$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/A173B894112711F0845DF16FC4F9AE02.roa File: A173B894112711F0845DF16FC4F9AE02.roa (raw, json) Hash identifier: 1FUidFpQdgyVeVd6dq7ydz7SnAOpAHmcB7Z6XzdkCnA= Subject key identifier: FF:74:BF:16:D0:8F:4B:F4:03:D2:10:04:E2:11:F5:E5:FB:24:C6:E4 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 0FE8 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/A173B894112711F0845DF16FC4F9AE02.roa Signing time: Fri 04 Apr 2025 07:37:39 +0000 ROA not before: Fri 04 Apr 2025 07:37:39 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 5089 IP address blocks: 139.190.224.0/21 maxlen: 21 139.190.232.0/24 maxlen: 24 139.190.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 10:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4072 (0xfe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Apr 4 07:37:39 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67ef8c43-a824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:55:24:89:15:4f:ce:c8:18:df:45:4c:f3:25: 69:df:b8:39:3f:03:f0:9e:8f:5b:f9:8d:86:1d:a5: 40:4a:bd:b6:20:03:03:8a:58:e9:74:d3:6d:74:04: 38:1a:4e:c2:94:30:60:a8:1e:bd:1a:ad:d5:54:b9: da:d0:bf:f5:a5:f7:b4:6c:41:1c:9d:b4:35:5b:d3: c0:68:fa:8b:7c:28:a4:df:d2:fd:82:d8:5d:a8:5a: 40:5c:86:c2:de:6e:2b:da:b0:0c:86:5f:df:fa:08: 9a:ea:56:9b:b1:4d:da:df:38:2d:e5:c3:97:99:57: 38:cd:f8:e5:96:41:b1:bc:c9:4a:67:e2:37:f5:c7: da:1e:4b:f2:43:c1:cc:8a:4d:3b:30:ef:fb:cd:4a: ee:83:2e:5a:7f:a2:7f:50:12:0c:18:b9:73:c6:c0: 1f:98:68:66:70:e7:3e:15:99:55:04:b7:49:ce:3b: 6e:70:b2:ad:27:91:cc:be:54:a1:7c:66:85:9c:16: cf:28:cb:62:66:53:7c:34:ac:4e:32:1d:ad:ba:2b: fd:f2:e4:74:ca:cd:2b:6e:8a:cc:0a:55:f9:a4:40: a6:80:87:a7:73:05:81:f3:ba:ab:f9:06:a3:2f:72: bb:04:ec:c2:de:eb:4f:85:e8:a0:65:50:5c:01:5e: 91:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:74:BF:16:D0:8F:4B:F4:03:D2:10:04:E2:11:F5:E5:FB:24:C6:E4 X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/A173B894112711F0845DF16FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.224.0-139.190.233.255 Signature Algorithm: sha256WithRSAEncryption 68:79:24:ab:2b:9d:74:d9:9f:c8:6b:6c:91:27:c3:dc:1c:48: 03:0f:b4:40:19:90:83:72:79:2d:0b:75:e7:5b:2e:bd:e7:53: 9c:f6:78:82:0e:ec:4a:32:7d:d4:80:3c:7b:a7:3f:99:cb:5a: cc:1d:20:84:0c:c0:d6:46:52:ab:e0:62:31:67:9b:0b:45:32: 53:e3:b0:35:9b:a3:b4:0a:4d:7d:21:36:03:d4:11:e6:20:e3: 10:f0:ab:5e:34:5b:e0:37:9d:6d:50:f0:49:11:6e:14:d7:3b: 6c:f5:55:d4:bc:32:af:73:12:74:f8:1a:b4:ec:40:d3:9c:47: 76:78:e8:62:f2:c3:a5:f1:5d:74:ed:69:cd:c3:57:f3:d9:8f: ec:32:50:fb:e7:ea:af:f7:94:47:b4:c5:92:a4:69:99:43:20: 57:e8:09:be:5c:b8:0d:65:08:43:2f:f4:62:1a:dd:37:90:86: 79:26:bf:c4:fa:1f:8d:1b:8d:93:7f:55:b5:4f:64:9a:9e:86: 64:e3:a0:7a:3d:ac:fd:e5:2e:aa:af:56:89:5d:38:80:c3:10: 29:2b:34:b4:b8:12:7c:85:63:87:54:05:a9:51:60:e5:6c:5a: d0:70:04:e2:28:fa:97:06:71:ee:1f:62:7f:14:da:86:94:28: bd:5d:92:86 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICD+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwNDA0MDczNzM5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VmOGM0My1hODI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVUkiRVPzsgY30VM8yVp37g5PwPwno9b+Y2GHaVASr22IAMDiljpdNNtdAQ4 Gk7ClDBgqB69Gq3VVLna0L/1pfe0bEEcnbQ1W9PAaPqLfCik39L9gthdqFpAXIbC 3m4r2rAMhl/f+gia6labsU3a3zgt5cOXmVc4zfjllkGxvMlKZ+I39cfaHkvyQ8HM ik07MO/7zUrugy5af6J/UBIMGLlzxsAfmGhmcOc+FZlVBLdJzjtucLKtJ5HMvlSh fGaFnBbPKMtiZlN8NKxOMh2tuiv98uR0ys0rborMClX5pECmgIencwWB87qr+Qaj L3K7BOzC3utPheigZVBcAV6RmQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFP90vxbQ j0v0A9IQBOIR9eX7JMbkMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvQTE3M0I4OTQx MTI3MTFGMDg0NURGMTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBYu+4AMEAYu+6DANBgkqhkiG9w0BAQsFAAOCAQEAaHkk qyuddNmfyGtskSfD3BxIAw+0QBmQg3J5LQt151suvedTnPZ4gg7sSjJ91IA8e6c/ mctazB0ghAzA1kZSq+BiMWebC0UyU+OwNZujtApNfSE2A9QR5iDjEPCrXjRb4Ded bVDwSRFuFNc7bPVV1Lwyr3MSdPgatOxA05xHdnjoYvLDpfFddO1pzcNX89mP7DJQ ++fqr/eUR7TFkqRpmUMgV+gJvly4DWUIQy/0YhrdN5CGeSa/xPofjRuNk39VtU9k mp6GZOOgej2s/eUuqq9WiV04gMMQKSs0tLgSfIVjh1QFqVFg5Wxa0HAE4ij6lwZx 7h9ifxTahpQovV2Shg== -----END CERTIFICATE-----Generated at Sat Apr 26 16:44:02 2025 by rpki-client