$ rpki-client -vvf rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa File: 715924988D6C11EBAFD23A2EC4F9AE02.roa (raw, json) Hash identifier: IRx8YlQZD3iZNO8ZkV5fm0YkjEB3fazq27IMfHjcxDQ= Subject key identifier: 9E:85:3D:07:28:46:E8:EB:B9:8C:B7:3B:3D:8C:90:F3:58:3D:B2:52 Certificate issuer: /CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Certificate serial: 0606 Authority key identifier: BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa Signing time: Fri 06 Dec 2024 22:11:53 +0000 ROA not before: Fri 06 Dec 2024 22:11:53 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4637 IP address blocks: 168.134.3.0/24 maxlen: 24 168.134.3.0/25 maxlen: 25 168.134.3.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F277D Validity Not Before: Dec 6 22:11:53 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675376a9-43c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f2:35:de:24:f0:34:e7:4b:13:6b:4c:e5:74: 70:b9:bd:8d:24:75:d2:22:c4:d1:a0:64:6e:e9:70: 61:d7:92:ee:e2:f6:6e:0e:25:ca:aa:c7:e0:e8:56: 70:6b:6a:ef:aa:96:91:02:0e:d7:84:72:11:76:22: 4a:d0:fa:81:fa:1f:16:38:1f:49:56:56:50:fa:1a: 65:8e:73:65:63:07:77:45:f9:a2:66:6d:f4:92:ba: f0:9c:0d:4a:b7:38:d8:99:4b:0d:b6:38:16:f4:56: bb:01:be:6e:c9:0f:fc:74:94:e4:33:ca:b3:60:1b: b6:22:50:f4:c4:b2:a1:01:5a:53:37:41:a8:19:b7: dd:06:b6:ae:ce:a1:3c:40:60:20:6f:69:de:5c:cf: 52:02:b5:7d:e5:38:d5:fa:5d:f6:83:1c:a5:1e:5b: d5:84:a3:c8:13:e6:c7:f7:e9:43:2c:08:05:8d:e0: c3:99:0f:0c:f0:44:6b:06:9f:e2:48:30:c5:97:a2: a6:f9:68:9d:a3:f0:97:9c:9b:06:61:b3:09:f3:d9: 15:5f:44:7d:26:71:72:25:db:87:91:6f:c0:e7:b9: 0b:d5:55:da:a2:dc:c2:b3:42:5b:b7:f4:4e:8c:aa: e9:e1:1c:1f:10:8c:fc:32:0e:7b:9a:cf:71:b9:02: 9d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:85:3D:07:28:46:E8:EB:B9:8C:B7:3B:3D:8C:90:F3:58:3D:B2:52 X509v3 Authority Key Identifier: keyid:BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/715924988D6C11EBAFD23A2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.134.3.0/24 Signature Algorithm: sha256WithRSAEncryption c3:b2:33:0c:7b:25:b0:e6:54:ec:87:2b:f2:e0:7b:5f:5d:5b: 63:53:3f:80:9f:f0:4d:5f:5b:e4:0f:31:ea:34:4d:ad:2e:fa: 31:f4:bb:b7:ab:b6:cd:b5:a9:17:fb:eb:a4:0e:91:02:8c:75: 32:1f:a6:85:8b:77:50:9c:66:25:81:d8:bb:b4:be:de:c3:c4: 1f:e6:e5:18:ef:dd:c1:fb:7e:af:88:9d:4d:be:99:3f:1c:4b: c4:6f:74:e9:b7:de:ab:d0:2e:b3:b4:49:ac:19:ba:a8:3d:e0: d8:e5:7c:4c:d9:28:ed:c9:c2:75:4a:6e:22:c4:da:5c:28:c3: c7:f1:9f:1e:92:48:66:53:fe:d3:28:58:3c:53:80:d7:15:ea: 1c:63:71:09:a7:19:0d:cc:39:1e:1d:38:1b:99:82:15:45:36: 33:7a:55:0c:82:35:5c:83:ab:bf:11:74:b5:b0:ab:8c:6c:59: 53:a3:1d:af:7a:d7:f7:54:e2:ee:ca:2d:77:2f:c4:44:12:b9: 1c:16:e1:fa:f4:cd:48:8f:90:dc:20:21:21:f2:37:c6:56:88: bb:24:b1:86:51:39:01:1d:57:e0:b9:e3:07:e6:45:ff:91:ec: aa:4e:dc:4d:8d:3c:c5:3e:35:4d:3f:97:22:df:eb:cd:d5:7d: 12:ea:69:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI3N0QxMTAvBgNVBAUTKEJCQzEwMzU2MUFGRDdBOTMwMzZEMUM3MkRENEMwQTdD MkE0RTI5Q0UwHhcNMjQxMjA2MjIxMTUzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzNzZhOS00M2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvI13iTwNOdLE2tM5XRwub2NJHXSIsTRoGRu6XBh15Lu4vZuDiXKqsfg6FZw a2rvqpaRAg7XhHIRdiJK0PqB+h8WOB9JVlZQ+hpljnNlYwd3RfmiZm30krrwnA1K tzjYmUsNtjgW9Fa7Ab5uyQ/8dJTkM8qzYBu2IlD0xLKhAVpTN0GoGbfdBrauzqE8 QGAgb2neXM9SArV95TjV+l32gxylHlvVhKPIE+bH9+lDLAgFjeDDmQ8M8ERrBp/i SDDFl6Km+Wido/CXnJsGYbMJ89kVX0R9JnFyJduHkW/A57kL1VXaotzCs0Jbt/RO jKrp4RwfEIz8Mg57ms9xuQKdbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ6FPQco RujruYy3Oz2MkPNYPbJSMB8GA1UdIwQYMBaAFLvBA1Ya/XqTA20cct1MCnwqTinO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjc3RC83OEExRDA4RThE NkIxMUVCOTg0MEUwNUZDNEY5QUUwMi91OEVEVmhyOWVwTURiUnh5M1V3S2ZDcE9L YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U4RURWaHI5ZXBNRGJSeHkzVXdLZkNwT0tjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI3N0QvNzhBMUQwOEU4RDZCMTFFQjk4NDBFMDVGQzRGOUFFMDIvNzE1OTI0OTg4 RDZDMTFFQkFGRDIzQTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACohgMwDQYJKoZIhvcNAQELBQADggEBAMOyMwx7JbDmVOyH K/Lge19dW2NTP4Cf8E1fW+QPMeo0Ta0u+jH0u7erts21qRf766QOkQKMdTIfpoWL d1CcZiWB2Lu0vt7DxB/m5Rjv3cH7fq+InU2+mT8cS8RvdOm33qvQLrO0SawZuqg9 4NjlfEzZKO3JwnVKbiLE2lwow8fxnx6SSGZT/tMoWDxTgNcV6hxjcQmnGQ3MOR4d OBuZghVFNjN6VQyCNVyDq78RdLWwq4xsWVOjHa961/dU4u7KLXcvxEQSuRwW4fr0 zUiPkNwgISHyN8ZWiLsksYZROQEdV+C54wfmRf+R7KpO3E2NPMU+NU0/lyLf683V fRLqaSg= -----END CERTIFICATE-----Generated at Sun Apr 6 12:45:29 2025 by rpki-client