$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/EE9ACA30FE4011EFB3C87416C4F9AE02.roa File: EE9ACA30FE4011EFB3C87416C4F9AE02.roa (raw, json) Hash identifier: kByynmdC17TVU0YIFjiBOfnmZC+piAX0qD9IVzYo/Is= Subject key identifier: 8B:84:DB:53:BD:42:92:45:60:8D:C1:E5:D4:2A:D7:B8:75:43:F2:FC Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 0FB4 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/EE9ACA30FE4011EFB3C87416C4F9AE02.roa Signing time: Tue 11 Mar 2025 06:20:31 +0000 ROA not before: Tue 11 Mar 2025 06:20:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 2914 IP address blocks: 139.190.40.0/22 maxlen: 24 139.190.44.0/22 maxlen: 24 139.190.56.0/22 maxlen: 24 139.190.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4020 (0xfb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134 Validity Not Before: Mar 11 06:20:31 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67cfd62e-7438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:28:44:77:22:c6:af:86:cf:a2:bb:84:39:1a: a1:6f:8d:6b:0e:0f:d1:4e:85:2d:15:f4:3b:f6:ce: ff:27:b6:6a:09:ad:23:14:df:c6:a0:7d:9f:ff:07: fc:69:6b:42:85:92:02:15:0e:95:73:4e:6b:3d:5c: b3:81:02:21:fc:ae:f1:87:50:3c:a7:a8:a4:c1:30: b0:c8:75:a9:e1:e9:c2:fd:d4:92:70:56:c6:eb:58: ff:06:c4:e0:1c:33:96:31:3b:d2:29:bc:b4:fe:b1: 3e:c3:b3:d4:a8:b1:1a:55:41:e7:8b:68:9c:b8:0f: 7b:66:63:a4:2d:51:82:83:10:81:ed:3f:2e:b1:23: 4c:24:83:38:06:fa:95:fc:8e:b8:bd:f6:28:a9:8f: f9:3b:97:b2:18:ac:21:3c:43:b9:db:83:dc:6b:71: 62:d8:ac:c7:05:96:d9:d0:83:99:88:1f:bf:1a:c8: 1c:9b:84:4f:08:4a:53:21:af:1e:31:a9:fc:80:9b: 76:81:68:40:96:95:e6:d2:60:30:19:aa:07:a6:6e: fc:60:74:16:d4:1a:00:60:34:87:5e:9f:c6:37:19: 3d:f8:74:de:a6:ce:46:a7:ea:41:c6:eb:82:4a:79: d1:40:22:ab:0e:8a:ab:2c:bf:20:1e:4f:44:1c:8b: 5a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:84:DB:53:BD:42:92:45:60:8D:C1:E5:D4:2A:D7:B8:75:43:F2:FC X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/EE9ACA30FE4011EFB3C87416C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.40.0/21 139.190.56.0/21 Signature Algorithm: sha256WithRSAEncryption 50:3e:25:da:24:3e:08:57:b6:ce:05:b2:97:12:ba:af:d7:6a: df:a1:a5:de:bc:1c:4e:eb:a1:dd:37:57:e0:8c:19:b4:5c:5a: d5:19:4e:15:60:c2:0f:5b:be:4d:d0:85:1b:e4:31:6b:27:7d: 6e:ff:de:f6:b1:52:2c:47:7b:64:ae:93:22:17:b9:0d:eb:74: 40:87:c7:47:ab:3b:0f:a2:04:87:8e:57:19:3e:a1:8e:f0:13: f4:5d:4a:23:07:c7:06:02:d8:3e:b2:91:e7:f2:15:5e:2a:b9: 92:df:df:b5:6c:0c:fe:d1:1d:47:c4:da:27:b7:ef:d7:33:23: 5b:2c:2e:58:c7:00:05:51:aa:6c:c1:ea:44:ac:a9:db:e1:f3: 25:ef:90:6b:0e:62:30:80:f7:e2:38:ea:2e:05:3d:9a:46:cb: 13:c5:f7:3b:a1:3f:4f:60:a7:6e:b2:92:d8:ff:e5:02:e2:d0: 17:7b:ba:17:ff:ab:42:09:80:eb:a1:53:34:3c:a8:3e:b6:6a: 30:b1:10:d1:df:0d:1c:ab:92:77:59:b6:a0:98:2d:38:cf:2f: 67:2e:54:e7:01:5c:20:9f:21:d6:25:c0:75:82:f5:63:1c:c7: 81:0e:36:b5:ec:ae:25:15:a1:7b:81:c3:83:93:40:50:fe:e3: 92:de:3a:17 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwMzExMDYyMDMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmZDYyZS03NDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyhEdyLGr4bPoruEORqhb41rDg/RToUtFfQ79s7/J7ZqCa0jFN/GoH2f/wf8 aWtChZICFQ6Vc05rPVyzgQIh/K7xh1A8p6ikwTCwyHWp4enC/dSScFbG61j/BsTg HDOWMTvSKby0/rE+w7PUqLEaVUHni2icuA97ZmOkLVGCgxCB7T8usSNMJIM4BvqV /I64vfYoqY/5O5eyGKwhPEO524Pca3Fi2KzHBZbZ0IOZiB+/Gsgcm4RPCEpTIa8e Man8gJt2gWhAlpXm0mAwGaoHpm78YHQW1BoAYDSHXp/GNxk9+HTeps5Gp+pBxuuC SnnRQCKrDoqrLL8gHk9EHItalwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIuE21O9 QpJFYI3B5dQq17h1Q/L8MB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRUU5QUNBMzBG RTQwMTFFRkIzQzg3NDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAOLvigDBAOLvjgwDQYJKoZIhvcNAQELBQADggEBAFA+Jdok PghXts4FspcSuq/Xat+hpd68HE7rod03V+CMGbRcWtUZThVgwg9bvk3QhRvkMWsn fW7/3vaxUixHe2SukyIXuQ3rdECHx0erOw+iBIeOVxk+oY7wE/RdSiMHxwYC2D6y kefyFV4quZLf37VsDP7RHUfE2ie379czI1ssLljHAAVRqmzB6kSsqdvh8yXvkGsO YjCA9+I46i4FPZpGyxPF9zuhP09gp26yktj/5QLi0Bd7uhf/q0IJgOuhUzQ8qD62 ajCxENHfDRyrkndZtqCYLTjPL2cuVOcBXCCfIdYlwHWC9WMcx4EONrXsriUVoXuB w4OTQFD+45LeOhc= -----END CERTIFICATE-----Generated at Thu Mar 13 07:12:05 2025 by rpki-client