$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8EA288F62E9511E9896EFA1DC4F9AE02.roa File: 8EA288F62E9511E9896EFA1DC4F9AE02.roa (raw, json) Hash identifier: 7HqOnLpZm+A/vwRmSQHLC5scxprHPl3diogTB/9e/W0= Subject key identifier: 98:2C:98:70:BD:DF:63:25:06:E5:BA:45:05:31:E0:3E:20:39:1D:77 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 1031 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8EA288F62E9511E9896EFA1DC4F9AE02.roa Signing time: Tue 30 Apr 2024 18:26:33 +0000 ROA not before: Tue 30 Apr 2024 18:26:33 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 45782 IP address blocks: 210.4.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4145 (0x1031) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Apr 30 18:26:33 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663137d9-326b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:88:f7:d6:b0:c3:4b:37:d9:89:9c:79:b2:3e: 75:11:fd:f2:b5:a9:e5:7c:83:c1:76:4d:dc:ab:4c: 83:cd:56:e4:72:3f:10:80:39:85:67:bb:b8:a3:ce: 8f:0b:d2:d0:9d:24:aa:a2:ae:65:e7:d9:ba:c0:ec: 7b:5d:2f:70:89:fb:c0:c7:20:53:dc:09:18:02:91: 25:3d:8e:48:08:df:7e:98:52:74:7f:66:a2:d6:98: 9d:90:33:80:40:52:57:5b:ad:85:63:93:3d:b9:c2: 36:b9:90:ce:e3:00:06:75:aa:45:20:80:b2:02:b0: 36:b6:f7:31:e1:e2:fb:aa:e4:50:3a:5d:40:2b:16: c2:b9:ad:88:e2:6d:56:af:80:d2:d5:d6:a1:01:01: 24:a8:3d:59:af:2b:cc:72:5e:9c:db:68:5c:32:44: e7:09:bc:43:a6:10:19:a5:1f:bc:bb:64:72:8a:e0: 83:d1:23:b4:a3:c1:a2:7a:a0:71:6b:ec:a1:11:88: 36:cd:23:19:99:2b:46:83:18:ed:6b:68:23:f3:df: 3c:5b:60:5d:21:c4:c6:56:c4:e3:26:17:39:29:8a: 66:c3:0b:da:57:0f:d2:01:1c:67:36:4b:14:ad:6d: 93:6b:5c:ff:d7:b8:64:54:3b:65:b5:22:aa:f5:96: 5c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2C:98:70:BD:DF:63:25:06:E5:BA:45:05:31:E0:3E:20:39:1D:77 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8EA288F62E9511E9896EFA1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.4.6.0/24 Signature Algorithm: sha256WithRSAEncryption bc:1f:b9:de:a6:be:48:c6:e8:60:d7:5f:76:6a:39:0a:f5:c1: 9a:4e:d4:c3:60:ad:aa:58:48:27:e0:85:f9:fe:a0:d0:9e:af: 62:24:c3:5a:1e:3a:c3:f6:5f:74:1f:ed:1d:6f:df:a1:c1:36: f4:fa:dc:9c:d7:a8:42:e8:c2:7c:50:f2:21:b0:fa:65:75:0a: b2:10:df:08:f9:e5:2a:b1:f2:12:41:43:e8:3d:aa:84:2f:32: b4:d7:45:da:09:46:a2:48:90:c0:ea:80:ff:49:04:e7:cd:33: be:0e:d0:55:12:35:75:80:bd:d4:72:6a:c1:ea:de:e1:e4:09: 3c:64:7e:30:ff:7f:d3:47:cf:37:7d:0f:4b:a3:d1:73:82:7d: 85:5a:86:de:57:6c:f1:e4:83:6a:05:d6:a5:d1:ca:72:e8:f2: ad:53:e6:bd:fc:7f:b9:da:61:a3:77:1f:f8:5c:ef:17:6b:d4: a6:f8:93:86:0b:4e:d5:01:2b:4e:2d:23:36:04:c9:9e:ff:5f: a7:d8:10:b8:4e:ad:f0:79:40:1b:6d:46:f0:bb:31:2e:09:a8: 87:4c:d5:89:ac:27:35:7d:b5:14:13:7e:e8:fc:69:16:4c:f1: 08:9e:61:2a:83:87:c6:57:49:cb:3d:a5:7c:f8:04:89:ad:01: cb:25:d6:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjQwNDMwMTgyNjMzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzdkOS0zMjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIj31rDDSzfZiZx5sj51Ef3ytanlfIPBdk3cq0yDzVbkcj8QgDmFZ7u4o86P C9LQnSSqoq5l59m6wOx7XS9wifvAxyBT3AkYApElPY5ICN9+mFJ0f2ai1pidkDOA QFJXW62FY5M9ucI2uZDO4wAGdapFIICyArA2tvcx4eL7quRQOl1AKxbCua2I4m1W r4DS1dahAQEkqD1ZryvMcl6c22hcMkTnCbxDphAZpR+8u2RyiuCD0SO0o8GieqBx a+yhEYg2zSMZmStGgxjta2gj8988W2BdIcTGVsTjJhc5KYpmwwvaVw/SARxnNksU rW2Ta1z/17hkVDtltSKq9ZZcaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJgsmHC9 32MlBuW6RQUx4D4gOR13MB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvOEVBMjg4RjYy RTk1MTFFOTg5NkVGQTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSBAYwDQYJKoZIhvcNAQELBQADggEBALwfud6mvkjG6GDX X3ZqOQr1wZpO1MNgrapYSCfghfn+oNCer2Ikw1oeOsP2X3Qf7R1v36HBNvT63JzX qELownxQ8iGw+mV1CrIQ3wj55Sqx8hJBQ+g9qoQvMrTXRdoJRqJIkMDqgP9JBOfN M74O0FUSNXWAvdRyasHq3uHkCTxkfjD/f9NHzzd9D0uj0XOCfYVaht5XbPHkg2oF 1qXRynLo8q1T5r38f7naYaN3H/hc7xdr1Kb4k4YLTtUBK04tIzYEyZ7/X6fYELhO rfB5QBttRvC7MS4JqIdM1YmsJzV9tRQTfuj8aRZM8QieYSqDh8ZXScs9pXz4BImt Acsl1lA= -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:40 2025 by rpki-client