$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa File: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (raw, json) Hash identifier: U7esX+0iuEFV+x7WiXgxLOpS83nYnKPDWOfbwdSRies= Subject key identifier: C5:AF:DC:61:F1:D6:4F:EC:E9:B7:53:64:1C:BC:E8:B6:80:0C:1E:DE Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 04C4 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:43 +0000 ROA not before: Tue 03 Sep 2024 01:14:43 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 198949 IP address blocks: 161.43.102.0/24 maxlen: 24 161.43.122.0/24 maxlen: 24 198.142.0.0/24 maxlen: 24 198.142.152.0/24 maxlen: 24 198.142.231.0/24 maxlen: 24 198.142.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1220 (0x4c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1 Validity Not Before: Sep 3 01:14:43 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66302-c9a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:03:59:bf:16:5c:a7:6a:29:f2:3e:ee:ef:fb: fd:45:ef:0d:55:f1:57:a4:25:f6:2f:6f:71:32:b7: b8:c7:c1:5c:8d:3f:28:9c:fb:47:d4:8f:5a:8a:0d: 5c:47:9d:1b:c6:4d:ad:90:7c:74:68:7f:5f:f6:f2: 5c:72:61:77:a7:2c:e7:89:a3:80:61:f8:ed:40:e4: 52:36:d6:62:b1:81:67:7b:a1:3b:a8:51:8b:9b:32: 7e:91:7f:69:73:7e:60:bd:18:35:68:44:d3:fb:c2: 2a:cc:53:56:5a:ed:a4:ab:2b:0b:f4:f7:14:57:d9: 61:83:3c:33:ae:15:41:72:73:17:32:93:1f:c7:59: 8c:6b:23:0e:bd:d5:ab:d3:53:4f:b5:4e:30:5e:e3: fc:3f:66:ad:f4:d5:ef:72:73:33:e5:2a:fb:4e:3c: 67:e5:98:68:f1:ad:e0:38:fb:0c:ae:af:b1:06:ed: 17:2a:d9:1c:7c:ca:ff:4c:18:40:e1:68:80:1f:f8: 53:76:30:80:8c:12:b9:7d:50:84:e4:fc:b7:92:0c: 67:49:0c:31:55:84:a8:78:3e:1e:fe:13:cc:46:14: 9f:59:09:2e:af:71:8e:69:ba:6b:6a:c3:a7:9b:99: 55:d4:c4:89:45:82:32:d0:d1:cb:ba:f2:71:3f:61: 8f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:AF:DC:61:F1:D6:4F:EC:E9:B7:53:64:1C:BC:E8:B6:80:0C:1E:DE X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.43.102.0/24 161.43.122.0/24 198.142.0.0/24 198.142.152.0/24 198.142.231.0/24 198.142.235.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:c1:39:e5:4e:4e:8c:07:ca:c8:70:2a:2a:e8:58:5d:96:85: fd:ea:04:49:6f:b3:1c:96:9a:bf:23:05:3c:2b:95:f1:c9:52: 55:f0:9a:bd:47:11:5d:01:7f:62:dd:48:22:43:fc:a0:e0:43: 7e:e1:39:0a:8f:46:90:c7:0b:16:e2:0e:14:78:30:51:71:60: bb:62:28:52:b4:b8:ae:17:44:17:06:2c:c6:46:fa:ef:87:83: 83:66:ff:60:e8:08:2f:1d:c9:da:b4:01:c2:14:57:55:9a:7e: 7f:33:d5:ff:74:e9:bf:a5:c5:2e:a2:cc:0c:1a:b6:21:da:8e: 48:5d:89:54:eb:e6:83:80:89:b4:a5:de:f9:f1:9c:8e:cc:ed: de:20:ad:89:1a:d6:5e:b9:db:6f:0d:e5:5c:82:76:61:e3:4a: 83:5c:72:78:a7:ee:53:30:a6:e5:f3:9f:56:77:9e:6d:34:2c: 57:70:36:e2:db:51:81:8e:cd:ea:28:0f:50:53:82:d6:61:6d: ce:8d:8e:8e:3e:30:6d:c6:b9:7c:d7:03:c3:8a:fe:7b:f0:d6: fd:48:20:f8:c9:3f:72:e7:4f:01:9b:80:95:e0:1b:63:1e:81: f9:7c:65:02:26:88:47:1e:74:a5:2b:4c:7f:b0:a5:91:52:46: 4d:a2:f5:a3 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICBMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjQwOTAzMDExNDQzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwMi1jOWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gNZvxZcp2op8j7u7/v9Re8NVfFXpCX2L29xMre4x8FcjT8onPtH1I9aig1c R50bxk2tkHx0aH9f9vJccmF3pyzniaOAYfjtQORSNtZisYFne6E7qFGLmzJ+kX9p c35gvRg1aETT+8IqzFNWWu2kqysL9PcUV9lhgzwzrhVBcnMXMpMfx1mMayMOvdWr 01NPtU4wXuP8P2at9NXvcnMz5Sr7Tjxn5Zho8a3gOPsMrq+xBu0XKtkcfMr/TBhA 4WiAH/hTdjCAjBK5fVCE5Py3kgxnSQwxVYSoeD4e/hPMRhSfWQkur3GOabprasOn m5lV1MSJRYIy0NHLuvJxP2GPaQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFMWv3GHx 1k/s6bdTZBy86LaADB7eMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvRDNEMzZCRTAy NzEwMTFFQ0EwRDdEOTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAChK2YDBAChK3oDBADGjgADBADGjpgDBADGjucDBADGjusw DQYJKoZIhvcNAQELBQADggEBAFrBOeVOTowHyshwKiroWF2Whf3qBElvsxyWmr8j BTwrlfHJUlXwmr1HEV0Bf2LdSCJD/KDgQ37hOQqPRpDHCxbiDhR4MFFxYLtiKFK0 uK4XRBcGLMZG+u+Hg4Nm/2DoCC8dydq0AcIUV1Wafn8z1f906b+lxS6izAwatiHa jkhdiVTr5oOAibSl3vnxnI7M7d4grYka1l65228N5VyCdmHjSoNccnin7lMwpuXz n1Z3nm00LFdwNuLbUYGOzeooD1BTgtZhbc6Njo4+MG3GuXzXA8OK/nvw1v1IIPjJ P3LnTwGbgJXgG2Megfl8ZQImiEcedKUrTH+wpZFSRk2i9aM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:17:31 2025 by rpki-client