$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/AC9577F068F611EFBDC1C345C4F9AE02.roa File: AC9577F068F611EFBDC1C345C4F9AE02.roa (raw, json) Hash identifier: c8x4WauwQnDwDqZuEAJ4h64A3YhZdzAuusRUf8JYYN8= Subject key identifier: C0:FA:A2:07:B4:CA:FD:EC:37:7F:55:17:0D:16:B8:67:CD:F2:D0:9E Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 02F1 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/AC9577F068F611EFBDC1C345C4F9AE02.roa Signing time: Wed 27 Nov 2024 01:35:12 +0000 ROA not before: Wed 27 Nov 2024 01:35:12 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55927 IP address blocks: 115.31.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 753 (0x2f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A Validity Not Before: Nov 27 01:35:12 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67467750-7d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:67:fa:9c:cb:92:c4:3c:89:45:96:c0:49:a9: 29:35:85:7b:25:83:72:5b:82:bc:cd:81:80:a3:7f: 46:9e:59:ca:a8:d3:68:45:8e:ad:16:dc:b7:db:9c: c2:34:25:9d:d1:16:f8:3b:16:a7:46:ed:c3:7f:2a: 4f:07:0d:fa:84:a1:a9:c9:98:dd:cc:21:9d:6c:74: 21:f2:94:7c:80:21:a2:bb:a8:8c:fd:a4:4f:16:79: 5e:0f:87:6a:9f:ef:82:c7:45:20:80:c1:30:1e:2d: 63:26:2f:6e:e8:b5:3b:f0:4c:ab:81:76:0b:4a:9e: 35:c6:d6:d4:13:06:20:d6:0b:3a:ba:11:b7:11:2a: c7:b8:15:cd:9f:55:12:e0:ad:8a:69:af:a9:04:02: bd:b0:d4:f6:12:67:45:c3:7b:46:6a:a1:be:9d:0b: 03:b9:06:87:f2:65:07:d3:c9:4a:55:83:cc:b7:db: 9c:62:98:ec:a2:2c:99:4f:7c:ad:57:ed:ba:2e:ff: 22:2a:d4:9c:25:8e:d1:21:47:08:ba:2d:60:45:5d: 6c:b4:84:48:96:63:7e:da:24:ae:63:da:10:66:8c: cf:c4:3d:ef:99:9c:e7:e8:70:fc:b9:87:d7:cf:8e: 21:a2:7b:b4:40:82:ec:a3:75:b8:cd:5d:2e:46:5e: 03:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FA:A2:07:B4:CA:FD:EC:37:7F:55:17:0D:16:B8:67:CD:F2:D0:9E X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/AC9577F068F611EFBDC1C345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.31.191.0/24 Signature Algorithm: sha256WithRSAEncryption 61:42:4f:d1:0f:96:c6:52:8c:e3:8f:d6:ec:70:46:31:61:fa: 33:89:2b:2b:99:d5:79:c4:4d:6a:08:0b:e3:79:a6:07:f0:28: 24:63:02:64:cd:45:61:3f:c1:14:f0:43:27:98:9f:8f:16:a9: c3:16:d0:70:30:46:ea:6f:c9:77:bc:94:fd:38:fb:bc:79:e6: ba:e1:e9:d6:df:0c:ef:64:77:b1:91:d0:6b:4c:e0:7e:ae:b7: 36:b9:32:3b:3d:14:cc:16:f6:10:96:47:b6:94:81:a4:1a:a1: 99:33:d2:3b:b0:a2:bd:a8:85:93:91:11:f5:41:2b:06:d0:06: 4a:83:2f:e1:b8:af:39:77:66:32:93:49:e1:a3:ca:b4:9f:ca: 97:b3:37:90:93:e1:71:c2:6d:80:8e:46:ad:ed:c9:6d:e6:38: 79:12:6a:36:de:84:38:4d:8c:e8:8e:c9:1f:2b:6a:63:6a:c0: d8:c8:a5:b8:51:08:7f:1e:a3:ab:ff:c9:09:ba:38:da:e5:de: ec:db:10:e6:45:c1:47:bb:d6:10:ec:7f:67:b4:3f:4d:44:7b: 2e:6a:dc:0b:02:3e:04:56:c3:27:30:9e:33:25:04:b4:f2:12: 92:b5:4a:6d:d2:9e:51:33:50:48:9f:e3:a8:b6:af:87:d1:97: ab:4c:44:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQxMTI3MDEzNTEyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2Nzc1MC03ZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmf6nMuSxDyJRZbASakpNYV7JYNyW4K8zYGAo39GnlnKqNNoRY6tFty325zC NCWd0Rb4OxanRu3DfypPBw36hKGpyZjdzCGdbHQh8pR8gCGiu6iM/aRPFnleD4dq n++Cx0UggMEwHi1jJi9u6LU78EyrgXYLSp41xtbUEwYg1gs6uhG3ESrHuBXNn1US 4K2Kaa+pBAK9sNT2EmdFw3tGaqG+nQsDuQaH8mUH08lKVYPMt9ucYpjsoiyZT3yt V+26Lv8iKtScJY7RIUcIui1gRV1stIRIlmN+2iSuY9oQZozPxD3vmZzn6HD8uYfX z44honu0QILso3W4zV0uRl4DMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMD6oge0 yv3sN39VFw0WuGfN8tCeMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvQUM5NTc3RjA2 OEY2MTFFRkJEQzFDMzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABzH78wDQYJKoZIhvcNAQELBQADggEBAGFCT9EPlsZSjOOP 1uxwRjFh+jOJKyuZ1XnETWoIC+N5pgfwKCRjAmTNRWE/wRTwQyeYn48WqcMW0HAw RupvyXe8lP04+7x55rrh6dbfDO9kd7GR0GtM4H6utza5Mjs9FMwW9hCWR7aUgaQa oZkz0juwor2ohZOREfVBKwbQBkqDL+G4rzl3ZjKTSeGjyrSfypezN5CT4XHCbYCO Rq3tyW3mOHkSajbehDhNjOiOyR8ramNqwNjIpbhRCH8eo6v/yQm6ONrl3uzbEOZF wUe71hDsf2e0P01Eey5q3AsCPgRWwycwnjMlBLTyEpK1Sm3SnlEzUEif46i2r4fR l6tMRBs= -----END CERTIFICATE-----Generated at Sun Apr 6 23:40:48 2025 by rpki-client