$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/E3239FCAD48C11EFA27EEC37C4F9AE02.roa File: E3239FCAD48C11EFA27EEC37C4F9AE02.roa (raw, json) Hash identifier: fYzwGdwCqYZskymy95U02CPM2CRp+XXOXIkMFaQRIIM= Subject key identifier: DA:5E:58:56:69:29:9D:06:F9:01:1F:DD:3C:6E:5E:E8:EB:70:C0:EF Certificate issuer: /CN=A91685E9/serialNumber=624B96E1D665ED78E78DFAF6C220191073DB66CC Certificate serial: 2E Authority key identifier: 62:4B:96:E1:D6:65:ED:78:E7:8D:FA:F6:C2:20:19:10:73:DB:66:CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/E3239FCAD48C11EFA27EEC37C4F9AE02.roa Signing time: Fri 17 Jan 2025 04:38:24 +0000 ROA not before: Fri 17 Jan 2025 04:38:24 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152565 IP address blocks: 161.248.162.0/24 maxlen: 24 161.248.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9 Validity Not Before: Jan 17 04:38:24 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6789dec0-1c0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:39:4e:6f:72:60:da:bd:6c:66:1c:29:4d:65: f5:dd:73:ed:a7:65:d4:36:48:03:17:bb:95:b0:6b: 69:9c:0e:4e:cc:7c:3a:aa:cc:1c:a8:26:15:f9:e8: cc:33:ec:4b:af:2f:c7:d3:d4:92:44:f7:ab:c3:bb: 35:5c:6e:19:e4:91:7d:c4:ac:2f:93:a1:ff:e8:cf: a7:a1:09:45:2c:5c:82:29:89:00:15:be:03:89:51: fe:53:be:70:9d:b5:fa:4d:ea:4f:7b:31:a8:f1:03: 0e:1d:9f:06:92:b5:b3:f4:ab:52:93:06:1e:e4:19: 9d:a5:47:71:eb:ad:68:d4:02:82:05:c0:6b:99:a5: a2:cb:04:b3:7c:30:99:1a:7c:a9:23:6f:5c:f3:20: 6b:cb:79:a9:1b:b7:f7:f5:37:2c:b9:9d:19:7b:f6: c7:d3:04:ef:72:ae:22:61:3d:e2:62:57:8a:ac:c4: 79:60:76:27:7a:03:8d:18:2e:0e:16:85:c8:b7:38: e4:72:3f:69:90:b6:98:38:3b:07:f3:32:b8:19:60: 86:36:cc:85:73:58:ce:7a:20:bc:a9:2e:a9:54:b3: c9:24:5a:19:80:98:ec:d7:a4:c8:dc:49:81:d4:3f: d3:cb:73:db:3e:ac:e2:ee:97:3e:32:86:77:e2:3f: cc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:5E:58:56:69:29:9D:06:F9:01:1F:DD:3C:6E:5E:E8:EB:70:C0:EF X509v3 Authority Key Identifier: keyid:62:4B:96:E1:D6:65:ED:78:E7:8D:FA:F6:C2:20:19:10:73:DB:66:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/E3239FCAD48C11EFA27EEC37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.162.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:ad:48:6a:69:ee:3c:38:7a:31:c3:61:b9:ef:4e:21:be:b2: 3a:6d:bc:ca:ef:33:ff:6b:7b:62:ca:62:54:e6:4f:51:72:bd: e6:06:e3:4f:29:17:40:9e:a5:03:5a:54:3f:85:35:ce:73:c9: 5b:26:45:0b:e5:21:29:81:ff:81:50:7d:13:b1:ba:42:03:5d: 5f:f5:c2:81:1c:c7:85:80:63:9b:ac:73:c0:f5:4f:b7:1f:7d: b0:b5:0d:89:54:a3:3d:a9:a2:1b:43:c9:f8:ab:8e:ec:07:a2: 2a:ac:17:08:c7:0f:1c:91:3c:de:d7:3c:43:22:9e:98:cb:f9: 3b:e0:49:4d:b9:8f:f2:64:f0:d9:0f:67:ee:57:d6:20:35:12: ed:5f:81:12:44:57:69:c9:5d:9d:c8:56:cf:1d:34:38:ac:0b: 2e:34:a6:85:ea:28:68:4e:30:b0:fe:80:9a:e2:25:14:4a:b6: f9:70:21:01:15:28:2b:82:08:ab:7d:34:16:6c:b3:90:a6:68: 50:0f:b2:c1:84:0f:ee:14:07:7b:71:77:58:f1:7e:e2:11:46: 0a:f9:2b:ca:56:e8:82:55:b8:a2:90:30:3c:d6:a8:ef:58:bf: 07:ea:e8:ce:cd:a9:38:2d:72:27:68:a9:24:a8:b9:59:27:58: 58:18:27:6e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODVFOTExMC8GA1UEBRMoNjI0Qjk2RTFENjY1RUQ3OEU3OERGQUY2QzIyMDE5MTA3 M0RCNjZDQzAeFw0yNTAxMTcwNDM4MjRaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODlkZWMwLTFjMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuOU5vcmDavWxmHClNZfXdc+2nZdQ2SAMXu5Wwa2mcDk7MfDqqzByoJhX56Mwz 7EuvL8fT1JJE96vDuzVcbhnkkX3ErC+Tof/oz6ehCUUsXIIpiQAVvgOJUf5TvnCd tfpN6k97MajxAw4dnwaStbP0q1KTBh7kGZ2lR3HrrWjUAoIFwGuZpaLLBLN8MJka fKkjb1zzIGvLeakbt/f1Nyy5nRl79sfTBO9yriJhPeJiV4qsxHlgdid6A40YLg4W hci3OORyP2mQtpg4OwfzMrgZYIY2zIVzWM56ILypLqlUs8kkWhmAmOzXpMjcSYHU P9PLc9s+rOLulz4yhnfiP8wTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2l5YVmkp nQb5AR/dPG5e6OtwwO8wHwYDVR0jBBgwFoAUYkuW4dZl7Xjnjfr2wiAZEHPbZsww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4NUU5L0MxMTJGNTVDRDE3 NjExRUY5NUM1REU1QUM0RjlBRTAyL1lrdVc0ZFpsN1hqbmpmcjJ3aUFaRUhQYlpz dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWWt1VzRkWmw3WGpuamZyMndpQVpFSFBiWnN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODVFOS9DMTEyRjU1Q0QxNzYxMUVGOTVDNURFNUFDNEY5QUUwMi9FMzIzOUZDQUQ0 OEMxMUVGQTI3RUVDMzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4ojANBgkqhkiG9w0BAQsFAAOCAQEAK61IamnuPDh6McNh ue9OIb6yOm28yu8z/2t7YspiVOZPUXK95gbjTykXQJ6lA1pUP4U1znPJWyZFC+Uh KYH/gVB9E7G6QgNdX/XCgRzHhYBjm6xzwPVPtx99sLUNiVSjPamiG0PJ+KuO7Aei KqwXCMcPHJE83tc8QyKemMv5O+BJTbmP8mTw2Q9n7lfWIDUS7V+BEkRXacldnchW zx00OKwLLjSmheooaE4wsP6AmuIlFEq2+XAhARUoK4IIq300FmyzkKZoUA+ywYQP 7hQHe3F3WPF+4hFGCvkrylboglW4opAwPNao71i/B+rozs2pOC1yJ2ipJKi5WSdY WBgnbg== -----END CERTIFICATE-----Generated at Wed Feb 5 22:58:58 2025 by rpki-client