$ rpki-client -vvf rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/7F2A4208E53E11EB9E429C44C4F9AE02.roa File: 7F2A4208E53E11EB9E429C44C4F9AE02.roa (raw, json) Hash identifier: epJMifwD6R2b1WeonhK6+Ptsph58rQyMoEb+/4Q80hY= Subject key identifier: 1A:C9:64:50:C4:37:4C:AC:BE:16:92:0C:7A:43:EA:0A:C8:57:64:DD Certificate issuer: /CN=A9161613/serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C Certificate serial: 05A6 Authority key identifier: 09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/7F2A4208E53E11EB9E429C44C4F9AE02.roa Signing time: Thu 12 Dec 2024 23:13:31 +0000 ROA not before: Thu 12 Dec 2024 23:13:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136955 IP address blocks: 49.157.14.0/24 maxlen: 24 49.157.15.0/24 maxlen: 24 61.28.172.0/23 maxlen: 23 61.28.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1446 (0x5a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161613 Validity Not Before: Dec 12 23:13:31 2024 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=675b6e1b-83db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:8e:f4:4c:ab:77:01:6f:60:78:aa:b0:84:ca: 60:83:a5:83:26:d9:74:3c:f0:77:10:d1:ef:3d:99: 99:b8:22:25:36:93:d8:f6:67:83:ac:ef:2b:98:bb: cb:a7:82:f3:1f:55:c9:e3:e8:f5:2a:9d:7a:cd:72: ba:bd:e6:68:a0:5c:93:f8:ad:2d:3c:f0:01:33:53: 24:a0:9a:09:57:51:ea:2d:84:98:3d:e6:ea:07:2b: c4:ef:33:98:4a:62:3d:16:a0:29:19:cd:cc:87:87: da:0a:51:78:48:4b:26:3f:29:19:c2:f9:7f:28:cd: 4f:79:85:83:7a:21:c6:f5:4a:3c:13:e2:4e:d6:45: 7a:39:d3:26:5f:04:c8:a2:1d:76:04:00:e6:ff:d5: 66:c7:93:16:8e:05:39:ad:d5:f0:4f:19:66:77:4b: ed:6f:1c:4e:9c:84:fc:8a:34:71:e2:d8:cd:ea:f3: 8a:13:7d:2b:aa:f0:06:45:67:84:89:61:11:f4:74: 97:0e:71:d0:55:fe:4f:b7:b9:6e:da:d2:2f:35:73: 8e:b1:5d:41:54:5f:ee:9f:1c:c9:ec:50:77:f0:5e: 43:b7:00:fa:49:1b:0b:0e:46:c2:13:6a:ce:0f:a5: 5d:93:88:f3:56:7c:9c:bf:4a:a5:9b:20:5a:7f:d7: 0a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C9:64:50:C4:37:4C:AC:BE:16:92:0C:7A:43:EA:0A:C8:57:64:DD X509v3 Authority Key Identifier: keyid:09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/7F2A4208E53E11EB9E429C44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.157.14.0/23 61.28.172.0/23 61.28.176.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:56:e3:a8:97:11:85:38:9d:26:27:fc:e5:34:1a:9b:ae:04: fc:c9:b9:dd:01:43:3b:da:9f:76:a0:dc:d1:09:56:51:1c:be: 8c:fc:51:90:f6:7a:02:5b:c1:72:c6:aa:92:cc:73:56:29:c1: b5:3c:9d:35:40:30:5d:fb:9a:d6:ca:70:30:73:bc:20:2d:c2: 13:25:f8:8d:f8:e8:dc:43:d6:9d:b3:5f:e0:32:a7:ab:c2:ed: 4d:a0:13:9d:89:2c:e5:33:fc:c8:b2:aa:bb:ea:df:fc:ca:d1: cc:97:9f:1d:fa:e2:b9:0b:53:22:48:8d:aa:7a:a4:1d:58:07: 5d:89:a3:47:d0:d2:70:58:52:0a:bf:1c:0f:40:19:b4:a3:dd: 23:23:62:28:ad:0d:72:20:0e:6c:8d:85:72:4a:01:9e:43:2a: 20:2f:73:85:67:d2:29:89:06:90:fc:b4:81:4d:ef:72:e4:55: fd:21:72:a5:2a:22:83:3b:17:57:81:ad:09:0c:83:20:35:9d: cd:3a:9d:d2:1d:60:72:e0:25:09:45:06:36:a7:25:49:dd:b6: b8:3f:18:24:4b:ab:8d:aa:76:f1:7e:90:38:3f:da:8a:21:cb: e2:70:b0:5a:dd:c0:36:aa:1b:3b:ef:50:c1:78:b4:03:de:22: bb:08:7d:4a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2MTMxMTAvBgNVBAUTKDA5RkMwNzdGMzNFM0FENjdCRjE0Nzc1NTE2N0EzQUQ0 RUFDQjFFN0MwHhcNMjQxMjEyMjMxMzMxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzViNmUxYi04M2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/I70TKt3AW9geKqwhMpgg6WDJtl0PPB3ENHvPZmZuCIlNpPY9meDrO8rmLvL p4LzH1XJ4+j1Kp16zXK6veZooFyT+K0tPPABM1MkoJoJV1HqLYSYPebqByvE7zOY SmI9FqApGc3Mh4faClF4SEsmPykZwvl/KM1PeYWDeiHG9Uo8E+JO1kV6OdMmXwTI oh12BADm/9Vmx5MWjgU5rdXwTxlmd0vtbxxOnIT8ijRx4tjN6vOKE30rqvAGRWeE iWER9HSXDnHQVf5Pt7lu2tIvNXOOsV1BVF/unxzJ7FB38F5DtwD6SRsLDkbCE2rO D6Vdk4jzVnycv0qlmyBaf9cKRwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBrJZFDE N0ysvhaSDHpD6grIV2TdMB8GA1UdIwQYMBaAFAn8B38z461nvxR3VRZ6OtTqyx58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTYxMy8zMDk5MjY2OEU1 MzkxMUVCOEE1QjkyNzFDNEY5QUUwMi9DZndIZnpQanJXZV9GSGRWRm5vNjFPckxI bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nmd0hmelBqcldlX0ZIZFZGbm82MU9yTEhudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE2MTMvMzA5OTI2NjhFNTM5MTFFQjhBNUI5MjcxQzRGOUFFMDIvN0YyQTQyMDhF NTNFMTFFQjlFNDI5QzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAExnQ4DBAE9HKwDBAA9HLAwDQYJKoZIhvcNAQELBQADggEB AJxW46iXEYU4nSYn/OU0GpuuBPzJud0BQzvan3ag3NEJVlEcvoz8UZD2egJbwXLG qpLMc1YpwbU8nTVAMF37mtbKcDBzvCAtwhMl+I346NxD1p2zX+Ayp6vC7U2gE52J LOUz/Miyqrvq3/zK0cyXnx364rkLUyJIjap6pB1YB12Jo0fQ0nBYUgq/HA9AGbSj 3SMjYiitDXIgDmyNhXJKAZ5DKiAvc4Vn0imJBpD8tIFN73LkVf0hcqUqIoM7F1eB rQkMgyA1nc06ndIdYHLgJQlFBjanJUndtrg/GCRLq42qdvF+kDg/2oohy+JwsFrd wDaqGzvvUMF4tAPeIrsIfUo= -----END CERTIFICATE-----Generated at Thu Mar 13 21:50:03 2025 by rpki-client