$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/B56BC994E18A11EF94F99968C4F9AE02.roa File: B56BC994E18A11EF94F99968C4F9AE02.roa (raw, json) Hash identifier: gzNobaLbEvK3FJ3mC0CiPYdWO820L9Sv8IKQdUKftFE= Subject key identifier: C9:12:DF:E4:CE:61:AC:76:AF:24:0E:8E:BE:34:66:53:7E:2A:04:55 Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Certificate serial: 11 Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/B56BC994E18A11EF94F99968C4F9AE02.roa Signing time: Sun 02 Feb 2025 17:25:34 +0000 ROA not before: Sun 02 Feb 2025 17:25:34 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 151983 IP address blocks: 161.248.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553 Validity Not Before: Feb 2 17:25:34 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=679faa8d-e54f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:07:8a:85:ae:f9:2c:17:c5:04:65:fb:40: ed:cd:a3:d7:16:5e:ec:85:06:1d:9a:95:89:3d:52: 5e:7c:81:1e:cb:17:89:db:f1:c6:38:b0:0e:d2:66: 84:cf:55:c0:37:d5:e3:71:4e:ce:73:f7:97:9b:bb: f8:d8:90:a1:76:63:45:d6:ff:35:4b:0a:88:a4:e7: f3:d4:c3:7e:1b:c8:c8:f3:25:3c:08:85:02:22:7e: b6:73:29:20:1f:c1:40:c3:0d:d2:99:bb:bd:03:00: 31:d2:c5:dc:1a:e7:cd:9c:22:bb:21:94:60:00:a7: b1:05:c0:23:1a:7f:48:2e:1d:e3:c0:90:a7:fd:a3: 33:08:d7:9d:f1:48:4c:68:c3:d9:79:30:50:13:c9: b0:e0:1c:b7:a9:18:40:59:a7:10:60:26:26:70:f8: c7:3f:05:4e:2a:da:4d:5d:23:0f:29:84:59:80:8a: 89:b4:5a:53:c0:a2:8f:80:bd:69:81:e7:42:4a:cb: 07:5c:66:be:19:76:80:01:f1:e5:6f:70:86:b3:6a: 14:99:66:c5:43:d9:25:56:0d:98:25:ca:f4:24:11: e9:6e:63:6b:29:cc:33:ab:a5:83:e5:26:0c:1e:29: e9:bb:84:46:12:2b:2e:42:71:d5:9a:38:42:73:81: 14:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:12:DF:E4:CE:61:AC:76:AF:24:0E:8E:BE:34:66:53:7E:2A:04:55 X509v3 Authority Key Identifier: keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/B56BC994E18A11EF94F99968C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.187.0/24 Signature Algorithm: sha256WithRSAEncryption 94:7b:07:f0:fd:04:87:2e:e4:ef:96:c1:d3:d2:e5:2d:e7:cf: cd:e3:b3:5f:d5:b1:b0:09:17:20:63:2e:96:56:5a:01:bb:63: 90:fd:01:57:15:a8:a5:ae:40:02:6f:7e:e7:70:7f:be:4a:c8: fc:7e:25:ef:73:f6:72:bc:78:94:9e:fb:25:32:90:03:5b:b9: 9f:12:4e:43:c5:38:41:b6:54:d7:60:a0:89:6f:85:43:22:f0: be:6e:cc:2c:1f:c9:7a:00:39:7a:81:a8:77:d5:c2:2b:30:b5: 47:ff:56:36:3f:d3:ed:4f:ac:1d:aa:55:6e:77:9a:cc:0f:88: f3:05:37:63:9a:39:03:a9:53:3d:31:0e:46:ca:39:b1:1c:fc: 2d:08:22:80:eb:69:aa:cf:b3:63:0a:52:79:ef:0e:48:29:42: 56:df:92:d5:3f:cb:ec:58:2b:45:ed:f0:de:5d:e9:2a:3d:52: 91:7a:02:f8:fe:1e:83:36:1c:02:ca:65:8c:cf:8e:9b:3f:5d: 5f:05:a5:e1:79:13:92:62:0b:6c:70:92:fd:38:f6:c0:91:e8: 9c:a8:9b:05:90:0f:aa:9e:4b:a5:92:99:04:04:03:05:0b:61: 26:6b:14:5d:bb:05:1e:84:0b:c8:3a:6b:7b:8f:16:51:d5:f5: 06:dd:00:44 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODU1MzExMC8GA1UEBRMoOTMwRERGNDEwMTA2OTAzQkVCOTkxOUM5OUJERTAxNjM4 NzA2NTVBRTAeFw0yNTAyMDIxNzI1MzRaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OWZhYThkLWU1NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKbgeKha75LBfFBGX7QO3No9cWXuyFBh2alYk9Ul58gR7LF4nb8cY4sA7SZoTP VcA31eNxTs5z95ebu/jYkKF2Y0XW/zVLCoik5/PUw34byMjzJTwIhQIifrZzKSAf wUDDDdKZu70DADHSxdwa582cIrshlGAAp7EFwCMaf0guHePAkKf9ozMI153xSExo w9l5MFATybDgHLepGEBZpxBgJiZw+Mc/BU4q2k1dIw8phFmAiom0WlPAoo+AvWmB 50JKywdcZr4ZdoAB8eVvcIazahSZZsVD2SVWDZglyvQkEeluY2spzDOrpYPlJgwe Kem7hEYSKy5CcdWaOEJzgRRnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUyRLf5M5h rHavJA6OvjRmU34qBFUwHwYDVR0jBBgwFoAUkw3fQQEGkDvrmRnJm94BY4cGVa4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NTUzL0E1OUJGRkU0RDJF RDExRUY4REVFNTEyMEM0RjlBRTAyL2t3M2ZRUUVHa0R2cm1SbkptOTRCWTRjR1Zh NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva3czZlFRRUdrRHZybVJuSm05NEJZNGNHVmE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODU1My9BNTlCRkZFNEQyRUQxMUVGOERFRTUxMjBDNEY5QUUwMi9CNTZCQzk5NEUx OEExMUVGOTRGOTk5NjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH4uzANBgkqhkiG9w0BAQsFAAOCAQEAlHsH8P0Ehy7k75bB 09LlLefPzeOzX9WxsAkXIGMullZaAbtjkP0BVxWopa5AAm9+53B/vkrI/H4l73P2 crx4lJ77JTKQA1u5nxJOQ8U4QbZU12CgiW+FQyLwvm7MLB/JegA5eoGod9XCKzC1 R/9WNj/T7U+sHapVbneazA+I8wU3Y5o5A6lTPTEORso5sRz8LQgigOtpqs+zYwpS ee8OSClCVt+S1T/L7FgrRe3w3l3pKj1SkXoC+P4egzYcAspljM+Omz9dXwWl4XkT kmILbHCS/Tj2wJHonKibBZAPqp5LpZKZBAQDBQthJmsUXbsFHoQLyDpre48WUdX1 Bt0ARA== -----END CERTIFICATE-----Generated at Wed Feb 5 23:08:42 2025 by rpki-client