$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/999FA66011C711EF80B27457C4F9AE02.roa File: 999FA66011C711EF80B27457C4F9AE02.roa (raw, json) Hash identifier: O9DoSIXGoRGfPB1leReaXjE3LSp6RO52qLUkhTkRojY= Subject key identifier: 58:33:F2:8A:61:39:E0:04:28:C8:16:FA:0B:10:5E:85:63:FF:DB:07 Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 0190 Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/999FA66011C711EF80B27457C4F9AE02.roa Signing time: Fri 13 Dec 2024 02:35:59 +0000 ROA not before: Fri 13 Dec 2024 02:35:59 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 19527 IP address blocks: 152.65.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF Validity Not Before: Dec 13 02:35:59 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675b9d8f-cf50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a6:84:e8:69:1c:59:95:68:ff:e1:97:99:a1: 2a:15:90:b9:ed:1a:57:22:1a:c4:95:e0:d2:3b:87: 90:00:4c:c7:8e:96:35:16:9c:ab:ce:c8:39:35:cc: c5:18:b2:69:0c:c6:5e:88:3c:1f:fb:3c:14:7e:ec: b8:52:34:9f:d7:40:13:d4:a1:72:37:3c:2b:b6:9e: 7e:07:f5:0c:c2:79:72:61:a3:5a:13:3f:12:39:38: b4:90:a3:2c:5c:09:3b:b0:28:d2:05:86:2b:9e:26: 79:b3:a1:94:6d:2a:c2:c4:20:dc:4e:f3:ea:ba:6e: b6:c9:10:2e:13:23:c3:85:fb:36:74:42:cf:50:1f: dc:68:cb:a1:f8:96:f2:41:2c:9a:aa:46:a0:6d:c0: f5:46:6e:cf:46:24:3c:dd:15:3b:ce:ba:b7:c2:93: 2d:0f:8f:99:80:ae:81:33:70:1d:82:ec:a4:6b:a2: 62:96:7d:43:e1:47:c5:42:4e:ef:23:2a:6f:fd:ea: 90:dd:2b:a9:e1:05:22:83:52:8f:30:24:e4:7e:a7: 91:49:2c:50:2d:4f:83:9e:cf:96:97:28:eb:0e:23: e1:0a:73:29:db:bd:9a:42:40:a7:df:11:ab:2c:ea: be:de:1d:48:8a:0b:66:47:07:bd:3a:82:76:13:64: 86:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:33:F2:8A:61:39:E0:04:28:C8:16:FA:0B:10:5E:85:63:FF:DB:07 X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/999FA66011C711EF80B27457C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption 33:9c:7f:8d:c4:fe:8d:8f:94:c3:4d:82:cc:be:18:cb:3f:85: 3a:bd:48:f5:90:71:38:dd:83:cf:6e:ff:ee:92:8f:a9:df:94: f4:6e:88:9e:93:0e:94:f7:8b:97:45:a6:d3:25:1b:cd:ac:4e: 2b:d4:36:78:b7:1c:b5:dc:0a:96:c5:63:5d:7d:03:2b:05:53: b8:22:a7:aa:65:21:4e:8c:26:8d:14:eb:c4:e8:c3:41:3e:4d: 9e:dc:70:2d:71:5e:79:d6:83:0f:26:fd:37:ab:f2:64:8d:7b: 38:63:ac:73:6e:eb:1b:1e:34:05:36:93:17:81:78:d6:b1:34: 53:21:fc:38:7e:9f:e3:23:6e:d0:77:c5:bf:bc:98:4c:b8:c5: 4b:e2:eb:24:3d:dc:96:78:63:6b:22:4c:18:a7:43:4d:10:04: 87:48:4f:e4:69:ea:54:d1:6f:ee:01:c9:65:1e:03:0b:26:50: 42:0e:d5:f4:54:1c:38:ed:87:e5:04:31:46:83:4c:6a:e3:bc: 0d:dc:15:1c:32:55:c3:73:38:0a:65:62:20:6c:8e:2e:ea:ad: 01:d3:ee:02:1a:01:f3:ec:34:88:88:eb:01:46:73:94:fd:18: 65:f2:07:ea:73:85:99:53:8c:09:f9:6c:07:4e:8a:1c:a7:18: 0e:12:12:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjQxMjEzMDIzNTU5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzViOWQ4Zi1jZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3aaE6GkcWZVo/+GXmaEqFZC57RpXIhrEleDSO4eQAEzHjpY1Fpyrzsg5NczF GLJpDMZeiDwf+zwUfuy4UjSf10AT1KFyNzwrtp5+B/UMwnlyYaNaEz8SOTi0kKMs XAk7sCjSBYYrniZ5s6GUbSrCxCDcTvPqum62yRAuEyPDhfs2dELPUB/caMuh+Jby QSyaqkagbcD1Rm7PRiQ83RU7zrq3wpMtD4+ZgK6BM3Adguyka6Jiln1D4UfFQk7v Iypv/eqQ3Sup4QUig1KPMCTkfqeRSSxQLU+Dns+WlyjrDiPhCnMp272aQkCn3xGr LOq+3h1IigtmRwe9OoJ2E2SG8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFgz8oph OeAEKMgW+gsQXoVj/9sHMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhFREYvRUE2N0E5OEM3QzU3MTFFREJGMjEzNzY3QzRGOUFFMDIvOTk5RkE2NjAx MUM3MTFFRjgwQjI3NDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAaYQcAwDQYJKoZIhvcNAQELBQADggEBADOcf43E/o2PlMNN gsy+GMs/hTq9SPWQcTjdg89u/+6Sj6nflPRuiJ6TDpT3i5dFptMlG82sTivUNni3 HLXcCpbFY119AysFU7gip6plIU6MJo0U68Tow0E+TZ7ccC1xXnnWgw8m/Ter8mSN ezhjrHNu6xseNAU2kxeBeNaxNFMh/Dh+n+MjbtB3xb+8mEy4xUvi6yQ93JZ4Y2si TBinQ00QBIdIT+Rp6lTRb+4ByWUeAwsmUEIO1fRUHDjth+UEMUaDTGrjvA3cFRwy VcNzOAplYiBsji7qrQHT7gIaAfPsNIiI6wFGc5T9GGXyB+pzhZlTjAn5bAdOihyn GA4SEsA= -----END CERTIFICATE-----Generated at Fri Apr 4 09:04:34 2025 by rpki-client