$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/9ADB02A27F4E11EDB22F3582C4F9AE02.roa File: 9ADB02A27F4E11EDB22F3582C4F9AE02.roa (raw, json) Hash identifier: 9Oyy54xhiWuTllhGlORwlpgALp6JCiYOJTYLu9JoBj0= Subject key identifier: 3B:4A:84:61:EA:B2:FB:FD:07:21:DA:05:93:18:C2:77:9D:0A:54:BB Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 018D Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/9ADB02A27F4E11EDB22F3582C4F9AE02.roa Signing time: Sun 15 Dec 2024 02:25:47 +0000 ROA not before: Sun 15 Dec 2024 02:25:47 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 3598 IP address blocks: 167.220.224.0/20 maxlen: 20 167.220.236.0/22 maxlen: 24 167.220.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F Validity Not Before: Dec 15 02:25:47 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675e3e2b-8325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ab:ed:28:29:b1:d4:33:0d:45:02:eb:77:6d: 58:9a:43:86:ac:f1:9b:51:f7:b8:be:d4:92:2b:ee: f8:4e:1d:85:97:cb:e8:37:79:74:6d:d9:57:97:f7: c6:2f:da:8f:7a:fe:26:01:11:90:01:42:4e:29:7a: 6a:3b:c1:b8:f5:85:ef:a9:c2:f6:35:4a:4b:60:6e: 0e:92:64:ba:63:f2:d7:40:7a:b0:85:4f:e9:44:35: 60:d0:f6:8e:08:fa:eb:1f:06:91:3a:76:15:e2:8d: fe:85:6d:f0:18:ed:66:8c:0a:38:b2:82:cb:80:b7: e6:f0:38:4a:f0:2c:f2:42:f0:7f:08:fc:b2:96:bc: 48:53:94:70:6d:4b:76:21:0d:5d:64:b2:6f:9d:b6: 4e:cc:cb:90:d7:75:20:2f:66:3a:9a:04:85:c1:8a: 18:e7:ba:96:f8:e0:a4:85:c2:bc:a2:48:3e:80:21: cb:88:f9:64:14:2a:6a:12:84:91:ec:5b:c2:bf:66: 67:80:b8:d3:21:c4:2f:bc:d4:8f:71:74:2b:1d:3e: 31:46:0d:46:cf:20:ea:3d:59:21:44:71:d4:c2:b3: a7:e8:49:94:b2:e0:6a:fa:38:5a:a2:e5:02:da:23: 1f:8a:57:41:aa:34:60:63:01:db:06:94:5c:d8:14: 38:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4A:84:61:EA:B2:FB:FD:07:21:DA:05:93:18:C2:77:9D:0A:54:BB X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/9ADB02A27F4E11EDB22F3582C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.220.224.0/20 167.220.248.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:f2:d9:98:21:43:43:db:2a:20:7b:57:96:af:a9:c9:3e:f1: 43:e0:ef:5b:e1:04:92:dd:bb:19:d8:03:1e:7f:91:7f:cc:52: 44:14:7f:14:18:bc:15:0a:e2:d4:70:25:86:d9:08:dd:b6:86: df:b6:bc:32:26:c7:71:e9:0b:58:30:2e:18:eb:4e:e9:e2:90: 01:d2:37:f7:7a:40:0b:c2:a4:17:50:9e:30:8c:5d:ff:0d:ce: 89:ed:3a:39:fc:25:01:8f:2b:c0:7c:a1:21:25:50:7d:da:2e: a0:a5:c7:12:23:ee:44:f4:a1:82:a7:3c:80:c9:42:b1:a3:3f: da:6c:16:b4:71:35:55:4c:18:75:9c:d6:52:b9:2f:16:fb:dc: 76:ed:b9:9c:92:e3:0e:d1:53:37:c8:93:96:21:6f:20:d3:23: 2b:31:7c:c3:df:bb:9f:00:d2:43:86:ca:32:1c:5e:a6:2d:8e: 7e:56:8c:a7:cb:53:08:cf:25:aa:32:d3:99:58:02:bc:75:3b: 93:91:4d:82:ca:3f:bb:e2:5a:ae:44:9f:6a:1f:19:b0:20:4f: 53:57:5c:35:0a:0c:2f:35:97:0c:5c:da:f4:cc:ed:fc:0d:b9: 06:08:11:a5:17:12:02:69:90:5d:29:f3:b9:02:d8:a9:cb:41: 1c:ef:fe:5a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjQxMjE1MDIyNTQ3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVlM2UyYi04MzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3avtKCmx1DMNRQLrd21YmkOGrPGbUfe4vtSSK+74Th2Fl8voN3l0bdlXl/fG L9qPev4mARGQAUJOKXpqO8G49YXvqcL2NUpLYG4OkmS6Y/LXQHqwhU/pRDVg0PaO CPrrHwaROnYV4o3+hW3wGO1mjAo4soLLgLfm8DhK8CzyQvB/CPyylrxIU5RwbUt2 IQ1dZLJvnbZOzMuQ13UgL2Y6mgSFwYoY57qW+OCkhcK8okg+gCHLiPlkFCpqEoSR 7FvCv2ZngLjTIcQvvNSPcXQrHT4xRg1GzyDqPVkhRHHUwrOn6EmUsuBq+jhaouUC 2iMfildBqjRgYwHbBpRc2BQ4qQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDtKhGHq svv9ByHaBZMYwnedClS7MB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvMzA1RUI4NzY3Q0RCMTFFREFCODQ0QzE5QzRGOUFFMDIvOUFEQjAyQTI3 RjRFMTFFREIyMkYzNTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBASn3OADBAOn3PgwDQYJKoZIhvcNAQELBQADggEBADry2Zgh Q0PbKiB7V5avqck+8UPg71vhBJLduxnYAx5/kX/MUkQUfxQYvBUK4tRwJYbZCN22 ht+2vDImx3HpC1gwLhjrTunikAHSN/d6QAvCpBdQnjCMXf8NzontOjn8JQGPK8B8 oSElUH3aLqClxxIj7kT0oYKnPIDJQrGjP9psFrRxNVVMGHWc1lK5Lxb73HbtuZyS 4w7RUzfIk5YhbyDTIysxfMPfu58A0kOGyjIcXqYtjn5WjKfLUwjPJaoy05lYArx1 O5ORTYLKP7viWq5En2ofGbAgT1NXXDUKDC81lwxc2vTM7fwNuQYIEaUXEgJpkF0p 87kC2KnLQRzv/lo= -----END CERTIFICATE-----Generated at Sun Feb 16 21:01:51 2025 by rpki-client