$ rpki-client -vvf rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/AE5D0E84EEBD11EFBA2D7586C4F9AE02.roa File: AE5D0E84EEBD11EFBA2D7586C4F9AE02.roa (raw, json) Hash identifier: aHRMsUiiCZcaoYDZ7FKWAlCPT4264RLq5QWpPmMZea0= Subject key identifier: 98:32:1B:F9:2B:D4:29:A0:DB:28:86:16:32:E6:8A:77:6C:EA:3A:3F Certificate issuer: /CN=A912142C/serialNumber=EC02CD06B747378B2C1CC5A221E6E08661DA8225 Certificate serial: 1F Authority key identifier: EC:02:CD:06:B7:47:37:8B:2C:1C:C5:A2:21:E6:E0:86:61:DA:82:25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/AE5D0E84EEBD11EFBA2D7586C4F9AE02.roa Signing time: Wed 19 Feb 2025 12:33:12 +0000 ROA not before: Wed 19 Feb 2025 12:33:12 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 10076 IP address blocks: 161.248.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.crl rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912142C, serialNumber=EC02CD06B747378B2C1CC5A221E6E08661DA8225 Validity Not Before: Feb 19 12:33:12 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67b5cf87-0c7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cf:82:89:f2:ce:3e:4e:ab:00:f4:f8:65:97: c6:87:da:ab:8a:04:b7:8c:6c:d6:05:92:66:fd:20: 4c:41:21:aa:b5:98:54:5c:8e:37:30:5c:5a:cd:b5: 23:0f:44:ac:3d:bd:dc:ab:22:c3:28:40:bb:1b:9f: 81:ae:a0:0d:d4:34:66:c3:a4:3d:48:27:22:a2:06: d6:9a:e1:4a:84:29:85:d6:49:e3:8d:dc:c1:23:7f: 60:df:8d:ee:12:45:e2:26:3d:df:51:0e:67:f7:95: b4:c1:3a:bd:25:bd:19:ac:89:73:8d:95:d4:3f:a4: 38:76:c5:bf:b4:82:06:a8:f7:68:83:14:b8:cb:94: 4f:2c:21:85:ad:47:51:65:44:61:0f:54:08:29:76: c0:ae:27:0b:ec:9e:4c:a3:73:58:39:f2:ad:63:fc: 47:fd:a0:2b:c1:e7:52:34:1b:8d:22:e0:c0:bf:ec: 71:dd:26:de:a2:63:03:0b:61:1f:63:df:d6:0c:78: 36:bc:3a:a0:bb:56:b1:d4:d4:4d:ee:fa:a3:1a:19: 1c:c4:22:b4:4e:4a:5c:d8:e3:6b:5d:fa:0f:ab:d4: 45:9b:82:3e:be:0f:e4:2a:9c:d5:59:7f:3e:dc:17: 1d:40:0a:bf:87:0c:ac:63:b1:65:d2:70:d9:c2:50: ef:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:32:1B:F9:2B:D4:29:A0:DB:28:86:16:32:E6:8A:77:6C:EA:3A:3F X509v3 Authority Key Identifier: keyid:EC:02:CD:06:B7:47:37:8B:2C:1C:C5:A2:21:E6:E0:86:61:DA:82:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/7ALNBrdHN4ssHMWiIebghmHagiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ALNBrdHN4ssHMWiIebghmHagiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912142C/2C2F6E50CEE911EFBDFD3A67C4F9AE02/AE5D0E84EEBD11EFBA2D7586C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.142.0/23 Signature Algorithm: sha256WithRSAEncryption 79:73:43:f6:6a:45:75:13:87:18:1c:63:31:bb:a1:63:dc:0b: 14:34:83:63:6f:c0:87:ac:36:08:dc:37:21:dc:03:9f:a7:eb: b1:f8:9f:81:01:7a:fc:de:99:2e:fc:0c:69:ed:10:8b:d6:3e: 38:17:ff:df:14:1e:5f:3b:4c:aa:d0:fa:d9:74:30:d6:3d:ed: bc:cb:f3:27:70:b0:53:be:2b:d9:35:f8:4c:19:87:6b:95:2d: 67:77:ff:7c:55:8d:ba:66:a5:ad:0d:34:c6:11:44:10:51:61: 12:15:89:91:7b:35:69:98:dc:81:f6:e5:5d:8d:5d:3b:d7:00: 8b:e0:bb:06:7c:fc:db:14:25:99:87:ed:98:37:e5:1e:37:d6: 77:7e:b0:26:4f:af:f0:23:e3:40:91:d1:1f:76:e3:8e:c3:28: aa:ab:46:74:8e:20:f9:ce:1c:b6:0b:97:80:a7:f6:ab:e4:89: 19:d7:7f:0a:49:00:1c:22:f8:3b:6f:bb:f2:86:7e:29:ea:00: e3:ed:01:0e:49:87:54:57:98:07:92:f5:8e:9d:40:60:a7:05: 3b:db:9f:b0:c0:de:8c:b5:ed:25:6f:fc:be:c6:97:14:32:cc: 8c:c3:b5:fe:6d:01:35:76:27:76:15:b8:c5:00:bc:c6:87:a0: e5:bc:6c:d1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MTQyQzExMC8GA1UEBRMoRUMwMkNEMDZCNzQ3Mzc4QjJDMUNDNUEyMjFFNkUwODY2 MURBODIyNTAeFw0yNTAyMTkxMjMzMTJaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjVjZjg3LTBjN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJz4KJ8s4+TqsA9Phll8aH2quKBLeMbNYFkmb9IExBIaq1mFRcjjcwXFrNtSMP RKw9vdyrIsMoQLsbn4GuoA3UNGbDpD1IJyKiBtaa4UqEKYXWSeON3MEjf2Dfje4S ReImPd9RDmf3lbTBOr0lvRmsiXONldQ/pDh2xb+0ggao92iDFLjLlE8sIYWtR1Fl RGEPVAgpdsCuJwvsnkyjc1g58q1j/Ef9oCvB51I0G40i4MC/7HHdJt6iYwMLYR9j 39YMeDa8OqC7VrHU1E3u+qMaGRzEIrROSlzY42td+g+r1EWbgj6+D+QqnNVZfz7c Fx1ACr+HDKxjsWXScNnCUO/TAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmDIb+SvU KaDbKIYWMuaKd2zqOj8wHwYDVR0jBBgwFoAU7ALNBrdHN4ssHMWiIebghmHagiUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxNDJDLzJDMkY2RTUwQ0VF OTExRUZCREZEM0E2N0M0RjlBRTAyLzdBTE5CcmRITjRzc0hNV2lJZWJnaG1IYWdp VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvN0FMTkJyZEhONHNzSE1XaUllYmdobUhhZ2lVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTQyQy8yQzJGNkU1MENFRTkxMUVGQkRGRDNBNjdDNEY5QUUwMi9BRTVEMEU4NEVF QkQxMUVGQkEyRDc1ODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4jjANBgkqhkiG9w0BAQsFAAOCAQEAeXND9mpFdROHGBxj MbuhY9wLFDSDY2/Ah6w2CNw3IdwDn6frsfifgQF6/N6ZLvwMae0Qi9Y+OBf/3xQe XztMqtD62XQw1j3tvMvzJ3CwU74r2TX4TBmHa5UtZ3f/fFWNumalrQ00xhFEEFFh EhWJkXs1aZjcgfblXY1dO9cAi+C7Bnz82xQlmYftmDflHjfWd36wJk+v8CPjQJHR H3bjjsMoqqtGdI4g+c4ctguXgKf2q+SJGdd/CkkAHCL4O2+78oZ+KeoA4+0BDkmH VFeYB5L1jp1AYKcFO9ufsMDejLXtJW/8vsaXFDLMjMO1/m0BNXYndhW4xQC8xoeg 5bxs0Q== -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:37 2025 by rpki-client