$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/6A6E4770A10F11EF840C2548C4F9AE02.roa File: 6A6E4770A10F11EF840C2548C4F9AE02.roa (raw, json) Hash identifier: hGMtMKEqwODOU8waS4uGb4bFguPGRuvaBHiKMUVPICY= Subject key identifier: 0F:1B:F0:56:ED:3B:93:1F:D1:41:B1:08:3C:18:0E:C7:DD:20:4B:0A Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 0892 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/6A6E4770A10F11EF840C2548C4F9AE02.roa Signing time: Tue 12 Nov 2024 16:01:46 +0000 ROA not before: Tue 12 Nov 2024 16:01:46 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 16509 IP address blocks: 118.139.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0 Validity Not Before: Nov 12 16:01:46 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67337be9-3cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:37:83:4c:c2:9c:76:19:39:f6:24:00:78:9d: 15:f0:8c:92:94:a6:b4:a3:46:ad:c8:fa:9e:ed:bc: 59:2b:d7:d9:63:45:ce:55:bf:a3:1a:1c:4a:a4:e9: ca:01:76:60:93:a6:9a:53:73:2c:8f:e5:7d:bb:cf: f2:a8:77:77:d7:d2:a4:68:df:f1:be:d2:35:bb:6e: 7a:3d:e4:16:1c:b3:c7:83:60:f9:8d:14:cc:c0:85: b2:96:82:b7:da:97:eb:cd:25:2c:b8:fb:f2:a4:5f: 5d:5a:9f:8a:1a:19:16:c1:a2:87:2c:3c:66:ed:ae: 48:15:59:5e:90:1f:cd:e5:94:86:63:99:54:d0:61: 01:ec:2d:7c:bc:c6:40:b9:7c:9e:48:fd:00:c1:5e: e3:16:f3:50:69:d2:e4:d9:47:0b:55:43:a0:b0:34: 0a:d8:b1:ef:85:de:d1:f1:eb:03:97:ab:ab:98:ce: 0c:b6:88:81:15:d7:da:35:6a:06:7f:b3:2c:ec:6e: 52:f5:3f:0d:95:f2:9c:ce:7b:8c:b4:f4:1d:d9:aa: 08:7b:6b:c0:db:86:6c:b8:00:f0:22:3e:24:2b:75: fe:78:c1:0c:c8:6b:50:36:a7:8f:e0:80:18:1f:ca: ce:c8:9f:ef:33:9e:13:4c:14:8f:14:20:db:de:ab: cc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1B:F0:56:ED:3B:93:1F:D1:41:B1:08:3C:18:0E:C7:DD:20:4B:0A X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/6A6E4770A10F11EF840C2548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.139.184.0/22 Signature Algorithm: sha256WithRSAEncryption 47:ca:70:02:ae:02:95:97:de:47:c6:a5:b4:cc:2c:ed:57:95: 20:88:f8:e2:48:51:0e:c1:17:4a:1f:ae:34:5c:db:08:e1:86: f3:c7:72:55:92:7c:a8:c8:5b:59:09:2f:3e:9b:89:ac:14:c5: 91:b8:b6:a3:74:e0:30:da:7e:02:b2:94:47:c4:87:fe:b2:56: b5:88:96:07:4a:6f:db:14:08:f8:12:8e:7a:90:2b:d3:f8:87: 18:6e:a6:14:3d:5e:1a:f1:1d:f0:03:59:a6:62:ff:c9:a8:e5: be:b9:7c:38:67:6a:96:22:5d:3d:ab:ab:a5:2b:d3:a0:b0:5a: 2a:38:eb:57:93:58:7f:6a:26:ab:ab:0d:29:73:df:02:2b:24: cf:6f:da:9b:f4:89:e6:d7:35:0b:8e:f1:81:3f:46:b8:6a:4d: 2c:87:59:22:e5:5d:b2:04:21:6a:29:72:98:c1:10:80:e4:0c: 97:61:cd:0a:19:9d:6e:59:c0:b1:2e:84:b8:16:43:3e:e6:fb: 5e:93:e6:b2:c8:8d:75:a0:a8:45:79:f9:4f:50:55:77:9f:77: 0d:12:9c:9f:ff:54:df:41:fb:34:a3:8f:c9:c6:9a:56:70:e8: 3f:2c:a1:47:4d:61:6d:cb:8f:fe:8b:68:ba:98:b3:31:7f:fb: 6d:8b:5a:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjQxMTEyMTYwMTQ2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzN2JlOS0zY2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjeDTMKcdhk59iQAeJ0V8IySlKa0o0atyPqe7bxZK9fZY0XOVb+jGhxKpOnK AXZgk6aaU3Msj+V9u8/yqHd319KkaN/xvtI1u256PeQWHLPHg2D5jRTMwIWyloK3 2pfrzSUsuPvypF9dWp+KGhkWwaKHLDxm7a5IFVlekB/N5ZSGY5lU0GEB7C18vMZA uXyeSP0AwV7jFvNQadLk2UcLVUOgsDQK2LHvhd7R8esDl6urmM4MtoiBFdfaNWoG f7Ms7G5S9T8NlfKcznuMtPQd2aoIe2vA24ZsuADwIj4kK3X+eMEMyGtQNqeP4IAY H8rOyJ/vM54TTBSPFCDb3qvMvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA8b8Fbt O5Mf0UGxCDwYDsfdIEsKMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvNkE2RTQ3NzBB MTBGMTFFRjg0MEMyNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ2i7gwDQYJKoZIhvcNAQELBQADggEBAEfKcAKuApWX3kfG pbTMLO1XlSCI+OJIUQ7BF0ofrjRc2wjhhvPHclWSfKjIW1kJLz6biawUxZG4tqN0 4DDafgKylEfEh/6yVrWIlgdKb9sUCPgSjnqQK9P4hxhuphQ9XhrxHfADWaZi/8mo 5b65fDhnapYiXT2rq6Ur06CwWio461eTWH9qJqurDSlz3wIrJM9v2pv0iebXNQuO 8YE/RrhqTSyHWSLlXbIEIWopcpjBEIDkDJdhzQoZnW5ZwLEuhLgWQz7m+16T5rLI jXWgqEV5+U9QVXefdw0SnJ//VN9B+zSjj8nGmlZw6D8soUdNYW3Lj/6LaLqYszF/ +22LWpU= -----END CERTIFICATE-----Generated at Sun Feb 16 15:25:20 2025 by rpki-client