$ rpki-client -vvf rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/A9D891D4C82B11EF8409A474C4F9AE02.roa File: A9D891D4C82B11EF8409A474C4F9AE02.roa (raw, json) Hash identifier: 9VTnLi5T+YYltF+k17fA4MmiG8WRs/lt6DHBJeHF2Cc= Subject key identifier: 41:16:ED:F7:23:37:BF:53:F4:3E:0E:D8:0E:EC:B0:2F:9B:D4:1F:49 Certificate issuer: /CN=A9155810/serialNumber=83955EB9BB25DC33A78EC96CB08117419C64BA5C Certificate serial: 06 Authority key identifier: 83:95:5E:B9:BB:25:DC:33:A7:8E:C9:6C:B0:81:17:41:9C:64:BA:5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g5Veubsl3DOnjslssIEXQZxkulw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/A9D891D4C82B11EF8409A474C4F9AE02.roa Signing time: Wed 01 Jan 2025 10:32:13 +0000 ROA not before: Wed 01 Jan 2025 10:32:13 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 132221 IP address blocks: 161.248.70.0/24 maxlen: 24 161.248.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.crl rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g5Veubsl3DOnjslssIEXQZxkulw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155810 Validity Not Before: Jan 1 10:32:13 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677519ad-e1e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ad:81:ac:0f:69:16:9e:01:f4:33:3b:8f:11: da:ef:44:c7:32:f7:7e:7b:d0:70:0d:55:73:87:a7: af:0f:a5:a7:e7:bd:30:35:84:81:5d:44:59:32:c0: 60:e2:3f:63:e7:81:c5:ff:f9:5f:d2:fa:ba:91:f4: f1:7e:37:57:59:f7:be:0e:13:3a:19:f0:00:3c:da: 3b:d1:5d:4a:bd:aa:c8:62:77:e6:c3:b0:72:51:c5: ed:ad:5f:71:26:a6:75:36:eb:b1:1d:ae:86:19:00: 60:39:88:09:8a:ad:d9:be:3a:52:6c:0f:64:f1:39: 3f:8d:4d:92:61:8f:b1:52:4b:06:e7:89:aa:0b:6a: 8d:07:0a:cc:03:63:1b:fc:a2:39:61:52:de:5f:70: a9:9f:26:79:ee:4b:b6:e5:39:c3:10:bb:1d:ff:02: 13:d3:23:ca:a4:83:86:a7:f5:5f:cb:f5:9d:49:d5: 71:6f:4f:6f:57:f3:94:e3:82:fc:0f:b9:82:dd:56: bc:06:88:9e:0d:08:cd:91:87:07:4a:90:df:b7:b9: b9:6f:86:58:e1:0a:e0:8b:5e:09:1b:34:eb:a9:27: 7c:46:df:c9:dd:18:c7:dc:99:d0:19:31:10:ed:ff: 24:0e:b4:c7:4a:e0:e3:d9:7c:0d:74:2a:33:c7:e5: 5c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:16:ED:F7:23:37:BF:53:F4:3E:0E:D8:0E:EC:B0:2F:9B:D4:1F:49 X509v3 Authority Key Identifier: keyid:83:95:5E:B9:BB:25:DC:33:A7:8E:C9:6C:B0:81:17:41:9C:64:BA:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g5Veubsl3DOnjslssIEXQZxkulw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/A9D891D4C82B11EF8409A474C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.70.0/23 Signature Algorithm: sha256WithRSAEncryption a9:1a:cb:64:85:ab:73:7f:b2:00:07:ea:2f:ab:0b:0e:ea:f8: 34:e8:31:c4:80:02:89:2e:5b:51:aa:b7:e8:90:0c:42:f0:6e: 79:53:62:bf:dc:b3:4a:ad:73:b6:c3:a3:9d:49:f9:4f:4b:df: 70:71:3c:bf:00:5b:a6:92:ca:86:dc:e4:f7:d5:6a:6f:e4:34: 06:5f:b8:24:26:86:4f:1d:5d:ab:06:3a:1e:ee:4e:6f:71:5b: 46:0a:fa:d7:50:0c:2e:57:50:9c:d3:6e:13:03:e1:34:9e:eb: db:3e:74:37:c1:06:68:d2:87:33:91:2b:24:81:9f:9b:01:29: 09:22:a8:0f:93:6b:01:ff:a6:b3:ea:4b:8b:0c:3e:0b:19:ba: 63:75:9e:af:dd:de:33:aa:ba:df:42:0f:6e:fc:38:e9:c0:91: 31:98:fa:27:c6:e9:f2:62:69:3b:69:4d:14:14:c8:1d:33:5d: 0c:4d:3f:08:e6:77:65:d5:b3:17:3f:6f:9f:37:78:47:05:7e: 5a:4f:d5:e3:76:6a:c8:4d:5e:26:8f:aa:4d:70:49:44:86:d0: 8b:76:cb:d2:c5:1b:6d:46:3b:32:e9:de:85:be:20:c7:eb:88: 5b:02:54:58:fc:6f:7c:6e:13:b4:c8:1f:a1:15:a0:82:6b:fc: 86:6b:e0:d8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTgxMDExMC8GA1UEBRMoODM5NTVFQjlCQjI1REMzM0E3OEVDOTZDQjA4MTE3NDE5 QzY0QkE1QzAeFw0yNTAxMDExMDMyMTNaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzUxOWFkLWUxZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCerYGsD2kWngH0MzuPEdrvRMcy93570HANVXOHp68PpafnvTA1hIFdRFkywGDi P2PngcX/+V/S+rqR9PF+N1dZ974OEzoZ8AA82jvRXUq9qshid+bDsHJRxe2tX3Em pnU267EdroYZAGA5iAmKrdm+OlJsD2TxOT+NTZJhj7FSSwbniaoLao0HCswDYxv8 ojlhUt5fcKmfJnnuS7blOcMQux3/AhPTI8qkg4an9V/L9Z1J1XFvT29X85TjgvwP uYLdVrwGiJ4NCM2RhwdKkN+3ublvhljhCuCLXgkbNOupJ3xG38ndGMfcmdAZMRDt /yQOtMdK4OPZfA10KjPH5VxVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQRbt9yM3 v1P0Pg7YDuywL5vUH0kwHwYDVR0jBBgwFoAUg5Veubsl3DOnjslssIEXQZxkulww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1ODEwLzczOTc4OEUyQzcw ODExRUZBODlCMEM1RkM0RjlBRTAyL2c1VmV1YnNsM0RPbmpzbHNzSUVYUVp4a3Vs dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzVWZXVic2wzRE9uanNsc3NJRVhRWnhrdWx3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTgxMC83Mzk3ODhFMkM3MDgxMUVGQTg5QjBDNUZDNEY5QUUwMi9BOUQ4OTFENEM4 MkIxMUVGODQwOUE0NzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4RjANBgkqhkiG9w0BAQsFAAOCAQEAqRrLZIWrc3+yAAfq L6sLDur4NOgxxIACiS5bUaq36JAMQvBueVNiv9yzSq1ztsOjnUn5T0vfcHE8vwBb ppLKhtzk99Vqb+Q0Bl+4JCaGTx1dqwY6Hu5Ob3FbRgr611AMLldQnNNuEwPhNJ7r 2z50N8EGaNKHM5ErJIGfmwEpCSKoD5NrAf+ms+pLiww+Cxm6Y3Wer93eM6q630IP bvw46cCRMZj6J8bp8mJpO2lNFBTIHTNdDE0/COZ3ZdWzFz9vnzd4RwV+Wk/V43Zq yE1eJo+qTXBJRIbQi3bL0sUbbUY7Munehb4gx+uIWwJUWPxvfG4TtMgfoRWggmv8 hmvg2A== -----END CERTIFICATE-----Generated at Wed Feb 5 22:52:57 2025 by rpki-client