$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/95CA439CDAE211ECA14A8254C4F9AE02.roa File: 95CA439CDAE211ECA14A8254C4F9AE02.roa (raw, json) Hash identifier: OECkIlj17co6mkQPfqLaCAPspTHEJP8pYNRcO1GHXvE= Subject key identifier: A8:20:F8:0B:DA:23:E4:FF:F7:0D:F9:3F:CB:BB:70:DD:D8:DF:D5:C5 Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 0212 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/95CA439CDAE211ECA14A8254C4F9AE02.roa Signing time: Thu 29 Feb 2024 03:56:24 +0000 ROA not before: Thu 29 Feb 2024 03:56:24 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 396982 IP address blocks: 45.250.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2 Validity Not Before: Feb 29 03:56:24 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e00067-a716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:15:68:70:f0:98:2a:c6:db:6a:fe:10:3b:8d: f4:a0:9d:87:f2:12:bf:9e:fd:ba:2d:dc:58:5a:69: e7:44:6a:b4:8f:2e:8d:30:74:6a:b2:77:13:ec:55: b0:26:f0:61:bb:bb:44:85:2f:8f:f6:6d:01:d7:12: 30:73:23:0b:48:cb:8c:8b:38:ed:e7:c7:05:12:91: 28:a5:e2:e7:30:5f:69:be:5e:86:aa:70:e8:5d:80: 4d:1f:2d:f0:81:69:36:16:4c:20:62:88:d8:29:3f: f8:c6:74:46:da:2c:08:75:a8:d9:9a:93:f2:2a:f2: e9:a9:57:9e:08:78:f0:77:46:66:e2:d9:c4:b2:32: cd:05:8c:91:8a:84:4b:d7:3b:f4:cb:91:8f:66:e5: 7f:09:d2:55:f9:f7:1f:88:21:cc:38:e3:89:fb:6f: a6:37:36:85:c1:f7:c2:30:c1:66:56:29:53:5f:96: 24:4a:12:55:43:32:fa:4c:11:2c:00:0f:f4:0f:af: 8b:2e:22:39:58:02:65:8d:3a:f0:f1:f6:da:c9:12: ca:b4:b7:6c:cd:42:a3:5d:cb:fe:83:2c:4e:39:a1: 40:08:c1:f2:34:57:09:bf:d1:ee:ed:06:60:eb:ab: 29:c6:06:f0:ba:1f:3b:1a:57:85:a8:32:66:df:b8: d8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:20:F8:0B:DA:23:E4:FF:F7:0D:F9:3F:CB:BB:70:DD:D8:DF:D5:C5 X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/95CA439CDAE211ECA14A8254C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.160.0/24 Signature Algorithm: sha256WithRSAEncryption 81:d0:5f:7b:16:9c:97:13:3a:90:4b:01:db:3b:74:f9:10:01: 90:03:d4:8e:00:1f:1a:0a:3c:01:03:66:c9:fc:ac:87:7f:d1: ab:a2:45:84:a8:77:7e:04:2f:11:d9:e1:41:60:f5:b7:59:67: 76:30:f2:f3:88:d1:db:80:18:19:92:3f:94:c2:6c:0a:cb:5f: dd:d6:cb:97:64:cb:e8:c7:69:ad:61:26:54:cf:61:f2:1e:96: 8e:ea:a8:a0:4c:69:53:d6:06:e3:01:0b:f9:bf:9d:05:7e:78: 11:0f:17:87:a7:5a:98:96:3e:ce:53:34:97:31:25:e8:70:4c: de:f6:7e:fc:c6:1c:80:3a:da:4d:4f:ae:23:27:00:db:f2:62: 30:a0:1a:d8:c5:98:96:bf:c8:56:70:40:27:c1:25:3f:4a:50: bd:63:9f:2d:6a:48:a6:c5:58:f7:48:57:86:9c:b8:ac:b0:9a: 9d:24:7b:43:73:08:9c:6c:07:06:9a:43:77:36:bb:b4:44:b2: 9a:8f:f9:c4:e2:5d:e6:f4:10:7e:e9:93:4d:d2:1f:20:67:ec: d8:68:00:e9:b8:f2:ba:32:a5:d1:c1:05:f0:1d:a6:64:96:d8: be:84:e3:6a:42:50:89:10:d6:11:a8:47:ff:30:b9:77:47:7a: 89:2c:b5:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjQwMjI5MDM1NjI0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwMDA2Ny1hNzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hVocPCYKsbbav4QO430oJ2H8hK/nv26LdxYWmnnRGq0jy6NMHRqsncT7FWw JvBhu7tEhS+P9m0B1xIwcyMLSMuMizjt58cFEpEopeLnMF9pvl6GqnDoXYBNHy3w gWk2FkwgYojYKT/4xnRG2iwIdajZmpPyKvLpqVeeCHjwd0Zm4tnEsjLNBYyRioRL 1zv0y5GPZuV/CdJV+fcfiCHMOOOJ+2+mNzaFwffCMMFmVilTX5YkShJVQzL6TBEs AA/0D6+LLiI5WAJljTrw8fbayRLKtLdszUKjXcv+gyxOOaFACMHyNFcJv9Hu7QZg 66spxgbwuh87GleFqDJm37jYbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKgg+Ava I+T/9w35P8u7cN3Y39XFMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTgwRDIvRDQyOEQwQzZEQURFMTFFQzg3NzExNDUwQzRGOUFFMDIvOTVDQTQzOUNE QUUyMTFFQ0ExNEE4MjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAt+qAwDQYJKoZIhvcNAQELBQADggEBAIHQX3sWnJcTOpBL Ads7dPkQAZAD1I4AHxoKPAEDZsn8rId/0auiRYSod34ELxHZ4UFg9bdZZ3Yw8vOI 0duAGBmSP5TCbArLX93Wy5dky+jHaa1hJlTPYfIelo7qqKBMaVPWBuMBC/m/nQV+ eBEPF4enWpiWPs5TNJcxJehwTN72fvzGHIA62k1PriMnANvyYjCgGtjFmJa/yFZw QCfBJT9KUL1jny1qSKbFWPdIV4acuKywmp0ke0NzCJxsBwaaQ3c2u7REspqP+cTi Xeb0EH7pk03SHyBn7NhoAOm48roypdHBBfAdpmSW2L6E42pCUIkQ1hGoR/8wuXdH eokstQA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:39:48 2025 by rpki-client