$ rpki-client -vvf rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/C562775017FD11EF9A320864C4F9AE02.roa File: C562775017FD11EF9A320864C4F9AE02.roa (raw, json) Hash identifier: mT/xhxJVAPolN6BiWxF1pYh0qrq0TTClAYLDrh0UW5A= Subject key identifier: 8A:95:A2:DB:8E:57:E6:76:7C:AA:9B:F6:B9:96:78:AC:6E:23:9A:F6 Certificate issuer: /CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Certificate serial: 74 Authority key identifier: EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/C562775017FD11EF9A320864C4F9AE02.roa Signing time: Sat 21 Dec 2024 05:19:10 +0000 ROA not before: Sat 21 Dec 2024 05:19:10 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 7575 IP address blocks: 203.2.32.0/22 maxlen: 22 203.2.36.0/24 maxlen: 24 203.2.37.0/24 maxlen: 24 203.2.38.0/24 maxlen: 24 203.2.39.0/24 maxlen: 24 203.2.40.0/22 maxlen: 22 203.2.41.0/24 maxlen: 24 203.2.44.0/22 maxlen: 22 203.2.48.0/22 maxlen: 22 203.2.60.0/24 maxlen: 24 203.2.61.0/24 maxlen: 24 203.15.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911945B Validity Not Before: Dec 21 05:19:10 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67664fce-4601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c7:50:f6:7a:18:f3:20:4f:bc:aa:47:ba:bb: 8e:69:87:ee:e8:cb:43:1c:0d:e7:b8:87:b4:54:e6: 09:cd:53:ac:c4:84:36:ec:47:ef:1f:a5:d8:b6:22: 39:cf:28:b1:2a:22:6e:d5:7f:15:5a:14:4a:7e:2b: d3:cb:63:e3:36:de:e1:24:d9:d1:c9:8e:8d:2f:83: 9d:24:31:c4:a3:f5:a1:51:c1:38:10:75:fa:f6:96: 8c:07:94:39:8a:65:f9:fc:ca:09:ae:02:b3:29:43: bf:59:8b:e9:05:b5:81:d5:fd:e6:ce:7d:23:27:42: a1:92:33:c2:04:c0:d6:06:2c:f3:28:15:f4:a3:28: 77:d4:e9:7c:e5:b7:48:0d:62:02:cb:3f:2b:4e:8d: dd:4e:f9:d1:1a:35:0a:a7:ad:f5:2d:06:7e:28:dc: 07:08:be:a7:56:41:4f:c3:5b:97:20:d6:15:6a:ca: b7:d0:66:5c:74:f5:0b:ff:64:78:ea:6d:4d:0c:57: 6b:1e:93:94:23:4f:77:71:c4:88:37:d6:c4:f5:72: 18:5a:ce:08:48:95:cf:b9:f1:4f:6a:9b:49:87:59: f9:c1:d3:7a:d5:bd:cc:df:62:56:3b:d6:4f:fa:4e: e2:63:13:cd:ae:18:4d:df:6a:c8:1e:b5:49:38:3d: 47:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:95:A2:DB:8E:57:E6:76:7C:AA:9B:F6:B9:96:78:AC:6E:23:9A:F6 X509v3 Authority Key Identifier: keyid:EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/C562775017FD11EF9A320864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.2.32.0-203.2.51.255 203.2.60.0/23 203.15.154.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:81:5d:41:b1:01:28:97:74:ad:30:63:b6:a3:e4:b3:64:90: bc:fe:41:88:85:fa:ec:11:e9:bc:50:8b:7a:91:5f:c2:ee:93: 78:4a:24:cb:a0:91:2f:33:fe:37:10:01:49:2f:1d:24:f5:ea: 48:ca:9b:0b:64:de:20:82:85:03:e2:fb:ae:b8:d5:00:20:de: 52:82:39:52:06:bf:03:f2:46:44:2f:3a:66:8c:98:6b:d5:b9: 74:b2:ad:7d:45:e7:c8:d2:fa:a8:8b:b1:6e:a9:fa:7b:19:c9: 2e:6b:49:09:4c:21:ea:9d:63:66:cc:d3:76:6a:a8:76:fc:18: c2:d5:1a:4e:a2:96:65:c6:4e:08:e2:1c:f3:72:14:a2:89:e0: 2d:5c:c1:2b:0c:0a:db:b9:b1:62:40:13:9d:88:91:6d:a6:b8: e0:15:fe:f4:04:5c:6d:17:19:1f:1a:56:20:a0:44:5b:23:aa: 94:3a:9c:74:b8:a6:3f:c4:6d:04:92:b8:f0:1d:aa:96:ef:5a: 6f:f6:b3:2d:7c:8f:de:f7:c8:c3:2d:80:92:a7:d2:fd:f3:27: e5:84:fd:53:41:4a:ea:d3:6a:07:fa:cb:3b:11:f3:66:67:bd: b3:95:8d:6f:00:c7:9d:a9:2a:c2:f5:e8:a2:6c:5c:14:4e:c6: e5:fd:71:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTQ1QjExMC8GA1UEBRMoRUIzMkRGOTI3NDM0QUM2RDNBODY4NDdEREZCQTNEMkU4 MTAwMTEzMTAeFw0yNDEyMjEwNTE5MTBaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NjY0ZmNlLTQ2MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFx1D2ehjzIE+8qke6u45ph+7oy0McDee4h7RU5gnNU6zEhDbsR+8fpdi2IjnP KLEqIm7VfxVaFEp+K9PLY+M23uEk2dHJjo0vg50kMcSj9aFRwTgQdfr2lowHlDmK Zfn8ygmuArMpQ79Zi+kFtYHV/ebOfSMnQqGSM8IEwNYGLPMoFfSjKHfU6Xzlt0gN YgLLPytOjd1O+dEaNQqnrfUtBn4o3AcIvqdWQU/DW5cg1hVqyrfQZlx09Qv/ZHjq bU0MV2sek5QjT3dxxIg31sT1chhazghIlc+58U9qm0mHWfnB03rVvczfYlY71k/6 TuJjE82uGE3fasgetUk4PUc/AgMBAAGjggKpMIICpTAdBgNVHQ4EFgQUipWi245X 5nZ8qpv2uZZ4rG4jmvYwHwYDVR0jBBgwFoAU6zLfknQ0rG06hoR937o9LoEAETEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NDVCLzNBQ0Y3MEMwMTdG RDExRUY4QzA4MzA2M0M0RjlBRTAyLzZ6TGZrblEwckcwNmhvUjkzN285TG9FQUVU RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNnpMZmtuUTByRzA2aG9SOTM3bzlMb0VBRVRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTQ1Qi8zQUNGNzBDMDE3RkQxMUVGOEMwODMwNjNDNEY5QUUwMi9DNTYyNzc1MDE3 RkQxMUVGOUEzMjA4NjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAzBggrBgEFBQcBBwEB/wQk MCIwIAQCAAEwGjAMAwQFywIgAwQCywIwAwQBywI8AwQAyw+aMA0GCSqGSIb3DQEB CwUAA4IBAQAagV1BsQEol3StMGO2o+SzZJC8/kGIhfrsEem8UIt6kV/C7pN4SiTL oJEvM/43EAFJLx0k9epIypsLZN4ggoUD4vuuuNUAIN5SgjlSBr8D8kZELzpmjJhr 1bl0sq19RefI0vqoi7Fuqfp7Gckua0kJTCHqnWNmzNN2aqh2/BjC1RpOopZlxk4I 4hzzchSiieAtXMErDArbubFiQBOdiJFtprjgFf70BFxtFxkfGlYgoERbI6qUOpx0 uKY/xG0EkrjwHaqW71pv9rMtfI/e98jDLYCSp9L98yflhP1TQUrq02oH+ss7EfNm Z72zlY1vAMedqSrC9eiibFwUTsbl/XGy -----END CERTIFICATE-----Generated at Sat Apr 5 01:30:32 2025 by rpki-client