$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/AC3A00D268F611EFBDC1C345C4F9AE02.roa File: AC3A00D268F611EFBDC1C345C4F9AE02.roa (raw, json) Hash identifier: H7xrZOzZPQxCuJob9N/j2hDDJP833H9T1/f50kmyI3U= Subject key identifier: 11:53:9A:84:D5:48:67:CE:2A:5A:9A:10:69:D9:18:A4:0B:F6:4D:E2 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 02F0 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/AC3A00D268F611EFBDC1C345C4F9AE02.roa Signing time: Wed 27 Nov 2024 01:35:11 +0000 ROA not before: Wed 27 Nov 2024 01:35:11 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55325 IP address blocks: 115.31.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 752 (0x2f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A Validity Not Before: Nov 27 01:35:11 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6746774f-5460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bf:1a:d9:5b:32:54:6b:4e:a7:3d:95:67:fe: 7d:ba:55:02:c4:f7:5a:f2:df:1c:21:b6:3d:77:85: 3e:6b:09:7c:e7:58:33:7a:e7:7c:bb:43:6c:03:f7: 5f:bd:ab:ee:77:41:b1:73:59:18:43:d0:77:cf:8d: 2b:c4:53:13:53:30:a5:38:34:77:f3:3a:91:76:70: ff:80:81:04:b1:9d:5f:d6:58:4d:71:57:35:8d:96: 07:e2:02:04:59:5e:16:e5:32:56:26:84:c1:6c:5c: a3:10:63:97:3a:e8:df:67:e7:26:88:e3:a0:d4:43: 63:92:97:8f:ec:6a:f6:e6:8e:7d:bd:55:44:bb:8e: fc:60:8a:f4:72:aa:8a:81:7a:02:81:a7:2a:34:ba: d0:74:24:0b:e8:17:35:ff:ab:f5:7a:1b:b5:cd:58: 0b:0b:8a:55:74:71:22:ca:ab:fd:fc:6d:47:c6:df: 92:e2:01:e4:49:38:8a:da:e2:19:d1:20:2a:9e:bb: 7b:6c:05:ef:d4:9f:65:77:47:39:97:9f:1f:c4:ae: e8:4f:60:4c:f1:21:5e:66:d1:a0:37:81:ee:e8:1c: 29:54:27:51:d0:3f:76:e6:a8:13:02:96:95:92:a5: 16:43:73:74:51:6a:ce:48:4d:23:7e:25:1d:34:23: 82:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:53:9A:84:D5:48:67:CE:2A:5A:9A:10:69:D9:18:A4:0B:F6:4D:E2 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/AC3A00D268F611EFBDC1C345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.31.130.0/24 Signature Algorithm: sha256WithRSAEncryption 12:d1:8e:ea:5c:92:a5:66:cb:63:b7:66:59:5a:24:e5:5e:64: 31:41:d4:9d:05:47:7e:01:8d:77:12:5d:fa:34:1b:3b:bb:fb: 1b:9d:96:c0:1f:72:47:d4:c7:7f:66:fa:63:19:57:25:29:94: 47:68:e4:ac:b7:e9:58:f8:07:c6:5b:6f:8a:b2:f5:57:cf:d1: d7:68:75:de:dc:8f:37:5f:cd:48:26:51:5e:28:30:a6:60:42: fb:f8:26:c7:89:25:31:49:d7:e7:0d:ad:2d:6e:53:00:85:8c: 1d:3d:40:17:c9:9e:67:bb:47:7e:ce:e0:b3:ee:9b:9b:c5:19: 08:e3:d0:4c:86:4f:2f:8d:a4:6a:b3:d4:b3:ab:c5:5f:6a:ac: 53:15:96:8a:1a:19:33:27:a4:23:52:2a:4d:d0:2b:6b:d2:f0: 46:9d:9a:5e:eb:9a:dd:f9:13:1e:8a:47:c0:b8:78:2e:ac:54: 6f:fb:72:32:bd:c5:9f:7f:a4:5e:ba:51:8c:cd:93:75:6f:17: 77:f6:57:cb:e4:95:56:c5:c2:61:26:00:44:17:1a:ec:c4:7c: 57:8a:6b:d2:5c:a0:2b:ce:39:56:03:ae:bc:23:92:b1:6c:f9: be:d0:8c:8c:cf:5a:2c:d3:86:09:d7:38:e9:0a:f9:01:33:f4: 95:c1:da:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQxMTI3MDEzNTExWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2Nzc0Zi01NDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsL8a2VsyVGtOpz2VZ/59ulUCxPda8t8cIbY9d4U+awl851gzeud8u0NsA/df vavud0Gxc1kYQ9B3z40rxFMTUzClODR38zqRdnD/gIEEsZ1f1lhNcVc1jZYH4gIE WV4W5TJWJoTBbFyjEGOXOujfZ+cmiOOg1ENjkpeP7Gr25o59vVVEu478YIr0cqqK gXoCgacqNLrQdCQL6Bc1/6v1ehu1zVgLC4pVdHEiyqv9/G1Hxt+S4gHkSTiK2uIZ 0SAqnrt7bAXv1J9ld0c5l58fxK7oT2BM8SFeZtGgN4Hu6BwpVCdR0D925qgTApaV kqUWQ3N0UWrOSE0jfiUdNCOCywIDAQABo4IClTCCApEwHQYDVR0OBBYEFBFTmoTV SGfOKlqaEGnZGKQL9k3iMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvQUMzQTAwRDI2 OEY2MTFFRkJEQzFDMzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABzH4IwDQYJKoZIhvcNAQELBQADggEBABLRjupckqVmy2O3 ZllaJOVeZDFB1J0FR34BjXcSXfo0Gzu7+xudlsAfckfUx39m+mMZVyUplEdo5Ky3 6Vj4B8Zbb4qy9VfP0ddodd7cjzdfzUgmUV4oMKZgQvv4JseJJTFJ1+cNrS1uUwCF jB09QBfJnme7R37O4LPum5vFGQjj0EyGTy+NpGqz1LOrxV9qrFMVlooaGTMnpCNS Kk3QK2vS8Eadml7rmt35Ex6KR8C4eC6sVG/7cjK9xZ9/pF66UYzNk3VvF3f2V8vk lVbFwmEmAEQXGuzEfFeKa9JcoCvOOVYDrrwjkrFs+b7QjIzPWizThgnXOOkK+QEz 9JXB2tA= -----END CERTIFICATE-----Generated at Sun Apr 6 17:27:23 2025 by rpki-client