$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/AA14EED2BDE911EFB07EE682C4F9AE02.roa File: AA14EED2BDE911EFB07EE682C4F9AE02.roa (raw, json) Hash identifier: 8Lz3SihiRlFf9NOxeybLJutdQF61khJ8l8jmKMF421Q= Subject key identifier: F5:03:4D:07:71:7B:CB:91:D6:C4:9D:5E:FC:7B:C7:A5:75:BE:DB:12 Certificate issuer: /CN=A9144F34/serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Certificate serial: 02 Authority key identifier: 4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/AA14EED2BDE911EFB07EE682C4F9AE02.roa Signing time: Thu 19 Dec 2024 09:14:35 +0000 ROA not before: Thu 19 Dec 2024 09:14:35 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137921 IP address blocks: 160.250.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F34 Validity Not Before: Dec 19 09:14:35 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6763e3fb-a3ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:41:28:91:c7:0b:95:27:fa:40:41:c2:d1:cb: b4:c4:5e:5a:d0:5b:90:3a:79:d1:36:79:e2:34:ba: 1b:8c:4b:3e:77:f8:f1:b9:bd:9e:b5:1a:78:ac:87: 2c:f9:3a:b5:4e:f4:a8:ad:d3:b9:8e:af:5c:09:5c: 81:24:b2:4d:f6:7b:9e:52:73:de:7e:f7:c5:a2:e3: 9a:d2:d6:f3:03:a4:10:29:ec:b0:59:3e:70:98:dd: 22:4b:17:83:5d:fe:a5:94:1e:78:50:8f:83:f3:e6: ce:e0:14:60:fa:0b:f2:e0:ff:a7:7d:e4:77:89:36: e1:14:86:8e:1f:d1:d7:93:77:b6:02:4a:98:83:d2: f5:96:55:d3:cb:d7:e0:53:5d:64:11:a1:dc:52:3d: c8:9c:36:e9:0e:3c:89:7a:af:ed:a0:27:c0:74:ee: 39:1b:dc:9c:ad:63:d4:3d:4a:75:69:1a:9a:d5:ba: f4:73:5b:3c:7a:80:bf:eb:27:c0:fc:04:1f:38:4b: 3c:22:73:b6:20:63:42:cc:56:75:47:9f:57:ec:d0: 1f:ed:60:17:6d:28:e4:76:3d:0f:10:8e:20:d7:df: 32:ac:0a:18:6f:2d:91:b1:bf:b4:d4:b4:b5:c6:87: 94:cd:af:75:9f:dd:f6:02:d1:8c:bf:e9:06:b5:20: 83:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:03:4D:07:71:7B:CB:91:D6:C4:9D:5E:FC:7B:C7:A5:75:BE:DB:12 X509v3 Authority Key Identifier: keyid:4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/AA14EED2BDE911EFB07EE682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.222.0/24 Signature Algorithm: sha256WithRSAEncryption 44:30:3a:9f:4a:82:6d:b3:6f:b9:63:8a:56:d8:23:0a:61:95: 6f:db:6b:51:65:f2:28:45:3d:a7:15:43:d6:ea:95:67:40:ec: 7f:53:73:2a:b7:66:cd:86:34:22:30:5e:b3:09:8b:0b:e6:d5: ff:12:eb:c9:9b:02:3a:04:16:f1:46:ca:86:37:22:7f:42:e9: 74:ac:80:5b:8d:f4:20:62:87:73:82:85:5b:30:ea:42:e3:56: d8:60:94:b1:dc:f1:ab:93:a5:34:8f:11:af:c3:3b:aa:e6:8d: 8b:01:f7:28:50:30:08:ed:51:d2:47:f8:43:b8:7b:2a:25:89: bf:5d:80:1d:3d:0c:56:f8:3d:e1:b5:66:2c:18:4d:eb:f2:57: 72:d3:97:75:3d:b4:f2:08:80:78:08:fe:8b:ae:e7:90:c7:88: 01:7b:96:92:50:b9:06:e4:cb:3f:72:04:43:45:91:c2:db:54: 8a:c6:3c:82:86:72:1f:92:3e:0e:93:9e:09:82:bf:a2:b3:a3: b8:e4:03:18:14:2b:a8:7e:83:f5:16:df:70:b3:13:a7:76:50: d9:7a:69:1e:dd:f5:95:7b:7c:5d:5e:f9:dc:0f:96:bf:f8:ed: 21:25:29:35:28:55:95:c7:c0:11:ab:5e:14:35:9c:04:b3:b3: a7:51:c6:c9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NEYzNDExMC8GA1UEBRMoNEIzMTA4QkM1NzU4ODQzRDYzREZGNkZDNjQwOTdGMkIx NjQ0Q0I4QTAeFw0yNDEyMTkwOTE0MzVaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NjNlM2ZiLWEzZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuQSiRxwuVJ/pAQcLRy7TEXlrQW5A6edE2eeI0uhuMSz53+PG5vZ61Gnishyz5 OrVO9Kit07mOr1wJXIEksk32e55Sc95+98Wi45rS1vMDpBAp7LBZPnCY3SJLF4Nd /qWUHnhQj4Pz5s7gFGD6C/Lg/6d95HeJNuEUho4f0deTd7YCSpiD0vWWVdPL1+BT XWQRodxSPcicNukOPIl6r+2gJ8B07jkb3JytY9Q9SnVpGprVuvRzWzx6gL/rJ8D8 BB84Szwic7YgY0LMVnVHn1fs0B/tYBdtKOR2PQ8QjiDX3zKsChhvLZGxv7TUtLXG h5TNr3Wf3fYC0Yy/6Qa1IIP7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9QNNB3F7 y5HWxJ1e/HvHpXW+2xIwHwYDVR0jBBgwFoAUSzEIvFdYhD1j3/b8ZAl/KxZEy4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0RjM0LzREMjJFRUUwQkRF OTExRUZCRkQ1Mzg4MkM0RjlBRTAyL1N6RUl2RmRZaEQxajNfYjhaQWxfS3haRXk0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU3pFSXZGZFloRDFqM19iOFpBbF9LeFpFeTRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEYzNC80RDIyRUVFMEJERTkxMUVGQkZENTM4ODJDNEY5QUUwMi9BQTE0RUVEMkJE RTkxMUVGQjA3RUU2ODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD63jANBgkqhkiG9w0BAQsFAAOCAQEARDA6n0qCbbNvuWOK VtgjCmGVb9trUWXyKEU9pxVD1uqVZ0Dsf1NzKrdmzYY0IjBeswmLC+bV/xLryZsC OgQW8UbKhjcif0LpdKyAW430IGKHc4KFWzDqQuNW2GCUsdzxq5OlNI8Rr8M7quaN iwH3KFAwCO1R0kf4Q7h7KiWJv12AHT0MVvg94bVmLBhN6/JXctOXdT208giAeAj+ i67nkMeIAXuWklC5BuTLP3IEQ0WRwttUisY8goZyH5I+DpOeCYK/orOjuOQDGBQr qH6D9RbfcLMTp3ZQ2XppHt31lXt8XV753A+Wv/jtISUpNShVlcfAEateFDWcBLOz p1HGyQ== -----END CERTIFICATE-----Generated at Wed Feb 5 23:11:29 2025 by rpki-client