$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/2072597E691311EF82B0FC62C4F9AE02.roa File: 2072597E691311EF82B0FC62C4F9AE02.roa (raw, json) Hash identifier: Y3bQNy1ojyOB4N21qfu+0X9uUvLU+z0WanHBys0zBlU= Subject key identifier: E7:53:D3:B1:77:3E:EE:5E:41:B9:53:4A:69:06:1E:EC:8F:A1:19:B4 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 02DF Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/2072597E691311EF82B0FC62C4F9AE02.roa Signing time: Wed 27 Nov 2024 01:34:54 +0000 ROA not before: Wed 27 Nov 2024 01:34:54 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137545 IP address blocks: 223.27.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A Validity Not Before: Nov 27 01:34:54 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6746773e-923e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:91:38:22:d6:ac:1b:4a:26:8e:6f:f1:c0:83: 5a:1f:44:2f:d4:1e:17:c8:5e:be:82:b3:8a:3f:69: 19:0b:8d:fd:1e:f2:e9:5a:9f:e8:ac:e6:f4:6f:5b: 24:26:d5:bf:88:97:5e:a0:80:ac:c8:69:65:59:a0: 51:de:ba:26:f0:bb:04:3d:b9:29:9c:d1:32:a6:95: ad:98:90:4d:d0:31:52:5e:3c:99:e4:45:15:fc:d3: e3:b2:8f:77:41:90:41:42:a8:2f:3d:6c:9f:f6:c9: 9c:90:7d:c4:40:80:4e:03:30:13:21:b3:fc:5f:ee: 29:7c:7e:e9:fc:4d:bc:5a:ee:8f:c2:06:f5:55:33: 10:1f:c5:2d:76:29:4d:b6:49:61:64:e9:8a:6f:aa: 6f:76:d5:79:b1:86:7b:23:00:25:7e:68:42:fd:72: 51:f9:59:7b:7e:fd:42:30:c6:e4:cb:43:1a:30:33: c3:13:49:5d:ad:2e:f1:5a:43:ce:f5:f6:7e:41:95: e9:4d:e9:a1:41:8c:fd:e9:72:ee:dc:a6:cd:43:0a: 44:18:be:ba:56:36:ca:ec:e4:2d:2c:a0:13:f3:4c: f9:42:20:80:ef:89:79:38:ec:93:de:e2:53:67:93: e9:d5:c0:cc:19:81:f1:47:21:85:93:bb:0d:b6:71: 02:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:53:D3:B1:77:3E:EE:5E:41:B9:53:4A:69:06:1E:EC:8F:A1:19:B4 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/2072597E691311EF82B0FC62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.27.206.0/24 Signature Algorithm: sha256WithRSAEncryption 95:12:f7:fa:e2:f2:14:30:c0:16:a6:d2:03:84:74:b3:a1:b1: f9:7c:fe:90:f9:29:85:e7:9d:3d:7c:5a:7d:0e:ca:da:d3:f1: 05:3e:dc:5c:af:3a:d0:5c:fd:99:5c:38:a9:01:fc:1b:e1:47: 53:01:4c:eb:cf:3f:f2:88:ac:c9:5a:f2:13:a4:5e:80:ef:e7: 4e:84:e1:16:8c:35:3e:64:5c:04:87:42:c9:f6:50:b0:8d:a3: e4:5e:17:49:a5:e1:ae:d3:46:44:cf:a4:9a:72:4d:01:00:de: a4:62:29:ba:89:18:05:ea:61:16:13:3f:bc:d5:85:dd:89:90: 11:da:8b:0b:ba:5f:7e:87:ec:1c:8c:3a:43:15:ab:ab:4e:8b: ef:42:37:b3:d4:6a:d4:75:22:44:49:14:73:fc:14:3f:b1:00: bf:17:e7:b8:91:d4:01:d0:d2:84:cf:c0:d0:23:8b:29:4f:c2: d2:a3:ce:8b:98:2b:39:72:40:20:8f:1e:5c:f6:2a:09:c0:33: f3:f5:15:75:23:d0:91:51:a9:ce:7d:81:04:b1:4a:88:46:f0: 0c:d5:38:4d:0b:5a:86:cf:07:f8:09:62:e3:66:30:5d:ed:49: 00:51:b4:e5:82:a5:43:95:58:60:02:90:2a:9a:79:8c:cd:ba: 2b:b4:97:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQxMTI3MDEzNDU0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2NzczZS05MjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpE4ItasG0omjm/xwINaH0Qv1B4XyF6+grOKP2kZC439HvLpWp/orOb0b1sk JtW/iJdeoICsyGllWaBR3rom8LsEPbkpnNEyppWtmJBN0DFSXjyZ5EUV/NPjso93 QZBBQqgvPWyf9smckH3EQIBOAzATIbP8X+4pfH7p/E28Wu6Pwgb1VTMQH8UtdilN tklhZOmKb6pvdtV5sYZ7IwAlfmhC/XJR+Vl7fv1CMMbky0MaMDPDE0ldrS7xWkPO 9fZ+QZXpTemhQYz96XLu3KbNQwpEGL66VjbK7OQtLKAT80z5QiCA74l5OOyT3uJT Z5Pp1cDMGYHxRyGFk7sNtnECUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOdT07F3 Pu5eQblTSmkGHuyPoRm0MB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvMjA3MjU5N0U2 OTEzMTFFRjgyQjBGQzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfG84wDQYJKoZIhvcNAQELBQADggEBAJUS9/ri8hQwwBam 0gOEdLOhsfl8/pD5KYXnnT18Wn0OytrT8QU+3FyvOtBc/ZlcOKkB/BvhR1MBTOvP P/KIrMla8hOkXoDv506E4RaMNT5kXASHQsn2ULCNo+ReF0ml4a7TRkTPpJpyTQEA 3qRiKbqJGAXqYRYTP7zVhd2JkBHaiwu6X36H7ByMOkMVq6tOi+9CN7PUatR1IkRJ FHP8FD+xAL8X57iR1AHQ0oTPwNAjiylPwtKjzouYKzlyQCCPHlz2KgnAM/P1FXUj 0JFRqc59gQSxSohG8AzVOE0LWobPB/gJYuNmMF3tSQBRtOWCpUOVWGACkCqaeYzN uiu0lyI= -----END CERTIFICATE-----Generated at Mon Apr 7 03:12:34 2025 by rpki-client