$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa File: 8D243F849A6D11EA8674310DC4F9AE02.roa (raw, json) Hash identifier: ZlxWP9id3BOwgT849Ql20JmEjoi9oTlH+F8ceOZ0tcg= Subject key identifier: A4:77:8F:84:B5:EC:D5:A0:AE:B7:23:E4:2C:7C:2A:EB:8B:00:B1:89 Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0C33 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa Signing time: Mon 02 Dec 2024 18:36:45 +0000 ROA not before: Mon 02 Dec 2024 18:36:45 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45474 IP address blocks: 167.179.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB Validity Not Before: Dec 2 18:36:45 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dfe3d-63f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:74:e4:fe:e0:ce:f3:37:13:07:34:11:18: 8d:7a:d4:c9:ac:96:7a:69:db:1d:fc:9b:0b:93:ad: 5d:0b:48:aa:96:2d:7a:51:44:69:4d:58:2a:fc:ea: d5:60:a9:66:19:26:69:7e:d6:cf:33:16:62:e0:2f: 1a:bd:d5:f2:94:bd:b6:dc:7b:f1:e1:75:64:54:af: 3d:19:42:2d:ef:eb:da:7f:1d:7c:3c:a2:71:43:c1: f4:cb:84:7a:48:d5:5e:53:f4:5b:f1:eb:8e:8f:07: 68:8e:5e:2e:28:2a:0f:14:73:47:b0:83:b7:01:93: 20:59:cb:d4:cc:1d:2e:3d:33:28:c0:ec:22:b0:14: d3:7e:4e:ff:0e:35:2e:cc:ec:c3:3e:68:d5:11:19: e4:0f:1a:e5:6e:2f:ba:36:75:7d:c9:3b:f6:cd:da: 58:bf:39:bc:81:29:e4:f7:ef:fb:cb:a3:e0:16:17: 26:12:fc:0a:f9:35:ed:1e:a3:d1:db:3e:18:df:67: 68:4b:49:46:01:73:55:8b:d9:2a:d7:8c:47:cf:d1: 42:a3:32:47:0c:3e:88:ff:9c:76:68:54:b0:6e:12: 94:a2:30:21:de:de:e9:33:2c:46:08:95:d7:ad:cd: 0a:fc:ae:8c:50:4b:c2:d0:01:5e:68:23:22:6f:2f: ad:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:77:8F:84:B5:EC:D5:A0:AE:B7:23:E4:2C:7C:2A:EB:8B:00:B1:89 X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/8D243F849A6D11EA8674310DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.200.0/21 Signature Algorithm: sha256WithRSAEncryption 72:8a:77:47:3d:e1:e4:53:e1:31:62:a0:b3:b3:c6:86:f2:d9: c7:68:cf:e7:f0:55:ca:52:a2:86:db:f0:9f:94:e3:f9:43:59: ea:ff:01:c7:fb:8a:e4:b9:e2:52:c2:d0:78:0a:53:c2:2e:20: 42:ba:36:c8:b6:89:f8:38:d8:34:5c:88:64:0c:fb:44:c9:ad: 38:55:18:72:7a:2f:e5:be:fa:f3:9a:3b:b5:cb:42:d0:b6:ff: 6a:b5:f8:f4:07:ec:3b:77:ad:b9:4c:77:b6:89:93:48:f3:35: af:4b:59:53:bd:33:24:d7:b8:c1:c8:17:28:d2:bb:e8:15:43: 49:1a:53:42:e9:92:38:55:c8:e4:f5:61:3d:35:5e:9d:48:d3: ab:3b:4d:cb:8c:1a:9f:41:df:c8:f0:50:43:9e:52:62:2e:4b: b8:a6:d0:e0:cb:f2:e4:3d:6e:5d:95:31:e4:04:5a:92:25:35: d6:c4:0b:13:38:77:b3:80:3f:94:43:b1:9c:b8:23:96:16:a6: 2d:f9:b9:e6:fc:92:64:e7:b2:60:a9:68:6b:b0:6e:e8:ab:a0: 42:84:b0:0f:b2:02:9b:1e:e7:cc:8b:9f:c4:2b:1b:9f:1d:98: a2:63:6d:e1:7f:24:fb:bb:6d:0a:00:b6:d8:5c:95:19:f3:d2: 7e:66:e7:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjQxMjAyMTgzNjQ1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkZmUzZC02M2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0N05P7gzvM3Ewc0ERiNetTJrJZ6adsd/JsLk61dC0iqli16UURpTVgq/OrV YKlmGSZpftbPMxZi4C8avdXylL223Hvx4XVkVK89GUIt7+vafx18PKJxQ8H0y4R6 SNVeU/Rb8euOjwdojl4uKCoPFHNHsIO3AZMgWcvUzB0uPTMowOwisBTTfk7/DjUu zOzDPmjVERnkDxrlbi+6NnV9yTv2zdpYvzm8gSnk9+/7y6PgFhcmEvwK+TXtHqPR 2z4Y32doS0lGAXNVi9kq14xHz9FCozJHDD6I/5x2aFSwbhKUojAh3t7pMyxGCJXX rc0K/K6MUEvC0AFeaCMiby+tJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKR3j4S1 7NWgrrcj5Cx8KuuLALGJMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkxRUIvNDk3RjJCRDhGNzA1MTFFOUFEQkE0NTFGQzRGOUFFMDIvOEQyNDNGODQ5 QTZEMTFFQTg2NzQzMTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOns8gwDQYJKoZIhvcNAQELBQADggEBAHKKd0c94eRT4TFi oLOzxoby2cdoz+fwVcpSoobb8J+U4/lDWer/Acf7iuS54lLC0HgKU8IuIEK6Nsi2 ifg42DRciGQM+0TJrThVGHJ6L+W++vOaO7XLQtC2/2q1+PQH7Dt3rblMd7aJk0jz Na9LWVO9MyTXuMHIFyjSu+gVQ0kaU0LpkjhVyOT1YT01Xp1I06s7TcuMGp9B38jw UEOeUmIuS7im0ODL8uQ9bl2VMeQEWpIlNdbECxM4d7OAP5RDsZy4I5YWpi35ueb8 kmTnsmCpaGuwbuiroEKEsA+yApse58yLn8QrG58dmKJjbeF/JPu7bQoAtthclRnz 0n5m59w= -----END CERTIFICATE-----Generated at Sun Feb 16 20:36:38 2025 by rpki-client