$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/79E40530CB5A11EFA1C64B62C4F9AE02.roa File: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (raw, json) Hash identifier: mbcELb6wZjeLG0BTxotv3DMO41EhI/vPgN4q1POwi8s= Subject key identifier: 6C:2E:50:99:A5:94:09:84:AA:6C:65:A2:44:6D:48:76:13:F7:4F:79 Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: 0C Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/79E40530CB5A11EFA1C64B62C4F9AE02.roa Signing time: Wed 08 Jan 2025 04:35:11 +0000 ROA not before: Wed 08 Jan 2025 04:35:11 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 140937 IP address blocks: 160.187.212.0/23 maxlen: 23 160.187.212.0/24 maxlen: 24 160.187.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2 Validity Not Before: Jan 8 04:35:11 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=677e007e-9e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:53:9f:9e:5a:54:19:4a:37:94:d4:70:93:6e: b1:94:ea:28:a5:e2:8a:ec:2d:90:b3:11:d9:46:c4: 32:00:58:06:0b:a7:a5:c2:40:7d:02:fe:52:85:87: d5:73:18:5a:01:c1:14:8b:5e:10:5e:5f:fb:95:f9: 27:c8:43:fc:16:6f:3b:b8:b1:e5:00:be:43:2f:8b: 23:5d:c6:66:4b:8f:15:9b:f6:d8:41:71:be:6c:e7: 07:37:26:74:dd:e9:9a:ad:32:0b:9f:13:67:d0:d0: 62:bf:b4:10:a9:4f:8b:1e:5b:78:df:41:af:df:11: 27:9d:b4:33:36:24:b4:9e:5e:54:15:c4:3d:9b:94: 38:bc:a4:48:f0:17:b0:8e:0f:cf:11:95:d7:f9:37: 49:9d:cf:f3:d7:9c:35:eb:1c:93:be:30:4a:41:e4: f1:74:02:52:2a:1d:e3:2e:f8:b0:f5:c6:37:46:31: a7:37:a3:7f:94:04:6d:f0:5c:f6:e8:4b:20:d2:4f: b0:31:b5:c0:04:56:c8:34:53:8b:93:da:1b:88:4f: 85:e4:06:e3:d6:87:74:31:3b:65:04:1f:aa:1d:e2: 1a:bb:49:88:5d:f2:56:cd:b5:aa:bb:22:2a:d7:d7: 4c:84:c1:f6:64:6d:3d:c5:e7:6f:60:0a:9b:3c:d1: d6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2E:50:99:A5:94:09:84:AA:6C:65:A2:44:6D:48:76:13:F7:4F:79 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/79E40530CB5A11EFA1C64B62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.212.0/23 Signature Algorithm: sha256WithRSAEncryption cc:08:04:e5:6b:2f:e5:41:f4:ea:0c:ca:cf:62:2a:36:d1:70: cf:ee:f3:7f:3e:96:a0:da:16:e8:87:1b:75:f3:ec:fa:1d:d4: 82:d1:ab:1c:1f:27:d5:8a:46:5e:43:c8:8b:e2:35:09:58:86: af:93:60:15:a3:11:75:8f:16:4a:7b:60:91:b5:01:e0:e7:0f: 47:9e:31:b3:d0:b0:7b:f9:5e:b5:62:dc:d8:fe:9d:70:24:1a: c3:16:6d:4b:d2:1d:75:22:c8:6e:6e:f7:42:8c:eb:da:8d:28: 3c:3e:f9:de:13:6b:d6:09:90:2b:93:61:c5:76:ba:f4:fc:85: af:ef:57:30:3c:ee:ea:b6:06:35:99:4a:76:7f:cc:12:93:c2: e5:ff:53:0e:75:be:2d:a1:f5:e2:87:b9:b5:05:b6:af:f3:28: bf:a1:ce:82:1f:d7:cc:d7:75:61:e1:08:fa:36:ef:b6:0d:c5: 4c:5e:47:8c:ff:88:be:a6:82:92:f7:fc:cb:ac:7e:b2:c8:1e: 41:85:f4:91:60:45:26:4e:e7:e4:25:3a:1d:6e:94:56:9c:07: eb:90:be:6a:1f:f1:90:70:f4:00:51:e6:3b:eb:41:c6:b4:5f: fb:7f:91:8a:fd:ab:00:05:df:25:4a:1e:3b:0d:db:aa:f8:11: 34:2f:8f:e1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzZFMjExMC8GA1UEBRMoNkFBRjNEOUJDM0RGQTNBMTI1MDgyOTY1RDhGRjMzQjgx MjhGMjkxRjAeFw0yNTAxMDgwNDM1MTFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2UwMDdlLTllMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCWU5+eWlQZSjeU1HCTbrGU6iil4orsLZCzEdlGxDIAWAYLp6XCQH0C/lKFh9Vz GFoBwRSLXhBeX/uV+SfIQ/wWbzu4seUAvkMviyNdxmZLjxWb9thBcb5s5wc3JnTd 6ZqtMgufE2fQ0GK/tBCpT4seW3jfQa/fESedtDM2JLSeXlQVxD2blDi8pEjwF7CO D88Rldf5N0mdz/PXnDXrHJO+MEpB5PF0AlIqHeMu+LD1xjdGMac3o3+UBG3wXPbo SyDST7AxtcAEVsg0U4uT2huIT4XkBuPWh3QxO2UEH6od4hq7SYhd8lbNtaq7IirX 10yEwfZkbT3F529gCps80dYrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbC5QmaWU CYSqbGWiRG1IdhP3T3kwHwYDVR0jBBgwFoAUaq89m8Pfo6ElCCll2P8zuBKPKR8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NkUyLzNCNTQxRjIwQ0Iz RDExRUY4NzAzRjc1QUM0RjlBRTAyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtS OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYXE4OW04UGZvNkVsQ0NsbDJQOHp1QktQS1I4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi83OUU0MDUzMENC NUExMUVGQTFDNjRCNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC71DANBgkqhkiG9w0BAQsFAAOCAQEAzAgE5Wsv5UH06gzK z2IqNtFwz+7zfz6WoNoW6IcbdfPs+h3UgtGrHB8n1YpGXkPIi+I1CViGr5NgFaMR dY8WSntgkbUB4OcPR54xs9Cwe/letWLc2P6dcCQawxZtS9IddSLIbm73Qozr2o0o PD753hNr1gmQK5NhxXa69PyFr+9XMDzu6rYGNZlKdn/MEpPC5f9TDnW+LaH14oe5 tQW2r/Mov6HOgh/XzNd1YeEI+jbvtg3FTF5HjP+IvqaCkvf8y6x+ssgeQYX0kWBF Jk7n5CU6HW6UVpwH65C+ah/xkHD0AFHmO+tBxrRf+3+Riv2rAAXfJUoeOw3bqvgR NC+P4Q== -----END CERTIFICATE-----Generated at Wed Feb 5 23:06:45 2025 by rpki-client