$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F097E10C5C7311EF9CC47281C4F9AE02.roa File: F097E10C5C7311EF9CC47281C4F9AE02.roa (raw, json) Hash identifier: 1ruZSUxAHFBtpg74cN22UGy/DbQsooH9+ozLl8ocAGA= Subject key identifier: D3:D5:A4:75:75:65:E3:0D:4D:68:94:A9:97:08:75:D5:BA:28:E9:6E Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 358E Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F097E10C5C7311EF9CC47281C4F9AE02.roa Signing time: Fri 17 Jan 2025 11:46:13 +0000 ROA not before: Fri 17 Jan 2025 11:46:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 117.121.247.0/24 maxlen: 24 182.54.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 14:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13710 (0x358e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90 Validity Not Before: Jan 17 11:46:13 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=678a4305-54c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:74:88:34:93:11:c8:f2:3b:e7:5a:6d:72:ce: a6:40:cb:a1:43:b9:dd:80:e0:fa:82:e2:91:f1:8b: 0b:53:41:55:fa:f1:6c:20:6b:46:5e:05:df:69:1d: e5:6d:44:02:80:76:a3:ee:0d:05:59:16:6a:10:91: 0a:6b:a3:90:fb:25:18:ec:af:6a:4e:f2:49:1a:1f: 91:32:9e:6b:34:bc:3a:2c:42:b9:d6:69:16:64:c8: 3f:eb:d5:46:2a:06:db:7b:6c:3f:7d:a5:3b:6e:ee: cd:ad:eb:6f:fc:97:7e:f8:c4:64:db:a3:f8:75:b1: c4:c4:59:dc:65:67:ef:db:5a:67:b5:6f:cc:f9:6f: 59:24:4e:fd:65:1a:54:61:db:b8:bc:40:01:06:2d: 96:a6:d2:bd:26:04:89:29:26:a7:a4:99:bf:d0:19: 11:d2:67:6e:f7:aa:c4:38:99:3c:e5:c5:a2:9f:60: 5e:ab:cd:90:9b:5e:46:90:f6:68:13:06:61:8e:49: e0:b7:03:2a:f2:78:f3:24:ec:e5:4d:60:48:a0:b7: c9:59:98:34:de:ee:db:12:07:76:6b:01:87:3d:75: a8:08:33:0f:dd:52:09:e8:bd:11:cc:5e:40:b6:50: 86:63:ab:df:62:c9:e3:6b:94:e5:bb:47:1b:a9:20: 89:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D5:A4:75:75:65:E3:0D:4D:68:94:A9:97:08:75:D5:BA:28:E9:6E X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F097E10C5C7311EF9CC47281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.247.0/24 182.54.239.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:3d:d7:03:08:0f:df:3b:91:07:7f:8c:82:4a:e5:c2:9c:9f: 3d:7d:95:5a:a1:6b:d4:f0:f1:bf:80:8c:47:ce:bf:e0:84:ac: 66:87:08:e7:d8:63:2b:d0:94:af:c8:05:1a:4a:3b:5a:67:90: 50:86:cc:fc:f5:e1:b5:83:09:a2:11:17:f1:86:90:e2:00:b3: bb:58:c7:72:db:b7:a2:4c:f4:f4:73:52:47:6f:cc:54:38:df: d0:f9:3b:63:5b:7e:3c:6e:32:06:94:c8:89:ba:e6:2d:30:41: 3a:d4:25:dd:ee:a0:8f:ec:d0:37:c1:71:f2:22:73:b4:99:b1: 25:c7:d1:26:be:d2:79:cc:09:5f:2e:b0:f7:9d:c4:4a:81:e7: fd:bf:5c:a5:0c:d3:01:f1:9a:2b:7d:06:45:09:3f:ba:ea:3a: 04:5b:40:1e:03:ef:9c:4e:a5:31:82:02:74:95:74:52:86:90: 99:20:9c:21:2f:8c:f6:e4:33:94:cc:a4:fe:45:96:24:0a:0f: 96:22:11:2a:75:27:24:f9:c1:3e:c1:50:61:1f:52:10:71:cb: cb:b5:1d:61:7d:81:77:6d:f5:ce:cd:eb:1f:0a:3b:a1:14:e2: 7a:55:58:70:49:b2:90:2c:3a:4e:ad:af:df:d3:df:30:2b:f8: b1:3e:21:68 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwMTE3MTE0NjEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhhNDMwNS01NGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3SINJMRyPI751ptcs6mQMuhQ7ndgOD6guKR8YsLU0FV+vFsIGtGXgXfaR3l bUQCgHaj7g0FWRZqEJEKa6OQ+yUY7K9qTvJJGh+RMp5rNLw6LEK51mkWZMg/69VG Kgbbe2w/faU7bu7Nretv/Jd++MRk26P4dbHExFncZWfv21pntW/M+W9ZJE79ZRpU Ydu4vEABBi2WptK9JgSJKSanpJm/0BkR0mdu96rEOJk85cWin2Beq82Qm15GkPZo EwZhjkngtwMq8njzJOzlTWBIoLfJWZg03u7bEgd2awGHPXWoCDMP3VIJ6L0RzF5A tlCGY6vfYsnja5Tlu0cbqSCJHQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNPVpHV1 ZeMNTWiUqZcIddW6KOluMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvRjA5N0UxMEM1 QzczMTFFRjlDQzQ3MjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB1efcDBAC2Nu8wDQYJKoZIhvcNAQELBQADggEBAGs91wMI D987kQd/jIJK5cKcnz19lVqha9Tw8b+AjEfOv+CErGaHCOfYYyvQlK/IBRpKO1pn kFCGzPz14bWDCaIRF/GGkOIAs7tYx3Lbt6JM9PRzUkdvzFQ439D5O2NbfjxuMgaU yIm65i0wQTrUJd3uoI/s0DfBcfIic7SZsSXH0Sa+0nnMCV8usPedxEqB5/2/XKUM 0wHxmit9BkUJP7rqOgRbQB4D75xOpTGCAnSVdFKGkJkgnCEvjPbkM5TMpP5FliQK D5YiESp1JyT5wT7BUGEfUhBxy8u1HWF9gXdt9c7N6x8KO6EU4npVWHBJspAsOk6t r9/T3zAr+LE+IWg= -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:12 2025 by rpki-client