$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa File: 0C2077B6D1B511EF944F205DC4F9AE02.roa (raw, json) Hash identifier: e/G+ixBQ6LN/rcfPtD+3nHt6guJrjUvteGGskuG6eAU= Subject key identifier: 9C:3B:1F:DA:E4:35:95:C8:EF:62:AF:75:04:57:81:67:3C:0E:40:15 Certificate issuer: /CN=A91A9083/serialNumber=E8CF22A08E4391CAD150FA31B44DC93C8AB825EA Certificate serial: 04 Authority key identifier: E8:CF:22:A0:8E:43:91:CA:D1:50:FA:31:B4:4D:C9:3C:8A:B8:25:EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa Signing time: Tue 14 Jan 2025 08:42:59 +0000 ROA not before: Tue 14 Jan 2025 08:42:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134351 IP address blocks: 23.81.40.0/21 maxlen: 21 23.106.224.0/21 maxlen: 21 173.234.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.crl rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083 Validity Not Before: Jan 14 08:42:59 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67862393-fe5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d7:99:13:d0:00:50:49:4a:9c:8e:48:34:cf: b9:fd:68:48:5c:5d:1d:78:e2:38:29:bc:85:c9:b4: 86:14:13:df:0b:1a:6f:fd:4f:09:2a:a8:ea:62:ce: c0:b1:ea:04:00:9e:47:0b:54:56:63:71:56:8a:ac: 79:3c:37:c3:81:dc:6c:48:37:f6:c2:a3:93:13:71: 69:6b:a3:5d:3b:7a:33:75:12:63:45:75:a4:c0:fa: 71:e1:f8:9c:94:cb:63:3c:81:2a:0a:79:bd:ca:53: 1d:a5:08:04:57:ec:02:0c:8a:ec:67:71:34:e1:82: 79:d2:8e:e2:a5:f0:df:3d:86:74:25:d0:0a:81:3d: 85:52:f1:47:08:77:bc:be:6c:d1:52:44:93:9e:7d: 51:dc:80:35:9e:36:f4:32:75:bb:f1:c9:7e:d4:f0: de:e2:06:79:ad:e1:fb:ed:56:5b:8c:3e:c7:ab:f1: 5a:67:50:ce:16:15:9f:6c:6e:45:7f:1b:fc:4a:dc: 57:41:86:93:24:18:b7:3b:e3:78:15:b1:76:d9:7f: 48:47:41:d7:fb:ec:a1:c2:08:52:0e:63:fd:0a:13: 17:7f:94:99:d0:af:d6:3f:db:05:af:e9:6a:02:23: 76:cd:86:c4:68:84:44:03:af:78:8c:5c:46:d0:b1: 08:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:3B:1F:DA:E4:35:95:C8:EF:62:AF:75:04:57:81:67:3C:0E:40:15 X509v3 Authority Key Identifier: keyid:E8:CF:22:A0:8E:43:91:CA:D1:50:FA:31:B4:4D:C9:3C:8A:B8:25:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 23.81.40.0/21 23.106.224.0/21 173.234.64.0/22 Signature Algorithm: sha256WithRSAEncryption 39:34:b3:a7:82:8a:ca:b9:7a:f7:81:9c:c5:95:00:8d:70:12: d4:6b:02:99:7c:2f:b9:3c:48:f6:fb:8a:cd:a3:a3:ad:22:fb: 60:aa:b2:4b:40:9b:36:16:72:42:8f:a1:14:1e:d9:c9:96:a2: 1f:81:fd:d1:c3:6a:f1:f6:3d:90:94:58:56:44:2d:09:fd:31: 89:a7:8b:63:37:55:98:86:18:d1:4f:aa:bc:30:b9:42:de:01: 28:b9:2c:c5:5d:e9:72:db:37:9e:e9:e4:7e:51:84:37:9e:15: 84:a6:5b:f8:6d:2c:4e:80:7b:6d:e5:17:25:24:03:50:4f:ad: 24:c6:1b:88:f4:b2:b1:2e:31:53:38:7e:9f:3d:63:b1:b7:ab: b9:17:ae:05:7d:d3:38:84:65:67:ad:c1:41:69:4c:20:fd:27: 5a:bd:4e:76:39:9f:8d:f0:84:4d:f0:67:ce:a8:ec:30:7a:16: d2:08:e0:87:fa:16:5b:0c:a7:7d:b6:f2:0b:e2:c9:13:3b:87: 22:4e:9c:68:a5:65:b4:98:e6:1b:f5:00:f8:1e:b5:63:41:ef: f3:1f:e1:50:2d:2c:80:e8:0b:e1:12:f5:46:67:57:4b:38:5b: 71:82:9e:f6:50:fc:e5:6b:7b:67:ca:38:e2:3a:99:17:94:f8: b4:30:2f:89 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoRThDRjIyQTA4RTQzOTFDQUQxNTBGQTMxQjQ0REM5M0M4 QUI4MjVFQTAeFw0yNTAxMTQwODQyNTlaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODYyMzkzLWZlNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDk15kT0ABQSUqcjkg0z7n9aEhcXR144jgpvIXJtIYUE98LGm/9TwkqqOpizsCx 6gQAnkcLVFZjcVaKrHk8N8OB3GxIN/bCo5MTcWlro107ejN1EmNFdaTA+nHh+JyU y2M8gSoKeb3KUx2lCARX7AIMiuxncTThgnnSjuKl8N89hnQl0AqBPYVS8UcId7y+ bNFSRJOefVHcgDWeNvQydbvxyX7U8N7iBnmt4fvtVluMPser8VpnUM4WFZ9sbkV/ G/xK3FdBhpMkGLc743gVsXbZf0hHQdf77KHCCFIOY/0KExd/lJnQr9Y/2wWv6WoC I3bNhsRohEQDr3iMXEbQsQjTAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUnDsf2uQ1 lcjvYq91BFeBZzwOQBUwHwYDVR0jBBgwFoAU6M8ioI5DkcrRUPoxtE3JPIq4Jeow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0MwNkYyRTQyRDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyLzZNOGlvSTVEa2NyUlVQb3h0RTNKUElxNEpl by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNk04aW9JNURrY3JSVVBveHRFM0pQSXE0SmVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTA4My9DMDZGMkU0MkQxQjAxMUVGODgzM0M5MzNDNEY5QUUwMi8wQzIwNzdCNkQx QjUxMUVGOTQ0RjIwNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAxdRKAMEAxdq4AMEAq3qQDANBgkqhkiG9w0BAQsFAAOCAQEA OTSzp4KKyrl694GcxZUAjXAS1GsCmXwvuTxI9vuKzaOjrSL7YKqyS0CbNhZyQo+h FB7ZyZaiH4H90cNq8fY9kJRYVkQtCf0xiaeLYzdVmIYY0U+qvDC5Qt4BKLksxV3p cts3nunkflGEN54VhKZb+G0sToB7beUXJSQDUE+tJMYbiPSysS4xUzh+nz1jsber uReuBX3TOIRlZ63BQWlMIP0nWr1OdjmfjfCETfBnzqjsMHoW0gjgh/oWWwynfbby C+LJEzuHIk6caKVltJjmG/UA+B61Y0Hv8x/hUC0sgOgL4RL1RmdXSzhbcYKe9lD8 5Wt7Z8o44jqZF5T4tDAviQ== -----END CERTIFICATE-----Generated at Wed Feb 5 22:50:05 2025 by rpki-client