$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa File: A0DEDD52FDF811EEA4D57274C4F9AE02.roa (raw, json) Hash identifier: vdvXxO6hOVkfy87PEKE+BccPO1owcMEO3zlcdidAXcY= Subject key identifier: B7:77:B5:6D:A9:B2:77:10:7C:E1:DA:96:EF:07:F5:E6:CF:0E:85:08 Certificate issuer: /CN=A91BEBE9/serialNumber=0FAB4EF9828F4AF267C16D8AD4710A8EEC9BBBAE Certificate serial: D5 Authority key identifier: 0F:AB:4E:F9:82:8F:4A:F2:67:C1:6D:8A:D4:71:0A:8E:EC:9B:BB:AE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa Signing time: Mon 01 Jul 2024 05:46:40 +0000 ROA not before: Mon 01 Jul 2024 05:46:40 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 14618 IP address blocks: 217.10.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.crl rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBE9 Validity Not Before: Jul 1 05:46:40 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668242c0-c737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:52:e8:a9:ed:50:ce:2e:a7:d3:5a:3b:72:5e: bd:ab:f5:dd:6c:ac:79:b1:44:2d:e5:24:79:30:cb: 1b:51:12:ae:56:8c:5e:f0:ea:8c:c1:5b:bb:32:72: c4:60:b6:df:4d:a0:dd:20:52:65:9d:ec:18:94:99: 66:e0:11:72:b6:1e:6f:65:39:7d:65:3d:9e:8d:2e: 6f:3c:5b:32:1f:69:4f:f6:d3:ba:bf:9b:88:8a:46: 37:a7:f0:53:19:73:b3:5c:05:c8:d0:cc:40:56:d4: b6:b1:ea:f3:8e:fc:69:6c:70:bd:de:4a:95:3d:d0: f0:be:d2:47:f2:c3:3c:4f:35:97:4c:c4:7d:12:2f: f6:34:27:dd:92:f9:5e:40:2b:40:28:55:bb:34:ef: a4:cd:38:f2:83:32:f5:a7:fe:09:5b:b6:fb:ad:3f: 18:93:f9:59:eb:f8:5c:cb:bf:e5:13:44:f5:34:ac: a1:65:36:67:7f:26:ba:1b:f2:10:cf:13:7d:aa:59: fb:c6:67:16:ad:7f:b1:bc:55:d1:2b:eb:58:8f:bb: ca:ad:78:dc:2a:8c:70:93:8e:c8:0d:c8:87:1f:2d: b7:05:c6:b5:eb:8b:47:17:5b:30:2f:71:17:b2:0b: 66:f1:f9:37:61:d8:06:fc:4e:5c:45:5b:8f:48:13: a3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:77:B5:6D:A9:B2:77:10:7C:E1:DA:96:EF:07:F5:E6:CF:0E:85:08 X509v3 Authority Key Identifier: keyid:0F:AB:4E:F9:82:8F:4A:F2:67:C1:6D:8A:D4:71:0A:8E:EC:9B:BB:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.10.231.0/24 Signature Algorithm: sha256WithRSAEncryption ac:21:4c:f5:4a:44:3c:96:5d:24:af:86:26:1b:f7:27:c2:14: 77:d7:f4:4d:78:c0:82:b3:ca:40:51:08:51:f4:33:a7:e2:a0: d8:24:da:67:7f:64:98:10:14:36:50:27:69:ae:dc:a6:90:86: 3b:9c:6b:ae:10:e3:12:6b:a7:5c:1d:dc:c1:a4:b7:fd:dd:8d: 9b:ad:48:82:f7:03:29:20:c6:1e:dc:98:16:e4:53:d6:73:1c: f4:9c:ce:a0:fb:f7:92:3f:bb:b1:0e:b1:93:b3:18:3a:61:cf: 95:fc:2d:c2:99:2f:35:fd:b3:e2:57:a7:e9:e0:a6:f1:a1:3f: fa:9c:2b:ec:92:19:cc:15:f9:70:09:d7:cb:66:ef:bb:b3:1b: fb:31:65:32:6a:93:cc:73:8b:92:5f:e2:2b:b9:8a:05:c1:71: ae:1b:c6:ee:51:9f:b4:eb:73:00:d6:75:fb:77:d1:b2:cd:20: d5:86:97:ef:53:4f:f3:6e:a0:92:44:6a:98:87:6b:13:cf:3d: 4d:51:49:10:a7:d6:83:64:d8:7f:e5:49:9f:ef:03:74:90:a8: 2a:f0:3d:c4:e6:88:a1:e5:d8:21:1e:ea:39:3b:4a:42:10:40: de:6a:ba:66:e1:d5:d7:ec:c7:ad:fa:2f:f1:2c:75:f7:d2:4b: fe:65:67:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCRTkxMTAvBgNVBAUTKDBGQUI0RUY5ODI4RjRBRjI2N0MxNkQ4QUQ0NzEwQThF RUM5QkJCQUUwHhcNMjQwNzAxMDU0NjQwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgyNDJjMC1jNzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVLoqe1Qzi6n01o7cl69q/XdbKx5sUQt5SR5MMsbURKuVoxe8OqMwVu7MnLE YLbfTaDdIFJlnewYlJlm4BFyth5vZTl9ZT2ejS5vPFsyH2lP9tO6v5uIikY3p/BT GXOzXAXI0MxAVtS2serzjvxpbHC93kqVPdDwvtJH8sM8TzWXTMR9Ei/2NCfdkvle QCtAKFW7NO+kzTjygzL1p/4JW7b7rT8Yk/lZ6/hcy7/lE0T1NKyhZTZnfya6G/IQ zxN9qln7xmcWrX+xvFXRK+tYj7vKrXjcKoxwk47IDciHHy23Bca164tHF1swL3EX sgtm8fk3YdgG/E5cRVuPSBOjLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLd3tW2p sncQfOHalu8H9ebPDoUIMB8GA1UdIwQYMBaAFA+rTvmCj0ryZ8FtitRxCo7sm7uu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJFOS85NEM5Qjg3ODAw NUQxMUVFQkU3QTkyNDFDNEY5QUUwMi9ENnRPLVlLUFN2Sm53VzJLMUhFS2p1eWJ1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q2dE8tWUtQU3ZKbndXMksxSEVLanV5YnU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCRTkvOTRDOUI4NzgwMDVEMTFFRUJFN0E5MjQxQzRGOUFFMDIvQTBERURENTJG REY4MTFFRUE0RDU3Mjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADZCucwDQYJKoZIhvcNAQELBQADggEBAKwhTPVKRDyWXSSv hiYb9yfCFHfX9E14wIKzykBRCFH0M6fioNgk2md/ZJgQFDZQJ2mu3KaQhjuca64Q 4xJrp1wd3MGkt/3djZutSIL3Aykgxh7cmBbkU9ZzHPSczqD795I/u7EOsZOzGDph z5X8LcKZLzX9s+JXp+ngpvGhP/qcK+ySGcwV+XAJ18tm77uzG/sxZTJqk8xzi5Jf 4iu5igXBca4bxu5Rn7TrcwDWdft30bLNINWGl+9TT/NuoJJEapiHaxPPPU1RSRCn 1oNk2H/lSZ/vA3SQqCrwPcTmiKHl2CEe6jk7SkIQQN5qumbh1dfsx636L/EsdffS S/5lZ0c= -----END CERTIFICATE-----Generated at Sun Feb 16 15:42:29 2025 by rpki-client