$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa File: A3C1A64E020811EF900CC60CC4F9AE02.roa (raw, json) Hash identifier: a5M8jT5qH+Rv8PZuWCtzl1JNud/MgUW6Ycrm/NIQszY= Subject key identifier: 16:A8:B9:40:C4:01:A7:E9:5F:93:20:57:BF:C8:A9:B1:35:E8:7D:A5 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 0207 Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa Signing time: Thu 11 Jul 2024 03:35:10 +0000 ROA not before: Thu 11 Jul 2024 03:35:10 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 198949 IP address blocks: 147.136.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998 Validity Not Before: Jul 11 03:35:10 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668f52ee-6122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:9b:c5:68:84:58:14:95:b8:7b:bf:a9:56: ff:9f:93:53:2b:74:a2:13:c5:9c:c7:13:21:bb:9e: cd:41:11:f7:7c:0c:8d:fa:8f:39:4b:1d:21:ed:cb: f0:9b:77:b8:ea:64:2f:e6:3a:27:db:5f:04:49:d3: 34:ba:7b:c9:c5:d5:f3:ff:66:12:4b:09:19:7c:b3: e8:fb:3a:ac:2a:3f:0b:70:fa:b5:58:18:0c:c0:80: 73:a6:e4:f5:5d:b7:42:24:15:fd:e6:53:5c:cd:18: e1:dd:30:0c:5c:2e:21:24:d5:b0:00:f7:d0:21:fc: 61:fe:6a:72:02:fa:db:8d:60:35:95:f2:e6:82:63: e8:c4:5e:cf:fe:f3:c3:ff:e0:eb:d9:ee:e9:71:79: 75:18:cb:fb:bb:bf:12:28:cc:7f:0c:96:3b:c9:e3: c8:61:31:01:d4:98:a8:9c:ef:96:99:78:bc:b1:59: 7b:c3:4c:8d:5c:07:60:5d:cc:39:31:e9:d0:b3:27: 43:58:38:98:15:4f:04:19:f9:ce:4e:53:8a:c2:7c: 8a:84:85:55:f3:12:e7:ba:38:75:ba:60:e6:c0:5e: 58:41:1f:24:7f:24:51:0c:40:15:46:fd:c1:5b:67: f4:63:fe:7d:c3:4f:c5:12:4b:5d:a7:68:90:52:ef: c9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A8:B9:40:C4:01:A7:E9:5F:93:20:57:BF:C8:A9:B1:35:E8:7D:A5 X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.136.133.0/24 Signature Algorithm: sha256WithRSAEncryption 94:f4:33:f5:49:45:ef:40:73:71:2a:f5:47:6d:2e:85:c5:44: f7:f8:8a:cd:b0:92:08:02:1c:d9:a4:ed:06:c9:bf:84:e8:61: 99:23:fb:3f:6f:43:6b:65:ce:c1:78:76:ff:68:c5:a7:e2:be: a4:b2:14:58:f3:8e:0a:8f:f3:df:bc:cf:f4:c3:6d:74:72:34: d4:6e:79:8c:0a:f5:f6:33:0f:48:c6:f1:d1:de:37:22:a3:fb: d8:eb:fc:aa:16:c0:c3:90:4d:89:6f:26:60:3d:af:9d:2c:2e: cc:99:31:a9:4c:24:71:b3:db:01:1e:6c:f3:a5:b7:dd:51:19: 5a:94:c2:28:23:90:40:e9:e6:32:82:f5:22:08:23:f6:48:4e: 27:d7:d5:c8:c9:67:a3:e4:1c:51:7e:7e:13:c2:e6:d6:7c:19: c7:a9:5a:cb:e7:75:a7:cd:c3:d5:5f:c6:3a:11:49:f1:d4:5f: 7e:a5:c8:b8:99:a7:78:5b:1c:9c:59:0b:47:07:54:15:2c:f9: ef:2d:9a:58:13:15:3e:4d:4d:2f:05:30:27:b6:bb:78:e6:37: 18:c0:5d:85:02:1f:65:41:36:71:f0:ed:7d:93:49:79:04:ae: 64:76:cd:4d:e2:4a:01:78:46:49:6b:fb:ee:5f:ac:5c:e0:39: cf:3f:d6:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjQwNzExMDMzNTEwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhmNTJlZS02MTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynCbxWiEWBSVuHu/qVb/n5NTK3SiE8WcxxMhu57NQRH3fAyN+o85Sx0h7cvw m3e46mQv5jon218ESdM0unvJxdXz/2YSSwkZfLPo+zqsKj8LcPq1WBgMwIBzpuT1 XbdCJBX95lNczRjh3TAMXC4hJNWwAPfQIfxh/mpyAvrbjWA1lfLmgmPoxF7P/vPD /+Dr2e7pcXl1GMv7u78SKMx/DJY7yePIYTEB1JionO+WmXi8sVl7w0yNXAdgXcw5 MenQsydDWDiYFU8EGfnOTlOKwnyKhIVV8xLnujh1umDmwF5YQR8kfyRRDEAVRv3B W2f0Y/59w0/FEktdp2iQUu/J0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBaouUDE AafpX5MgV7/IqbE16H2lMB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM5OTgvMzBDQzA4NEEwOERDMTFFREJFREU2MTJCQzRGOUFFMDIvQTNDMUE2NEUw MjA4MTFFRjkwMENDNjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACTiIUwDQYJKoZIhvcNAQELBQADggEBAJT0M/VJRe9Ac3Eq 9UdtLoXFRPf4is2wkggCHNmk7QbJv4ToYZkj+z9vQ2tlzsF4dv9oxafivqSyFFjz jgqP89+8z/TDbXRyNNRueYwK9fYzD0jG8dHeNyKj+9jr/KoWwMOQTYlvJmA9r50s LsyZMalMJHGz2wEebPOlt91RGVqUwigjkEDp5jKC9SIII/ZITifX1cjJZ6PkHFF+ fhPC5tZ8GcepWsvndafNw9VfxjoRSfHUX36lyLiZp3hbHJxZC0cHVBUs+e8tmlgT FT5NTS8FMCe2u3jmNxjAXYUCH2VBNnHw7X2TSXkErmR2zU3iSgF4Rklr++5frFzg Oc8/1vk= -----END CERTIFICATE-----Generated at Sun Feb 16 15:31:24 2025 by rpki-client