$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa File: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (raw, json) Hash identifier: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk= Subject key identifier: 93:4B:EF:02:0F:B0:C5:4E:2E:8E:2B:8E:60:6A:3C:D6:59:DD:A6:2E Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 0189 Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa Signing time: Wed 18 Dec 2024 16:13:40 +0000 ROA not before: Wed 18 Dec 2024 16:13:40 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 2511 IP address blocks: 192.5.216.0/24 maxlen: 24 192.26.94.0/24 maxlen: 24 192.47.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:06:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Dec 18 16:13:40 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6762f4b4-c237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e6:2d:43:a8:2f:09:e1:22:a7:7a:6f:74:ac: b6:60:ce:60:94:d4:6e:52:e8:f1:ec:c6:4a:af:cc: 29:b6:ae:25:cb:5f:60:68:34:78:0a:39:7e:4c:ab: 26:66:bc:6d:24:fb:80:15:97:2a:00:92:34:c8:6a: a2:f7:59:f9:e6:a0:d2:fb:7e:91:b6:0b:2f:75:cf: a6:d7:02:a9:6f:08:a9:9b:06:9f:ca:46:37:f9:1b: e9:37:8b:d0:b7:6a:fa:7c:d6:40:6c:ad:8c:59:79: 40:15:aa:60:f0:ee:33:6a:19:94:ac:03:3c:08:fd: 3a:3b:7a:0c:14:87:bf:87:66:40:45:a7:31:bf:e3: d9:06:c2:7c:ec:55:84:f5:5a:2f:bb:f0:b8:23:5d: a5:81:c5:2c:87:47:af:ae:fb:7b:03:6c:e1:22:1b: b1:ae:ac:e7:cd:3f:04:57:b8:c0:2a:62:fc:c8:9b: 12:6b:c9:3d:73:30:8d:41:f7:46:43:12:29:e7:15: 28:dc:e1:e3:27:ac:78:67:85:28:d5:09:b3:ba:e7: 98:9e:9b:14:3e:cc:77:d3:75:d6:c4:f1:98:38:dc: 25:5a:1b:99:1d:af:01:39:39:7c:7e:21:2f:c2:8a: ab:36:07:9b:dd:ff:a2:0e:8d:aa:17:58:10:aa:cb: 19:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4B:EF:02:0F:B0:C5:4E:2E:8E:2B:8E:60:6A:3C:D6:59:DD:A6:2E X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.5.216.0/24 192.26.94.0/24 192.47.167.0/24 Signature Algorithm: sha256WithRSAEncryption af:7e:ac:a0:af:46:f9:21:bf:e1:b5:52:46:96:87:7c:e7:46: d0:6c:38:1c:df:92:9a:0e:f1:e9:b3:20:46:f5:db:0d:e5:dc: 57:53:8b:59:ce:41:77:3a:85:61:b0:95:94:4d:5e:bf:bd:ef: f4:18:b8:f8:83:a3:3a:87:10:76:3f:c6:2f:7e:9d:78:13:27: bd:27:44:2a:d9:2e:37:59:22:fd:e0:a0:f9:35:e4:0d:90:7a: 12:70:22:37:d9:90:27:fe:73:f3:29:a6:27:05:90:88:07:57: 0f:f1:9c:b0:a6:df:71:87:8b:3b:17:58:04:5f:62:b8:05:67: c3:23:ee:54:e8:1f:8d:ca:4a:a7:17:b5:42:9a:81:1e:7a:e7: 45:bf:62:fe:b4:7c:99:8a:7e:8a:3a:c2:df:b4:5d:c8:06:8a: 97:af:ad:cf:cf:37:28:a6:02:5a:b2:64:cf:01:1c:46:ba:7a: d5:18:92:c0:a3:e5:db:f9:90:1f:ee:65:48:19:bd:5f:59:a4: 3a:be:88:32:54:0a:9c:7a:63:29:a3:5f:5f:fa:43:93:98:55: 58:b7:95:35:48:a9:84:05:9a:a0:f4:f8:65:1e:20:c1:6d:19: 5e:3b:09:f1:49:72:02:e5:cd:df:b1:f1:41:58:10:b7:6d:ed: fe:36:f5:5a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjQxMjE4MTYxMzQwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZjRiNC1jMjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+YtQ6gvCeEip3pvdKy2YM5glNRuUujx7MZKr8wptq4ly19gaDR4Cjl+TKsm ZrxtJPuAFZcqAJI0yGqi91n55qDS+36Rtgsvdc+m1wKpbwipmwafykY3+RvpN4vQ t2r6fNZAbK2MWXlAFapg8O4zahmUrAM8CP06O3oMFIe/h2ZARacxv+PZBsJ87FWE 9Vovu/C4I12lgcUsh0evrvt7A2zhIhuxrqznzT8EV7jAKmL8yJsSa8k9czCNQfdG QxIp5xUo3OHjJ6x4Z4Uo1QmzuueYnpsUPsx303XWxPGYONwlWhuZHa8BOTl8fiEv woqrNgeb3f+iDo2qF1gQqssZqQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJNL7wIP sMVOLo4rjmBqPNZZ3aYuMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMUEvQjQ1RjNGQzQ4MTlBMTFFRDhENjFCQTJCQzRGOUFFMDIvNEMzQTg2OTYx NERGMTFFRUFCNDZBODZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADABdgDBADAGl4DBADAL6cwDQYJKoZIhvcNAQELBQADggEB AK9+rKCvRvkhv+G1UkaWh3znRtBsOBzfkpoO8emzIEb12w3l3FdTi1nOQXc6hWGw lZRNXr+97/QYuPiDozqHEHY/xi9+nXgTJ70nRCrZLjdZIv3goPk15A2QehJwIjfZ kCf+c/MppicFkIgHVw/xnLCm33GHizsXWARfYrgFZ8Mj7lToH43KSqcXtUKagR56 50W/Yv60fJmKfoo6wt+0XcgGipevrc/PNyimAlqyZM8BHEa6etUYksCj5dv5kB/u ZUgZvV9ZpDq+iDJUCpx6YymjX1/6Q5OYVVi3lTVIqYQFmqD0+GUeIMFtGV47CfFJ cgLlzd+x8UFYELdt7f429Vo= -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:13 2025 by rpki-client