$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/2D7A0C2A08D811EF8DFDE781C4F9AE02.roa File: 2D7A0C2A08D811EF8DFDE781C4F9AE02.roa (raw, json) Hash identifier: a1ZWSoZ9TruyRHzAuM+oFGOqD6aU1DKZcbyi9mqty6Y= Subject key identifier: 3A:C2:48:E1:06:7E:55:AC:E1:5B:8B:F9:D9:F9:7A:FB:51:F9:55:D9 Certificate issuer: /CN=A9179F22/serialNumber=063BAF3ED7B41071A90D9FAE410FF47888F0BEDF Certificate serial: 57 Authority key identifier: 06:3B:AF:3E:D7:B4:10:71:A9:0D:9F:AE:41:0F:F4:78:88:F0:BE:DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/2D7A0C2A08D811EF8DFDE781C4F9AE02.roa Signing time: Thu 02 May 2024 23:03:24 +0000 ROA not before: Thu 02 May 2024 23:03:24 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 16509 IP address blocks: 204.145.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.crl rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F22 Validity Not Before: May 2 23:03:24 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66341bbc-25a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ce:93:8f:33:0c:0f:e3:35:bb:18:33:09:74: e3:49:65:ad:55:9e:57:d5:30:9f:c2:67:72:41:45: 23:2f:06:01:8b:ad:35:ba:79:59:af:ff:80:bc:e0: 8f:1f:32:08:f9:34:84:3d:ac:4c:e3:db:91:55:e7: 2a:a3:13:e1:f1:96:90:d7:c7:8a:bb:87:7b:52:d7: 87:d9:a9:90:58:94:d3:b6:f8:ef:89:fa:16:fb:15: 64:c1:d6:e8:86:f0:ec:32:f9:54:61:8b:5c:15:24: e2:7c:e7:21:c2:83:b2:68:28:01:ac:8e:0f:9e:b7: 6c:68:31:ca:0d:85:10:a5:34:4f:a4:f0:d6:bd:a0: a3:54:b3:ba:ba:2a:1a:98:6c:fc:11:28:1e:96:4d: 1f:35:7e:ab:56:e0:20:ea:90:b0:b5:73:b2:cb:d9: d3:34:68:c2:12:d9:d2:a3:05:e3:2c:97:57:81:2a: dc:90:b3:2c:95:37:4d:05:00:c0:c0:77:d5:02:0c: 79:a1:31:21:ac:2b:c5:f4:d3:e6:8a:c8:2e:2b:25: b4:57:c3:79:43:41:30:3e:3a:0b:2e:7d:84:49:82: 8c:8d:23:3c:20:7d:a4:bd:06:36:ca:41:dd:e7:c3: 7f:59:58:2f:32:40:56:68:47:3b:8d:2b:b7:86:e0: d0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C2:48:E1:06:7E:55:AC:E1:5B:8B:F9:D9:F9:7A:FB:51:F9:55:D9 X509v3 Authority Key Identifier: keyid:06:3B:AF:3E:D7:B4:10:71:A9:0D:9F:AE:41:0F:F4:78:88:F0:BE:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/2D7A0C2A08D811EF8DFDE781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.145.97.0/24 Signature Algorithm: sha256WithRSAEncryption 58:6f:31:b7:88:38:55:71:1e:0f:bf:9e:b9:a7:91:40:4f:73: b5:69:53:ab:bd:c2:d4:5e:8c:81:f9:f3:aa:14:2e:85:f2:8f: c7:57:38:7c:db:2f:6d:cd:da:08:e9:7c:76:cd:84:e5:19:19: 09:6f:31:8f:f1:de:f9:7e:d6:86:4d:c3:1b:bb:47:71:d5:4c: 57:2c:43:12:aa:71:ed:a8:f1:0e:ac:50:3d:d5:6e:06:af:c1: ec:72:3d:90:b8:95:2d:9a:54:3e:e0:1a:74:3a:f2:46:13:b0: c2:2f:d2:14:12:35:83:04:09:84:f9:ef:10:f7:23:b2:bd:cc: 20:02:c3:28:dd:36:4a:51:70:a7:dd:5a:f8:e1:d0:f3:b4:bb: c1:78:10:8e:23:36:fb:55:28:ec:27:e8:1d:f5:58:9b:39:6b: 11:17:0c:be:da:09:51:a9:0b:9f:b6:de:a4:6b:ae:82:81:d5: f7:a9:65:9d:fc:9e:7a:62:19:df:f3:24:59:fd:17:00:66:b4: c7:8d:e7:bc:46:30:9d:60:a1:4e:b0:72:9a:15:24:fa:c5:58: 10:e6:b7:80:0b:69:b2:a0:8d:bf:65:fe:ae:44:f8:28:04:47: 1b:64:1d:0b:70:36:1e:c4:99:ab:00:6c:67:c7:31:a0:ff:56: f1:88:bc:f6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OUYyMjExMC8GA1UEBRMoMDYzQkFGM0VEN0I0MTA3MUE5MEQ5RkFFNDEwRkY0Nzg4 OEYwQkVERjAeFw0yNDA1MDIyMzAzMjRaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzQxYmJjLTI1YTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkzpOPMwwP4zW7GDMJdONJZa1VnlfVMJ/CZ3JBRSMvBgGLrTW6eVmv/4C84I8f Mgj5NIQ9rEzj25FV5yqjE+HxlpDXx4q7h3tS14fZqZBYlNO2+O+J+hb7FWTB1uiG 8Owy+VRhi1wVJOJ85yHCg7JoKAGsjg+et2xoMcoNhRClNE+k8Na9oKNUs7q6KhqY bPwRKB6WTR81fqtW4CDqkLC1c7LL2dM0aMIS2dKjBeMsl1eBKtyQsyyVN00FAMDA d9UCDHmhMSGsK8X00+aKyC4rJbRXw3lDQTA+OgsufYRJgoyNIzwgfaS9BjbKQd3n w39ZWC8yQFZoRzuNK7eG4NDZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOsJI4QZ+ VazhW4v52fl6+1H5VdkwHwYDVR0jBBgwFoAUBjuvPte0EHGpDZ+uQQ/0eIjwvt8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5RjIyL0M2RjU1RkE4OEYy RjExRUU5Q0JGRDk2MUM0RjlBRTAyL0JqdXZQdGUwRUhHcERaLXVRUV8wZUlqd3Z0 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQmp1dlB0ZTBFSEdwRFotdVFRXzBlSWp3dnQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUYyMi9DNkY1NUZBODhGMkYxMUVFOUNCRkQ5NjFDNEY5QUUwMi8yRDdBMEMyQTA4 RDgxMUVGOERGREU3ODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMyRYTANBgkqhkiG9w0BAQsFAAOCAQEAWG8xt4g4VXEeD7+e uaeRQE9ztWlTq73C1F6MgfnzqhQuhfKPx1c4fNsvbc3aCOl8ds2E5RkZCW8xj/He +X7Whk3DG7tHcdVMVyxDEqpx7ajxDqxQPdVuBq/B7HI9kLiVLZpUPuAadDryRhOw wi/SFBI1gwQJhPnvEPcjsr3MIALDKN02SlFwp91a+OHQ87S7wXgQjiM2+1Uo7Cfo HfVYmzlrERcMvtoJUakLn7bepGuugoHV96llnfyeemIZ3/MkWf0XAGa0x43nvEYw nWChTrBymhUk+sVYEOa3gAtpsqCNv2X+rkT4KARHG2QdC3A2HsSZqwBsZ8cxoP9W 8Yi89g== -----END CERTIFICATE-----Generated at Sun Feb 16 15:07:41 2025 by rpki-client