$ rpki-client -vvf rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/4F5B2B86EEBE11EF846DA10BC4F9AE02.roa File: 4F5B2B86EEBE11EF846DA10BC4F9AE02.roa (raw, json) Hash identifier: GDTBPp4WE9Ezmla7awNs0CkIUNNSTnoRfm7f06nojtk= Subject key identifier: 3C:6A:92:12:61:C0:05:81:3E:AE:4B:01:74:C3:AF:12:72:14:87:04 Certificate issuer: /CN=A912142C/serialNumber=EC02CD06B747378B2C1CC5A221E6E08661DA8225 Certificate serial: 23 Authority key identifier: EC:02:CD:06:B7:47:37:8B:2C:1C:C5:A2:21:E6:E0:86:61:DA:82:25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/4F5B2B86EEBE11EF846DA10BC4F9AE02.roa Signing time: Wed 19 Feb 2025 12:38:23 +0000 ROA not before: Wed 19 Feb 2025 12:38:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9484 IP address blocks: 161.248.142.0/24 maxlen: 24 161.248.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.crl rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912142C, serialNumber=EC02CD06B747378B2C1CC5A221E6E08661DA8225 Validity Not Before: Feb 19 12:38:23 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67b5d0be-9f46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:76:14:a7:de:00:19:be:2d:45:e2:d6:67:7e: f0:b6:7c:2b:57:10:6b:57:86:01:43:a2:8c:c8:ad: bb:89:17:44:db:1e:9e:95:15:d7:7b:fe:e3:c7:ee: 6f:4a:18:56:a2:b4:4e:39:cd:71:aa:a0:95:54:91: 4f:6c:59:78:33:58:a8:e3:06:5a:c4:fe:f5:37:a2: d3:9f:29:7c:89:76:d1:3b:80:68:a8:34:c7:4d:f4: 79:6f:58:bb:67:65:84:c3:55:0b:81:50:d4:fc:29: 20:3c:ae:3c:de:6d:09:09:da:98:c6:75:f7:da:5a: dc:bd:44:31:24:88:e6:62:da:c8:3f:3e:2c:e9:c7: f6:a4:31:2a:d7:29:1c:8c:c5:a3:9a:9d:a3:61:c4: 4d:aa:8f:1d:4a:f6:5b:79:07:71:ee:41:6f:14:07: 51:41:5b:00:7a:63:3a:02:05:ce:5b:ae:d7:4f:c2: 5f:86:ce:18:83:f2:83:1d:bd:fe:3e:75:37:a2:0d: ee:ba:46:51:04:98:73:5f:a4:fe:cc:8d:97:2d:70: 46:d0:16:c1:28:07:51:a8:ce:13:eb:0e:fa:08:40: 97:80:e4:3c:2a:d6:1d:04:7d:33:9f:b0:1f:e5:3f: 2b:70:cd:f2:57:d2:c1:9c:d7:05:43:09:2a:d9:e6: e1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6A:92:12:61:C0:05:81:3E:AE:4B:01:74:C3:AF:12:72:14:87:04 X509v3 Authority Key Identifier: keyid:EC:02:CD:06:B7:47:37:8B:2C:1C:C5:A2:21:E6:E0:86:61:DA:82:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/4F5B2B86EEBE11EF846DA10BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.142.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:fa:12:8f:e4:41:1b:df:99:98:bf:0e:f6:e1:81:92:ee:34: 25:dc:55:fb:81:e9:18:82:95:8d:15:8f:85:70:4c:80:db:fd: ad:52:67:58:7b:ac:cd:97:49:eb:ac:c6:09:10:36:09:d1:1e: 96:31:30:9c:3e:2b:05:a2:58:5e:a9:d7:82:a0:fb:2c:ac:79: b9:a3:3f:62:80:dc:fb:c9:09:9a:81:c5:ad:bd:83:83:6a:98: a3:a7:4f:47:ca:17:f8:19:6d:59:d8:29:95:ee:af:64:48:45: 9c:4f:58:4c:04:c3:f0:bf:2f:7a:8b:17:a2:ae:bb:03:67:f5: 70:0b:b9:d7:f1:7a:53:f1:7d:cc:9e:e7:d1:d1:6c:4a:44:f1: 20:39:c0:fc:ba:32:0b:e9:aa:2c:7d:79:e3:f5:65:c2:14:2e: f5:f5:59:0b:d0:aa:a7:bf:74:c7:63:e7:1e:49:43:f1:26:9c: 8d:73:b8:66:ae:3e:af:e8:78:3f:c4:e9:a8:2e:b0:f2:1c:c5: 5f:e6:3c:c7:d2:ab:eb:2a:57:7c:d3:fc:cb:df:bb:ef:64:d3: 33:6e:22:bd:39:cd:d2:1b:a5:a3:26:c8:cb:a0:d3:7b:ef:ec: 95:2d:20:c2:00:3c:70:f8:26:4e:f8:84:6c:92:8b:00:d0:8b: 57:1d:8a:b0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MTQyQzExMC8GA1UEBRMoRUMwMkNEMDZCNzQ3Mzc4QjJDMUNDNUEyMjFFNkUwODY2 MURBODIyNTAeFw0yNTAyMTkxMjM4MjNaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjVkMGJlLTlmNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOdhSn3gAZvi1F4tZnfvC2fCtXEGtXhgFDoozIrbuJF0TbHp6VFdd7/uPH7m9K GFaitE45zXGqoJVUkU9sWXgzWKjjBlrE/vU3otOfKXyJdtE7gGioNMdN9HlvWLtn ZYTDVQuBUNT8KSA8rjzebQkJ2pjGdffaWty9RDEkiOZi2sg/Pizpx/akMSrXKRyM xaOanaNhxE2qjx1K9lt5B3HuQW8UB1FBWwB6YzoCBc5brtdPwl+GzhiD8oMdvf4+ dTeiDe66RlEEmHNfpP7MjZctcEbQFsEoB1GozhPrDvoIQJeA5Dwq1h0EfTOfsB/l PytwzfJX0sGc1wVDCSrZ5uFBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUPGqSEmHA BYE+rksBdMOvEnIUhwQwHwYDVR0jBBgwFoAU7ALNBrdHN4ssHMWiIebghmHagiUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxNDJDLzJDMkY2RTUwQ0VF OTExRUZCREZEM0E2N0M0RjlBRTAyLzdBTE5CcmRITjRzc0hNV2lJZWJnaG1IYWdp VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvN0FMTkJyZEhONHNzSE1XaUllYmdobUhhZ2lVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTQyQy8yQzJGNkU1MENFRTkxMUVGQkRGRDNBNjdDNEY5QUUwMi80RjVCMkI4NkVF QkUxMUVGODQ2REExMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4jjANBgkqhkiG9w0BAQsFAAOCAQEAjPoSj+RBG9+ZmL8O 9uGBku40JdxV+4HpGIKVjRWPhXBMgNv9rVJnWHuszZdJ66zGCRA2CdEeljEwnD4r BaJYXqnXgqD7LKx5uaM/YoDc+8kJmoHFrb2Dg2qYo6dPR8oX+BltWdgple6vZEhF nE9YTATD8L8veosXoq67A2f1cAu51/F6U/F9zJ7n0dFsSkTxIDnA/LoyC+mqLH15 4/VlwhQu9fVZC9Cqp790x2PnHklD8SacjXO4Zq4+r+h4P8TpqC6w8hzFX+Y8x9Kr 6ypXfNP8y9+772TTM24ivTnN0huloybIy6DTe+/slS0gwgA8cPgmTviEbJKLANCL Vx2KsA== -----END CERTIFICATE-----Generated at Sat Apr 26 17:05:09 2025 by rpki-client