$ rpki-client -vvf rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/18E1793CD13411EE9EEE2F86C4F9AE02.roa File: 18E1793CD13411EE9EEE2F86C4F9AE02.roa (raw, json) Hash identifier: sPtVs53bSiEnKQBpC6mQNEMcK8QGbiyEvPYg/bLQ/os= Subject key identifier: 3D:83:47:5E:BC:C9:F9:58:40:27:BA:0C:4F:63:5F:1E:23:DA:68:39 Certificate issuer: /CN=A913150F/serialNumber=663F4D5FC8270A4420FE1E61F91ADFA837FF1EE4 Certificate serial: AD Authority key identifier: 66:3F:4D:5F:C8:27:0A:44:20:FE:1E:61:F9:1A:DF:A8:37:FF:1E:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/18E1793CD13411EE9EEE2F86C4F9AE02.roa Signing time: Wed 15 Jan 2025 04:47:17 +0000 ROA not before: Wed 15 Jan 2025 04:47:17 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38325 IP address blocks: 112.78.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.crl rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913150F Validity Not Before: Jan 15 04:47:17 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67873dd5-2521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d3:e5:88:46:2a:f8:ff:a1:82:b4:0d:13:fd: 3c:db:d0:53:9f:82:c3:7e:57:40:34:bf:b4:6f:8f: 47:28:45:76:f9:32:c2:7f:90:72:f6:a1:75:7e:e7: a6:0f:e2:5e:91:bd:8e:9f:9c:6a:c3:38:91:a9:49: 44:6e:bc:56:99:db:02:41:6d:07:ac:7f:f2:12:b3: db:3d:23:c4:bd:37:61:60:83:6a:c7:df:80:d3:33: 07:55:e3:cc:76:bc:83:de:0a:f8:f7:2b:af:d8:38: 7e:de:ab:6a:94:9d:ab:89:76:37:49:97:4b:82:f6: 51:3a:1a:0d:ac:fc:62:f3:13:c9:d4:10:b6:08:25: 7d:f5:44:aa:ad:34:14:6a:06:04:37:15:16:07:60: fc:37:15:ed:58:1e:f4:c5:50:77:0d:e6:22:33:f8: 89:7c:ef:2b:6c:8d:7a:ae:73:f7:26:e0:bc:e8:3f: 48:9e:dd:04:d2:c6:d9:f5:aa:58:bd:00:0a:78:d0: 21:02:8c:80:0d:68:2a:b5:1b:d2:25:9a:5c:3b:71: 13:b7:5f:41:e3:b5:09:a6:6a:be:f8:9c:18:3c:d6: eb:67:12:e9:02:b4:ab:c3:06:ac:1d:2f:c2:52:53: a3:4c:01:a9:b2:de:ef:62:15:97:fa:e8:8d:89:d6: 8c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:83:47:5E:BC:C9:F9:58:40:27:BA:0C:4F:63:5F:1E:23:DA:68:39 X509v3 Authority Key Identifier: keyid:66:3F:4D:5F:C8:27:0A:44:20:FE:1E:61:F9:1A:DF:A8:37:FF:1E:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zj9NX8gnCkQg_h5h-RrfqDf_HuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913150F/57719854D13311EEAA20DC84C4F9AE02/18E1793CD13411EE9EEE2F86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.78.56.0/21 Signature Algorithm: sha256WithRSAEncryption 23:c6:83:23:a4:5d:11:d4:05:07:e5:f1:6c:68:29:6e:bb:be: 6a:d0:91:b2:42:02:d7:7f:09:7d:6c:f8:39:2b:78:f1:f5:be: b5:69:61:8c:e5:bd:69:78:6a:eb:02:88:f0:f8:8b:af:a6:f8: 79:a0:c7:00:c1:e0:fc:ce:d3:60:51:07:93:39:0e:99:25:f2: 5e:74:c5:b9:9f:77:a3:ac:77:d0:e7:ff:35:84:19:47:c8:99: 03:3f:be:65:72:08:c4:c5:fb:da:25:ce:69:f1:47:bc:ac:56: ec:50:c3:e4:4d:d3:2a:7f:36:89:cc:f3:c1:cf:80:92:08:df: 99:4d:71:98:14:22:f9:bd:f2:0d:c7:7b:8b:22:31:c2:56:0d: 08:c8:c3:5d:26:4f:00:96:11:19:c6:e5:aa:f7:0f:8d:86:db: f9:fd:9b:bb:67:bc:cf:d6:14:b0:88:07:01:59:f5:34:b5:37: b6:1e:fe:4e:95:e0:d3:1a:26:f5:40:04:c3:d5:ea:b5:d3:6b: 4c:fa:83:bf:73:f2:f9:c6:36:3c:ab:ab:e3:88:a4:ce:51:0a: 5d:c9:88:ae:c0:4f:55:f4:6d:17:6d:ca:a0:ae:9e:8e:24:3d: 69:b0:78:5b:d3:90:4a:6d:c9:f4:ef:f0:fc:01:62:bc:15:3a: 5e:56:91:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1MEYxMTAvBgNVBAUTKDY2M0Y0RDVGQzgyNzBBNDQyMEZFMUU2MUY5MUFERkE4 MzdGRjFFRTQwHhcNMjUwMTE1MDQ0NzE3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3M2RkNS0yNTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdPliEYq+P+hgrQNE/0829BTn4LDfldANL+0b49HKEV2+TLCf5By9qF1fuem D+Jekb2On5xqwziRqUlEbrxWmdsCQW0HrH/yErPbPSPEvTdhYINqx9+A0zMHVePM dryD3gr49yuv2Dh+3qtqlJ2riXY3SZdLgvZROhoNrPxi8xPJ1BC2CCV99USqrTQU agYENxUWB2D8NxXtWB70xVB3DeYiM/iJfO8rbI16rnP3JuC86D9Int0E0sbZ9apY vQAKeNAhAoyADWgqtRvSJZpcO3ETt19B47UJpmq++JwYPNbrZxLpArSrwwasHS/C UlOjTAGpst7vYhWX+uiNidaM0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFD2DR168 yflYQCe6DE9jXx4j2mg5MB8GA1UdIwQYMBaAFGY/TV/IJwpEIP4eYfka36g3/x7k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTUwRi81NzcxOTg1NEQx MzMxMUVFQUEyMERDODRDNEY5QUUwMi9aajlOWDhnbkNrUWdfaDVoLVJyZnFEZl9I dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pqOU5YOGduQ2tRZ19oNWgtUnJmcURmX0h1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE1MEYvNTc3MTk4NTREMTMzMTFFRUFBMjBEQzg0QzRGOUFFMDIvMThFMTc5M0NE MTM0MTFFRTlFRUUyRjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBANwTjgwDQYJKoZIhvcNAQELBQADggEBACPGgyOkXRHUBQfl 8WxoKW67vmrQkbJCAtd/CX1s+DkrePH1vrVpYYzlvWl4ausCiPD4i6+m+HmgxwDB 4PzO02BRB5M5Dpkl8l50xbmfd6Osd9Dn/zWEGUfImQM/vmVyCMTF+9olzmnxR7ys VuxQw+RN0yp/NonM88HPgJII35lNcZgUIvm98g3He4siMcJWDQjIw10mTwCWERnG 5ar3D42G2/n9m7tnvM/WFLCIBwFZ9TS1N7Ye/k6V4NMaJvVABMPV6rXTa0z6g79z 8vnGNjyrq+OIpM5RCl3JiK7AT1X0bRdtyqCuno4kPWmweFvTkEptyfTv8PwBYrwV Ol5WkRI= -----END CERTIFICATE-----Generated at Sun Apr 6 03:57:36 2025 by rpki-client