$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa File: ABC651E668F611EFBDC1C345C4F9AE02.roa (raw, json) Hash identifier: cAER3YKLvVpIlFa2HmbUxYe1iz95sgNYpvM/4V9O1FM= Subject key identifier: 2F:82:4B:EA:62:0B:61:3F:B2:6C:2B:D4:D2:9B:B6:0D:39:29:6F:E9 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 02EE Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa Signing time: Wed 27 Nov 2024 01:35:10 +0000 ROA not before: Wed 27 Nov 2024 01:35:10 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45796 IP address blocks: 103.23.120.0/22 maxlen: 24 115.31.158.0/24 maxlen: 24 115.31.164.0/24 maxlen: 24 223.27.200.0/24 maxlen: 24 223.27.232.0/24 maxlen: 24 223.27.237.0/24 maxlen: 24 2402:9b00::/32 maxlen: 32 2402:9b00:80::/48 maxlen: 48 2402:9b00:82::/48 maxlen: 48 2402:9b00:83::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 750 (0x2ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A Validity Not Before: Nov 27 01:35:10 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6746774d-552f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e1:bc:23:53:c9:ff:68:77:92:d7:df:a2:35: ab:fb:4a:f4:57:0c:49:a9:22:82:84:3b:a1:ed:c4: 0f:86:c8:43:f2:54:57:7b:3f:6a:0c:31:b8:e3:b6: 21:62:ec:70:bf:f3:f8:9b:d5:55:43:8b:31:c2:05: 9f:3a:96:86:41:9e:6a:1b:75:e7:82:c6:7b:e6:55: 46:c1:6b:65:61:1a:54:9f:86:ff:35:14:ea:7f:7b: 41:5a:36:a8:cd:56:e8:76:b3:ed:0f:fe:15:d0:69: 0c:20:f0:b6:de:8a:62:62:c5:82:1c:7d:27:7b:9c: 62:4a:f6:70:21:74:00:77:5b:e7:79:43:c2:32:5f: 99:6e:1f:33:3d:b5:fd:71:a4:18:93:db:89:73:5d: a6:f2:66:6b:6d:cc:61:44:d7:ae:e8:3a:bf:6e:57: 6a:79:60:16:01:8d:6e:55:3c:32:cf:27:b5:c8:d9: 00:7b:7c:83:22:34:03:a8:1c:db:d6:ed:38:6f:b4: e0:0e:0d:ad:be:84:b5:78:d9:d5:be:06:ac:fa:e0: 10:f3:08:ad:39:8b:87:70:1b:ec:fa:68:6c:19:f2: a2:96:97:18:18:a0:b4:da:1a:55:de:34:58:43:99: 7f:d0:04:d2:54:d3:8e:f8:e6:0e:2b:7d:f2:54:b2: 76:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:82:4B:EA:62:0B:61:3F:B2:6C:2B:D4:D2:9B:B6:0D:39:29:6F:E9 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.120.0/22 115.31.158.0/24 115.31.164.0/24 223.27.200.0/24 223.27.232.0/24 223.27.237.0/24 IPv6: 2402:9b00::/32 Signature Algorithm: sha256WithRSAEncryption 40:12:9d:0e:5b:26:b7:2a:c4:7e:67:df:47:2b:5b:e7:9d:a1: ef:ac:6a:aa:fa:f4:10:f5:a0:a2:32:b4:b4:be:02:70:9a:7e: 00:6f:d0:b6:58:e5:5a:8a:b6:51:88:3a:00:5f:28:48:22:41: 1c:62:09:c3:04:72:01:b1:cd:87:44:dc:55:77:e5:81:99:75: 44:23:29:f1:77:a6:3d:47:0f:e0:b6:43:d0:e0:d9:65:73:cb: 50:e9:d5:4d:bf:78:93:14:59:a4:99:01:b1:56:d9:09:e8:67: 09:05:de:69:66:f3:34:e9:a2:a0:56:d8:35:72:24:21:b7:1a: a6:08:ab:ca:c1:b7:da:dd:ca:36:c8:17:93:da:f5:15:ab:af: eb:0a:3f:a8:a5:85:9a:cc:3d:fd:04:59:8a:7b:77:79:b9:f7: 39:fd:6a:5e:5c:b9:d0:1d:99:c5:cb:90:dd:33:01:4c:dd:6f: 9d:3d:0c:fa:2a:40:79:6e:4e:1d:4b:31:cb:8f:9a:b0:d8:19: 9a:16:b1:43:58:40:55:ba:55:30:5a:99:6d:a8:b0:d2:84:73: 83:9f:ba:99:3f:70:17:70:56:86:bb:3a:36:ab:97:e0:f9:96: df:10:63:d3:c5:25:f3:c6:6d:ee:44:40:e1:69:be:fe:a7:13: b3:5d:56:6c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICAu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQxMTI3MDEzNTEwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2Nzc0ZC01NTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOG8I1PJ/2h3ktffojWr+0r0VwxJqSKChDuh7cQPhshD8lRXez9qDDG447Yh Yuxwv/P4m9VVQ4sxwgWfOpaGQZ5qG3XngsZ75lVGwWtlYRpUn4b/NRTqf3tBWjao zVbodrPtD/4V0GkMIPC23opiYsWCHH0ne5xiSvZwIXQAd1vneUPCMl+Zbh8zPbX9 caQYk9uJc12m8mZrbcxhRNeu6Dq/bldqeWAWAY1uVTwyzye1yNkAe3yDIjQDqBzb 1u04b7TgDg2tvoS1eNnVvgas+uAQ8witOYuHcBvs+mhsGfKilpcYGKC02hpV3jRY Q5l/0ATSVNOO+OYOK33yVLJ2VwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFC+CS+pi C2E/smwr1NKbtg05KW/pMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvQUJDNjUxRTY2 OEY2MTFFRkJEQzFDMzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnF3gDBABzH54DBABzH6QDBADfG8gDBADfG+gDBADfG+0w DQQCAAIwBwMFACQCmwAwDQYJKoZIhvcNAQELBQADggEBAEASnQ5bJrcqxH5n30cr W+edoe+saqr69BD1oKIytLS+AnCafgBv0LZY5VqKtlGIOgBfKEgiQRxiCcMEcgGx zYdE3FV35YGZdUQjKfF3pj1HD+C2Q9Dg2WVzy1Dp1U2/eJMUWaSZAbFW2QnoZwkF 3mlm8zTpoqBW2DVyJCG3GqYIq8rBt9rdyjbIF5Pa9RWrr+sKP6ilhZrMPf0EWYp7 d3m59zn9al5cudAdmcXLkN0zAUzdb509DPoqQHluTh1LMcuPmrDYGZoWsUNYQFW6 VTBamW2osNKEc4Ofupk/cBdwVoa7Ojarl+D5lt8QY9PFJfPGbe5EQOFpvv6nE7Nd Vmw= -----END CERTIFICATE-----Generated at Sun Apr 6 19:52:14 2025 by rpki-client