$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/72F76026790A11EE88F94A29C4F9AE02.roa File: 72F76026790A11EE88F94A29C4F9AE02.roa (raw, json) Hash identifier: BA5CliOHfNpPWNOYw+bi2ZaU/a9tMNZNL0MSCuu6uM0= Subject key identifier: 16:3E:0C:F5:EB:AD:F0:06:F8:4D:67:B7:4C:13:CF:28:78:34:56:8A Certificate issuer: /CN=A91D6DBD/serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Certificate serial: 84 Authority key identifier: 27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/72F76026790A11EE88F94A29C4F9AE02.roa Signing time: Wed 19 Jun 2024 07:43:48 +0000 ROA not before: Wed 19 Jun 2024 07:43:48 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9792 IP address blocks: 192.65.182.0/24 maxlen: 24 192.160.169.0/24 maxlen: 24 192.160.170.0/24 maxlen: 24 198.22.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD Validity Not Before: Jun 19 07:43:48 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66728c34-78f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f9:45:b1:14:a4:8b:8e:ec:70:e0:4c:8b:1b: dd:06:d3:10:fe:24:b0:a8:d2:da:ea:da:1d:d2:e8: 29:da:66:79:b8:73:d9:2a:26:6b:03:18:92:c8:47: 0b:87:57:ee:53:ef:d4:f0:41:ad:58:a3:e4:fc:df: e8:3f:51:93:29:6f:a2:24:47:50:83:1e:a8:03:05: a3:72:27:71:b4:b0:e2:36:dc:ac:d3:0c:ef:00:09: f4:1e:51:57:4a:48:8d:1c:41:38:bd:f3:6f:a7:13: 7b:e5:bd:0b:4a:ba:4a:b5:c2:18:2b:3d:0e:27:53: 33:0a:d4:6d:4a:e7:c8:4d:5a:36:14:b6:1b:c9:0f: f5:75:3f:fb:e2:93:4c:9e:60:f6:7e:bb:5b:c6:6b: 79:5b:03:ef:9a:97:62:72:50:e9:1d:94:0b:37:4f: 28:c1:67:81:9c:19:e2:a8:89:8b:ba:e8:0c:7c:aa: 2a:e3:fd:c5:1f:40:69:a4:d6:84:9c:56:dd:97:91: 42:f3:20:f1:94:da:8b:61:7d:39:c1:0b:9d:9d:15: 1e:6c:f7:44:b1:d0:11:ad:2e:ee:fa:5c:eb:a4:51: 46:3b:ee:d8:76:08:ee:06:34:f4:61:38:eb:c8:b8: 62:48:08:69:ff:97:2b:67:d2:7f:94:cb:ad:55:87: f4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3E:0C:F5:EB:AD:F0:06:F8:4D:67:B7:4C:13:CF:28:78:34:56:8A X509v3 Authority Key Identifier: keyid:27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/72F76026790A11EE88F94A29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.65.182.0/24 192.160.169.0-192.160.170.255 198.22.61.0/24 Signature Algorithm: sha256WithRSAEncryption c7:81:28:9b:a1:41:b4:3f:7a:81:14:2f:2b:45:df:52:cd:4c: ba:33:34:23:52:ed:5c:5e:69:89:08:48:a9:9d:23:39:ff:40: 32:ad:43:55:5b:f9:1e:81:4f:01:5f:31:53:81:03:9c:11:bb: c6:a0:be:cf:f4:19:16:ab:bb:93:41:a8:63:51:5c:9d:90:e6: d0:af:f9:fd:55:7f:6c:03:a5:fc:60:d5:6d:6e:6a:d4:b0:03: ed:e2:25:6f:56:77:d2:e2:21:24:66:ff:0b:cd:44:77:db:1c: 38:3c:73:ac:1b:ff:cd:fb:02:ce:49:d9:ea:1f:3f:1c:6c:8e: 66:f9:3d:8c:37:3e:1e:20:54:0b:19:4b:1c:ea:f1:c5:d3:4e: 56:9d:f8:ce:61:73:9f:c1:b7:35:c0:15:da:a6:ee:e0:57:2f: ec:bf:42:c2:4b:a8:a6:4e:ff:d2:64:a6:52:72:81:71:71:76: f0:b7:90:1e:3d:c7:fa:5e:09:6a:8d:89:17:35:25:de:7e:f6: a2:45:a7:4b:8a:d7:a2:eb:5a:4c:59:c5:fa:cf:11:74:6a:02: 18:d0:ef:08:dc:4a:0c:7f:63:15:1c:b8:2c:db:45:ea:96:ef: 43:e8:66:52:d7:4f:34:52:73:af:52:c6:fc:84:c9:59:c1:ae: 3b:92:26:ac -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZEQkQxMTAvBgNVBAUTKDI3MkQ3MUFENjI2NDU3NzVDQ0RGQkI1NzcwNDc4RTU5 NDNFQTY1OTUwHhcNMjQwNjE5MDc0MzQ4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyOGMzNC03OGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6vlFsRSki47scOBMixvdBtMQ/iSwqNLa6tod0ugp2mZ5uHPZKiZrAxiSyEcL h1fuU+/U8EGtWKPk/N/oP1GTKW+iJEdQgx6oAwWjcidxtLDiNtys0wzvAAn0HlFX SkiNHEE4vfNvpxN75b0LSrpKtcIYKz0OJ1MzCtRtSufITVo2FLYbyQ/1dT/74pNM nmD2frtbxmt5WwPvmpdiclDpHZQLN08owWeBnBniqImLuugMfKoq4/3FH0BppNaE nFbdl5FC8yDxlNqLYX05wQudnRUebPdEsdARrS7u+lzrpFFGO+7YdgjuBjT0YTjr yLhiSAhp/5crZ9J/lMutVYf0RQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBY+DPXr rfAG+E1nt0wTzyh4NFaKMB8GA1UdIwQYMBaAFCctca1iZFd1zN+7V3BHjllD6mWV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkRCRC9GOUMwRTExRTc5 MDkxMUVFOTlFREQxMUZDNEY5QUUwMi9KeTF4cldKa1YzWE0zN3RYY0VlT1dVUHFa WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p5MXhyV0prVjNYTTM3dFhjRWVPV1VQcVpaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZEQkQvRjlDMEUxMUU3OTA5MTFFRTk5RUREMTFGQzRGOUFFMDIvNzJGNzYwMjY3 OTBBMTFFRTg4Rjk0QTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBADAQbYwDAMEAMCgqQMEAMCgqgMEAMYWPTANBgkqhkiG9w0B AQsFAAOCAQEAx4Eom6FBtD96gRQvK0XfUs1MujM0I1LtXF5piQhIqZ0jOf9AMq1D VVv5HoFPAV8xU4EDnBG7xqC+z/QZFqu7k0GoY1FcnZDm0K/5/VV/bAOl/GDVbW5q 1LAD7eIlb1Z30uIhJGb/C81Ed9scODxzrBv/zfsCzknZ6h8/HGyOZvk9jDc+HiBU CxlLHOrxxdNOVp34zmFzn8G3NcAV2qbu4Fcv7L9Cwkuopk7/0mSmUnKBcXF28LeQ Hj3H+l4Jao2JFzUl3n72okWnS4rXoutaTFnF+s8RdGoCGNDvCNxKDH9jFRy4LNtF 6pbvQ+hmUtdPNFJzr1LG/ITJWcGuO5ImrA== -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:16 2025 by rpki-client