$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/B93E11C0AA7C11EFA2125D79C4F9AE02.roa File: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (raw, json) Hash identifier: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo= Subject key identifier: 57:26:6C:99:77:3F:6D:A8:79:E9:10:E8:D9:C1:C1:05:CE:B0:EE:6C Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: 02 Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/B93E11C0AA7C11EFA2125D79C4F9AE02.roa Signing time: Sun 24 Nov 2024 15:56:53 +0000 ROA not before: Sun 24 Nov 2024 15:56:53 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 142158 IP address blocks: 160.250.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Nov 24 15:56:53 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67434cc5-60bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f8:70:ab:81:7f:40:d0:05:89:95:65:44:4c: ab:0f:c3:29:ca:02:df:47:ea:b7:fa:80:87:63:3d: cb:38:82:e1:fe:72:31:7d:f8:27:f9:98:5d:c7:61: 42:b8:f9:d5:22:40:b9:8c:d3:3c:34:af:ba:10:53: 45:4d:11:2e:e7:46:8d:0e:a7:d0:d7:5e:34:40:73: 36:70:4e:c2:d3:12:8a:2c:ae:fe:f7:14:11:ea:24: 4b:b6:6a:2e:41:c5:b7:0b:3a:35:b6:7a:8a:8f:75: bb:48:d4:fc:65:4e:19:d2:33:ef:8f:79:a2:05:3b: 52:17:f3:01:fa:43:57:05:87:ae:9e:14:28:fe:e8: f0:e5:e5:ab:7e:90:ae:4e:89:94:32:bf:ad:b0:01: f8:c4:7c:13:af:3b:d3:bf:65:e5:ac:f6:f0:81:85: 79:0a:4b:f6:39:0c:9b:39:56:11:c1:c6:f0:22:56: f8:4c:b3:ab:be:54:ee:a0:71:ae:4a:04:d4:ab:39: 1b:19:ed:63:9c:52:5d:a5:52:81:d4:8d:87:ef:9e: 89:f1:e7:4d:d5:c3:00:69:37:97:dc:d3:29:e1:14: 15:b6:47:a7:59:38:85:3f:9c:c9:40:64:23:b4:b9: e3:c6:e8:63:7a:02:bd:1f:da:c0:a4:6c:61:6f:74: 17:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:26:6C:99:77:3F:6D:A8:79:E9:10:E8:D9:C1:C1:05:CE:B0:EE:6C X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/B93E11C0AA7C11EFA2125D79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.40.0/23 Signature Algorithm: sha256WithRSAEncryption 78:01:a0:ba:4d:18:4b:4a:04:d5:87:f2:c4:fd:95:32:4e:91: 01:4e:04:9d:74:1f:c1:be:b9:89:e6:c0:db:76:72:d5:2f:21: a2:fb:47:83:1e:3f:ea:7f:cd:d3:15:03:07:a7:4a:08:b4:c7: 5b:fe:f0:ec:d2:78:aa:8e:d2:32:c0:20:a8:16:30:8e:e9:e6: 08:67:99:bf:53:61:06:20:01:e0:12:a8:36:de:5b:ad:1e:4d: 36:a5:ec:19:36:b2:99:ac:ee:8a:bf:6c:24:a6:ac:19:99:d0: d9:69:79:3d:0e:31:cc:e1:d0:36:95:61:b6:f1:54:e4:b9:61: c5:9c:1c:6f:bc:5c:58:c5:51:4b:23:25:33:bf:e2:11:b0:50: 34:c6:80:91:53:0a:e0:8f:e9:f0:b5:77:18:ac:aa:d5:48:cf: 72:72:ba:b6:b1:98:9a:5a:f1:91:77:d8:f0:6e:8b:8a:76:74: 82:bc:6f:f7:34:d5:a1:bf:b9:93:63:e9:5e:1a:6b:5b:e7:02: 2b:46:83:68:86:d4:c9:ba:55:87:7e:19:77:10:19:c5:d1:8b: 64:ac:29:3c:ab:7d:82:e9:1e:17:da:f8:12:d8:bd:9f:25:3b: fe:d0:15:2a:04:c4:97:57:f2:26:99:f6:9c:3f:dc:31:0e:de: d0:aa:67:86 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjE3OTExMC8GA1UEBRMoQTYyM0RDMDVFRTdDMjM3MENBNDQ0MzEwODRERTUxMzIx RjM3QTcwNDAeFw0yNDExMjQxNTU2NTNaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NDM0Y2M1LTYwYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu+HCrgX9A0AWJlWVETKsPwynKAt9H6rf6gIdjPcs4guH+cjF9+Cf5mF3HYUK4 +dUiQLmM0zw0r7oQU0VNES7nRo0Op9DXXjRAczZwTsLTEoosrv73FBHqJEu2ai5B xbcLOjW2eoqPdbtI1PxlThnSM++PeaIFO1IX8wH6Q1cFh66eFCj+6PDl5at+kK5O iZQyv62wAfjEfBOvO9O/ZeWs9vCBhXkKS/Y5DJs5VhHBxvAiVvhMs6u+VO6gca5K BNSrORsZ7WOcUl2lUoHUjYfvnonx503VwwBpN5fc0ynhFBW2R6dZOIU/nMlAZCO0 uePG6GN6Ar0f2sCkbGFvdBeJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVyZsmXc/ bah56RDo2cHBBc6w7mwwHwYDVR0jBBgwFoAUpiPcBe58I3DKREMQhN5RMh83pwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2MTc5LzRCRkQ5QkJDQUE3 QzExRUZBMzNCRkQ3N0M0RjlBRTAyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGlQY0JlNThJM0RLUkVNUWhONVJNaDgzcHdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS80QkZEOUJCQ0FBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9COTNFMTFDMEFB N0MxMUVGQTIxMjVENzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6KDANBgkqhkiG9w0BAQsFAAOCAQEAeAGguk0YS0oE1Yfy xP2VMk6RAU4EnXQfwb65iebA23Zy1S8hovtHgx4/6n/N0xUDB6dKCLTHW/7w7NJ4 qo7SMsAgqBYwjunmCGeZv1NhBiAB4BKoNt5brR5NNqXsGTaymazuir9sJKasGZnQ 2Wl5PQ4xzOHQNpVhtvFU5LlhxZwcb7xcWMVRSyMlM7/iEbBQNMaAkVMK4I/p8LV3 GKyq1UjPcnK6trGYmlrxkXfY8G6LinZ0grxv9zTVob+5k2PpXhprW+cCK0aDaIbU ybpVh34ZdxAZxdGLZKwpPKt9gukeF9r4Eti9nyU7/tAVKgTEl1fyJpn2nD/cMQ7e 0Kpnhg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:22:10 2025 by rpki-client