$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/5895821AB62611ECB410C81DC4F9AE02.roa File: 5895821AB62611ECB410C81DC4F9AE02.roa (raw, json) Hash identifier: Cw84e/VfW9TbWmA54uCuBjCrxoDUPH36P2MA5oHYwqY= Subject key identifier: D4:A4:D9:7D:22:3E:79:DF:38:D0:6B:65:85:0B:C1:BB:31:23:1A:1E Certificate issuer: /CN=A917ACF1/serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Certificate serial: 02B8 Authority key identifier: EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/5895821AB62611ECB410C81DC4F9AE02.roa Signing time: Thu 21 Mar 2024 03:05:29 +0000 ROA not before: Thu 21 Mar 2024 03:05:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 7582 IP address blocks: 161.64.0.0/16 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 02:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACF1 Validity Not Before: Mar 21 03:05:29 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65fba3f9-a4b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:61:ce:f7:ea:9c:28:e6:e6:17:3f:80:7f: 3f:ea:67:39:62:e1:3c:d8:e7:ec:d2:74:98:d5:8a: 6b:3f:66:45:31:28:43:85:2c:a2:8a:d6:72:76:d9: b2:77:05:5a:27:0d:69:d1:d4:2b:00:e4:99:c8:64: ef:d7:72:97:fe:cb:04:2a:bd:b7:7d:d0:1a:7a:55: a9:69:c8:5b:54:3c:03:18:cd:d2:89:97:2d:27:2e: f6:3a:ef:88:60:84:0f:16:88:29:0b:8b:35:7c:f2: 19:84:bc:67:4c:9b:f5:90:ff:aa:49:b6:da:fe:48: 1e:a3:24:ab:ff:d8:ec:12:d4:1c:4d:3e:ae:89:74: df:07:c6:82:0d:17:35:a8:71:5f:e4:90:de:55:4b: 89:11:b7:cc:ba:68:dc:ba:06:ca:92:3d:20:87:42: 39:2c:d5:52:e4:1d:04:e5:5a:35:6f:7d:4e:ca:f9: 7e:06:72:86:1a:d5:79:7c:94:cc:80:ff:4e:b8:a1: 70:fc:d2:9f:fb:44:fd:74:bd:f8:1e:81:a8:39:ac: 61:e6:0c:8a:53:9c:17:3f:72:74:62:0c:2d:fe:c0: 33:44:51:fa:e6:bc:ee:21:ed:32:b6:50:d8:a4:7b: 9a:d4:d6:55:0f:90:0a:9c:c2:bf:1f:86:e2:66:b2: 1c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A4:D9:7D:22:3E:79:DF:38:D0:6B:65:85:0B:C1:BB:31:23:1A:1E X509v3 Authority Key Identifier: keyid:EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/5895821AB62611ECB410C81DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.64.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:bf:53:c7:ab:56:12:50:4b:5d:8b:62:64:8a:ad:9e:a4:9f: 4c:af:9f:d8:63:b5:c2:37:08:79:fc:e4:a7:5a:25:8d:1a:45: af:85:99:5d:7f:e9:db:13:13:db:10:38:98:7c:7d:9f:5e:c0: ed:2e:c8:26:3a:a9:04:ee:27:0b:61:42:9e:a9:9c:5f:a3:70: 9a:14:2a:44:c1:58:f2:1a:d6:8f:4e:37:ff:e4:e9:c1:7d:27: 03:5f:ff:08:6d:c6:b1:86:67:ee:6a:b2:22:0d:9f:d2:70:19: 89:1c:9b:da:72:eb:5d:d1:88:80:b3:de:3f:a8:35:a7:c7:c5: f7:c0:ff:fe:06:1c:b0:ba:9e:47:58:3d:3b:e4:c4:56:6b:a4: 00:80:4a:e0:d5:79:cd:3b:19:00:e7:52:23:4f:dd:4f:8c:1b: 7c:d1:4f:09:2a:9d:10:a0:31:09:64:e8:2b:31:e6:d3:e2:e1: 97:ac:2b:97:6b:82:01:aa:26:8e:63:20:28:56:6c:c5:50:6c: 9c:6d:1c:18:66:1c:1d:1a:b2:6f:2d:9f:e3:75:10:59:1c:73: 10:a5:4d:e3:56:a3:13:2a:de:09:61:8d:6c:25:09:f3:67:f7: 07:b2:7f:95:97:48:f9:d2:28:09:44:46:26:c7:84:38:77:fe: 11:a0:bc:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICArgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDRjExMTAvBgNVBAUTKEVDODRENjBGNzk2QkY0MTZGOEY4MUQxOEJBREEyRkZG ODdDMTVGMjYwHhcNMjQwMzIxMDMwNTI5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiYTNmOS1hNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvx5hzvfqnCjm5hc/gH8/6mc5YuE82Ofs0nSY1YprP2ZFMShDhSyiitZydtmy dwVaJw1p0dQrAOSZyGTv13KX/ssEKr23fdAaelWpachbVDwDGM3SiZctJy72Ou+I YIQPFogpC4s1fPIZhLxnTJv1kP+qSbba/kgeoySr/9jsEtQcTT6uiXTfB8aCDRc1 qHFf5JDeVUuJEbfMumjcugbKkj0gh0I5LNVS5B0E5Vo1b31Oyvl+BnKGGtV5fJTM gP9OuKFw/NKf+0T9dL34HoGoOaxh5gyKU5wXP3J0Ygwt/sAzRFH65rzuIe0ytlDY pHua1NZVD5AKnMK/H4biZrIcVQIDAQABo4IClDCCApAwHQYDVR0OBBYEFNSk2X0i PnnfONBrZYULwbsxIxoeMB8GA1UdIwQYMBaAFOyE1g95a/QW+PgdGLraL/+HwV8m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNGMS84NjgzNTUwNkEw MzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlCYjQtQjBZdXRvdl80ZkJY eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdJVFdEM2xyOUJiNC1CMFl1dG92XzRmQlh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FDRjEvODY4MzU1MDZBMDM5MTFFQzhBMUYxQzIzQzRGOUFFMDIvNTg5NTgyMUFC NjI2MTFFQ0I0MTBDODFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwChQDANBgkqhkiG9w0BAQsFAAOCAQEAWb9Tx6tWElBLXYti ZIqtnqSfTK+f2GO1wjcIefzkp1oljRpFr4WZXX/p2xMT2xA4mHx9n17A7S7IJjqp BO4nC2FCnqmcX6NwmhQqRMFY8hrWj043/+TpwX0nA1//CG3GsYZn7mqyIg2f0nAZ iRyb2nLrXdGIgLPeP6g1p8fF98D//gYcsLqeR1g9O+TEVmukAIBK4NV5zTsZAOdS I0/dT4wbfNFPCSqdEKAxCWToKzHm0+Lhl6wrl2uCAaomjmMgKFZsxVBsnG0cGGYc HRqyby2f43UQWRxzEKVN41ajEyreCWGNbCUJ82f3B7J/lZdI+dIoCURGJseEOHf+ EaC8vA== -----END CERTIFICATE-----Generated at Wed Feb 19 20:46:44 2025 by rpki-client