$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/86CE69ECF8C411EFA06CFB39C4F9AE02.roa File: 86CE69ECF8C411EFA06CFB39C4F9AE02.roa (raw, json) Hash identifier: /1K1aICzEFadr+brYKHCxG6285hW8Cjc3j2DnRUVwP4= Subject key identifier: 7B:D3:A2:DA:01:EE:A2:BF:35:C8:BF:F8:AC:FC:1E:6F:10:A7:27:37 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 0F7B Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/86CE69ECF8C411EFA06CFB39C4F9AE02.roa Signing time: Tue 04 Mar 2025 06:47:23 +0000 ROA not before: Tue 04 Mar 2025 06:47:23 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 47585 IP address blocks: 139.190.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3963 (0xf7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134 Validity Not Before: Mar 4 06:47:23 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67c6a1fb-36f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ae:e9:d5:cd:4e:5a:66:30:68:cc:d2:49:7c: 7a:f6:21:0b:c4:88:ea:aa:e4:09:a2:46:b6:69:ad: bb:72:96:f1:2d:10:d8:8f:6e:08:d8:e6:6c:22:60: 96:92:5a:c4:18:19:74:1f:b7:c9:3d:d3:8c:4d:1c: e4:6c:8b:32:f6:52:b3:bc:2d:c8:0e:bb:1b:c1:50: cf:fc:6c:0b:a2:18:9e:fc:21:30:4c:8a:fe:37:ab: 61:ae:ad:4e:7c:fc:ad:b0:42:8f:4e:f6:15:2f:f4: c8:ad:1d:94:22:29:96:36:01:48:c9:48:36:74:01: 64:75:6a:d9:a0:01:2b:c6:3f:8a:94:7e:ea:0c:f3: 43:b6:c6:92:b9:ab:87:cd:69:0b:48:8a:47:38:19: ec:c1:a6:00:00:60:f1:3e:b8:ed:d9:66:40:9a:e0: f2:f7:3c:52:4f:bd:87:06:22:ed:e7:4b:09:b0:a2: 9d:bb:49:e1:b6:d1:e1:ad:a4:37:ef:43:0c:fa:76: 9b:70:50:05:b5:06:80:1a:67:9e:06:c1:ce:06:22: 57:2d:eb:2e:cf:ac:bc:b1:5f:d4:10:64:88:2b:fe: 6d:e0:04:f9:bd:f5:b9:db:9d:40:f5:05:f8:c2:65: 21:52:f3:ea:50:7c:6d:b9:a6:41:24:fb:0e:ec:17: dc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D3:A2:DA:01:EE:A2:BF:35:C8:BF:F8:AC:FC:1E:6F:10:A7:27:37 X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/86CE69ECF8C411EFA06CFB39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.9.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:bd:1e:77:e6:5e:f3:e6:9a:60:af:57:77:67:76:90:e5:20: 77:1d:ab:e1:9d:ed:50:36:87:e9:af:fe:ad:57:c9:ae:65:16: 76:f7:fb:0b:15:72:f7:92:be:19:aa:2c:5f:9e:55:3f:af:5b: 94:69:ce:72:4b:51:98:3c:18:c4:50:80:b5:8b:5b:51:6a:31: 28:99:49:d7:6d:23:ef:7f:43:f2:4e:3b:a7:41:e4:44:f2:42: 9c:51:91:dc:e6:7f:d2:35:34:5f:9a:8c:0a:8a:d2:10:48:fd: 20:8d:d9:8b:8d:3e:44:89:1a:5f:3c:2b:d9:ba:d1:d3:0f:de: 08:74:1e:ee:a3:11:a8:ba:bf:a7:e0:62:cf:db:59:ff:3f:72: db:b1:6c:49:92:9b:ea:68:0a:52:7d:b0:bc:c0:e1:e2:8f:50: e0:31:9f:2e:41:87:5b:31:1c:71:b3:f6:78:b0:ae:c2:4c:11: 4e:b6:d6:3c:ce:26:6b:c6:6a:e0:ff:53:4e:dc:83:46:ef:20: 8c:fc:ad:37:86:fe:3b:40:a3:0d:5e:43:38:1b:51:1f:01:6a: 5a:8d:5c:24:07:12:9f:82:2a:15:c0:47:ba:14:85:b0:14:77: 24:48:38:4b:b0:b4:bf:6b:f3:4b:fa:a2:76:87:67:5f:26:b6: 51:e1:32:b7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwMzA0MDY0NzIzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M2YTFmYi0zNmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnq7p1c1OWmYwaMzSSXx69iELxIjqquQJoka2aa27cpbxLRDYj24I2OZsImCW klrEGBl0H7fJPdOMTRzkbIsy9lKzvC3IDrsbwVDP/GwLohie/CEwTIr+N6thrq1O fPytsEKPTvYVL/TIrR2UIimWNgFIyUg2dAFkdWrZoAErxj+KlH7qDPNDtsaSuauH zWkLSIpHOBnswaYAAGDxPrjt2WZAmuDy9zxST72HBiLt50sJsKKdu0nhttHhraQ3 70MM+nabcFAFtQaAGmeeBsHOBiJXLesuz6y8sV/UEGSIK/5t4AT5vfW5251A9QX4 wmUhUvPqUHxtuaZBJPsO7BfcXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHvTotoB 7qK/Nci/+Kz8Hm8Qpyc3MB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvODZDRTY5RUNG OEM0MTFFRkEwNkNGQjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACLvgkwDQYJKoZIhvcNAQELBQADggEBAJ29HnfmXvPmmmCv V3dndpDlIHcdq+Gd7VA2h+mv/q1Xya5lFnb3+wsVcveSvhmqLF+eVT+vW5RpznJL UZg8GMRQgLWLW1FqMSiZSddtI+9/Q/JOO6dB5ETyQpxRkdzmf9I1NF+ajAqK0hBI /SCN2YuNPkSJGl88K9m60dMP3gh0Hu6jEai6v6fgYs/bWf8/ctuxbEmSm+poClJ9 sLzA4eKPUOAxny5Bh1sxHHGz9niwrsJMEU621jzOJmvGauD/U07cg0bvIIz8rTeG /jtAow1eQzgbUR8BalqNXCQHEp+CKhXAR7oUhbAUdyRIOEuwtL9r80v6onaHZ18m tlHhMrc= -----END CERTIFICATE-----Generated at Thu Mar 13 07:18:59 2025 by rpki-client