$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/35BBCFB005C111EEA3A8584CC4F9AE02.roa File: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (raw, json) Hash identifier: HMZ69Vk7ZS0Jv78BueT5h2a9dKdT1kZJMuqKYnjLHLY= Subject key identifier: 5B:84:3D:80:C8:BB:72:7D:EB:D3:82:7A:47:25:54:3D:C8:4D:40:A8 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: E6 Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/35BBCFB005C111EEA3A8584CC4F9AE02.roa Signing time: Fri 23 Aug 2024 04:47:09 +0000 ROA not before: Fri 23 Aug 2024 04:47:09 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 18191 IP address blocks: 168.132.0.0/16 maxlen: 17 168.132.121.0/24 maxlen: 24 168.132.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 05:33:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC Validity Not Before: Aug 23 04:47:09 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c8144d-50d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5b:46:d4:06:df:1c:c8:74:90:c9:ee:c1:6e: 42:d1:17:82:21:35:22:99:b4:f7:ef:c4:d1:bb:f9: 1e:1b:49:08:0b:98:94:b1:31:ba:61:8c:a2:d9:03: 61:07:1f:91:9b:89:55:7b:c6:ad:42:ac:2f:c5:60: 17:b5:98:dd:16:df:ad:61:6c:8c:9a:0e:83:b0:b7: 4a:9f:92:08:ac:88:74:e7:4c:b9:42:f3:d2:71:17: 6e:1f:69:11:06:48:08:27:73:de:2f:3d:d1:62:2b: 1d:6c:b5:d6:1e:7e:0c:fa:7f:32:b4:f4:a3:57:bb: bb:2f:ad:7a:0b:86:c5:62:f2:fa:d2:82:9a:ef:8c: 7f:33:53:a5:09:1f:14:4c:49:7a:c0:78:96:e3:0d: 4f:9c:b5:b8:10:1a:39:40:c0:79:60:b6:7f:64:86: d5:a8:45:08:75:80:49:f6:c5:c5:38:87:8b:64:4f: 48:91:d9:63:db:85:d8:f8:cf:a1:a0:77:46:89:c6: a7:be:7a:cd:34:b5:1e:9f:06:1f:4e:38:5d:04:81: fd:fd:80:03:66:ad:90:85:b9:e0:8b:e5:d7:13:50: 3b:5d:97:d2:64:1f:26:ae:cc:2b:df:41:ce:18:4f: 19:62:7e:b2:37:04:2c:9d:a8:20:07:2b:fa:1c:39: 12:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:84:3D:80:C8:BB:72:7D:EB:D3:82:7A:47:25:54:3D:C8:4D:40:A8 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/35BBCFB005C111EEA3A8584CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.132.0.0/16 Signature Algorithm: sha256WithRSAEncryption b0:32:d9:41:8f:70:52:5e:b6:0f:bc:9c:6e:b8:e8:dc:5a:3e: da:03:00:ff:f6:5d:62:f8:cb:25:06:cb:d7:1e:bd:59:61:2e: c0:bb:fd:b9:7c:de:9e:fe:2e:be:4b:90:2c:12:80:5f:a5:9a: fb:f5:f1:09:0d:d2:56:5d:39:9e:78:7f:38:18:07:12:47:a3: 73:4d:4f:2d:cd:8e:ff:14:a9:c5:26:39:88:35:0b:ed:88:dd: f9:7d:43:d5:41:d5:57:3a:54:13:c1:80:3f:3e:d8:34:ba:c8: c8:b0:5a:82:d3:82:d9:0f:ff:29:48:99:a5:d1:ad:a6:ef:9d: f6:c9:84:a5:c7:3e:cc:ca:58:3e:f9:f4:c4:6f:09:4b:c5:c2: 4f:0e:56:28:fb:71:f2:27:c2:96:65:f9:0f:88:59:bb:25:70: 53:84:0a:1b:3c:8a:23:ce:c7:d0:47:3f:33:9b:c0:59:9b:77: 76:6d:06:c4:61:8e:20:33:57:21:a4:49:d2:8c:0e:fa:cc:b6: 94:19:e7:e5:37:73:0a:f3:d9:c1:20:75:d9:37:c7:74:d2:36: 43:99:a5:8b:ef:01:bc:91:aa:34:f9:6b:c8:f2:6a:8a:d3:b9: 18:54:63:b6:f1:02:eb:92:de:f1:d0:b7:df:00:0d:81:9f:64: d8:1f:cb:a2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjQwODIzMDQ0NzA5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM4MTQ0ZC01MGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVtG1AbfHMh0kMnuwW5C0ReCITUimbT378TRu/keG0kIC5iUsTG6YYyi2QNh Bx+Rm4lVe8atQqwvxWAXtZjdFt+tYWyMmg6DsLdKn5IIrIh050y5QvPScRduH2kR BkgIJ3PeLz3RYisdbLXWHn4M+n8ytPSjV7u7L616C4bFYvL60oKa74x/M1OlCR8U TEl6wHiW4w1PnLW4EBo5QMB5YLZ/ZIbVqEUIdYBJ9sXFOIeLZE9Ikdlj24XY+M+h oHdGicanvnrNNLUenwYfTjhdBIH9/YADZq2Qhbngi+XXE1A7XZfSZB8mrswr30HO GE8ZYn6yNwQsnaggByv6HDkS0wIDAQABo4IClDCCApAwHQYDVR0OBBYEFFuEPYDI u3J969OCekclVD3ITUCoMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkNBQkMvQzU1MTY0MTIwNUI5MTFFRUE5MTMwQjM3QzRGOUFFMDIvMzVCQkNGQjAw NUMxMTFFRUEzQTg1ODRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCohDANBgkqhkiG9w0BAQsFAAOCAQEAsDLZQY9wUl62D7yc brjo3Fo+2gMA//ZdYvjLJQbL1x69WWEuwLv9uXzenv4uvkuQLBKAX6Wa+/XxCQ3S Vl05nnh/OBgHEkejc01PLc2O/xSpxSY5iDUL7Yjd+X1D1UHVVzpUE8GAPz7YNLrI yLBagtOC2Q//KUiZpdGtpu+d9smEpcc+zMpYPvn0xG8JS8XCTw5WKPtx8ifClmX5 D4hZuyVwU4QKGzyKI87H0Ec/M5vAWZt3dm0GxGGOIDNXIaRJ0owO+sy2lBnn5Tdz CvPZwSB12TfHdNI2Q5mli+8BvJGqNPlryPJqitO5GFRjtvEC65Le8dC33wANgZ9k 2B/Log== -----END CERTIFICATE-----Generated at Wed Feb 19 20:39:27 2025 by rpki-client