$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa File: 9781D91CB36B11EEA3394737C4F9AE02.roa (raw, json) Hash identifier: ezxJgBFw2tKKcU962PajWcu+NU//ODot2RyjD71Fn24= Subject key identifier: B9:C9:2D:36:B0:EE:60:3A:B4:CB:B4:76:F2:CD:FD:03:A8:22:B1:F9 Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: 0127 Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa Signing time: Thu 16 Jan 2025 03:24:13 +0000 ROA not before: Thu 16 Jan 2025 03:24:13 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 34985 IP address blocks: 185.254.240.0/24 maxlen: 24 185.254.241.0/24 maxlen: 24 194.246.40.0/24 maxlen: 24 194.246.41.0/24 maxlen: 24 194.246.42.0/24 maxlen: 24 194.246.43.0/24 maxlen: 24 213.139.233.0/24 maxlen: 24 213.139.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3 Validity Not Before: Jan 16 03:24:13 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67887bdd-769e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:2f:a4:af:2f:af:49:71:fd:a8:57:d8:97:74: d0:12:28:98:3b:9b:4c:d7:9a:4a:f4:96:93:34:2d: 8c:3c:21:01:35:2e:7c:90:6e:2c:19:a8:54:de:66: d1:b9:13:63:50:50:19:6d:65:95:ab:11:d6:28:7f: 90:04:ff:fe:a4:ac:21:2e:d2:50:47:6b:fd:76:a5: 4d:1c:53:fe:be:0a:d9:0f:de:6a:e9:19:55:0f:2e: 51:2b:f6:4b:72:b9:0c:12:28:11:ec:fa:ef:2c:0d: 6a:2a:ed:37:7f:88:e7:2d:8e:9c:39:6b:fc:3d:04: ce:ef:2e:8d:71:63:f2:5b:d1:43:61:14:c6:f9:4d: cb:5c:cd:71:7b:82:c2:bb:81:37:b6:e5:39:09:56: 89:c7:d1:e7:c9:85:32:73:f1:64:f0:22:9d:f1:d7: 61:06:2e:82:fc:11:e6:31:23:fc:9b:4e:af:72:fd: d2:02:cd:8e:aa:2d:6d:b7:76:31:10:76:6e:39:99: b3:0e:29:b3:d3:db:d8:71:fd:12:3a:2c:36:c3:4c: 4d:15:b7:a2:d0:03:77:82:be:c2:ad:6b:fb:65:ae: cd:23:b4:00:6e:44:87:a2:f1:84:94:b8:76:41:52: de:dc:20:98:82:ad:75:6b:6c:65:d8:9f:91:f6:7b: 27:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C9:2D:36:B0:EE:60:3A:B4:CB:B4:76:F2:CD:FD:03:A8:22:B1:F9 X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.254.240.0/23 194.246.40.0/22 213.139.233.0-213.139.234.255 Signature Algorithm: sha256WithRSAEncryption 83:e2:c3:43:93:66:c6:f8:89:e1:63:6f:cc:3e:ec:26:11:1d: f4:9e:12:c5:ce:b7:8a:57:aa:ef:e3:2d:1b:80:5e:f1:a6:41: 02:c3:50:cd:11:67:16:61:d3:e7:3b:14:03:ae:1c:79:f7:84: 37:e9:d5:2f:37:fe:a1:3c:6b:40:70:88:26:d8:2c:5b:e3:c0: 53:34:e1:b1:0f:04:a7:05:5b:7a:e4:8a:6e:b8:66:9a:ce:da: ca:a2:df:aa:31:ac:28:be:0d:82:7f:9b:bd:88:1e:82:3a:77: 17:fb:f2:63:d6:33:a2:ee:05:c6:26:7f:b5:a0:60:ae:9d:9d: a5:75:9b:2b:47:75:12:00:5b:a4:d9:16:fd:e1:08:60:62:4c: 26:de:59:04:c7:e6:5d:65:10:25:d9:26:e5:6a:8f:ed:98:7f: bb:ef:2d:61:ef:09:ad:fa:97:8c:b6:67:81:f5:2c:fe:93:7f: dc:7e:7e:85:25:82:e3:a5:af:dc:b9:7c:8e:87:c2:04:bd:d0: e3:ae:f3:cc:fe:d2:de:ee:1d:1b:24:d9:07:6a:1c:49:68:a6: 27:7c:e0:d9:00:0c:35:7c:a0:d0:e5:98:df:03:29:8f:bd:92: b1:90:1e:5e:c4:fe:61:53:3c:9a:83:c5:38:29:66:5e:ae:d7: 83:fd:05:7d -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjUwMTE2MDMyNDEzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg4N2JkZC03NjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9S+kry+vSXH9qFfYl3TQEiiYO5tM15pK9JaTNC2MPCEBNS58kG4sGahU3mbR uRNjUFAZbWWVqxHWKH+QBP/+pKwhLtJQR2v9dqVNHFP+vgrZD95q6RlVDy5RK/ZL crkMEigR7PrvLA1qKu03f4jnLY6cOWv8PQTO7y6NcWPyW9FDYRTG+U3LXM1xe4LC u4E3tuU5CVaJx9HnyYUyc/Fk8CKd8ddhBi6C/BHmMSP8m06vcv3SAs2Oqi1tt3Yx EHZuOZmzDimz09vYcf0SOiw2w0xNFbei0AN3gr7CrWv7Za7NI7QAbkSHovGElLh2 QVLe3CCYgq11a2xl2J+R9nsn9QIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFLnJLTaw 7mA6tMu0dvLN/QOoIrH5MB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNjI5RThCMjAzQjIzMTFFRUE0M0IwMjE5QzRGOUFFMDIvOTc4MUQ5MUNC MzZCMTFFRUEzMzk0NzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAG5/vADBALC9igwDAMEANWL6QMEANWL6jANBgkqhkiG9w0B AQsFAAOCAQEAg+LDQ5NmxviJ4WNvzD7sJhEd9J4Sxc63ileq7+MtG4Be8aZBAsNQ zRFnFmHT5zsUA64cefeEN+nVLzf+oTxrQHCIJtgsW+PAUzThsQ8EpwVbeuSKbrhm ms7ayqLfqjGsKL4Ngn+bvYgegjp3F/vyY9Yzou4FxiZ/taBgrp2dpXWbK0d1EgBb pNkW/eEIYGJMJt5ZBMfmXWUQJdkm5WqP7Zh/u+8tYe8JrfqXjLZngfUs/pN/3H5+ hSWC46Wv3Ll8jofCBL3Q467zzP7S3u4dGyTZB2ocSWimJ3zg2QAMNXyg0OWY3wMp j72SsZAeXsT+YVM8moPFOClmXq7Xg/0FfQ== -----END CERTIFICATE-----Generated at Sat Apr 5 08:27:23 2025 by rpki-client