$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/2486E806F0E311EAA1C58D62C4F9AE02.roa File: 2486E806F0E311EAA1C58D62C4F9AE02.roa (raw, json) Hash identifier: dltD8ogNsgEp1LNwu/hSjpxIyXjpYdO8Yd4ZGWGZBuI= Subject key identifier: F3:62:9B:03:D2:AE:A6:CF:D7:93:11:AF:11:4D:32:40:6C:C7:46:E4 Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2433 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/2486E806F0E311EAA1C58D62C4F9AE02.roa Signing time: Tue 22 Oct 2024 15:53:01 +0000 ROA not before: Tue 22 Oct 2024 15:53:01 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 19905 IP address blocks: 116.0.107.0/24 maxlen: 24 124.158.230.0/24 maxlen: 24 124.158.233.0/24 maxlen: 24 203.223.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 15:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9267 (0x2433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5 Validity Not Before: Oct 22 15:53:01 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6717ca5d-a620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2c:c0:38:9a:aa:d2:88:f4:9f:cc:0c:0c:4a: 9c:1d:9b:c2:94:65:69:38:8c:56:e1:62:85:28:92: f2:64:3c:dd:6a:ee:df:f5:69:ed:26:6c:47:8c:f3: ef:14:a6:b0:91:db:38:03:b1:0d:9d:d1:3f:b6:18: d3:34:ed:03:77:c8:14:2c:fe:d3:54:9c:d9:64:42: c1:e0:ff:c4:cb:b3:6f:da:e1:59:69:0d:05:86:b3: 13:db:a5:f6:79:45:8a:31:d4:eb:3d:a4:29:9f:c0: 98:0a:7f:3a:71:49:b5:d8:9a:a3:d6:c5:f6:b6:85: 25:67:04:ab:69:dc:a2:92:ea:73:0b:ec:d6:a5:a0: 0b:ca:d9:4f:bf:f7:dc:00:84:38:7d:3f:51:51:2d: c0:2a:47:9f:e7:e9:9b:0c:fd:10:8f:22:fd:c4:91: ec:3c:4e:5f:49:2c:60:61:a3:4e:3c:7c:27:a7:20: 47:04:4e:83:2f:f9:5a:cd:9c:5e:19:12:4c:1a:b9: f7:c7:e6:12:dc:86:e4:fb:3b:91:72:03:29:ea:fe: 30:24:72:7e:3b:9d:44:93:a7:17:7b:73:ce:11:3b: 35:cd:6e:1d:0e:8d:37:12:f0:e6:c0:bb:0b:42:79: c4:f2:a2:3c:e8:6d:d1:a2:d5:04:04:70:22:d4:43: 63:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:62:9B:03:D2:AE:A6:CF:D7:93:11:AF:11:4D:32:40:6C:C7:46:E4 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/2486E806F0E311EAA1C58D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.0.107.0/24 124.158.230.0/24 124.158.233.0/24 203.223.145.0/24 Signature Algorithm: sha256WithRSAEncryption b4:9a:18:f3:73:cb:2c:66:39:60:cb:bb:4a:7c:9f:7a:04:b1: 94:15:83:1a:b4:e0:56:58:5c:6a:16:2a:3c:1f:40:87:bb:eb: 4e:64:86:a7:f5:4c:47:df:dd:ea:88:2f:97:d0:fe:46:1f:0a: f9:fa:66:45:52:ee:22:65:74:b4:bc:79:d3:00:ee:a2:1f:ac: 06:52:fd:3d:07:4d:bf:29:93:54:bf:d5:de:05:65:64:e5:74: 24:79:e8:ef:80:a4:aa:b2:80:0e:fc:ad:f2:15:95:b7:1c:09: e8:85:23:5f:f1:e3:91:b9:b3:5a:c2:74:44:10:24:b8:38:f0: a4:24:4d:46:ee:e0:25:9e:a5:60:5e:10:11:00:6b:32:14:90: 4d:ae:24:62:d7:8a:4d:7b:e5:d0:cf:0f:52:d2:6e:a3:b7:c0: d0:17:80:11:60:0e:7b:f9:4a:f3:d9:f9:b7:fd:26:32:ad:71: b2:38:13:e7:48:18:fe:b0:10:57:dd:bf:8e:96:1f:80:60:4a: 94:37:e8:f2:63:5f:1a:9f:e2:35:bb:2f:2b:bd:e1:85:3d:e3: ad:6e:4c:33:66:cc:ef:fa:91:b7:cb:e8:36:2e:85:c1:61:29: f4:6c:9f:d4:2b:28:6d:c5:f7:4c:29:13:53:18:05:ec:8f:0a: e5:10:18:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICJDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjQxMDIyMTU1MzAxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3Y2E1ZC1hNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSzAOJqq0oj0n8wMDEqcHZvClGVpOIxW4WKFKJLyZDzdau7f9WntJmxHjPPv FKawkds4A7ENndE/thjTNO0Dd8gULP7TVJzZZELB4P/Ey7Nv2uFZaQ0FhrMT26X2 eUWKMdTrPaQpn8CYCn86cUm12Jqj1sX2toUlZwSradyikupzC+zWpaALytlPv/fc AIQ4fT9RUS3AKkef5+mbDP0QjyL9xJHsPE5fSSxgYaNOPHwnpyBHBE6DL/lazZxe GRJMGrn3x+YS3Ibk+zuRcgMp6v4wJHJ+O51Ek6cXe3POETs1zW4dDo03EvDmwLsL QnnE8qI86G3RotUEBHAi1ENjewIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFPNimwPS rqbP15MRrxFNMkBsx0bkMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwQTUvMTdERkIzNUE0NkU2MTFFNUIwOERBMTdCQzRGOUFFMDIvMjQ4NkU4MDZG MEUzMTFFQUExQzU4RDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAB0AGsDBAB8nuYDBAB8nukDBADL35EwDQYJKoZIhvcNAQEL BQADggEBALSaGPNzyyxmOWDLu0p8n3oEsZQVgxq04FZYXGoWKjwfQIe7605khqf1 TEff3eqIL5fQ/kYfCvn6ZkVS7iJldLS8edMA7qIfrAZS/T0HTb8pk1S/1d4FZWTl dCR56O+ApKqygA78rfIVlbccCeiFI1/x45G5s1rCdEQQJLg48KQkTUbu4CWepWBe EBEAazIUkE2uJGLXik175dDPD1LSbqO3wNAXgBFgDnv5SvPZ+bf9JjKtcbI4E+dI GP6wEFfdv46WH4BgSpQ36PJjXxqf4jW7Lyu94YU9461uTDNmzO/6kbfL6DYuhcFh KfRsn9QrKG3F90wpE1MYBeyPCuUQGGI= -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:58 2025 by rpki-client