$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/A22E9E42CF3D11EFB2075D13C4F9AE02.roa File: A22E9E42CF3D11EFB2075D13C4F9AE02.roa (raw, json) Hash identifier: vLRSLWwCPlw1XgMXqIwjNZRh5iifhLT67LBNrNkXRO0= Subject key identifier: 4C:6D:59:BE:6B:B1:8C:69:F7:F1:47:B6:F6:2F:21:A2:0E:CC:85:B2 Certificate issuer: /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Certificate serial: 04 Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/A22E9E42CF3D11EFB2075D13C4F9AE02.roa Signing time: Fri 10 Jan 2025 10:31:46 +0000 ROA not before: Fri 10 Jan 2025 10:31:46 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153516 IP address blocks: 161.248.154.0/23 maxlen: 23 161.248.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578 Validity Not Before: Jan 10 10:31:46 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6780f712-c8a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:73:6b:a0:74:fb:9c:fc:ab:53:3f:17:ea:56: 23:33:43:e0:80:8e:fd:41:d9:a2:37:a5:20:99:d7: 81:34:f5:4a:ed:41:0f:fa:75:e1:2d:a0:69:47:17: e2:0f:97:10:97:30:e3:4d:68:76:be:dc:78:2f:ab: 1e:48:2c:6c:81:46:5a:8e:ba:49:d6:c4:5c:1c:46: 3a:a0:53:db:56:8a:26:42:60:64:6d:c5:f6:da:42: 96:35:e2:12:4c:7f:f8:76:79:91:70:8b:9c:3a:8e: c9:e3:af:53:cd:79:e4:b2:06:f7:a8:1e:ae:58:f3: 8a:16:1f:fd:9e:60:e3:28:e1:95:2a:a3:d8:95:f9: 9b:13:74:b8:bb:10:10:c2:d2:9f:96:cd:43:22:bc: a5:a8:bf:cd:01:7f:d5:84:74:2e:0c:97:ce:72:52: 79:80:c7:fe:a5:53:9b:62:77:0a:3c:85:c8:8e:9a: 22:be:27:0f:46:f5:87:df:6d:8d:1c:5b:0e:06:ba: 9c:f7:87:47:93:1e:df:f1:7d:26:b4:92:62:2c:23: 0d:f9:25:62:05:fc:84:76:13:2e:41:b8:24:e6:1f: 3e:61:ed:fc:79:31:e6:55:f4:93:44:a5:f2:dd:c3: 4b:65:0e:0b:aa:c5:5f:84:cb:23:1b:15:ad:84:83: 76:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6D:59:BE:6B:B1:8C:69:F7:F1:47:B6:F6:2F:21:A2:0E:CC:85:B2 X509v3 Authority Key Identifier: keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/A22E9E42CF3D11EFB2075D13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.154.0/23 Signature Algorithm: sha256WithRSAEncryption e2:38:f3:18:4d:cb:c8:ec:2a:d2:b6:8f:aa:6c:08:ad:c0:c7: 5d:19:71:dd:9f:99:f0:f0:a3:2f:af:2b:36:32:56:e4:62:3d: bc:24:1c:9c:ec:1a:e8:15:04:28:19:2d:eb:9f:02:b3:44:40: a6:86:38:7d:b6:bb:c0:7c:80:41:78:50:4f:3c:56:5a:f1:34: 9c:90:4a:ec:85:50:47:91:76:95:99:30:bf:4c:ba:3c:ff:ea: b4:d0:98:f4:80:f4:37:38:2b:7d:e2:1e:6d:90:62:8c:76:77: 47:bc:14:a9:c5:b3:64:70:ee:5d:c7:71:b5:34:d2:c4:a3:67: 30:89:59:eb:e1:b2:d3:3b:b9:10:9b:04:f3:1e:12:9e:af:96: 89:9c:37:54:41:da:0d:63:14:54:04:cb:b9:82:1b:40:64:46: 8c:99:3a:8f:b0:24:7f:31:68:eb:6d:d3:3a:3a:62:a0:34:20: 97:c4:f3:42:b2:7f:c4:a0:bd:9b:da:99:9e:26:4d:26:01:4c: 7f:a4:5d:01:c3:a1:5d:54:06:fb:0a:97:29:d5:2b:05:94:93: 9c:58:f4:40:f4:06:fc:a1:0c:b1:ed:c9:bb:d8:18:73:6c:b5: 22:77:25:a1:de:e5:54:3e:cc:98:30:1f:76:6f:4c:42:21:ee: 5e:3d:53:23 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDU3ODExMC8GA1UEBRMoMUQzREFFRjdEMjc4ODM3M0VEREZDQjFBRDVDNEMyMzU2 QzU3QURFRDAeFw0yNTAxMTAxMDMxNDZaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODBmNzEyLWM4YTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7c2ugdPuc/KtTPxfqViMzQ+CAjv1B2aI3pSCZ14E09UrtQQ/6deEtoGlHF+IP lxCXMONNaHa+3Hgvqx5ILGyBRlqOuknWxFwcRjqgU9tWiiZCYGRtxfbaQpY14hJM f/h2eZFwi5w6jsnjr1PNeeSyBveoHq5Y84oWH/2eYOMo4ZUqo9iV+ZsTdLi7EBDC 0p+WzUMivKWov80Bf9WEdC4Ml85yUnmAx/6lU5tidwo8hciOmiK+Jw9G9YffbY0c Ww4Gupz3h0eTHt/xfSa0kmIsIw35JWIF/IR2Ey5BuCTmHz5h7fx5MeZV9JNEpfLd w0tlDguqxV+EyyMbFa2Eg3apAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUTG1Zvmux jGn38Ue29i8hog7MhbIwHwYDVR0jBBgwFoAUHT2u99J4g3Pt38sa1cTCNWxXre0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwNTc4LzAwM0E3OURBQ0Yz RDExRUY5MTM4MEUxMUM0RjlBRTAyL0hUMnU5OUo0ZzNQdDM4c2ExY1RDTld4WHJl MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSFQydTk5SjRnM1B0MzhzYTFjVENOV3hYcmUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDU3OC8wMDNBNzlEQUNGM0QxMUVGOTEzODBFMTFDNEY5QUUwMi9BMjJFOUU0MkNG M0QxMUVGQjIwNzVEMTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4mjANBgkqhkiG9w0BAQsFAAOCAQEA4jjzGE3LyOwq0raP qmwIrcDHXRlx3Z+Z8PCjL68rNjJW5GI9vCQcnOwa6BUEKBkt658Cs0RApoY4fba7 wHyAQXhQTzxWWvE0nJBK7IVQR5F2lZkwv0y6PP/qtNCY9ID0NzgrfeIebZBijHZ3 R7wUqcWzZHDuXcdxtTTSxKNnMIlZ6+Gy0zu5EJsE8x4Snq+WiZw3VEHaDWMUVATL uYIbQGRGjJk6j7AkfzFo623TOjpioDQgl8TzQrJ/xKC9m9qZniZNJgFMf6RdAcOh XVQG+wqXKdUrBZSTnFj0QPQG/KEMse3Ju9gYc2y1Inclod7lVD7MmDAfdm9MQiHu Xj1TIw== -----END CERTIFICATE-----Generated at Wed Feb 5 21:49:43 2025 by rpki-client