$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/09820DBA626411EEB46F7861C4F9AE02.roa File: 09820DBA626411EEB46F7861C4F9AE02.roa (raw, json) Hash identifier: zVFsQRkEqj63u/+I4QGpWcSHeZXQmoNT4Cfqu4+Goyw= Subject key identifier: 79:11:19:E6:6B:86:CE:06:40:94:4B:8C:9C:31:06:6E:4B:62:3A:F0 Certificate issuer: /CN=A91CFF62/serialNumber=583CBC7BC966145790C9F6F223688ADAFE5AD3B8 Certificate serial: 0126 Authority key identifier: 58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/09820DBA626411EEB46F7861C4F9AE02.roa Signing time: Fri 21 Mar 2025 04:09:50 +0000 ROA not before: Fri 21 Mar 2025 04:09:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 192.245.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFF62 Validity Not Before: Mar 21 04:09:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dce68e-cb94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8c:b6:aa:67:11:42:39:d0:bc:c0:40:c8:2b: e5:c1:68:89:9a:ee:d7:2a:12:d6:f7:4d:81:2a:e3: ac:82:97:cf:2e:c6:3b:5f:30:1c:7f:bc:41:10:87: 84:2d:72:e9:6d:5b:73:3a:61:1a:55:b1:56:72:3a: e4:58:ee:7a:b7:95:e9:ab:0b:9e:cc:32:bb:39:37: 5b:f7:58:bd:92:87:80:fd:ac:e7:20:a6:b9:b8:89: 80:70:93:d5:c0:dd:25:7e:f4:38:95:9d:71:8f:21: 8b:5d:54:5f:e9:94:3c:dd:8b:7a:15:93:4d:c9:b9: 36:6a:00:9d:ea:3f:08:50:e8:08:99:d2:14:0f:6e: 4e:42:69:0a:8a:1c:52:a2:f1:c4:aa:5a:30:83:16: 91:8c:43:4d:1f:a5:60:49:f5:ca:87:ee:37:60:fa: 72:38:42:94:be:0e:d9:04:aa:61:5f:09:50:56:c0: b9:94:07:47:57:fe:aa:29:23:8b:5f:b8:bd:4e:a7: b9:72:bb:57:17:1f:07:d6:93:1c:8b:a5:65:f3:ca: 83:8d:a4:a1:b0:26:f7:28:07:2e:dd:66:2b:d5:7b: ea:b9:8c:4c:43:3a:d3:27:89:5c:b6:21:ba:f5:bf: 84:02:37:3b:ca:15:de:57:7e:6a:8e:78:86:6f:45: ca:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:11:19:E6:6B:86:CE:06:40:94:4B:8C:9C:31:06:6E:4B:62:3A:F0 X509v3 Authority Key Identifier: keyid:58:3C:BC:7B:C9:66:14:57:90:C9:F6:F2:23:68:8A:DA:FE:5A:D3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/WDy8e8lmFFeQyfbyI2iK2v5a07g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WDy8e8lmFFeQyfbyI2iK2v5a07g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFF62/11F4D8D0626211EE80BC855DC4F9AE02/09820DBA626411EEB46F7861C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.245.106.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:0b:4d:14:fc:60:a5:a5:b7:ef:0e:1b:d0:1d:60:b2:40:02: 2d:cc:aa:4c:b0:f0:ca:fb:1c:a1:fa:7f:d9:a4:ea:5d:74:74: d5:53:61:92:80:d7:ca:31:38:22:33:e5:c5:5a:aa:58:1d:32: 45:83:0e:1f:fe:02:3d:66:0f:7d:9c:0f:7a:2f:88:36:52:ea: 5b:b9:5f:28:d0:61:3f:3e:86:f7:f7:7e:ea:8f:de:4d:d2:a8: 38:71:a0:78:14:c9:c6:d7:ff:8d:82:42:d0:86:5d:f5:b4:72: 89:97:c3:da:25:13:70:a5:51:ef:5b:ad:ec:63:2d:d5:81:a7: 20:52:24:8c:ba:d8:77:c9:81:1c:b2:26:41:6d:52:e2:ea:ca: e6:fb:f5:d8:19:fa:70:0f:a7:18:5d:0a:6f:e7:0e:3e:f4:67: 55:ce:88:d4:ee:15:d3:df:8a:ec:85:3e:8a:be:73:dc:6a:3a: cd:10:a4:b7:07:30:ba:6a:b4:12:b4:55:ec:2a:ba:62:b4:91: 90:5e:0c:42:a6:78:7e:bb:d8:0e:b1:f8:f2:49:00:5d:56:03: a0:9d:96:cb:03:28:83:8c:a9:dc:69:0f:aa:5a:8d:fe:d2:af: fd:f6:19:5a:46:ab:56:f4:37:b3:27:8a:5e:2e:51:f7:50:ea: 00:cf:a8:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGNjIxMTAvBgNVBAUTKDU4M0NCQzdCQzk2NjE0NTc5MEM5RjZGMjIzNjg4QURB RkU1QUQzQjgwHhcNMjUwMzIxMDQwOTUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjZTY4ZS1jYjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4y2qmcRQjnQvMBAyCvlwWiJmu7XKhLW902BKuOsgpfPLsY7XzAcf7xBEIeE LXLpbVtzOmEaVbFWcjrkWO56t5XpqwuezDK7OTdb91i9koeA/aznIKa5uImAcJPV wN0lfvQ4lZ1xjyGLXVRf6ZQ83Yt6FZNNybk2agCd6j8IUOgImdIUD25OQmkKihxS ovHEqlowgxaRjENNH6VgSfXKh+43YPpyOEKUvg7ZBKphXwlQVsC5lAdHV/6qKSOL X7i9Tqe5crtXFx8H1pMci6Vl88qDjaShsCb3KAcu3WYr1XvquYxMQzrTJ4lctiG6 9b+EAjc7yhXeV35qjniGb0XKcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHkRGeZr hs4GQJRLjJwxBm5LYjrwMB8GA1UdIwQYMBaAFFg8vHvJZhRXkMn28iNoitr+WtO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkY2Mi8xMUY0RDhEMDYy NjIxMUVFODBCQzg1NURDNEY5QUUwMi9XRHk4ZThsbUZGZVF5ZmJ5STJpSzJ2NWEw N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dEeThlOGxtRkZlUXlmYnlJMmlLMnY1YTA3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGNjIvMTFGNEQ4RDA2MjYyMTFFRTgwQkM4NTVEQzRGOUFFMDIvMDk4MjBEQkE2 MjY0MTFFRUI0NkY3ODYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADA9WowDQYJKoZIhvcNAQELBQADggEBACsLTRT8YKWlt+8O G9AdYLJAAi3Mqkyw8Mr7HKH6f9mk6l10dNVTYZKA18oxOCIz5cVaqlgdMkWDDh/+ Aj1mD32cD3oviDZS6lu5XyjQYT8+hvf3fuqP3k3SqDhxoHgUycbX/42CQtCGXfW0 comXw9olE3ClUe9brexjLdWBpyBSJIy62HfJgRyyJkFtUuLqyub79dgZ+nAPpxhd Cm/nDj70Z1XOiNTuFdPfiuyFPoq+c9xqOs0QpLcHMLpqtBK0VewqumK0kZBeDEKm eH672A6x+PJJAF1WA6CdlssDKIOMqdxpD6pajf7Sr/32GVpGq1b0N7Mnil4uUfdQ 6gDPqBg= -----END CERTIFICATE-----Generated at Fri Apr 4 23:52:45 2025 by rpki-client