3QTEyMzA2 MjExRUY5NzhCNDc2NEM0RjlBRTAyL19xdXRrald1OFhBanpjLXhZWkFtODg3YkxI OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX3F1dGtqV3U4WEFqemMteFlaQW04ODdiTEg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDNEQy85N0RGN0ExMjMwNjIxMUVGOTc4QjQ3NjRDNEY5QUUwMi9ENEY5QzQ2Q0RD QTUxMUVGOUJDQ0ZDNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAWlzANBgkqhkiG9w0BAQsFAAOCAQEAANSua2pAnnoTcEKI +6MRTTalwxtOTMqFE8UvIbyX0blQIiNFMD0UH5E+sZyKU0ht2ClP8IHpEVXByWzC iOS4CEkYp+Ea6zDstTBqV6YI+iQc73vOggZFYX7Dzo6w87YMdQG6Oqr3/5w8pVLO C/VFIKxDEqQZvw0H+Jiyh2nyR6kjSMCeTtXGOYL2dDCSuTm1rDDzXr4RLcHCMydl dOlMmtgjQ6bPFkQyOuqzZET5w2eC9aQtWNja4lJCnDnDiFD/keLQs5A7E6vNV7YB ruljC76Omfn1CK9UsB0SzF7FoiU9t0KzLWN+9tHi2TYPgEOaQr7kNPBFZGk9349L /WWx3A== -----END CERTIFICATE-----Generated at Wed Feb 19 20:43:31 2025 by rpki-client