$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/AC80FFE2722F11EDA987AB75C4F9AE02.roa File: AC80FFE2722F11EDA987AB75C4F9AE02.roa (raw, json) Hash identifier: TCA2TacY4ZsDEXX4IqBFag6vpZrZlhAMEJDWvtGJDWs= Subject key identifier: D0:48:5C:6A:C6:F9:FC:BB:5D:6B:71:29:23:1B:71:E6:80:5B:73:63 Certificate issuer: /CN=A91B6172/serialNumber=21B2EA742FF0EF9EBCCEF3998790E3F5B08D6B63 Certificate serial: 0162 Authority key identifier: 21:B2:EA:74:2F:F0:EF:9E:BC:CE:F3:99:87:90:E3:F5:B0:8D:6B:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/AC80FFE2722F11EDA987AB75C4F9AE02.roa Signing time: Fri 27 Sep 2024 02:57:05 +0000 ROA not before: Fri 27 Sep 2024 02:57:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 8360 IP address blocks: 203.23.96.0/24 maxlen: 24 203.23.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.crl rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6172 Validity Not Before: Sep 27 02:57:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f61f01-0a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b2:b5:20:39:3b:63:ef:9b:6d:9c:57:59:b8: ae:81:4e:5e:88:9e:da:a5:6d:3f:f5:2e:50:de:5a: bb:16:7e:b8:a2:6e:8b:c7:ff:96:cf:a3:38:ca:81: 43:55:b1:a5:98:83:c9:20:95:78:07:7c:f4:e2:68: ec:14:98:23:12:9b:39:25:22:f7:a0:5d:7d:59:a0: 96:4d:55:b0:28:0b:20:00:e4:74:a9:b9:c4:8c:1e: 80:a8:1a:68:c8:18:f5:4d:44:9f:f9:f4:d5:ce:5f: 69:47:49:7c:c7:10:e0:96:3e:02:a6:37:0c:73:4e: d5:c7:71:06:83:a7:02:38:a5:5a:4f:19:42:52:d8: a7:85:e1:0f:a3:18:8c:c8:7f:7a:e6:a9:10:d7:a7: 96:08:14:6f:a1:6d:94:a2:4e:5b:e4:85:99:d2:7d: b0:c3:60:d1:e2:c1:9a:9b:e1:80:bf:37:41:80:89: fb:34:f1:43:c0:b6:1f:da:67:75:98:52:74:e0:f3: 54:92:17:f2:92:5a:2f:c0:75:0f:b7:04:87:31:d5: 2f:2c:51:b7:d1:18:5d:76:97:01:0c:81:de:b6:97: b2:ec:e0:1e:00:8d:cb:30:5a:2b:dc:38:8c:02:ec: 7c:85:a6:3f:bd:7c:ad:69:f4:a2:c9:b4:c6:fc:5c: a3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:48:5C:6A:C6:F9:FC:BB:5D:6B:71:29:23:1B:71:E6:80:5B:73:63 X509v3 Authority Key Identifier: keyid:21:B2:EA:74:2F:F0:EF:9E:BC:CE:F3:99:87:90:E3:F5:B0:8D:6B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/AC80FFE2722F11EDA987AB75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.96.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:c8:10:bc:a4:92:37:8f:91:61:51:e8:e2:0d:2e:22:ee:b9: 2b:ca:6d:d1:73:db:bc:ad:b5:43:bb:28:be:9f:c4:7e:f6:d4: 1a:1f:39:15:fe:2c:0d:0b:52:36:a2:a6:39:93:07:9d:b3:60: fe:2e:31:ba:38:d7:c5:a1:a7:0a:09:ff:13:25:e7:d0:ad:68: 39:3e:33:cd:d3:bb:ca:e4:5b:f9:ca:e0:fa:5f:84:66:9c:0b: 13:fc:7b:a3:7c:4a:6a:c9:01:64:16:fc:0c:fd:4a:29:67:a6: 62:b3:2b:a3:a3:d4:02:24:f8:58:24:bb:f3:f3:d2:44:49:d9: 89:f5:61:d5:f4:2c:4d:b7:36:df:3f:84:19:3c:8b:c3:0b:fb: 0e:41:19:ae:5d:0f:99:e1:8a:7e:53:97:e0:7f:39:f4:f5:ec: 39:41:eb:a7:d6:46:62:5f:3d:06:dc:d0:78:8a:9a:d5:f1:9f: 45:42:06:94:7f:20:1a:31:08:05:15:66:a5:b1:03:f3:e0:16: 87:08:2d:49:c1:e4:58:9a:c6:d3:7a:6a:2f:89:f0:34:ce:6e: 1d:a1:db:2d:ce:bc:54:6f:c5:b0:77:1c:ad:9a:23:3a:81:3a: c4:83:56:f5:53:48:4a:00:77:10:70:c3:63:10:4c:f6:85:50: c8:d0:95:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYxNzIxMTAvBgNVBAUTKDIxQjJFQTc0MkZGMEVGOUVCQ0NFRjM5OTg3OTBFM0Y1 QjA4RDZCNjMwHhcNMjQwOTI3MDI1NzA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MWYwMS0wYTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLK1IDk7Y++bbZxXWbiugU5eiJ7apW0/9S5Q3lq7Fn64om6Lx/+Wz6M4yoFD VbGlmIPJIJV4B3z04mjsFJgjEps5JSL3oF19WaCWTVWwKAsgAOR0qbnEjB6AqBpo yBj1TUSf+fTVzl9pR0l8xxDglj4CpjcMc07Vx3EGg6cCOKVaTxlCUtinheEPoxiM yH965qkQ16eWCBRvoW2Uok5b5IWZ0n2ww2DR4sGam+GAvzdBgIn7NPFDwLYf2md1 mFJ04PNUkhfyklovwHUPtwSHMdUvLFG30RhddpcBDIHetpey7OAeAI3LMFor3DiM Aux8haY/vXytafSiybTG/FyjaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNBIXGrG +fy7XWtxKSMbceaAW3NjMB8GA1UdIwQYMBaAFCGy6nQv8O+evM7zmYeQ4/WwjWtj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjE3Mi9CQTU0QzEzNDcy MkIxMUVEOTdENzNDNUFDNEY5QUUwMi9JYkxxZENfdzc1Njh6dk9aaDVEajliQ05h Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0liTHFkQ193NzU2OHp2T1poNURqOWJDTmEyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYxNzIvQkE1NEMxMzQ3MjJCMTFFRDk3RDczQzVBQzRGOUFFMDIvQUM4MEZGRTI3 MjJGMTFFREE5ODdBQjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLF2AwDQYJKoZIhvcNAQELBQADggEBAHvIELykkjePkWFR 6OINLiLuuSvKbdFz27yttUO7KL6fxH721BofORX+LA0LUjaipjmTB52zYP4uMbo4 18WhpwoJ/xMl59CtaDk+M83Tu8rkW/nK4PpfhGacCxP8e6N8SmrJAWQW/Az9Siln pmKzK6Oj1AIk+Fgku/Pz0kRJ2Yn1YdX0LE23Nt8/hBk8i8ML+w5BGa5dD5nhin5T l+B/OfT17DlB66fWRmJfPQbc0HiKmtXxn0VCBpR/IBoxCAUVZqWxA/PgFocILUnB 5FiaxtN6ai+J8DTObh2h2y3OvFRvxbB3HK2aIzqBOsSDVvVTSEoAdxBww2MQTPaF UMjQlfo= -----END CERTIFICATE-----Generated at Sun Feb 16 20:59:47 2025 by rpki-client