$ rpki-client -vvf rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/F943DF74CBF711EFB86EC74FC4F9AE02.roa File: F943DF74CBF711EFB86EC74FC4F9AE02.roa (raw, json) Hash identifier: OQsiNqk/6UEhG+WoM7b9x1Qk45e1mg8EolKiz0N5DwU= Subject key identifier: 4B:4C:18:40:2B:C3:F0:02:C1:20:BD:9A:A3:98:69:C2:B9:B4:C1:6A Certificate issuer: /CN=A91D404F/serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Certificate serial: 02 Authority key identifier: FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/F943DF74CBF711EFB86EC74FC4F9AE02.roa Signing time: Mon 06 Jan 2025 06:32:17 +0000 ROA not before: Mon 06 Jan 2025 06:32:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9723 IP address blocks: 160.250.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D404F Validity Not Before: Jan 6 06:32:17 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677b78f1-8c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ba:03:c6:af:93:c7:c6:80:1d:29:b7:f8:13: ad:dc:9f:be:e8:01:09:1f:0e:92:b8:93:50:df:72: b5:48:5f:fd:32:97:f1:ee:7f:95:31:a2:15:d1:52: 86:06:f3:cf:bc:dc:5f:c5:eb:7c:3e:8b:45:e6:42: 17:fa:fe:bc:0b:ae:36:c4:58:d9:78:00:16:32:33: e2:7c:60:4c:e4:06:2a:c8:40:6a:fd:f7:b7:b0:53: 03:af:02:30:d6:b6:dd:5a:11:e0:ce:31:4f:94:50: 5c:e7:4a:77:a0:cf:7f:fe:7f:6a:e1:87:fe:0f:1c: fa:c1:bc:10:8f:55:76:7a:97:00:50:07:3a:63:84: 32:40:48:41:02:64:3c:8b:8c:2e:8c:16:0d:d0:ef: d7:90:d5:0a:0d:70:96:18:2f:0b:e9:43:9b:56:4a: 30:35:c6:a8:4d:f5:5c:d4:ec:b3:7d:d8:85:d5:f8: ed:35:5b:42:89:27:74:80:c1:16:be:a5:b4:ee:9f: da:fe:16:9a:0b:0b:d4:43:0d:d7:6d:93:5e:f3:d6: 96:31:93:f3:b5:1b:ad:58:a9:4a:4c:72:88:50:14: 1a:f8:a8:d3:3a:b2:e6:dc:1a:04:a6:3f:ae:d7:a8: a9:19:36:f5:fd:26:10:aa:80:88:7f:6d:d0:37:d2: 17:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:4C:18:40:2B:C3:F0:02:C1:20:BD:9A:A3:98:69:C2:B9:B4:C1:6A X509v3 Authority Key Identifier: keyid:FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/F943DF74CBF711EFB86EC74FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.72.0/24 Signature Algorithm: sha256WithRSAEncryption 05:79:93:89:6d:c9:d4:a7:68:80:17:e3:19:6e:cb:14:7c:3f: be:e1:fb:12:42:0f:84:29:19:0b:39:0d:83:f7:cc:3a:b6:2a: b3:29:fd:3e:c3:7e:b1:c9:26:3b:ac:c5:76:07:42:7f:d8:07: dd:d8:ca:05:13:5f:35:95:63:cc:68:1e:b1:4e:0d:71:af:68: 78:eb:94:b3:00:01:e6:5c:6e:39:80:de:49:36:37:7b:4b:5a: 20:29:ad:ed:1e:1b:2f:93:df:be:00:7d:2a:0c:53:cd:70:68: 00:8e:5b:2a:96:fd:73:ed:a0:d6:b4:66:64:06:7b:69:9f:30: 79:24:b8:ab:6f:4b:17:85:58:56:81:20:ba:f1:f9:69:7e:8b: 12:e4:cb:d3:e9:58:c9:17:35:38:c0:87:ef:10:5a:00:59:35: ce:a9:c9:5a:ae:7c:e9:73:9e:fc:5d:07:91:1c:6a:25:b5:ef: 7a:30:33:80:1c:9c:df:5c:c9:05:d8:71:65:94:08:5a:cf:87: 27:ce:c0:76:8a:ec:f9:d0:fd:a3:6b:d3:39:61:77:1a:db:63: c9:2c:a5:af:57:9c:1d:2a:d1:82:1e:e8:ae:a7:88:ba:07:f3: e4:3b:ab:07:92:b9:41:98:2a:a8:0e:9f:0c:86:f8:ff:7c:02: 07:e5:16:64 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDA0RjExMC8GA1UEBRMoRkU3Q0M4RDEyQzhDQjk0MEQwNkVBRURCNUIwQUQ0M0Qw NTAzNjJGMTAeFw0yNTAxMDYwNjMyMTdaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2I3OGYxLThjNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqugPGr5PHxoAdKbf4E63cn77oAQkfDpK4k1DfcrVIX/0yl/Huf5UxohXRUoYG 88+83F/F63w+i0XmQhf6/rwLrjbEWNl4ABYyM+J8YEzkBirIQGr997ewUwOvAjDW tt1aEeDOMU+UUFznSnegz3/+f2rhh/4PHPrBvBCPVXZ6lwBQBzpjhDJASEECZDyL jC6MFg3Q79eQ1QoNcJYYLwvpQ5tWSjA1xqhN9VzU7LN92IXV+O01W0KJJ3SAwRa+ pbTun9r+FpoLC9RDDddtk17z1pYxk/O1G61YqUpMcohQFBr4qNM6subcGgSmP67X qKkZNvX9JhCqgIh/bdA30hcvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUS0wYQCvD 8ALBIL2ao5hpwrm0wWowHwYDVR0jBBgwFoAU/nzI0SyMuUDQbq7bWwrUPQUDYvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0MDRGL0Q1RDBGRUI0Q0JG NzExRUY4NjlDOTA0RkM0RjlBRTAyL19uekkwU3lNdVVEUWJxN2JXd3JVUFFVRFl2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX256STBTeU11VURRYnE3Yld3clVQUVVEWXZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDA0Ri9ENUQwRkVCNENCRjcxMUVGODY5QzkwNEZDNEY5QUUwMi9GOTQzREY3NENC RjcxMUVGQjg2RUM3NEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6SDANBgkqhkiG9w0BAQsFAAOCAQEABXmTiW3J1KdogBfj GW7LFHw/vuH7EkIPhCkZCzkNg/fMOrYqsyn9PsN+sckmO6zFdgdCf9gH3djKBRNf NZVjzGgesU4Nca9oeOuUswAB5lxuOYDeSTY3e0taICmt7R4bL5PfvgB9KgxTzXBo AI5bKpb9c+2g1rRmZAZ7aZ8weSS4q29LF4VYVoEguvH5aX6LEuTL0+lYyRc1OMCH 7xBaAFk1zqnJWq586XOe/F0HkRxqJbXvejAzgByc31zJBdhxZZQIWs+HJ87Adors +dD9o2vTOWF3GttjySylr1ecHSrRgh7orqeIugfz5DurB5K5QZgqqA6fDIb4/3wC B+UWZA== -----END CERTIFICATE-----Generated at Wed Feb 5 23:00:35 2025 by rpki-client