$ rpki-client -vvf rpki.apnic.net/member_repository/A9184AB8/33096EC8D1B011EF8C20DD32C4F9AE02/6156245AD26F11EFB6D7116EC4F9AE02.roa File: 6156245AD26F11EFB6D7116EC4F9AE02.roa (raw, json) Hash identifier: H+Re+gqiRgpMCNcLPAgkDV7non7PY7SZMMWDfs8kqJ8= Subject key identifier: AF:7B:1F:90:7F:27:E8:FC:B4:1C:AF:5B:2A:8D:AE:69:39:6B:5E:CF Certificate issuer: /CN=A9184AB8/serialNumber=1A6EB75B2B471360ED5A925C351CC40C19416827 Certificate serial: 03 Authority key identifier: 1A:6E:B7:5B:2B:47:13:60:ED:5A:92:5C:35:1C:C4:0C:19:41:68:27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gm63WytHE2DtWpJcNRzEDBlBaCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184AB8/33096EC8D1B011EF8C20DD32C4F9AE02/6156245AD26F11EFB6D7116EC4F9AE02.roa Signing time: Tue 14 Jan 2025 12:02:09 +0000 ROA not before: Tue 14 Jan 2025 12:02:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136988 IP address blocks: 23.106.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184AB8/33096EC8D1B011EF8C20DD32C4F9AE02/Gm63WytHE2DtWpJcNRzEDBlBaCc.crl rsync://rpki.apnic.net/member_repository/A9184AB8/33096EC8D1B011EF8C20DD32C4F9AE02/Gm63WytHE2DtWpJcNRzEDBlBaCc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gm63WytHE2DtWpJcNRzEDBlBaCc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184AB8 Validity Not Before: Jan 14 12:02:09 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67865241-6fc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:45:69:95:cd:dc:69:de:de:32:a2:58:6b:a9: ff:83:9b:69:e2:f0:7f:c6:7c:81:12:fa:1a:05:f6: d9:f3:f5:f9:95:92:11:a4:57:70:ca:cb:09:4a:33: a6:4e:2c:af:d5:c6:ad:62:e9:52:62:0b:bf:93:48: d8:fa:fc:a6:e0:92:4d:eb:cb:2f:f4:07:3e:45:56: 76:12:3b:1d:91:66:28:4f:da:90:45:4c:5e:87:6e: db:3f:bb:e0:bf:53:55:80:70:b4:15:44:23:85:ad: 8e:13:64:df:05:d7:ae:77:ae:92:7e:fd:50:8d:7e: da:b9:74:96:28:2b:e5:c2:dd:44:50:c0:28:99:98: b1:3c:e9:32:05:1a:5f:b0:d5:3d:0c:ce:84:3d:9e: 4b:25:c5:63:02:34:46:12:45:94:4a:0d:27:3c:0c: 5d:e9:3d:0f:60:d9:a9:6c:d7:66:ca:93:e7:48:66: 06:25:4a:13:13:25:72:99:78:1e:e3:1b:68:58:a3: 83:48:25:8b:a0:44:56:0e:7f:e8:c5:4f:6d:62:3b: 4c:a6:b0:20:6e:66:f6:8a:00:c2:30:75:ed:f7:f3: 8e:d3:1b:04:8f:27:2c:78:59:d0:d5:7e:f0:88:34: c8:4e:42:10:b9:3e:fa:39:b8:e0:55:c1:98:68:23: a4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7B:1F:90:7F:27:E8:FC:B4:1C:AF:5B:2A:8D:AE:69:39:6B:5E:CF X509v3 Authority Key Identifier: keyid:1A:6E:B7:5B:2B:47:13:60:ED:5A:92:5C:35:1C:C4:0C:19:41:68:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184AB8/33096EC8D1B011EF8C20DD32C4F9AE02/Gm63WytHE2DtWpJcNRzEDBlBaCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gm63WytHE2DtWpJcNRzEDBlBaCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184AB8/33096EC8D1B011EF8C20DD32C4F9AE02/6156245AD26F11EFB6D7116EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 23.106.240.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:58:36:ae:12:6c:0c:5a:6e:76:6e:eb:76:da:55:70:78:d3: f2:70:c6:5e:60:d9:d6:1e:07:64:94:de:90:89:fb:6f:c5:11: bf:2f:88:22:21:4e:3f:41:a5:10:1d:50:3e:1e:9a:ae:e3:f6: 39:1a:ae:cb:99:23:5d:0c:9d:d2:68:16:25:a7:be:8c:b5:56: 47:76:80:0f:0f:00:67:90:39:f3:39:ab:3d:9d:58:40:4c:e1: ac:51:35:21:27:79:22:66:77:61:b8:8e:40:54:93:1a:23:3a: 54:4a:9a:02:c5:dd:8d:de:46:16:bc:ce:6f:64:bd:e9:8a:46: 33:e4:53:ab:02:a4:28:3a:34:cf:13:3e:fd:81:0a:7d:5f:4e: 16:07:17:67:35:b5:59:5f:6d:28:a2:c3:4b:79:64:bc:ab:4b: 69:1b:11:62:31:21:37:21:02:52:84:e4:09:f4:b0:6d:d8:df: 22:27:57:46:2f:46:53:5b:07:49:55:82:de:c1:b4:ae:74:eb: 7f:3e:95:e5:10:66:eb:3e:b5:bd:c8:a0:10:5a:ff:12:f6:06: 4e:c2:05:78:9a:bc:53:76:15:81:d8:49:03:51:f1:1b:2f:36: 14:46:58:d9:eb:2a:20:f2:26:65:07:cf:e9:b9:b3:a6:00:cf: 88:6f:c5:f9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NEFCODExMC8GA1UEBRMoMUE2RUI3NUIyQjQ3MTM2MEVENUE5MjVDMzUxQ0M0MEMx OTQxNjgyNzAeFw0yNTAxMTQxMjAyMDlaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODY1MjQxLTZmYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiRWmVzdxp3t4yolhrqf+Dm2ni8H/GfIES+hoF9tnz9fmVkhGkV3DKywlKM6ZO LK/Vxq1i6VJiC7+TSNj6/Kbgkk3ryy/0Bz5FVnYSOx2RZihP2pBFTF6Hbts/u+C/ U1WAcLQVRCOFrY4TZN8F1653rpJ+/VCNftq5dJYoK+XC3URQwCiZmLE86TIFGl+w 1T0MzoQ9nkslxWMCNEYSRZRKDSc8DF3pPQ9g2als12bKk+dIZgYlShMTJXKZeB7j G2hYo4NIJYugRFYOf+jFT21iO0ymsCBuZvaKAMIwde33847TGwSPJyx4WdDVfvCI NMhOQhC5Pvo5uOBVwZhoI6RpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUr3sfkH8n 6Py0HK9bKo2uaTlrXs8wHwYDVR0jBBgwFoAUGm63WytHE2DtWpJcNRzEDBlBaCcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0QUI4LzMzMDk2RUM4RDFC MDExRUY4QzIwREQzMkM0RjlBRTAyL0dtNjNXeXRIRTJEdFdwSmNOUnpFREJsQmFD Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR202M1d5dEhFMkR0V3BKY05SekVEQmxCYUNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NEFCOC8zMzA5NkVDOEQxQjAxMUVGOEMyMEREMzJDNEY5QUUwMi82MTU2MjQ1QUQy NkYxMUVGQjZENzExNkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAxdq8DANBgkqhkiG9w0BAQsFAAOCAQEAHlg2rhJsDFpudm7r dtpVcHjT8nDGXmDZ1h4HZJTekIn7b8URvy+IIiFOP0GlEB1QPh6aruP2ORquy5kj XQyd0mgWJae+jLVWR3aADw8AZ5A58zmrPZ1YQEzhrFE1ISd5ImZ3YbiOQFSTGiM6 VEqaAsXdjd5GFrzOb2S96YpGM+RTqwKkKDo0zxM+/YEKfV9OFgcXZzW1WV9tKKLD S3lkvKtLaRsRYjEhNyECUoTkCfSwbdjfIidXRi9GU1sHSVWC3sG0rnTrfz6V5RBm 6z61vcigEFr/EvYGTsIFeJq8U3YVgdhJA1HxGy82FEZY2esqIPImZQfP6bmzpgDP iG/F+Q== -----END CERTIFICATE-----Generated at Wed Feb 5 21:41:56 2025 by rpki-client