$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/F4E74AA8B99911EF9A0C3B63C4F9AE02.roa File: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (raw, json) Hash identifier: 9K+/QIvWHuZSt1H4NN5SMc8oOUogkYlKWodRdIYoXcE= Subject key identifier: B9:18:F1:8C:4D:97:06:4A:25:5E:8C:59:3B:CE:81:75:40:F2:6E:7F Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 08A4 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/F4E74AA8B99911EF9A0C3B63C4F9AE02.roa Signing time: Fri 13 Dec 2024 21:33:56 +0000 ROA not before: Fri 13 Dec 2024 21:33:56 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 118.139.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Feb 2025 20:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2212 (0x8a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0 Validity Not Before: Dec 13 21:33:56 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=675ca844-3116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a1:5d:00:81:2c:39:d0:7d:4c:f2:78:ae:ec: 54:5b:41:fb:7f:21:5f:d5:4a:91:13:d6:f8:27:a8: 0b:1f:d1:56:bd:2c:9d:b3:49:b9:2c:86:01:05:b0: fa:fb:ed:79:47:cd:11:b6:b6:75:f6:14:0d:4e:09: 06:2c:b3:40:29:1e:df:38:f8:bd:d0:55:f6:23:77: 9d:b2:e9:7b:b2:81:5f:b5:b4:b7:ee:df:a8:ed:89: de:04:50:fe:ae:ae:f6:0d:1d:bf:de:3e:8f:ea:3e: 7d:f2:e0:6f:4c:fb:13:c3:17:24:29:90:a0:29:13: 20:af:77:d6:3f:db:95:72:a6:43:86:3d:27:0f:3c: b8:c3:88:ba:39:f4:5c:2c:e1:a9:9c:84:58:15:30: 1a:6b:fe:72:08:25:57:77:69:07:e3:01:91:95:fb: 4f:e1:1e:7c:a2:9a:4a:b0:07:52:f6:9a:7f:09:a4: a9:3f:c5:65:61:77:ae:10:93:e4:7a:b7:6b:fc:f1: 62:18:f0:3d:ef:61:1c:93:62:d3:08:06:d2:5e:85: 44:00:a8:79:a5:c2:ff:cc:23:fb:70:56:86:a7:56: ee:14:eb:4a:38:d9:f4:5c:51:0a:9e:2c:a6:17:b5: 2e:3a:1e:2e:f3:bd:2f:84:9e:67:f8:11:3d:40:ac: 00:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:18:F1:8C:4D:97:06:4A:25:5E:8C:59:3B:CE:81:75:40:F2:6E:7F X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/F4E74AA8B99911EF9A0C3B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.139.184.0/22 Signature Algorithm: sha256WithRSAEncryption b9:53:d2:a7:9e:c2:fb:d3:5d:23:5f:d9:38:8e:65:c9:d0:33: 80:e8:af:c4:39:c8:45:74:53:c5:c5:b1:1c:0c:45:43:ed:9a: 33:4d:e8:d2:14:52:79:8f:dc:3e:19:5c:4e:ca:f3:02:e0:48: 2b:a9:df:0f:1c:78:99:d0:fe:c6:1c:1f:e1:3b:dc:83:bd:4c: 80:fb:77:cf:7c:ac:a3:b6:e9:7b:ea:d8:19:76:ae:d4:bb:2f: ea:14:d5:0d:20:a0:55:18:a1:65:13:4f:ab:2a:d6:36:78:cb: bf:87:99:aa:4c:fd:2e:1a:86:6d:3d:a9:2f:58:97:4c:56:1c: 81:e7:ca:03:05:24:5d:5a:d9:34:bf:91:7e:10:34:4f:83:8f: cd:dc:eb:5f:95:d6:19:21:93:75:ab:d5:c7:f7:f2:1b:af:02: df:46:f8:9b:58:ed:7a:7a:d6:06:8f:5a:9c:1c:11:55:5b:cc: 62:11:89:ea:dc:32:6e:99:79:28:88:5d:31:1d:b6:61:35:6a: eb:63:07:f5:53:04:11:20:4c:65:40:5b:d3:0f:07:19:3f:1b: 0d:9a:e8:7b:b4:78:a1:cf:69:a8:cf:53:d4:dd:7b:af:e7:08: d6:86:28:a8:57:db:b7:51:32:b8:15:f0:aa:50:cd:e9:3d:6b: 2d:ec:b9:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjQxMjEzMjEzMzU2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzVjYTg0NC0zMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKFdAIEsOdB9TPJ4ruxUW0H7fyFf1UqRE9b4J6gLH9FWvSyds0m5LIYBBbD6 ++15R80RtrZ19hQNTgkGLLNAKR7fOPi90FX2I3edsul7soFftbS37t+o7YneBFD+ rq72DR2/3j6P6j598uBvTPsTwxckKZCgKRMgr3fWP9uVcqZDhj0nDzy4w4i6OfRc LOGpnIRYFTAaa/5yCCVXd2kH4wGRlftP4R58oppKsAdS9pp/CaSpP8VlYXeuEJPk erdr/PFiGPA972Eck2LTCAbSXoVEAKh5pcL/zCP7cFaGp1buFOtKONn0XFEKniym F7UuOh4u870vhJ5n+BE9QKwAUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLkY8YxN lwZKJV6MWTvOgXVA8m5/MB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvRjRFNzRBQThC OTk5MTFFRjlBMEMzQjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ2i7gwDQYJKoZIhvcNAQELBQADggEBALlT0qeewvvTXSNf 2TiOZcnQM4Dor8Q5yEV0U8XFsRwMRUPtmjNN6NIUUnmP3D4ZXE7K8wLgSCup3w8c eJnQ/sYcH+E73IO9TID7d898rKO26Xvq2Bl2rtS7L+oU1Q0goFUYoWUTT6sq1jZ4 y7+HmapM/S4ahm09qS9Yl0xWHIHnygMFJF1a2TS/kX4QNE+Dj83c61+V1hkhk3Wr 1cf38huvAt9G+JtY7Xp61gaPWpwcEVVbzGIRiercMm6ZeSiIXTEdtmE1autjB/VT BBEgTGVAW9MPBxk/Gw2a6Hu0eKHPaajPU9Tde6/nCNaGKKhX27dRMrgV8KpQzek9 ay3sucQ= -----END CERTIFICATE-----Generated at Wed Feb 5 09:59:44 2025 by rpki-client