$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/63817B3AC9D211EFBC6F934DC4F9AE02.roa File: 63817B3AC9D211EFBC6F934DC4F9AE02.roa (raw, json) Hash identifier: +20O4NUWPTxqKeXepVeDCO/g+GXNSbJwYfdmkDR6B2Y= Subject key identifier: 74:76:E0:E6:DE:97:CA:BA:2D:6F:91:A8:D3:06:40:6D:D1:DE:07:F2 Certificate issuer: /CN=A91B23D9/serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Certificate serial: 02 Authority key identifier: BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/63817B3AC9D211EFBC6F934DC4F9AE02.roa Signing time: Fri 03 Jan 2025 12:58:12 +0000 ROA not before: Fri 03 Jan 2025 12:58:12 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134606 IP address blocks: 160.250.204.0/24 maxlen: 24 160.250.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23D9 Validity Not Before: Jan 3 12:58:12 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6777dee4-1073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ea:13:74:f3:84:e9:e8:48:f3:a5:cf:ac:4e: 08:ce:19:e4:11:9b:4b:7a:eb:47:64:ab:2a:54:03: 74:6d:ea:b4:38:c1:84:6b:e2:ff:e0:16:0b:99:1f: 81:d0:29:c1:88:e9:cf:0d:c0:f6:8c:2f:3a:a5:71: f5:9a:2e:57:61:cf:11:37:2d:8a:44:01:1f:41:b8: 1d:f8:b1:af:3a:17:11:b4:0d:4e:95:5b:10:04:0f: 83:26:0f:76:d3:50:00:e2:f7:02:8b:4c:a7:e3:22: 62:86:bb:ad:09:25:7e:28:23:46:32:03:2c:f1:15: bc:46:8a:1e:65:56:d3:36:f5:af:f4:a8:1f:b9:b5: 0c:2a:07:da:ac:11:77:2d:3f:27:01:6f:46:76:24: 51:3d:96:64:24:d8:1c:42:ce:bc:80:81:9c:0c:d0: 44:4e:7d:d7:1f:e8:a3:45:82:29:7e:7c:79:a9:e1: fa:30:1e:13:0c:03:7e:23:4a:00:82:c1:00:f5:85: 3d:12:0c:68:13:8e:63:86:04:37:70:8d:a2:b0:12: 7e:6f:db:51:0d:2c:db:41:d6:d5:8e:4d:59:7a:ee: a5:6b:6b:0f:89:67:8d:f2:44:fc:d6:69:c7:bf:98: 66:fb:44:94:df:ca:56:79:29:04:c5:a5:0b:bd:ad: f5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:76:E0:E6:DE:97:CA:BA:2D:6F:91:A8:D3:06:40:6D:D1:DE:07:F2 X509v3 Authority Key Identifier: keyid:BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/63817B3AC9D211EFBC6F934DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.204.0/23 Signature Algorithm: sha256WithRSAEncryption a7:97:7d:7a:b5:5b:de:9f:a2:22:21:36:c6:8d:db:cf:40:bd: dc:5a:2e:0b:fb:8c:af:fd:31:6a:90:ea:3d:42:94:87:3e:9a: b4:f0:1c:16:79:29:6d:97:34:a8:59:71:6b:ca:93:99:50:7a: 81:7c:5b:0e:14:66:20:8f:85:18:ea:05:c0:2b:1d:b6:37:78: 7a:2a:2e:35:3b:3b:bf:27:d8:7c:da:20:68:f3:e4:5d:c9:30: 3f:03:15:6c:83:26:0c:34:fa:1d:4f:fe:bf:50:38:b1:54:0c: 70:8f:d3:89:d4:c9:5a:6b:01:3d:e4:71:e0:fe:0f:62:31:5f: 28:c9:62:27:cb:eb:12:09:a0:de:97:7d:d3:1b:7a:ef:0c:39: d9:5f:f3:39:3d:f7:f0:d9:c3:e2:0c:40:56:cd:2d:98:24:a8: 57:2c:2b:55:0a:06:33:4e:9c:8a:d3:0d:d8:54:9a:6c:3a:8b: c7:a7:cc:d5:12:7b:dc:ff:5e:8b:d0:15:66:85:93:7b:5a:74: 00:0f:2f:90:1f:f0:57:7d:48:07:5f:42:c1:b0:da:37:65:99: 30:23:5f:c4:42:d3:3d:0f:3c:9b:4a:a0:b1:dc:27:a8:20:fe: 13:35:93:f2:3e:a7:95:fd:b7:c8:c8:57:9b:69:99:ef:8a:82: 86:8c:15:ea -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjNEOTExMC8GA1UEBRMoQkU4QjQ3MzNCMUFFOEE0NzM2QjdFOTEzMjczM0Q2NTQw OTFFM0QyQjAeFw0yNTAxMDMxMjU4MTJaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzdkZWU0LTEwNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL6hN084Tp6Ejzpc+sTgjOGeQRm0t660dkqypUA3Rt6rQ4wYRr4v/gFguZH4HQ KcGI6c8NwPaMLzqlcfWaLldhzxE3LYpEAR9BuB34sa86FxG0DU6VWxAED4MmD3bT UADi9wKLTKfjImKGu60JJX4oI0YyAyzxFbxGih5lVtM29a/0qB+5tQwqB9qsEXct PycBb0Z2JFE9lmQk2BxCzryAgZwM0EROfdcf6KNFgil+fHmp4fowHhMMA34jSgCC wQD1hT0SDGgTjmOGBDdwjaKwEn5v21ENLNtB1tWOTVl67qVraw+JZ43yRPzWace/ mGb7RJTfylZ5KQTFpQu9rfUdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUdHbg5t6X yrotb5Go0wZAbdHeB/IwHwYDVR0jBBgwFoAUvotHM7Guikc2t+kTJzPWVAkePSsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyM0Q5LzdCOEJENkNDQzlE MTExRUY5NzVCREM0QkM0RjlBRTAyL3ZvdEhNN0d1aWtjMnQta1RKelBXVkFrZVBT cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdm90SE03R3Vpa2MydC1rVEp6UFdWQWtlUFNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNEOS83QjhCRDZDQ0M5RDExMUVGOTc1QkRDNEJDNEY5QUUwMi82MzgxN0IzQUM5 RDIxMUVGQkM2RjkzNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6zDANBgkqhkiG9w0BAQsFAAOCAQEAp5d9erVb3p+iIiE2 xo3bz0C93FouC/uMr/0xapDqPUKUhz6atPAcFnkpbZc0qFlxa8qTmVB6gXxbDhRm II+FGOoFwCsdtjd4eiouNTs7vyfYfNogaPPkXckwPwMVbIMmDDT6HU/+v1A4sVQM cI/TidTJWmsBPeRx4P4PYjFfKMliJ8vrEgmg3pd90xt67ww52V/zOT338NnD4gxA Vs0tmCSoVywrVQoGM06citMN2FSabDqLx6fM1RJ73P9ei9AVZoWTe1p0AA8vkB/w V31IB19CwbDaN2WZMCNfxELTPQ88m0qgsdwnqCD+EzWT8j6nlf23yMhXm2mZ74qC howV6g== -----END CERTIFICATE-----Generated at Wed Feb 5 23:09:16 2025 by rpki-client