$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/445DB498796011EFA7E9391DC4F9AE02.roa File: 445DB498796011EFA7E9391DC4F9AE02.roa (raw, json) Hash identifier: NM7FShW06/HQ6VqGb5G2xSzxEZkPVe4ddn8MqSf2TiQ= Subject key identifier: F6:15:D7:DE:62:57:91:76:40:E8:69:B4:EE:89:D7:D4:A8:DB:84:91 Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Certificate serial: 29AE Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/445DB498796011EFA7E9391DC4F9AE02.roa Signing time: Mon 23 Sep 2024 03:59:44 +0000 ROA not before: Mon 23 Sep 2024 03:59:44 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138420 IP address blocks: 43.245.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10670 (0x29ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B01C7 Validity Not Before: Sep 23 03:59:44 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66f0e7b0-bb3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1c:e8:bb:73:b3:b4:26:91:9f:f3:f1:57:a3: 45:bd:f6:6b:87:e3:43:3e:60:39:d7:64:21:b6:bd: 37:ff:b7:73:03:28:d5:86:0f:16:b7:46:3b:a7:eb: be:bc:8b:00:d1:7b:6b:98:09:a7:36:0a:c7:f4:9b: d9:4f:c8:5c:f0:0c:61:51:63:15:e3:3a:49:9d:30: b8:cf:9a:18:b3:16:98:4d:b5:41:5e:f7:d7:96:79: a8:73:b1:89:a1:38:19:7f:07:91:36:b5:7b:69:db: 8e:7d:32:92:9a:77:7d:8e:8f:99:cd:f9:17:52:ef: 89:47:3c:5a:45:d1:cb:37:5c:3e:f7:e4:c1:c1:04: d6:b8:16:5b:41:df:d2:6e:12:18:9b:ba:c5:60:98: 5b:c6:e9:2f:a7:79:dd:67:52:53:86:74:28:de:3e: e4:3c:b5:24:83:b8:8c:ad:d7:99:a1:27:28:e4:03: 05:ba:97:8a:b3:d5:5b:82:23:90:e1:2c:9f:da:f5: ee:92:a0:ec:15:d9:9d:43:4b:72:02:9c:26:19:b4: ba:f9:6a:15:31:32:5b:b1:66:34:56:9b:22:06:c0: c9:7e:c0:4b:de:04:75:c9:c8:18:88:6e:b4:7b:68: f2:29:97:6d:65:ed:92:c7:fc:a7:79:de:b0:15:25: 6d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:15:D7:DE:62:57:91:76:40:E8:69:B4:EE:89:D7:D4:A8:DB:84:91 X509v3 Authority Key Identifier: keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/445DB498796011EFA7E9391DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.195.0/24 Signature Algorithm: sha256WithRSAEncryption 97:4c:13:16:e0:1f:57:86:61:0f:70:05:0b:74:28:be:52:b8: 1d:8d:74:cb:a1:b9:d9:3b:e9:4e:38:f0:ad:8d:e0:1d:90:13: 29:02:66:de:cd:c9:eb:3d:50:17:12:52:9d:9f:33:d8:3e:0f: da:08:f7:5e:5d:3c:f8:68:62:7e:4a:32:00:0b:2f:47:c8:b7: bb:9f:a6:c8:64:21:4f:d8:8e:90:88:01:4d:f0:28:b2:8b:64: c9:b7:ff:26:ca:cc:51:ca:97:03:03:39:b5:bf:ef:60:c7:06: cf:ca:d4:e1:e8:b1:99:01:4f:7c:7f:14:c7:4f:30:04:9c:b4: 2d:30:39:7d:3b:bd:9a:a3:fe:5c:7c:7f:77:f4:61:86:cf:e7: 01:a1:39:a3:6e:e9:a1:a1:0d:7e:99:4c:c6:b5:02:1c:15:9e: a7:7d:a4:85:f1:ca:49:44:46:eb:b2:d7:6e:0b:02:97:98:e5: 53:24:e4:00:e5:6f:03:fc:87:9c:10:1c:18:ad:98:aa:03:62: 45:50:cf:59:90:49:7d:64:23:b9:fa:30:b6:b4:f1:b0:fb:bf: 76:ea:60:cc:28:1b:c6:ae:a6:52:69:cd:c2:8e:da:2f:16:66: 4e:2d:29:ca:56:71:10:ad:07:80:c5:96:ce:74:38:72:aa:3e: e3:02:36:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAxQzcxMTAvBgNVBAUTKEU4REY4RDVFNEM4NERBODdENzI5QTczQzFDNEU4NjEx MzgxQUIyQzEwHhcNMjQwOTIzMDM1OTQ0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYwZTdiMC1iYjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxzou3OztCaRn/PxV6NFvfZrh+NDPmA512Qhtr03/7dzAyjVhg8Wt0Y7p+u+ vIsA0XtrmAmnNgrH9JvZT8hc8AxhUWMV4zpJnTC4z5oYsxaYTbVBXvfXlnmoc7GJ oTgZfweRNrV7aduOfTKSmnd9jo+ZzfkXUu+JRzxaRdHLN1w+9+TBwQTWuBZbQd/S bhIYm7rFYJhbxukvp3ndZ1JThnQo3j7kPLUkg7iMrdeZoSco5AMFupeKs9VbgiOQ 4Syf2vXukqDsFdmdQ0tyApwmGbS6+WoVMTJbsWY0VpsiBsDJfsBL3gR1ycgYiG60 e2jyKZdtZe2Sx/yned6wFSVtOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPYV195i V5F2QOhptO6J19So24SRMB8GA1UdIwQYMBaAFOjfjV5MhNqH1ymnPBxOhhE4GrLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDFDNy85N0NGMjBGQTMz MjMxMUU0QTZFNzQ5MTFDNEY5QUUwMi82Ti1OWGt5RTJvZlhLYWM4SEU2R0VUZ2Fz c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOLU5Ya3lFMm9mWEthYzhIRTZHRVRnYXNzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAxQzcvOTdDRjIwRkEzMzIzMTFFNEE2RTc0OTExQzRGOUFFMDIvNDQ1REI0OTg3 OTYwMTFFRkE3RTkzOTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr9cMwDQYJKoZIhvcNAQELBQADggEBAJdMExbgH1eGYQ9w BQt0KL5SuB2NdMuhudk76U448K2N4B2QEykCZt7Nyes9UBcSUp2fM9g+D9oI915d PPhoYn5KMgALL0fIt7ufpshkIU/YjpCIAU3wKLKLZMm3/ybKzFHKlwMDObW/72DH Bs/K1OHosZkBT3x/FMdPMASctC0wOX07vZqj/lx8f3f0YYbP5wGhOaNu6aGhDX6Z TMa1AhwVnqd9pIXxyklERuuy124LApeY5VMk5ADlbwP8h5wQHBitmKoDYkVQz1mQ SX1kI7n6MLa08bD7v3bqYMwoG8auplJpzcKO2i8WZk4tKcpWcRCtB4DFls50OHKq PuMCNj8= -----END CERTIFICATE-----Generated at Mon Feb 17 08:13:24 2025 by rpki-client