$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/09820DBA626411EEB46F7861C4F9AE02.roa File: 09820DBA626411EEB46F7861C4F9AE02.roa (raw, json) Hash identifier: /TjW9AO7ISejU8TRY0ge1bQ+z/b39cY+4y6EmVLDEL0= Subject key identifier: AE:02:83:39:10:B2:54:ED:8B:6F:DE:E4:41:78:48:2C:09:49:23:8E Certificate issuer: /CN=A91CFF62/serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Certificate serial: 5A Authority key identifier: 58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/09820DBA626411EEB46F7861C4F9AE02.roa Signing time: Wed 13 Mar 2024 06:39:18 +0000 ROA not before: Wed 13 Mar 2024 06:39:18 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 192.245.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFF62 Validity Not Before: Mar 13 06:39:18 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f14a16-4611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:71:ec:f6:22:c7:63:ee:8a:96:70:22:3c:8d: 7f:cc:fb:09:1b:85:6c:ef:64:5f:09:4d:83:e3:c0: 1d:84:8f:2f:9d:4d:c5:55:b5:0a:94:a8:a2:12:0c: 1c:b9:40:3f:79:32:76:54:4c:72:49:b8:33:3a:ad: 27:ed:4e:bf:50:ab:73:64:0b:fe:7b:2c:3c:8b:a4: c1:cc:8e:4e:09:6f:43:c3:86:93:92:c0:68:99:46: 18:35:2d:1f:75:4a:9a:f7:ec:49:a7:e8:43:b4:70: ec:e2:9d:13:8f:97:d1:6f:6e:da:d4:62:7b:43:de: 57:94:ce:c2:85:30:74:d1:53:1b:da:3e:68:9c:78: b9:f1:9c:b9:4a:5c:6c:ce:2a:8f:ab:6c:fb:1b:4a: 42:c8:1a:d6:4a:88:b4:23:6c:82:fe:15:04:79:19: 74:11:16:de:3f:eb:ec:b8:09:16:f4:1a:f1:22:cf: 1f:75:2a:a7:1d:a4:6e:47:dd:9b:94:e3:39:c6:d8: 40:b0:00:ad:d3:ba:bb:61:df:04:74:86:60:43:e9: 09:ba:69:6e:16:a8:90:f3:be:54:4c:a3:6b:a9:e1: 7e:9f:2d:62:f7:ab:9e:f9:2c:f0:3e:60:33:9c:8e: 0c:48:85:ee:53:bd:43:4b:22:0b:24:bd:06:bc:05: 5f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:02:83:39:10:B2:54:ED:8B:6F:DE:E4:41:78:48:2C:09:49:23:8E X509v3 Authority Key Identifier: keyid:58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/09820DBA626411EEB46F7861C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.245.106.0/24 Signature Algorithm: sha256WithRSAEncryption 60:60:6e:27:fa:5b:cd:ce:11:b4:32:be:78:9e:5f:6d:0a:0c: 36:b1:eb:6a:83:01:35:94:72:ed:98:86:c6:25:44:b9:e8:b2: c8:4d:f3:6a:85:c6:6d:2c:a0:aa:eb:29:26:82:da:04:1a:61: 83:9a:14:99:6b:17:ef:74:a7:12:2f:d0:46:bd:4f:05:de:c6: c7:8a:b2:14:2f:33:63:14:a1:52:63:35:0a:ad:a3:dd:14:3a: 39:76:90:78:55:1c:e4:3c:cf:a3:b8:82:42:f2:a3:de:8f:31: 3d:4c:3b:a4:9d:28:5b:30:54:ef:e6:a1:d6:dd:01:af:c5:79: dc:ff:95:f7:52:f6:ee:76:6c:6e:03:25:b5:a5:ca:65:eb:9d: bd:2b:d5:cf:fb:f0:4f:7d:89:26:4f:a3:96:5e:95:59:02:49: dc:f8:25:31:04:d7:24:47:a3:09:29:77:0f:45:4e:6f:de:31: 06:98:d6:89:ce:6a:7e:5f:ad:63:7b:c6:d7:3c:6e:01:a9:ba: ac:8b:8b:7b:25:b0:e0:b1:9e:9f:30:77:b1:84:68:31:d8:b1: 6f:a1:8f:fc:f4:ec:2d:8f:35:e8:23:6d:b6:f2:95:42:2b:8a: 2b:f7:e6:e7:c6:d5:1f:60:5a:42:e0:a7:fe:03:b3:03:c0:be: f8:f8:55:43 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkY2MjExMC8GA1UEBRMoNTgzQ0JDN0JDOTY2MTQ1NzkwQzlGNkYyMjM2ODhBREFG RTVBRDNCODAeFw0yNDAzMTMwNjM5MThaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjE0YTE2LTQ2MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVcez2Isdj7oqWcCI8jX/M+wkbhWzvZF8JTYPjwB2Ejy+dTcVVtQqUqKISDBy5 QD95MnZUTHJJuDM6rSftTr9Qq3NkC/57LDyLpMHMjk4Jb0PDhpOSwGiZRhg1LR91 Spr37Emn6EO0cOzinROPl9FvbtrUYntD3leUzsKFMHTRUxvaPmiceLnxnLlKXGzO Ko+rbPsbSkLIGtZKiLQjbIL+FQR5GXQRFt4/6+y4CRb0GvEizx91KqcdpG5H3ZuU 4znG2ECwAK3Turth3wR0hmBD6Qm6aW4WqJDzvlRMo2up4X6fLWL3q575LPA+YDOc jgxIhe5TvUNLIgskvQa8BV+dAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrgKDORCy VO2Lb97kQXhILAlJI44wHwYDVR0jBBgwFoAUWDy8e8lmFFeQyfbyI2iK2v5a07gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRjYyLzExRjREOEQwNjI2 MjExRUU4MEJDODU1REM0RjlBRTAyL1dEeThlOGxtRkZlUXlmYnlJMmlLMnY1YTA3 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0R5OGU4bG1GRmVReWZieUkyaUsydjVhMDdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkY2Mi8xMUY0RDhEMDYyNjIxMUVFODBCQzg1NURDNEY5QUUwMi8wOTgyMERCQTYy NjQxMUVFQjQ2Rjc4NjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMD1ajANBgkqhkiG9w0BAQsFAAOCAQEAYGBuJ/pbzc4RtDK+ eJ5fbQoMNrHraoMBNZRy7ZiGxiVEueiyyE3zaoXGbSygquspJoLaBBphg5oUmWsX 73SnEi/QRr1PBd7Gx4qyFC8zYxShUmM1Cq2j3RQ6OXaQeFUc5DzPo7iCQvKj3o8x PUw7pJ0oWzBU7+ah1t0Br8V53P+V91L27nZsbgMltaXKZeudvSvVz/vwT32JJk+j ll6VWQJJ3PglMQTXJEejCSl3D0VOb94xBpjWic5qfl+tY3vG1zxuAam6rIuLeyWw 4LGenzB3sYRoMdixb6GP/PTsLY816CNttvKVQiuKK/fm58bVH2BaQuCn/gOzA8C+ +PhVQw== -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:15 2025 by rpki-client