$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/A97B0954CF4411EF97DACA5AC4F9AE02.roa File: A97B0954CF4411EF97DACA5AC4F9AE02.roa (raw, json) Hash identifier: DYwkvsvRm+JSPeHD9ASsAAmeOo8QRXaAQeNFQ95mB3Y= Subject key identifier: BA:F1:B0:BE:C4:CA:F8:FE:F4:83:DD:A6:0D:96:F4:B0:F6:D8:EE:4C Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 0D26 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/A97B0954CF4411EF97DACA5AC4F9AE02.roa Signing time: Fri 10 Jan 2025 11:19:50 +0000 ROA not before: Fri 10 Jan 2025 11:19:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 46841 IP address blocks: 139.190.10.0/24 maxlen: 24 139.190.12.0/24 maxlen: 24 139.190.14.0/24 maxlen: 24 139.190.16.0/24 maxlen: 24 139.190.18.0/24 maxlen: 24 139.190.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3366 (0xd26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134 Validity Not Before: Jan 10 11:19:50 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67810256-e51e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:69:8e:51:0b:18:f4:10:10:4e:f4:7a:67:e3: 72:cb:aa:8c:4d:72:53:31:70:3d:9f:a0:59:52:54: e8:2a:cc:15:90:74:13:6a:07:ef:3c:01:53:54:cf: a6:41:be:cb:79:9f:83:c1:fe:56:5a:53:25:5e:2c: 99:3d:e2:b9:4e:4c:93:b4:91:d5:75:32:aa:77:33: 58:23:77:9c:0f:28:a2:09:bb:40:a1:6e:e6:ca:cf: 8b:0d:b8:99:b0:6d:23:6b:8c:43:55:f1:c9:cf:73: c8:b1:fe:93:bf:3d:3d:34:92:69:2b:2b:06:55:6e: ff:d9:c2:6c:0c:ad:d2:ba:2d:5e:fd:b0:af:3a:83: 5a:b0:c3:f0:3c:af:cb:79:9a:0b:af:32:7e:de:a6: b0:3d:d6:11:19:75:82:8b:8d:87:a4:0a:98:3e:47: fd:b8:7c:fe:d3:e1:de:57:69:be:07:3e:19:b7:41: 43:03:74:40:0b:3a:07:5a:c4:7b:34:98:5d:cc:6d: 3c:cc:71:a3:7a:a3:91:2f:39:27:68:82:cf:a2:f8: 88:3f:48:43:c8:34:1b:23:96:da:ee:e9:74:ed:24: b2:aa:ab:ec:99:01:de:36:29:39:21:97:0d:53:9c: a5:f7:3c:83:43:e2:87:e7:61:1f:30:ab:f6:39:c3: f1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F1:B0:BE:C4:CA:F8:FE:F4:83:DD:A6:0D:96:F4:B0:F6:D8:EE:4C X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/A97B0954CF4411EF97DACA5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.10.0/24 139.190.12.0/24 139.190.14.0/24 139.190.16.0/24 139.190.18.0/24 139.190.28.0/24 Signature Algorithm: sha256WithRSAEncryption 16:d5:43:1e:4d:6a:9d:60:6a:d8:ce:6c:91:3f:24:69:e9:4b: 1e:b8:46:24:d5:ef:d2:54:11:ce:f2:71:fc:8a:ab:34:e3:42: 91:91:8e:e5:e9:5a:ec:71:96:0c:80:7b:d6:a4:dc:63:74:4b: 53:c9:1d:61:4e:6e:1c:b3:b1:f7:9b:e1:f3:cc:88:80:65:a2: d8:89:8e:60:34:1e:c0:75:3f:10:ad:9a:3a:a4:a7:1f:2c:05: e8:fa:44:75:5c:90:a7:2b:08:33:10:ca:4b:ac:47:fe:32:b8: 8f:8d:33:5f:92:d2:dc:4b:5e:e1:8d:50:c5:4d:d3:c1:2b:93: 12:da:65:1b:0a:9d:f4:d4:7e:10:c0:ae:0d:95:53:a8:b0:70: 8f:57:1e:71:b0:5a:92:43:42:7a:a2:7e:52:8b:a5:a6:70:40: 82:0b:35:6b:89:89:06:c9:39:25:cf:fd:ac:bc:21:7f:bb:e3: 04:ec:dc:c0:3c:33:0c:90:d4:5a:b4:28:7c:4b:c3:9c:40:2f: d5:e9:7d:8c:61:b5:b7:29:51:3f:3f:f5:6d:c0:07:1e:25:88: c6:8a:41:19:ab:07:21:6c:d8:b8:55:ef:49:b9:d2:97:e5:5f: ab:18:4a:62:f0:13:eb:73:e4:e3:ec:dc:cd:ba:dd:f9:5d:a8: 1b:6f:e1:6d -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwMTEwMTExOTUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzgxMDI1Ni1lNTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GmOUQsY9BAQTvR6Z+Nyy6qMTXJTMXA9n6BZUlToKswVkHQTagfvPAFTVM+m Qb7LeZ+Dwf5WWlMlXiyZPeK5TkyTtJHVdTKqdzNYI3ecDyiiCbtAoW7mys+LDbiZ sG0ja4xDVfHJz3PIsf6Tvz09NJJpKysGVW7/2cJsDK3Sui1e/bCvOoNasMPwPK/L eZoLrzJ+3qawPdYRGXWCi42HpAqYPkf9uHz+0+HeV2m+Bz4Zt0FDA3RACzoHWsR7 NJhdzG08zHGjeqORLzknaILPoviIP0hDyDQbI5ba7ul07SSyqqvsmQHeNik5IZcN U5yl9zyDQ+KH52EfMKv2OcPxywIDAQABo4ICszCCAq8wHQYDVR0OBBYEFLrxsL7E yvj+9IPdpg2W9LD22O5MMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvQTk3QjA5NTRD RjQ0MTFFRjk3REFDQTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBACLvgoDBACLvgwDBACLvg4DBACLvhADBACLvhIDBACLvhww DQYJKoZIhvcNAQELBQADggEBABbVQx5Nap1gatjObJE/JGnpSx64RiTV79JUEc7y cfyKqzTjQpGRjuXpWuxxlgyAe9ak3GN0S1PJHWFObhyzsfeb4fPMiIBlotiJjmA0 HsB1PxCtmjqkpx8sBej6RHVckKcrCDMQykusR/4yuI+NM1+S0txLXuGNUMVN08Er kxLaZRsKnfTUfhDArg2VU6iwcI9XHnGwWpJDQnqiflKLpaZwQIILNWuJiQbJOSXP /ay8IX+74wTs3MA8MwyQ1Fq0KHxLw5xAL9XpfYxhtbcpUT8/9W3ABx4liMaKQRmr ByFs2LhV70m50pflX6sYSmLwE+tz5OPs3M263fldqBtv4W0= -----END CERTIFICATE-----Generated at Wed Feb 19 20:42:37 2025 by rpki-client