$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa File: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (raw, json) Hash identifier: lg62QlYMqjfdPrlhdfFEapPKxJAEOZfWw6bA0op19ko= Subject key identifier: 5C:3B:EB:68:17:F8:00:FD:C8:D3:98:DF:9B:72:B8:B7:C0:00:AD:F6 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 0966 Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa Signing time: Mon 24 Mar 2025 20:30:13 +0000 ROA not before: Mon 24 Mar 2025 20:30:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140603 IP address blocks: 203.24.61.0/24 maxlen: 24 2001:df3:8f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2406 (0x966) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342, serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: Mar 24 20:30:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=67e1c0d5-a3d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8a:8b:ec:95:15:9f:44:8a:41:3c:2b:d9:94: ad:f0:39:6d:c1:eb:5b:d0:73:23:d4:2d:da:6d:b1: 7d:bf:4b:ce:75:25:85:a9:ec:3c:1f:70:3f:9c:01: a7:e5:2f:27:b0:c2:52:cf:44:f8:f7:84:b9:b4:bd: 1f:c6:c5:ce:dc:63:98:ef:c3:d9:36:78:0a:7b:7b: f7:2f:d7:8a:01:44:86:0b:1a:c7:94:e9:3f:3a:49: 43:4e:0c:f2:41:ea:31:97:7e:c6:21:be:fd:ba:03: 86:9d:5b:e6:cc:45:7b:15:51:ec:30:38:6a:2c:61: 39:9a:1f:0b:68:2e:2c:bb:6f:bb:14:d6:f3:40:c6: 36:d8:9e:67:01:ef:93:7b:cc:7d:b1:01:70:29:48: 53:f7:74:3d:d5:56:4d:4c:79:e1:3a:e0:88:90:df: b8:70:73:3a:71:c8:9a:58:c9:c0:99:9a:a7:aa:e6: f3:a5:d1:db:c7:07:94:5e:d5:1c:da:c4:16:3c:0c: b3:15:a5:00:11:63:f0:0f:e7:d2:f1:1f:26:e8:0f: de:43:c3:6b:c1:ed:b3:a3:89:bf:97:d3:d3:15:eb: 74:44:77:be:19:dd:e0:88:04:e1:51:17:3d:b0:76: 2d:f9:c2:68:85:d2:3f:19:d8:c5:e0:4d:67:b9:74: 04:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:3B:EB:68:17:F8:00:FD:C8:D3:98:DF:9B:72:B8:B7:C0:00:AD:F6 X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.61.0/24 IPv6: 2001:df3:8f80::/48 Signature Algorithm: sha256WithRSAEncryption 93:d6:f4:cf:7b:22:c5:d6:50:94:26:16:93:56:c8:56:89:e3: 99:7f:eb:c2:c3:90:78:e8:76:6b:e3:8b:95:49:08:94:f4:06: b0:eb:b7:31:85:6d:7c:e7:8a:50:65:f1:60:21:df:0e:08:2f: 24:23:e7:4f:6d:8f:ae:35:1b:18:56:52:8c:b3:7b:87:03:b0: 9c:70:57:0f:80:62:70:fb:0b:da:a8:0d:7e:7c:4d:6a:9d:c3: b1:aa:3a:db:a4:a8:db:9d:10:e7:29:24:b5:9f:7f:80:31:7e: 94:2f:2c:f0:30:9e:aa:db:b5:52:cf:41:64:75:6f:60:33:b1: a2:b1:da:97:96:e3:9d:00:a0:41:4b:ab:fc:e8:a0:bd:34:04: 09:8a:05:8b:18:b0:89:ef:9f:2a:66:42:60:f0:00:72:21:af: 03:11:ec:0e:6f:04:97:0b:f9:57:17:d4:7c:aa:ac:13:ef:36: 56:b8:cd:85:ab:c6:91:d5:46:be:96:cf:6a:54:c1:d7:b8:ed: 6f:f2:55:34:f0:df:f9:c9:e8:96:e6:9a:21:b3:dd:ab:39:67: 39:71:c4:a4:f3:fa:3a:3d:92:71:a1:33:b4:33:d8:7f:65:01: 47:e2:56:f9:9f:cc:f1:22:36:20:ea:17:b8:16:75:d1:7d:0f: b5:e7:fb:7d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjUwMzI0MjAzMDEzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxYzBkNS1hM2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4qL7JUVn0SKQTwr2ZSt8Dltwetb0HMj1C3abbF9v0vOdSWFqew8H3A/nAGn 5S8nsMJSz0T494S5tL0fxsXO3GOY78PZNngKe3v3L9eKAUSGCxrHlOk/OklDTgzy Qeoxl37GIb79ugOGnVvmzEV7FVHsMDhqLGE5mh8LaC4su2+7FNbzQMY22J5nAe+T e8x9sQFwKUhT93Q91VZNTHnhOuCIkN+4cHM6cciaWMnAmZqnqubzpdHbxweUXtUc 2sQWPAyzFaUAEWPwD+fS8R8m6A/eQ8Nrwe2zo4m/l9PTFet0RHe+Gd3giAThURc9 sHYt+cJohdI/GdjF4E1nuXQE4wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFw762gX +AD9yNOY35tyuLfAAK32MB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjIzNDIvMEI0MTAwQzA4RThDMTFFQUJEMzQ1ODExQzRGOUFFMDIvNEQyM0E3N0U4 RThGMTFFQUIzMERDQTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLGD0wDwQCAAIwCQMHACABDfOPgDANBgkqhkiG9w0BAQsF AAOCAQEAk9b0z3sixdZQlCYWk1bIVonjmX/rwsOQeOh2a+OLlUkIlPQGsOu3MYVt fOeKUGXxYCHfDggvJCPnT22PrjUbGFZSjLN7hwOwnHBXD4BicPsL2qgNfnxNap3D sao626So250Q5ykktZ9/gDF+lC8s8DCeqtu1Us9BZHVvYDOxorHal5bjnQCgQUur /OigvTQECYoFixiwie+fKmZCYPAAciGvAxHsDm8Elwv5VxfUfKqsE+82VrjNhavG kdVGvpbPalTB17jtb/JVNPDf+cnoluaaIbPdqzlnOXHEpPP6Oj2ScaEztDPYf2UB R+JW+Z/M8SI2IOoXuBZ10X0Ptef7fQ== -----END CERTIFICATE-----Generated at Tue Apr 22 19:11:34 2025 by rpki-client