$ rpki-client -vvf rpki.apnic.net/member_repository/A9132933/F912F69A3EC811EBACF4721FC4F9AE02/F2A90B8C3ECD11EBADC7D32AC4F9AE02.roa File: F2A90B8C3ECD11EBADC7D32AC4F9AE02.roa (raw, json) Hash identifier: H0kHP8pBoH+bwHmlcJ0nDAtlDVRXDuWl/zy2MYQJc/k= Subject key identifier: 6F:DA:92:65:82:EB:ED:89:24:F6:41:90:C9:4E:44:BC:33:A2:0A:7D Certificate issuer: /CN=A9132933/serialNumber=A7FE128656822F2621A4A0FF956342780798C4F0 Certificate serial: 06B7 Authority key identifier: A7:FE:12:86:56:82:2F:26:21:A4:A0:FF:95:63:42:78:07:98:C4:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_4ShlaCLyYhpKD_lWNCeAeYxPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132933/F912F69A3EC811EBACF4721FC4F9AE02/F2A90B8C3ECD11EBADC7D32AC4F9AE02.roa Signing time: Wed 04 Dec 2024 22:00:37 +0000 ROA not before: Wed 04 Dec 2024 22:00:37 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137060 IP address blocks: 203.17.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132933/F912F69A3EC811EBACF4721FC4F9AE02/p_4ShlaCLyYhpKD_lWNCeAeYxPA.crl rsync://rpki.apnic.net/member_repository/A9132933/F912F69A3EC811EBACF4721FC4F9AE02/p_4ShlaCLyYhpKD_lWNCeAeYxPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_4ShlaCLyYhpKD_lWNCeAeYxPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 21:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1719 (0x6b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132933, serialNumber=A7FE128656822F2621A4A0FF956342780798C4F0 Validity Not Before: Dec 4 22:00:37 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6750d105-5c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:85:2a:a2:41:13:94:51:8b:0f:b8:ad:9c: ca:7c:44:3a:4e:ea:03:05:ee:3b:47:24:4b:c9:b8: fd:a8:a2:aa:50:ab:75:3d:68:b6:ca:55:27:82:67: ac:9d:7f:72:4a:bb:b0:3c:e2:d2:c0:ef:b5:e0:1b: a1:00:9d:d3:ee:67:36:26:69:5f:95:9a:18:84:8b: 9b:68:b8:9e:f2:d5:1d:a8:36:28:45:eb:67:ca:20: 93:23:93:06:d0:94:af:e3:02:f2:52:5d:53:94:27: 9d:bc:f9:7a:f0:31:8b:15:87:3e:85:c1:07:47:84: 70:e8:1d:8a:c1:78:c1:1b:6c:dc:49:7b:e7:aa:be: 65:36:00:1a:2a:25:ea:47:4f:e1:4a:8c:dc:a8:87: 2e:40:40:a0:d3:11:7e:18:6c:0d:27:f6:25:ab:15: dc:6b:10:25:15:60:cd:42:89:4f:11:7f:b0:10:9d: de:6e:e5:cd:9b:0c:7b:43:87:41:1a:8b:33:bf:77: 99:ee:9b:ce:a8:6c:f0:99:34:5f:1e:11:6c:53:d7: c3:07:a3:08:29:ee:32:02:09:27:0b:d8:ca:29:5a: 5a:14:16:92:91:92:c4:ea:e6:16:cc:18:00:f7:02: 6d:47:38:55:0a:e2:43:32:d7:ce:e2:d0:a9:5d:13: 29:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:DA:92:65:82:EB:ED:89:24:F6:41:90:C9:4E:44:BC:33:A2:0A:7D X509v3 Authority Key Identifier: keyid:A7:FE:12:86:56:82:2F:26:21:A4:A0:FF:95:63:42:78:07:98:C4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132933/F912F69A3EC811EBACF4721FC4F9AE02/p_4ShlaCLyYhpKD_lWNCeAeYxPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_4ShlaCLyYhpKD_lWNCeAeYxPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132933/F912F69A3EC811EBACF4721FC4F9AE02/F2A90B8C3ECD11EBADC7D32AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.17.154.0/24 Signature Algorithm: sha256WithRSAEncryption 24:69:2e:2d:e4:88:a8:f5:6e:cb:d0:e5:27:ed:b6:19:a8:6a: f1:4a:54:a2:99:6c:6d:e8:74:11:b2:f6:8f:ba:1d:8a:79:60: f1:7c:95:fe:c2:87:ec:c0:a3:d8:bc:22:ed:bb:f6:b1:4b:47: 18:14:cf:04:49:79:ef:b4:0b:d1:41:a6:e9:a1:54:c6:7a:7a: f7:1c:37:8d:90:8e:8d:59:fd:cd:14:90:5b:74:ed:75:09:91: 71:56:4d:9b:ae:54:0c:f9:05:aa:81:5f:c1:c9:7b:69:99:8d: a6:68:3e:7d:28:4e:74:98:59:e6:80:07:99:b6:0e:70:10:e1: e7:a7:f8:7b:16:dc:8c:f3:e3:0b:90:0d:57:0a:93:0a:cd:62: 20:1c:1c:f4:c0:d8:29:03:08:87:1d:ce:9e:c5:79:94:57:39: ad:5b:7b:75:bb:f3:59:dc:b7:7b:ab:b2:7b:24:be:9b:90:f7: 10:0f:86:a9:e7:58:15:51:e7:08:e9:dd:da:81:2b:c0:6d:0c: eb:60:f2:c5:c3:49:18:70:5b:6d:57:77:35:83:3f:f9:c1:af: 19:ec:4f:28:75:77:d0:1f:27:2e:b3:00:2f:30:6b:de:19:26: 6c:c9:1e:86:06:d5:34:81:ce:3d:47:4e:ee:36:4d:c6:f8:cb: 46:84:86:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI5MzMxMTAvBgNVBAUTKEE3RkUxMjg2NTY4MjJGMjYyMUE0QTBGRjk1NjM0Mjc4 MDc5OEM0RjAwHhcNMjQxMjA0MjIwMDM3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZDEwNS01YzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0KFKqJBE5RRiw+4rZzKfEQ6TuoDBe47RyRLybj9qKKqUKt1PWi2ylUngmes nX9ySruwPOLSwO+14BuhAJ3T7mc2JmlflZoYhIubaLie8tUdqDYoRetnyiCTI5MG 0JSv4wLyUl1TlCedvPl68DGLFYc+hcEHR4Rw6B2KwXjBG2zcSXvnqr5lNgAaKiXq R0/hSozcqIcuQECg0xF+GGwNJ/YlqxXcaxAlFWDNQolPEX+wEJ3ebuXNmwx7Q4dB Goszv3eZ7pvOqGzwmTRfHhFsU9fDB6MIKe4yAgknC9jKKVpaFBaSkZLE6uYWzBgA 9wJtRzhVCuJDMtfO4tCpXRMphwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG/akmWC 6+2JJPZBkMlORLwzogp9MB8GA1UdIwQYMBaAFKf+EoZWgi8mIaSg/5VjQngHmMTw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjkzMy9GOTEyRjY5QTNF QzgxMUVCQUNGNDcyMUZDNEY5QUUwMi9wXzRTaGxhQ0x5WWhwS0RfbFdOQ2VBZVl4 UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfNFNobGFDTHlZaHBLRF9sV05DZUFlWXhQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzI5MzMvRjkxMkY2OUEzRUM4MTFFQkFDRjQ3MjFGQzRGOUFFMDIvRjJBOTBCOEMz RUNEMTFFQkFEQzdEMzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLEZowDQYJKoZIhvcNAQELBQADggEBACRpLi3kiKj1bsvQ 5SftthmoavFKVKKZbG3odBGy9o+6HYp5YPF8lf7Ch+zAo9i8Iu279rFLRxgUzwRJ ee+0C9FBpumhVMZ6evccN42Qjo1Z/c0UkFt07XUJkXFWTZuuVAz5BaqBX8HJe2mZ jaZoPn0oTnSYWeaAB5m2DnAQ4een+HsW3Izz4wuQDVcKkwrNYiAcHPTA2CkDCIcd zp7FeZRXOa1be3W781nct3ursnskvpuQ9xAPhqnnWBVR5wjp3dqBK8BtDOtg8sXD SRhwW21XdzWDP/nBrxnsTyh1d9AfJy6zAC8wa94ZJmzJHoYG1TSBzj1HTu42Tcb4 y0aEhh4= -----END CERTIFICATE-----Generated at Fri Apr 18 10:16:55 2025 by rpki-client