$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/2131145E9E4C11EABF30421BC4F9AE02.roa File: 2131145E9E4C11EABF30421BC4F9AE02.roa (raw, json) Hash identifier: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU= Subject key identifier: 01:AE:76:7E:CC:92:28:6E:BA:27:24:1B:D8:B0:7C:37:EC:73:50:1A Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 099A Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/2131145E9E4C11EABF30421BC4F9AE02.roa Signing time: Tue 30 Jul 2024 20:38:23 +0000 ROA not before: Tue 30 Jul 2024 20:38:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24570 IP address blocks: 58.181.65.0/24 maxlen: 24 58.181.69.0/24 maxlen: 24 58.181.72.0/24 maxlen: 24 58.181.73.0/24 maxlen: 24 58.181.75.0/24 maxlen: 24 58.181.77.0/24 maxlen: 24 58.181.77.240/29 maxlen: 29 58.181.80.0/24 maxlen: 24 58.181.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C Validity Not Before: Jul 30 20:38:23 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a94f3f-28e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:79:18:e3:4f:f2:ce:3b:35:02:1c:e6:08:9a: 78:88:d3:bd:8a:2e:33:66:6a:9e:94:61:01:d5:7e: 39:13:f6:a2:e0:b9:5c:1d:c6:59:57:c2:68:37:33: 3a:fb:cd:87:61:e1:33:26:2a:2e:9c:95:52:36:b9: d3:47:39:51:46:10:d0:7f:20:de:9d:8e:6f:85:af: 3f:0b:e4:88:ac:ed:10:39:4a:44:20:82:1c:9e:c7: ef:ed:0d:b3:ad:56:7f:b6:9d:13:49:fb:4a:3d:6c: 43:7b:1c:ff:14:6b:6c:57:f8:c8:c4:01:dc:bd:6e: 65:7e:f5:a8:25:e3:73:46:e6:2e:9c:26:8e:a4:8e: 5f:c2:e0:e6:be:af:3b:40:0a:b9:0a:20:89:28:27: 2c:41:d8:b6:d0:f8:4f:83:0c:b6:c9:3c:9b:7f:b5: 2c:42:14:6e:ec:0f:73:da:e7:05:21:93:ca:a2:66: c7:dd:9c:ec:10:ee:33:eb:7c:f3:9c:33:99:f5:fd: 42:06:41:4e:fe:ce:3b:b0:1f:fa:c0:62:4d:90:b5: 60:35:20:1d:b5:8e:bb:a9:bb:b4:b4:6c:c6:2e:64: 04:f0:e6:52:61:5a:fb:9e:7a:63:9a:82:c5:1e:6a: 5a:42:df:33:b2:71:e8:b3:de:e6:7a:74:c7:19:af: 6d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:AE:76:7E:CC:92:28:6E:BA:27:24:1B:D8:B0:7C:37:EC:73:50:1A X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/2131145E9E4C11EABF30421BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.65.0/24 58.181.69.0/24 58.181.72.0/23 58.181.75.0/24 58.181.77.0/24 58.181.80.0/24 58.181.95.0/24 Signature Algorithm: sha256WithRSAEncryption 50:2d:0b:99:80:e1:28:bc:40:60:06:12:94:b0:ee:75:f6:4e: 6d:c9:a0:6c:22:d3:8b:53:b6:60:bd:66:07:20:21:2c:a9:1b: 50:0d:5d:3f:ee:cd:b1:fe:53:ce:cf:2a:db:f8:e7:0b:a3:19: dd:a4:50:d2:eb:b4:ad:ed:4b:c5:49:e8:c0:1c:92:7a:ec:fc: 12:a0:cd:c4:21:cd:7b:91:b3:c7:40:31:1f:43:78:76:4a:96: 9e:51:20:75:90:8d:66:3f:70:64:f4:bf:d1:89:da:70:81:8c: 04:11:4e:6c:51:8b:5e:e1:64:d6:cc:d7:67:04:24:5a:c8:e9: 36:bd:28:87:f0:a8:fa:9f:a3:92:0c:fb:6f:69:75:91:a1:ec: 01:53:e7:31:8e:79:43:b2:ba:bc:5d:8d:3d:04:6b:1a:49:74: 1c:24:18:0e:b9:ab:09:e8:c6:8e:50:ea:1e:bd:09:b4:46:28: 66:99:6b:a0:ed:b8:54:3e:d2:33:83:39:3b:6b:a3:97:a2:64: 49:e4:f7:cb:fc:98:36:c3:07:7f:77:e4:0f:ad:78:2e:5c:66: fb:85:a8:60:df:83:22:1c:0a:30:d9:fb:8a:db:f2:4b:5f:11: 76:14:0f:a1:55:db:2e:94:38:ef:38:04:75:5b:f3:d2:29:87: 08:c0:dc:49 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjQwNzMwMjAzODIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5NGYzZi0yOGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3kY40/yzjs1AhzmCJp4iNO9ii4zZmqelGEB1X45E/ai4LlcHcZZV8JoNzM6 +82HYeEzJiounJVSNrnTRzlRRhDQfyDenY5vha8/C+SIrO0QOUpEIIIcnsfv7Q2z rVZ/tp0TSftKPWxDexz/FGtsV/jIxAHcvW5lfvWoJeNzRuYunCaOpI5fwuDmvq87 QAq5CiCJKCcsQdi20PhPgwy2yTybf7UsQhRu7A9z2ucFIZPKombH3ZzsEO4z63zz nDOZ9f1CBkFO/s47sB/6wGJNkLVgNSAdtY67qbu0tGzGLmQE8OZSYVr7nnpjmoLF HmpaQt8zsnHos97menTHGa9tVQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFAGudn7M kihuuickG9iwfDfsc1AaMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTczNEMvQTczMjM1RUM3M0MyMTFFQTlENDBCODg1QzRGOUFFMDIvMjEzMTE0NUU5 RTRDMTFFQUJGMzA0MjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBAA6tUEDBAA6tUUDBAE6tUgDBAA6tUsDBAA6tU0DBAA6tVAD BAA6tV8wDQYJKoZIhvcNAQELBQADggEBAFAtC5mA4Si8QGAGEpSw7nX2Tm3JoGwi 04tTtmC9ZgcgISypG1ANXT/uzbH+U87PKtv45wujGd2kUNLrtK3tS8VJ6MAcknrs /BKgzcQhzXuRs8dAMR9DeHZKlp5RIHWQjWY/cGT0v9GJ2nCBjAQRTmxRi17hZNbM 12cEJFrI6Ta9KIfwqPqfo5IM+29pdZGh7AFT5zGOeUOyurxdjT0EaxpJdBwkGA65 qwnoxo5Q6h69CbRGKGaZa6DtuFQ+0jODOTtro5eiZEnk98v8mDbDB3935A+teC5c ZvuFqGDfgyIcCjDZ+4rb8ktfEXYUD6FV2y6UOO84BHVb89IphwjA3Ek= -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:51 2025 by rpki-client