$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa File: 069E7950F3C611EE807A6F3EC4F9AE02.roa (raw, json) Hash identifier: eM4tB5nnuyZAw+yzoibZmMU7jl9fV5PFjIZQp8eY2Fc= Subject key identifier: CD:43:A3:CF:94:35:DB:9D:08:3E:02:4C:64:13:89:5F:4B:0F:7C:57 Certificate issuer: /CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Certificate serial: 09 Authority key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa Signing time: Sat 06 Apr 2024 03:30:34 +0000 ROA not before: Sat 06 Apr 2024 03:30:34 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 203.170.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF41 Validity Not Before: Apr 6 03:30:34 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6610c1d9-c420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:c9:86:39:7e:64:4b:75:75:83:78:ac:86: 76:11:bd:4a:a2:32:83:d5:10:86:1c:d9:b6:1f:56: 4e:29:99:1e:26:cf:4f:46:05:c2:db:9b:3f:ec:85: 62:a0:cb:bb:a0:75:14:f8:0f:ef:1f:c3:1d:c9:7e: 37:34:12:f0:00:c1:fb:27:d2:44:b2:27:b0:e8:28: f2:c1:bf:1f:93:81:ea:a5:ca:12:d1:df:f7:a8:68: 25:f9:fa:9e:7c:1b:ba:48:9d:68:52:8a:34:a6:7b: 4f:d3:ec:d4:13:61:47:27:7f:49:36:ee:42:0d:26: 2a:a8:e9:f6:af:7a:0e:9e:1b:a8:f9:fa:50:a5:c1: 5c:22:a1:15:65:43:e3:92:34:ed:79:e4:07:4b:06: 10:a5:ef:4f:06:6d:b3:8c:b1:8f:69:47:7c:d2:c0: 0b:77:b4:70:4d:f6:44:f7:6c:00:4f:41:e2:e9:d1: f7:b9:5d:78:ae:5f:31:0a:6c:02:a3:5c:bd:42:14: fc:80:4a:9e:30:da:6f:75:a9:2e:f5:0c:8d:95:b8: 9d:73:fd:7f:58:14:87:e5:bc:d7:b1:28:3e:61:89: 1e:6a:27:2e:99:aa:84:81:c9:77:b1:80:40:03:f8: 40:07:11:9f:37:1b:34:dd:fa:ec:fd:d1:2d:c9:3d: 63:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:43:A3:CF:94:35:DB:9D:08:3E:02:4C:64:13:89:5F:4B:0F:7C:57 X509v3 Authority Key Identifier: keyid:33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.90.0/23 Signature Algorithm: sha256WithRSAEncryption b7:fe:5d:35:28:14:9c:87:8a:39:c7:23:74:0a:08:4a:dc:5c: 6e:26:b1:bd:c2:b2:41:cb:8a:f0:40:33:30:08:d2:84:ad:da: 9e:39:c5:2e:8b:81:74:27:2b:c0:ec:1e:d8:18:ac:b1:08:d1: e7:5b:60:7d:ef:40:13:17:22:90:9d:0c:46:0a:36:38:f4:f2: ef:16:54:5f:8a:d8:1f:40:bd:40:f0:e5:6a:32:42:13:a4:2e: 88:b2:84:c3:ac:0f:30:d0:d9:85:1a:c5:e8:66:f2:6e:19:6f: 79:1b:e6:4a:92:c3:c5:ef:67:8f:13:0a:d9:65:c6:f0:3c:53: c7:36:f8:e1:47:48:a8:bc:64:98:58:1d:ab:a8:22:76:83:6d: da:4c:39:97:b6:d3:2b:83:00:e1:59:ce:6c:1e:97:0f:7b:44: cd:07:70:9c:89:67:43:45:38:6d:c0:ed:24:93:ce:81:85:1a: b0:55:f3:a1:4a:f1:7f:02:43:3c:12:39:c9:c9:a7:d6:ee:bb: e8:78:f7:c4:c4:a4:53:b2:ee:25:2d:99:58:03:f7:e7:f0:93: 1b:48:5a:d1:eb:a6:5c:cd:ee:9d:37:67:25:a0:ae:ff:27:d0: fa:62:2d:2a:0d:8e:99:1d:45:74:b7:a0:11:e6:ce:e6:09:bb: c3:01:b2:30 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RUY0MTExMC8GA1UEBRMoMzM2RERFN0VDMzI4MDQ5OTk2NDM3MUNBRUUyNjIwRkJG Q0FDREM5ODAeFw0yNDA0MDYwMzMwMzRaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTBjMWQ5LWM0MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAPMmGOX5kS3V1g3ishnYRvUqiMoPVEIYc2bYfVk4pmR4mz09GBcLbmz/shWKg y7ugdRT4D+8fwx3Jfjc0EvAAwfsn0kSyJ7DoKPLBvx+TgeqlyhLR3/eoaCX5+p58 G7pInWhSijSme0/T7NQTYUcnf0k27kINJiqo6faveg6eG6j5+lClwVwioRVlQ+OS NO155AdLBhCl708GbbOMsY9pR3zSwAt3tHBN9kT3bABPQeLp0fe5XXiuXzEKbAKj XL1CFPyASp4w2m91qS71DI2VuJ1z/X9YFIflvNexKD5hiR5qJy6ZqoSByXexgEAD +EAHEZ83GzTd+uz90S3JPWM3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzUOjz5Q1 250IPgJMZBOJX0sPfFcwHwYDVR0jBBgwFoAUM23efsMoBJmWQ3HK7iYg+/ys3Jgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFRjQxL0M3NURBMTMyRjJG QjExRUU5RkNGNzY0Q0M0RjlBRTAyL00yM2Vmc01vQkptV1EzSEs3aVlnLV95czNK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTIzZWZzTW9CSm1XUTNISzdpWWctX3lzM0pnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUY0MS9DNzVEQTEzMkYyRkIxMUVFOUZDRjc2NENDNEY5QUUwMi8wNjlFNzk1MEYz QzYxMUVFODA3QTZGM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcuqWjANBgkqhkiG9w0BAQsFAAOCAQEAt/5dNSgUnIeKOccj dAoIStxcbiaxvcKyQcuK8EAzMAjShK3anjnFLouBdCcrwOwe2BissQjR51tgfe9A ExcikJ0MRgo2OPTy7xZUX4rYH0C9QPDlajJCE6QuiLKEw6wPMNDZhRrF6Gbybhlv eRvmSpLDxe9njxMK2WXG8DxTxzb44UdIqLxkmFgdq6gidoNt2kw5l7bTK4MA4VnO bB6XD3tEzQdwnIlnQ0U4bcDtJJPOgYUasFXzoUrxfwJDPBI5ycmn1u676Hj3xMSk U7LuJS2ZWAP35/CTG0ha0eumXM3unTdnJaCu/yfQ+mItKg2OmR1FdLegEebO5gm7 wwGyMA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:47:38 2025 by rpki-client