$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/06522672D49411EFA8DF5E69C4F9AE02.roa File: 06522672D49411EFA8DF5E69C4F9AE02.roa (raw, json) Hash identifier: xnlYEk4KW2VhWwSazH9YyKPxeFaHVTp0cHWmf0iyBnI= Subject key identifier: 8B:43:A3:F9:69:14:1A:BD:09:E0:97:6D:7C:72:E6:02:05:26:FE:0F Certificate issuer: /CN=A91C6A35/serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Certificate serial: 02 Authority key identifier: 92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/06522672D49411EFA8DF5E69C4F9AE02.roa Signing time: Fri 17 Jan 2025 05:29:30 +0000 ROA not before: Fri 17 Jan 2025 05:29:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135028 IP address blocks: 161.248.190.0/23 maxlen: 23 161.248.190.0/24 maxlen: 24 161.248.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35 Validity Not Before: Jan 17 05:29:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6789eaba-5dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:87:5c:2c:96:12:59:a2:6e:47:67:f3:8d:fb: bc:16:2c:49:aa:71:2c:1d:1b:90:ae:c3:1b:b7:e2: 95:15:e0:df:37:59:22:3e:ec:a5:e1:fd:bf:46:11: 57:54:6c:48:4b:df:1b:51:89:03:6d:6b:bd:2d:37: a6:7f:ee:08:16:f0:19:ab:8a:e5:3e:65:7f:99:c3: 6d:bc:58:93:b8:11:21:d6:f3:b1:80:5e:16:77:11: 10:a5:b6:a9:a7:b9:77:f6:fa:0f:f5:c1:04:45:c7: 1a:cb:0d:86:a0:28:c0:8d:1d:46:63:4f:c9:77:7a: f5:35:86:7c:d0:b8:29:70:0f:3b:b0:8e:41:cf:2f: 00:30:57:67:ac:52:3d:27:eb:57:78:7c:8f:f1:ec: df:51:7d:f0:c5:d2:1f:61:77:26:75:53:c9:29:d2: 76:85:96:fb:db:3f:a1:88:8f:7b:59:25:25:7e:e6: e2:88:ae:1c:3d:7a:e6:4c:ae:de:b4:b0:8c:53:0d: 6f:bd:10:3c:09:71:15:77:fb:12:35:27:ea:7e:da: 9b:6f:ba:ec:ef:cc:68:3f:c2:10:01:ca:9b:ea:33: b3:45:00:d5:16:04:a3:29:8e:16:01:a1:e1:95:46: 08:12:fe:bf:43:02:a7:f1:42:6a:7f:e4:ed:ca:45: 83:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:43:A3:F9:69:14:1A:BD:09:E0:97:6D:7C:72:E6:02:05:26:FE:0F X509v3 Authority Key Identifier: keyid:92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/06522672D49411EFA8DF5E69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.190.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:73:8a:eb:6f:d5:04:9d:5c:47:8d:7d:6f:91:f7:54:9d:ea: 31:0c:d8:c7:38:a4:20:3e:9c:f6:2b:09:3e:87:fa:e8:f4:fe: 22:33:10:07:19:99:1a:04:90:4e:3f:14:e2:dd:1d:c6:2e:f2: 7d:75:f8:58:23:93:73:c4:48:3d:31:dd:3b:64:d3:aa:94:ac: 09:57:18:1a:66:17:d3:2c:b1:ed:b4:28:39:b2:b7:49:af:84: 84:44:14:73:43:24:84:c4:d8:4c:f3:5f:e7:83:b5:30:d6:2c: b1:7e:9b:65:d0:09:f0:b5:92:a0:77:12:cd:09:82:36:0f:a9: e5:0f:8e:56:54:87:a4:4c:fa:f9:7a:b6:43:bb:48:4b:21:69: a5:7c:ee:b7:d3:15:7a:e0:7a:bf:8f:be:10:7f:21:56:b5:9a: 48:5b:4a:8a:07:90:a6:56:bf:d9:32:0c:85:24:54:18:78:5e: 79:92:8c:3c:73:66:7c:de:75:ed:9b:5e:d2:a3:a2:6b:40:3c: 2e:bc:23:69:de:7c:f6:fd:86:24:82:ce:cc:d3:0b:62:0a:96: ad:11:c0:1b:de:25:80:7d:db:d1:ac:c4:bf:23:59:64:c9:be: 92:38:98:26:99:0a:76:56:0e:34:57:f1:5d:d8:4f:3d:4a:99: 43:34:cd:7e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkEzNTExMC8GA1UEBRMoOTI0ODY2QjQwQzMwNDQyRDY5NkYyNDc3MDE1NDc1QzVG MDcwMkFDODAeFw0yNTAxMTcwNTI5MzBaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODllYWJhLTVkZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKh1wslhJZom5HZ/ON+7wWLEmqcSwdG5Cuwxu34pUV4N83WSI+7KXh/b9GEVdU bEhL3xtRiQNta70tN6Z/7ggW8BmriuU+ZX+Zw228WJO4ESHW87GAXhZ3ERCltqmn uXf2+g/1wQRFxxrLDYagKMCNHUZjT8l3evU1hnzQuClwDzuwjkHPLwAwV2esUj0n 61d4fI/x7N9RffDF0h9hdyZ1U8kp0naFlvvbP6GIj3tZJSV+5uKIrhw9euZMrt60 sIxTDW+9EDwJcRV3+xI1J+p+2ptvuuzvzGg/whABypvqM7NFANUWBKMpjhYBoeGV RggS/r9DAqfxQmp/5O3KRYNRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUi0Oj+WkU Gr0J4JdtfHLmAgUm/g8wHwYDVR0jBBgwFoAUkkhmtAwwRC1pbyR3AVR1xfBwKsgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2QTM1Lzk5Mjc3ODQ2RDQ5 MjExRUZCNTY0REU2MkM0RjlBRTAyL2traG10QXd3UkMxcGJ5UjNBVlIxeGZCd0tz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva2tobXRBd3dSQzFwYnlSM0FWUjF4ZkJ3S3NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzNS85OTI3Nzg0NkQ0OTIxMUVGQjU2NERFNjJDNEY5QUUwMi8wNjUyMjY3MkQ0 OTQxMUVGQThERjVFNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4vjANBgkqhkiG9w0BAQsFAAOCAQEAPHOK62/VBJ1cR419 b5H3VJ3qMQzYxzikID6c9isJPof66PT+IjMQBxmZGgSQTj8U4t0dxi7yfXX4WCOT c8RIPTHdO2TTqpSsCVcYGmYX0yyx7bQoObK3Sa+EhEQUc0MkhMTYTPNf54O1MNYs sX6bZdAJ8LWSoHcSzQmCNg+p5Q+OVlSHpEz6+Xq2Q7tISyFppXzut9MVeuB6v4++ EH8hVrWaSFtKigeQpla/2TIMhSRUGHheeZKMPHNmfN517Zte0qOia0A8Lrwjad58 9v2GJILOzNMLYgqWrRHAG94lgH3b0azEvyNZZMm+kjiYJpkKdlYONFfxXdhPPUqZ QzTNfg== -----END CERTIFICATE-----Generated at Wed Feb 5 23:02:02 2025 by rpki-client