$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/16637998DB5311EE9F9F1F75C4F9AE02.roa File: 16637998DB5311EE9F9F1F75C4F9AE02.roa (raw, json) Hash identifier: zOp+pmoPEmD9FqhHLLTWspA0hasdoDJWm9XMS78WorI= Subject key identifier: F7:0B:8F:E0:9E:6B:AB:AD:B6:FF:81:04:1C:44:BB:39:84:E9:DF:3C Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0533 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/16637998DB5311EE9F9F1F75C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:53 +0000 ROA not before: Tue 03 Sep 2024 01:14:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 1.44.96.0/24 maxlen: 24 203.17.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1331 (0x533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1 Validity Not Before: Sep 3 01:14:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6630d-2e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:13:a3:fe:f6:7d:fd:6a:09:c7:2f:25:cb: 6e:06:52:43:00:aa:4d:e0:36:ee:ce:20:14:55:ce: 79:43:8a:30:8d:a4:68:30:ad:c4:b1:31:a7:46:62: 3d:ed:6c:72:9f:1a:cc:38:dc:46:17:08:9b:ba:6f: 2e:57:fc:1b:4c:49:5c:69:75:f6:f6:d5:57:db:d8: 6d:1f:d3:08:ff:f1:b4:c8:45:0b:a1:26:01:96:f1: b6:bf:99:12:e9:d4:48:7b:ac:a0:76:0e:99:b0:95: 7c:19:78:09:4a:4d:ea:60:2a:aa:4a:5d:6e:16:c0: a6:aa:b2:73:c6:12:a6:0b:3b:e1:d9:f7:1c:c6:bb: 20:34:af:06:73:c8:3b:41:94:95:77:84:65:58:0c: 3e:87:1c:45:22:4c:c8:fe:52:9a:73:fc:94:a0:75: ec:6b:6a:01:d2:f6:d6:c9:e9:73:3a:28:24:ab:98: 84:af:b1:20:85:ed:ff:a7:6f:50:23:34:ca:66:0d: d7:49:ab:6c:02:b7:38:4a:0c:b3:3c:f6:13:aa:b7: 51:05:16:13:2f:c4:65:74:69:b3:ab:78:d1:65:38: a9:82:c5:6f:6f:a8:2b:64:f5:82:a0:f0:6f:8f:3b: 56:74:b8:60:2b:20:a8:05:88:81:96:43:6e:72:2f: 12:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:0B:8F:E0:9E:6B:AB:AD:B6:FF:81:04:1C:44:BB:39:84:E9:DF:3C X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/16637998DB5311EE9F9F1F75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.44.96.0/24 203.17.138.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:db:ba:71:75:ee:bc:40:0e:09:1a:bf:5c:25:bc:cb:a0:ff: cb:36:35:55:2e:ec:76:49:cf:dc:38:a8:90:9e:13:18:0f:d5: 83:43:78:97:9e:af:47:24:b0:68:c2:f8:a9:bc:94:f7:d0:9e: 48:ea:03:c3:94:59:fd:43:90:dd:83:95:56:d9:5c:35:dd:9e: 3b:27:17:ec:67:c0:26:6e:d7:26:dd:35:9d:08:29:de:42:83: 1e:c8:ac:71:d9:05:e1:5a:97:fe:39:d2:96:fb:6f:9b:50:39: 01:5a:1e:97:38:c2:1e:84:66:bb:4d:8f:20:37:05:21:a2:f1: b4:dc:7d:55:09:d3:f4:07:5f:be:4d:bb:ca:3d:eb:98:52:3c: a4:51:03:ab:cf:42:ad:af:51:77:d7:74:ba:f7:dd:e0:09:9b: a7:52:61:3c:a2:2b:98:63:6f:1e:bf:d3:c5:cf:f7:b6:23:ed: c4:a7:82:3c:2e:ab:98:d2:65:dd:2c:af:0e:4e:46:c3:21:54: 29:b8:5a:bf:ec:e5:ba:09:13:91:15:e0:87:23:3c:36:5a:02: ae:01:08:8e:09:c0:62:f8:c9:0f:e2:d4:9f:bf:d5:ab:a5:32: 05:f1:5c:79:89:03:30:0d:49:ba:43:66:83:97:a1:12:21:2e: b3:15:59:e8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjQwOTAzMDExNDUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwZC0yZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAro8To/72ff1qCccvJctuBlJDAKpN4DbuziAUVc55Q4owjaRoMK3EsTGnRmI9 7WxynxrMONxGFwibum8uV/wbTElcaXX29tVX29htH9MI//G0yEULoSYBlvG2v5kS 6dRIe6ygdg6ZsJV8GXgJSk3qYCqqSl1uFsCmqrJzxhKmCzvh2fccxrsgNK8Gc8g7 QZSVd4RlWAw+hxxFIkzI/lKac/yUoHXsa2oB0vbWyelzOigkq5iEr7Eghe3/p29Q IzTKZg3XSatsArc4SgyzPPYTqrdRBRYTL8RldGmzq3jRZTipgsVvb6grZPWCoPBv jztWdLhgKyCoBYiBlkNuci8S5QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPcLj+Ce a6uttv+BBBxEuzmE6d88MB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvMTY2Mzc5OThE QjUzMTFFRTlGOUYxRjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAABLGADBADLEYowDQYJKoZIhvcNAQELBQADggEBAErbunF1 7rxADgkav1wlvMug/8s2NVUu7HZJz9w4qJCeExgP1YNDeJeer0cksGjC+Km8lPfQ nkjqA8OUWf1DkN2DlVbZXDXdnjsnF+xnwCZu1ybdNZ0IKd5Cgx7IrHHZBeFal/45 0pb7b5tQOQFaHpc4wh6EZrtNjyA3BSGi8bTcfVUJ0/QHX75Nu8o965hSPKRRA6vP Qq2vUXfXdLr33eAJm6dSYTyiK5hjbx6/08XP97Yj7cSngjwuq5jSZd0srw5ORsMh VCm4Wr/s5boJE5EV4IcjPDZaAq4BCI4JwGL4yQ/i1J+/1aulMgXxXHmJAzANSbpD ZoOXoRIhLrMVWeg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:44:10 2025 by rpki-client