$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/B35D540E68F611EFB785D145C4F9AE02.roa File: B35D540E68F611EFB785D145C4F9AE02.roa (raw, json) Hash identifier: oyIjz/XYfgr26Spk6RY9XOtfUIT6X7uMOPMW03yZfAM= Subject key identifier: BA:D4:63:D5:FA:0A:35:72:E4:BB:01:EB:49:06:A8:D9:13:35:CE:3A Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 02E1 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/B35D540E68F611EFB785D145C4F9AE02.roa Signing time: Wed 27 Nov 2024 01:34:56 +0000 ROA not before: Wed 27 Nov 2024 01:34:56 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138691 IP address blocks: 203.114.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A Validity Not Before: Nov 27 01:34:56 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6746773f-e975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:44:f1:ba:d3:a4:63:63:56:0e:17:0b:63:0e: d4:7a:a0:f2:0a:7f:28:fa:ca:ba:ca:fb:2c:0e:6f: 74:59:b9:1a:ae:02:72:f7:f1:3c:be:de:fe:30:a7: c4:9b:41:8b:f5:98:50:9e:81:92:d5:4d:71:d1:71: e3:aa:b7:61:f7:4c:6f:40:41:98:b2:5f:88:41:7f: 29:22:e9:07:7a:68:74:d2:e9:d3:eb:1f:f5:0e:d3: a1:1d:07:31:c7:50:49:58:da:3f:e7:f2:32:a6:79: db:7d:dd:29:f7:ad:de:45:d6:cc:b5:2e:46:c7:b5: b4:a4:aa:18:60:66:61:ce:b5:91:9f:63:23:8e:3f: 2e:f7:82:fa:c5:2d:9c:61:1c:17:28:0b:20:78:e8: 2f:fa:6e:a8:dc:fd:a0:73:3c:dc:a8:9a:9d:d7:bf: 06:3c:a6:4b:3a:aa:bf:9a:1e:4d:b6:d7:6e:a7:7f: c0:fc:bd:2e:b5:5e:88:1b:17:be:05:b9:7b:95:07: 19:f0:6b:97:54:4d:a8:a5:0d:b5:fe:f1:94:a6:b5: 63:f5:c6:5c:ea:02:15:cf:9f:68:f7:27:9d:f3:f3: 2f:b1:12:7e:ce:48:a5:30:d5:35:91:79:43:44:ae: f1:6e:06:8d:6f:5d:b8:ab:7f:4a:4e:70:9c:a0:6d: ea:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D4:63:D5:FA:0A:35:72:E4:BB:01:EB:49:06:A8:D9:13:35:CE:3A X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/B35D540E68F611EFB785D145C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.114.68.0/24 Signature Algorithm: sha256WithRSAEncryption 38:4a:56:91:23:b3:48:c7:8e:e4:44:54:4e:56:ab:3a:13:7d: c3:ba:49:5c:45:fc:02:63:7a:15:ca:8a:d9:ee:fd:48:dd:ee: 02:03:9c:16:f3:50:64:ac:48:44:fa:52:67:ff:b8:e0:0b:48: b5:83:cc:70:9c:1a:40:d2:54:ec:ae:1d:5c:64:bb:f4:a3:aa: 94:ea:d6:25:1d:79:ac:55:99:48:d2:f3:cb:47:4c:b7:d0:02: 3f:3f:ff:04:d7:72:07:7c:1e:10:9e:53:f7:81:cd:29:fc:ae: 8d:9d:f3:55:b7:c9:e6:49:00:61:a7:e1:da:43:cc:64:e3:04: ea:91:c2:3d:73:45:c1:c6:9f:a6:c5:bb:9f:b6:80:be:25:a5: 93:f3:8f:85:84:a1:f8:e0:7d:f8:bf:07:3d:81:8e:77:b7:05: 40:53:08:fc:c3:62:a3:38:a0:1b:fd:c7:be:74:64:97:50:95: 9c:6c:3b:19:b2:52:5f:69:b5:9e:3f:f0:cf:6f:c5:39:d1:54: 20:ae:f0:e7:75:8d:e9:61:61:8a:a1:f5:6f:e3:43:1b:b1:a1: fe:c0:88:b5:a4:63:f6:b3:e2:ec:77:47:b0:1a:13:9a:f9:65: 86:a9:ca:98:e8:17:da:40:bf:8e:18:77:9c:cf:71:4e:42:8d: c5:48:f4:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQxMTI3MDEzNDU2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2NzczZi1lOTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUTxutOkY2NWDhcLYw7UeqDyCn8o+sq6yvssDm90WbkargJy9/E8vt7+MKfE m0GL9ZhQnoGS1U1x0XHjqrdh90xvQEGYsl+IQX8pIukHemh00unT6x/1DtOhHQcx x1BJWNo/5/Iypnnbfd0p963eRdbMtS5Gx7W0pKoYYGZhzrWRn2Mjjj8u94L6xS2c YRwXKAsgeOgv+m6o3P2gczzcqJqd178GPKZLOqq/mh5Nttdup3/A/L0utV6IGxe+ Bbl7lQcZ8GuXVE2opQ21/vGUprVj9cZc6gIVz59o9yed8/MvsRJ+zkilMNU1kXlD RK7xbgaNb124q39KTnCcoG3qMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLrUY9X6 CjVy5LsB60kGqNkTNc46MB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvQjM1RDU0MEU2 OEY2MTFFRkI3ODVEMTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLckQwDQYJKoZIhvcNAQELBQADggEBADhKVpEjs0jHjuRE VE5WqzoTfcO6SVxF/AJjehXKitnu/Ujd7gIDnBbzUGSsSET6Umf/uOALSLWDzHCc GkDSVOyuHVxku/SjqpTq1iUdeaxVmUjS88tHTLfQAj8//wTXcgd8HhCeU/eBzSn8 ro2d81W3yeZJAGGn4dpDzGTjBOqRwj1zRcHGn6bFu5+2gL4lpZPzj4WEofjgffi/ Bz2Bjne3BUBTCPzDYqM4oBv9x750ZJdQlZxsOxmyUl9ptZ4/8M9vxTnRVCCu8Od1 jelhYYqh9W/jQxuxof7AiLWkY/az4ux3R7AaE5r5ZYapypjoF9pAv44Yd5zPcU5C jcVI9KI= -----END CERTIFICATE-----Generated at Sun Apr 6 19:52:12 2025 by rpki-client