$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A32546F8A3DB11EA98BC5D48C4F9AE02.roa File: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (raw, json) Hash identifier: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg= Subject key identifier: 3E:56:B5:D5:51:44:61:E7:47:35:4A:9F:E8:D2:D8:7A:FF:44:EE:55 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0998 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A32546F8A3DB11EA98BC5D48C4F9AE02.roa Signing time: Tue 30 Jul 2024 20:38:22 +0000 ROA not before: Tue 30 Jul 2024 20:38:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 14618 IP address blocks: 58.181.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2456 (0x998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C Validity Not Before: Jul 30 20:38:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a94f3e-4fc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:57:6f:1b:74:14:14:b0:e0:66:7f:13:15:94: f6:e0:37:fe:8b:27:53:0f:6b:bd:b3:14:ba:f2:01: 0e:2d:c0:d0:a5:bc:67:16:1a:0a:30:0b:e0:6d:3c: 6e:0a:52:4a:d0:81:fa:82:14:f0:59:f8:71:9a:ba: 4d:1b:af:c4:68:3c:5e:9b:aa:34:a9:67:69:c4:da: 46:c3:9e:bb:c0:b3:9c:ed:1f:7a:75:29:0a:0e:7b: b6:c4:5c:35:37:e2:3e:b1:f8:de:b8:09:e3:97:fc: 13:1f:e5:e5:d3:44:ef:e0:3d:d8:3f:13:9a:cd:b4: e9:9a:0c:4b:cf:87:9a:85:d6:8f:9b:70:42:37:03: e3:a7:6a:06:72:63:6a:57:3f:88:5b:05:9d:c9:ed: f1:35:c1:51:1f:ea:b7:52:20:aa:06:41:92:79:76: 14:0f:d2:61:82:0e:59:e1:c8:03:36:70:93:e4:d8: 77:d4:8f:60:70:39:c9:25:a1:9a:84:ac:32:6a:0e: 26:bf:92:00:ec:19:c9:47:ba:d8:b1:1f:79:80:1f: ab:b8:84:15:9a:75:ed:61:26:dd:17:6a:71:4b:fe: 4e:54:2a:1b:44:60:25:8f:d4:34:f4:63:2d:eb:36: 95:1f:12:d7:8c:5e:a7:00:cd:21:23:3d:43:e8:85: 55:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:56:B5:D5:51:44:61:E7:47:35:4A:9F:E8:D2:D8:7A:FF:44:EE:55 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A32546F8A3DB11EA98BC5D48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.95.0/24 Signature Algorithm: sha256WithRSAEncryption b3:66:03:0b:c3:40:fd:ab:ab:d3:b0:e9:c2:73:57:79:b8:c5: 90:7e:3f:15:a6:b8:2c:3b:ad:89:99:79:07:95:fb:c8:ec:ea: 20:d6:a6:8b:7a:3a:67:ca:ba:2c:ea:70:69:1e:69:47:21:6e: 70:2b:a4:a1:a0:b0:59:d1:d4:1a:d4:9c:04:f2:72:e5:c3:cd: a5:69:d0:2c:7b:7d:f7:e2:7f:88:7e:46:2c:0f:6f:8d:e3:ba: 28:f1:c7:53:4f:cc:2b:f8:f8:35:d5:b6:e6:d1:a8:e4:3c:d3: 84:a7:ce:ed:ca:88:3b:6e:b7:c3:b9:6b:8b:de:06:58:8d:cb: 90:17:44:48:fb:ba:04:62:e6:51:4e:e2:23:79:76:0e:b2:d2: bd:03:59:9c:42:03:95:49:37:13:82:1a:64:c8:73:7d:52:37: 1f:07:d3:45:50:10:37:03:28:b3:0d:2b:e4:b7:a8:7b:2b:1b: 2f:10:fe:92:7c:5d:69:41:ef:2f:57:39:1b:12:32:d7:85:81: 9d:17:49:69:32:eb:99:1e:bc:44:4e:c6:08:53:d7:22:b1:5b: c3:f6:f4:3f:ae:b1:65:79:2a:b4:ff:29:5b:b9:74:7a:25:33: df:80:e0:2f:0a:f3:a6:cb:d6:10:02:19:c4:be:f3:0a:e1:cf: 46:f3:06:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjQwNzMwMjAzODIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5NGYzZS00ZmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFdvG3QUFLDgZn8TFZT24Df+iydTD2u9sxS68gEOLcDQpbxnFhoKMAvgbTxu ClJK0IH6ghTwWfhxmrpNG6/EaDxem6o0qWdpxNpGw567wLOc7R96dSkKDnu2xFw1 N+I+sfjeuAnjl/wTH+Xl00Tv4D3YPxOazbTpmgxLz4eahdaPm3BCNwPjp2oGcmNq Vz+IWwWdye3xNcFRH+q3UiCqBkGSeXYUD9Jhgg5Z4cgDNnCT5Nh31I9gcDnJJaGa hKwyag4mv5IA7BnJR7rYsR95gB+ruIQVmnXtYSbdF2pxS/5OVCobRGAlj9Q09GMt 6zaVHxLXjF6nAM0hIz1D6IVVnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD5WtdVR RGHnRzVKn+jS2Hr/RO5VMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTczNEMvQTczMjM1RUM3M0MyMTFFQTlENDBCODg1QzRGOUFFMDIvQTMyNTQ2RjhB M0RCMTFFQTk4QkM1RDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6tV8wDQYJKoZIhvcNAQELBQADggEBALNmAwvDQP2rq9Ow 6cJzV3m4xZB+PxWmuCw7rYmZeQeV+8js6iDWpot6OmfKuizqcGkeaUchbnArpKGg sFnR1BrUnATycuXDzaVp0Cx7fffif4h+RiwPb43juijxx1NPzCv4+DXVtubRqOQ8 04Snzu3KiDtut8O5a4veBliNy5AXREj7ugRi5lFO4iN5dg6y0r0DWZxCA5VJNxOC GmTIc31SNx8H00VQEDcDKLMNK+S3qHsrGy8Q/pJ8XWlB7y9XORsSMteFgZ0XSWky 65kevEROxghT1yKxW8P29D+usWV5KrT/KVu5dHolM9+A4C8K86bL1hACGcS+8wrh z0bzBtQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:09:19 2025 by rpki-client