$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa File: 43CE5D5A236911EEAC33285DC4F9AE02.roa (raw, json) Hash identifier: frHxqt/yG7rr6fCbelfcQdfPa8QFjBnwgHPUnZu57so= Subject key identifier: 25:6C:05:15:84:13:BE:E3:04:F3:0A:9C:E2:57:AD:2D:2D:43:99:1E Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 015A Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa Signing time: Fri 03 Jan 2025 02:46:24 +0000 ROA not before: Fri 03 Jan 2025 02:46:24 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9328 IP address blocks: 161.152.0.0/16 maxlen: 16 192.112.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15 Validity Not Before: Jan 3 02:46:24 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67774f80-dc9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:7b:34:e5:94:4f:6b:e2:40:20:06:c7:02:27: e3:0f:53:94:be:20:3d:f0:0d:c7:75:ad:73:9b:5e: 2f:bd:6f:f3:84:cd:3b:94:8b:e0:15:d3:ee:5f:45: 69:a6:6b:d0:b2:cc:6c:79:5c:4b:41:1d:ea:42:fa: c6:b0:ac:80:cd:d5:5f:37:ee:39:75:5d:78:15:dd: 30:56:af:b1:52:84:be:9d:70:51:70:57:93:09:b8: f4:84:b6:93:fe:15:e8:c9:58:7e:19:f8:97:ce:7a: 2c:29:81:7a:f7:6c:a2:04:3d:69:0b:f7:88:15:e1: 39:db:99:b1:a4:80:d1:85:8a:c6:de:ed:18:48:90: 2d:cf:a2:5f:88:60:86:f4:f5:88:16:1f:c6:b1:28: da:0d:56:69:6f:80:81:fa:34:9e:1d:6e:23:c9:b1: 9c:5c:28:66:57:ee:af:c1:80:24:72:0a:16:aa:98: ec:9b:4a:75:80:a7:50:0c:77:11:89:90:ff:7c:f0: ad:49:b7:d9:bc:f1:42:1b:9c:5b:db:1c:b6:55:2c: fb:98:0e:8b:54:46:30:09:be:0a:d0:57:ae:71:2b: ee:a1:0c:84:9c:a7:75:a5:bf:79:12:1d:4a:82:8b: 52:8b:92:bb:a1:1a:0b:43:5d:56:fb:79:4b:63:1c: bb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:6C:05:15:84:13:BE:E3:04:F3:0A:9C:E2:57:AD:2D:2D:43:99:1E X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.152.0.0/16 192.112.215.0/24 Signature Algorithm: sha256WithRSAEncryption b1:b4:c9:c8:cb:9a:ff:79:cb:b3:55:00:e1:e7:9f:19:2a:51: 8c:de:27:5a:b4:c4:fc:f8:71:bf:44:72:78:79:a3:61:4a:85: b7:94:36:1f:34:fa:d8:24:95:73:fd:5e:16:52:de:ca:a1:a6: 40:d8:9b:02:4b:ff:1f:88:fb:aa:b9:22:85:37:3b:cd:da:1a: 17:6e:5b:1d:04:6e:58:5e:bc:67:9b:38:c1:05:e9:d8:2c:9b: c2:7c:e1:ef:b0:94:ad:21:7b:c6:56:d7:a3:00:d2:9d:42:91: 17:f5:47:0b:e8:cf:7b:3e:07:11:e3:9e:79:0b:b0:43:73:fc: b1:ae:12:42:ec:ec:6e:81:4a:3b:58:57:33:c3:c8:8f:20:47: 19:5b:29:54:50:7c:47:2f:c0:9e:f5:66:14:32:ef:dc:58:bb: 13:a0:88:cf:81:8a:b0:13:c9:a4:27:f4:d1:ec:19:3d:3d:61: 1c:e5:c0:9c:d9:eb:e6:7b:10:2b:79:94:6c:67:ff:29:86:42: 54:9e:8c:de:1b:44:2c:5f:65:2f:05:07:72:b8:28:6c:9e:1c: e5:7e:2d:c0:10:d7:ff:02:21:35:85:5c:c0:49:8e:b0:e3:d2: 64:a2:a7:e6:88:be:7f:57:44:3a:aa:a6:59:6f:7f:27:3f:46: ce:64:88:ff -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUwMTAzMDI0NjI0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3NGY4MC1kYzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Hs05ZRPa+JAIAbHAifjD1OUviA98A3Hda1zm14vvW/zhM07lIvgFdPuX0Vp pmvQssxseVxLQR3qQvrGsKyAzdVfN+45dV14Fd0wVq+xUoS+nXBRcFeTCbj0hLaT /hXoyVh+GfiXznosKYF692yiBD1pC/eIFeE525mxpIDRhYrG3u0YSJAtz6JfiGCG 9PWIFh/GsSjaDVZpb4CB+jSeHW4jybGcXChmV+6vwYAkcgoWqpjsm0p1gKdQDHcR iZD/fPCtSbfZvPFCG5xb2xy2VSz7mA6LVEYwCb4K0FeucSvuoQyEnKd1pb95Eh1K gotSi5K7oRoLQ11W+3lLYxy7cwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFCVsBRWE E77jBPMKnOJXrS0tQ5keMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkREMTUvQkRBREE4NjBDQzUyMTFFREE4MjkxRDEwQzRGOUFFMDIvNDNDRTVENUEy MzY5MTFFRUFDMzMyODVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwChmAMEAMBw1zANBgkqhkiG9w0BAQsFAAOCAQEAsbTJyMua /3nLs1UA4eefGSpRjN4nWrTE/Phxv0RyeHmjYUqFt5Q2HzT62CSVc/1eFlLeyqGm QNibAkv/H4j7qrkihTc7zdoaF25bHQRuWF68Z5s4wQXp2Cybwnzh77CUrSF7xlbX owDSnUKRF/VHC+jPez4HEeOeeQuwQ3P8sa4SQuzsboFKO1hXM8PIjyBHGVspVFB8 Ry/AnvVmFDLv3Fi7E6CIz4GKsBPJpCf00ewZPT1hHOXAnNnr5nsQK3mUbGf/KYZC VJ6M3htELF9lLwUHcrgobJ4c5X4twBDX/wIhNYVcwEmOsOPSZKKn5oi+f1dEOqqm WW9/Jz9GzmSI/w== -----END CERTIFICATE-----Generated at Sat Apr 5 23:42:49 2025 by rpki-client