$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa File: 3A77AE12CB9C11EC9230F70BC4F9AE02.roa (raw, json) Hash identifier: TwjuoGTydiIvsI8500O496Q/mOvNfgRtaZ3KwMAE5xE= Subject key identifier: E7:CE:97:EC:59:58:28:00:40:20:8D:DC:61:CD:B6:B9:6B:9A:04:5F Certificate issuer: /CN=A9116B43/serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06 Certificate serial: 061A Authority key identifier: B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa Signing time: Sun 02 Feb 2025 14:50:46 +0000 ROA not before: Sun 02 Feb 2025 14:50:46 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4594 IP address blocks: 202.74.0.0/22 maxlen: 22 202.74.0.0/24 maxlen: 24 202.74.1.0/24 maxlen: 24 202.74.2.0/24 maxlen: 24 202.74.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1562 (0x61a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B43 Validity Not Before: Feb 2 14:50:46 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679f8646-c2b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d0:b3:2f:fe:6e:ae:eb:86:a8:1e:28:47:09: c6:d1:0c:19:d9:34:61:63:ce:cd:be:15:84:5f:67: d2:4e:56:1a:f8:1c:10:54:80:9b:e6:d7:4a:f8:c6: c9:b5:1d:d4:f6:0f:44:cf:83:2e:6d:e6:ce:64:18: a3:e4:13:de:49:7d:7c:89:8d:56:a8:f2:e0:3c:30: 6c:4d:81:ab:52:97:67:d0:a6:61:dd:31:ab:41:1d: 65:f5:3e:bb:e4:04:05:5a:2a:fd:19:a7:b9:62:da: df:44:b1:42:b6:ae:ce:32:eb:a5:42:b9:c9:a7:25: 7d:b8:5a:ee:b3:f9:80:47:44:ac:fd:b7:14:a6:c6: 78:31:a9:8b:2c:63:3f:af:4f:b4:5e:e2:88:81:f7: 6d:43:4b:ff:b0:fe:b2:5a:7c:15:49:57:98:6a:83: 98:62:26:27:85:9e:7b:0d:50:7c:81:38:68:bb:6f: 94:82:45:a7:c5:a1:3d:70:a7:63:23:c6:ec:8a:44: 4d:a8:2c:97:e9:02:55:c0:35:99:8a:b2:32:52:22: b3:12:86:18:e0:43:67:55:d1:81:cb:ee:2b:e6:1b: 93:e2:bd:e7:72:8d:03:d1:c9:d9:85:9e:04:88:a4: ee:43:85:18:e2:f7:2a:29:2c:74:8d:2e:62:93:f6: f6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:CE:97:EC:59:58:28:00:40:20:8D:DC:61:CD:B6:B9:6B:9A:04:5F X509v3 Authority Key Identifier: keyid:B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.74.0.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:01:72:44:a7:9f:f9:32:1a:d6:09:53:9f:18:82:f2:de:1f: 88:89:7c:d6:22:de:0e:e5:db:45:54:32:75:e0:fd:79:e3:e9: 08:52:cd:bd:5d:0b:31:93:e7:36:e3:7e:3b:d1:5b:6d:90:ad: b5:bb:10:8c:3a:f8:0d:fb:e9:cb:9d:e4:3a:90:d6:20:d7:ee: bc:34:90:84:21:72:2a:c1:e1:d3:89:f2:cc:e3:6e:a4:82:ff: c3:0f:73:17:33:00:23:86:a2:64:91:25:07:95:bb:c0:4d:e2: 12:d8:7e:c2:8e:98:6b:4f:5e:2a:6b:c5:54:03:5f:18:36:92: ec:cb:56:ed:84:dd:57:45:04:c8:b2:09:62:68:57:e2:fe:cc: 72:41:2a:f8:0f:a4:df:2d:b4:27:64:c8:b6:56:6e:d1:61:f5: db:37:54:bb:29:02:19:e9:e4:ff:dc:81:3e:ba:cc:c5:d3:38: 54:b0:b1:24:82:b6:a5:73:72:2e:46:7a:06:9c:54:f6:44:0d: 55:0a:b0:f3:fc:4e:25:fc:50:b9:cf:12:75:4c:2b:3c:79:7b: 94:66:18:07:6f:24:84:c3:6d:82:06:36:58:fe:2c:0a:92:db: 73:05:a5:7c:f5:be:b0:17:4a:43:c3:ed:be:16:ee:f7:95:8f: 4d:c0:25:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNDMxMTAvBgNVBAUTKEIzRTAzMDE5NzRENkE0MDgzREI5RjQ5RDVBRDZFNUEx NTc3OTJBMDYwHhcNMjUwMjAyMTQ1MDQ2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlmODY0Ni1jMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNCzL/5uruuGqB4oRwnG0QwZ2TRhY87NvhWEX2fSTlYa+BwQVICb5tdK+MbJ tR3U9g9Ez4MubebOZBij5BPeSX18iY1WqPLgPDBsTYGrUpdn0KZh3TGrQR1l9T67 5AQFWir9Gae5YtrfRLFCtq7OMuulQrnJpyV9uFrus/mAR0Ss/bcUpsZ4MamLLGM/ r0+0XuKIgfdtQ0v/sP6yWnwVSVeYaoOYYiYnhZ57DVB8gThou2+UgkWnxaE9cKdj I8bsikRNqCyX6QJVwDWZirIyUiKzEoYY4ENnVdGBy+4r5huT4r3nco0D0cnZhZ4E iKTuQ4UY4vcqKSx0jS5ik/b2VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOfOl+xZ WCgAQCCN3GHNtrlrmgRfMB8GA1UdIwQYMBaAFLPgMBl01qQIPbn0nVrW5aFXeSoG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI0My81OTQyMUE0RThE N0MxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9zLUF3R1hUV3BBZzl1ZlNkV3RibG9WZDVL Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MtQXdHWFRXcEFnOXVmU2RXdGJsb1ZkNUtnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZCNDMvNTk0MjFBNEU4RDdDMTFFQjhEOEJENjBCQzRGOUFFMDIvM0E3N0FFMTJD QjlDMTFFQzkyMzBGNzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKSgAwDQYJKoZIhvcNAQELBQADggEBAI4BckSnn/kyGtYJ U58YgvLeH4iJfNYi3g7l20VUMnXg/Xnj6QhSzb1dCzGT5zbjfjvRW22QrbW7EIw6 +A376cud5DqQ1iDX7rw0kIQhcirB4dOJ8szjbqSC/8MPcxczACOGomSRJQeVu8BN 4hLYfsKOmGtPXiprxVQDXxg2kuzLVu2E3VdFBMiyCWJoV+L+zHJBKvgPpN8ttCdk yLZWbtFh9ds3VLspAhnp5P/cgT66zMXTOFSwsSSCtqVzci5GegacVPZEDVUKsPP8 TiX8ULnPEnVMKzx5e5RmGAdvJITDbYIGNlj+LAqS23MFpXz1vrAXSkPD7b4W7veV j03AJQ4= -----END CERTIFICATE-----Generated at Sun Apr 6 01:46:59 2025 by rpki-client