$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/1F4E1CC014D311EA81309110C4F9AE02.roa File: 1F4E1CC014D311EA81309110C4F9AE02.roa (raw, json) Hash identifier: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk= Subject key identifier: 91:FB:9E:29:DA:6F:44:CE:15:82:BA:38:5E:1F:F2:71:43:F7:4F:29 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0D0A Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/1F4E1CC014D311EA81309110C4F9AE02.roa Signing time: Tue 14 Jan 2025 18:16:08 +0000 ROA not before: Tue 14 Jan 2025 18:16:08 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 17744 IP address blocks: 134.159.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 17:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3338 (0xd0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0 Validity Not Before: Jan 14 18:16:08 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786a9e8-d139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ce:db:c8:34:a5:3d:9b:53:f1:95:09:40:65: f8:3c:1d:b5:c0:9e:a3:1d:b1:12:de:63:45:c9:c7: 49:af:7d:4f:7c:de:f7:18:50:5b:3f:f7:b9:b3:f1: 73:72:a2:e7:e9:77:e1:58:60:b5:2d:28:eb:e5:f7: 97:3d:63:39:49:ec:2b:3d:f8:57:1c:4f:e7:4f:25: 2e:c1:27:67:3a:73:23:c8:da:41:27:eb:4a:64:ff: 78:9b:3a:94:00:55:6b:56:4e:d3:80:d4:16:84:d1: d5:b2:fc:49:3d:99:67:a6:3c:3f:7b:35:ac:56:d3: b7:bb:c4:4d:d3:d7:72:07:d0:b8:6d:57:a5:65:52: 41:65:92:0e:02:ac:40:fc:7c:f0:81:ba:78:8a:26: 79:0b:2e:a7:96:6f:e7:56:10:f6:9a:bf:f3:a6:d5: 25:ba:63:92:e5:e2:71:bc:a6:72:d9:93:1f:af:b8: 31:e3:b7:16:1f:35:0e:ee:98:63:f7:6a:d9:a6:7d: 44:0e:72:dd:a0:72:42:fc:3c:06:49:9a:f5:de:b9: e8:a6:ef:3f:2e:ad:3c:48:80:b9:63:45:94:a2:57: 0c:62:5e:ec:8c:99:44:96:26:98:8f:73:38:ba:91: 3e:74:04:f0:94:5f:0b:e4:a5:16:fa:f8:b2:5f:91: ee:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FB:9E:29:DA:6F:44:CE:15:82:BA:38:5E:1F:F2:71:43:F7:4F:29 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/1F4E1CC014D311EA81309110C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.159.177.0/24 Signature Algorithm: sha256WithRSAEncryption ab:60:f5:30:66:38:bf:59:f5:82:9e:39:5a:aa:82:04:75:18: 0d:9f:39:af:cd:49:1f:1a:1e:e3:7c:9a:d8:41:74:42:45:54: fb:17:b9:9b:42:47:8f:f4:ac:7c:dc:f8:76:4a:84:52:e5:59: b6:1c:07:49:d2:95:87:c7:3c:2e:d7:22:97:9d:c5:1e:49:d4: 07:f5:ce:4e:6a:48:21:f9:a7:f9:d2:c7:36:d2:a2:45:ce:be: 7b:30:14:b6:e2:cd:40:4e:29:72:43:7b:98:8e:f7:97:5c:3d: 22:d4:4f:17:c7:ca:6d:5d:fc:54:1d:25:0e:b1:9e:99:7d:b5: 18:56:7c:3c:44:3f:cb:2f:1e:5a:8a:8a:58:bc:51:e2:3b:a0: 49:e2:0f:6c:ce:f2:80:69:9a:3c:0c:15:a9:6c:2b:4b:7e:2e: 40:d9:cc:9f:63:cf:58:68:1c:27:43:d6:e7:3e:dc:22:27:87: 55:2e:b0:f1:27:df:fc:20:47:bb:cc:a9:95:ca:4d:18:87:14: 1b:06:3f:62:43:b1:58:11:96:7f:91:67:de:1f:95:0e:68:d1: 99:b9:47:a8:b8:4f:5f:f4:bd:4e:18:9f:67:50:34:df:aa:34: 94:ce:45:ea:a9:4b:58:49:6b:62:c9:09:8a:fb:da:57:50:84: 9c:fd:95:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUwMTE0MTgxNjA4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2YTllOC1kMTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy87byDSlPZtT8ZUJQGX4PB21wJ6jHbES3mNFycdJr31PfN73GFBbP/e5s/Fz cqLn6XfhWGC1LSjr5feXPWM5SewrPfhXHE/nTyUuwSdnOnMjyNpBJ+tKZP94mzqU AFVrVk7TgNQWhNHVsvxJPZlnpjw/ezWsVtO3u8RN09dyB9C4bVelZVJBZZIOAqxA /Hzwgbp4iiZ5Cy6nlm/nVhD2mr/zptUlumOS5eJxvKZy2ZMfr7gx47cWHzUO7phj 92rZpn1EDnLdoHJC/DwGSZr13rnopu8/Lq08SIC5Y0WUolcMYl7sjJlEliaYj3M4 upE+dATwlF8L5KUW+viyX5HugwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJH7nina b0TOFYK6OF4f8nFD908pMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMTUwQkY2OTBEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvMUY0RTFDQzAx NEQzMTFFQTgxMzA5MTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACGn7EwDQYJKoZIhvcNAQELBQADggEBAKtg9TBmOL9Z9YKe OVqqggR1GA2fOa/NSR8aHuN8mthBdEJFVPsXuZtCR4/0rHzc+HZKhFLlWbYcB0nS lYfHPC7XIpedxR5J1Af1zk5qSCH5p/nSxzbSokXOvnswFLbizUBOKXJDe5iO95dc PSLUTxfHym1d/FQdJQ6xnpl9tRhWfDxEP8svHlqKili8UeI7oEniD2zO8oBpmjwM FalsK0t+LkDZzJ9jz1hoHCdD1uc+3CInh1UusPEn3/wgR7vMqZXKTRiHFBsGP2JD sVgRln+RZ94flQ5o0Zm5R6i4T1/0vU4Yn2dQNN+qNJTOReqpS1hJa2LJCYr72ldQ hJz9lcE= -----END CERTIFICATE-----Generated at Mon Apr 7 07:58:07 2025 by rpki-client