$ rpki-client -vvf rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/B0CE94A0E80911EEADE3420AC4F9AE02.roa File: B0CE94A0E80911EEADE3420AC4F9AE02.roa (raw, json) Hash identifier: JMqNNeHY27Hx5eJ7SJKoh8TY1qwKjQvReEB44gwMvpE= Subject key identifier: A5:3B:5B:14:63:1B:E9:6F:E6:02:3C:68:71:0F:B4:C6:89:D0:15:AF Certificate issuer: /CN=A913B5C7/serialNumber=E41ED756074B37ADDC794F940BD1F53E3F676B93 Certificate serial: 86 Authority key identifier: E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/B0CE94A0E80911EEADE3420AC4F9AE02.roa Signing time: Thu 05 Dec 2024 05:18:50 +0000 ROA not before: Thu 05 Dec 2024 05:18:50 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4826 IP address blocks: 203.57.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.crl rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B5C7 Validity Not Before: Dec 5 05:18:50 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675137ba-a183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:39:8c:c2:42:84:98:7c:fc:f1:8c:46:35:f9: c9:fe:24:4e:f1:26:d7:ab:dc:2c:23:f7:67:9a:f7: 5e:18:94:5f:f1:9a:0d:9f:9a:0b:1d:47:40:44:7e: ea:4b:38:22:65:5b:63:58:0c:e3:b5:92:e6:6b:b6: 4d:7e:55:24:82:47:c4:16:80:d7:c5:a6:ab:0b:aa: 7f:05:1c:ae:4c:97:41:d6:3e:83:2a:3a:47:8c:4a: 28:0a:ab:21:64:6a:5d:ee:14:4e:82:24:47:1e:83: 51:ca:97:dc:f6:e7:62:3e:03:3c:ba:6b:b2:5d:63: 46:68:f4:72:49:86:62:d9:82:aa:ed:4d:f6:94:41: ed:97:72:e5:48:0c:9f:44:7f:0b:71:f5:d9:1b:a6: 28:39:80:be:51:f5:c2:01:4b:9f:e1:9c:03:d7:bb: 15:92:ef:6e:50:cf:59:ef:f8:6d:51:93:07:d6:89: c6:3c:88:14:35:23:6b:64:b2:92:b2:84:46:b2:47: c8:41:ad:72:f7:86:5b:ea:a7:b5:16:38:56:22:b1: 66:f5:0e:fd:c8:70:8d:f4:c2:30:ef:ce:e2:55:11: ed:02:61:d8:43:9d:d0:b1:6a:a4:60:8b:41:e9:30: 5c:67:60:93:52:2b:78:61:34:28:c4:d6:73:ef:bf: b8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:3B:5B:14:63:1B:E9:6F:E6:02:3C:68:71:0F:B4:C6:89:D0:15:AF X509v3 Authority Key Identifier: keyid:E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/B0CE94A0E80911EEADE3420AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.57.81.0/24 Signature Algorithm: sha256WithRSAEncryption ed:31:eb:fb:46:76:08:97:0c:fa:94:59:2d:79:d9:1f:1f:1e: 1b:1d:02:9c:09:02:1d:01:f8:c2:41:30:d6:8a:ba:0d:f0:29: 78:51:72:fe:59:fa:24:b0:28:8c:7a:4d:d5:df:a7:66:71:6a: 57:a1:99:19:82:06:45:5b:d0:ce:0d:f2:35:09:c5:e9:d9:9a: 6d:e3:35:ac:73:75:0d:ac:5c:1e:e4:e8:c9:6c:22:9c:d8:a1: c1:94:cb:30:8b:b3:a7:4b:11:25:b3:a6:3a:5e:3e:ab:f7:91: 95:0e:c3:b8:20:c3:05:90:c2:75:f8:16:49:f1:68:ec:f9:9d: 8c:14:39:03:9c:2b:77:a3:76:1d:f1:5f:8e:c7:8f:bd:90:60: 49:2e:4c:3f:3e:cd:23:63:56:e5:f8:95:92:fc:97:46:4d:bf: 0e:ac:94:01:c4:f8:97:12:89:5b:48:4b:b1:69:27:ae:b2:e7: 66:8f:11:d8:04:01:8b:ba:54:ad:9b:00:4e:18:38:bd:32:05: 27:4a:fc:d5:3b:52:fa:8d:26:e1:70:85:91:9d:28:c4:db:c6: b2:3c:d7:04:e3:a0:56:18:a0:85:52:c7:ac:23:f1:ce:8e:0a: 6e:dd:ff:b5:b0:4f:a3:22:8b:b9:24:72:9e:69:12:af:75:b1: 5a:78:84:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I1QzcxMTAvBgNVBAUTKEU0MUVENzU2MDc0QjM3QUREQzc5NEY5NDBCRDFGNTNF M0Y2NzZCOTMwHhcNMjQxMjA1MDUxODUwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUxMzdiYS1hMTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTmMwkKEmHz88YxGNfnJ/iRO8SbXq9wsI/dnmvdeGJRf8ZoNn5oLHUdARH7q SzgiZVtjWAzjtZLma7ZNflUkgkfEFoDXxaarC6p/BRyuTJdB1j6DKjpHjEooCqsh ZGpd7hROgiRHHoNRypfc9udiPgM8umuyXWNGaPRySYZi2YKq7U32lEHtl3LlSAyf RH8LcfXZG6YoOYC+UfXCAUuf4ZwD17sVku9uUM9Z7/htUZMH1onGPIgUNSNrZLKS soRGskfIQa1y94Zb6qe1FjhWIrFm9Q79yHCN9MIw787iVRHtAmHYQ53QsWqkYItB 6TBcZ2CTUit4YTQoxNZz77+4PQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKU7WxRj G+lv5gI8aHEPtMaJ0BWvMB8GA1UdIwQYMBaAFOQe11YHSzet3HlPlAvR9T4/Z2uT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjVDNy82N0QyNDM5NkU4 MDkxMUVFQkU0ODk1NjNDNEY5QUUwMi81QjdYVmdkTE42M2NlVS1VQzlIMVBqOW5h NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVCN1hWZ2RMTjYzY2VVLVVDOUgxUGo5bmE1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I1QzcvNjdEMjQzOTZFODA5MTFFRUJFNDg5NTYzQzRGOUFFMDIvQjBDRTk0QTBF ODA5MTFFRUFERTM0MjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLOVEwDQYJKoZIhvcNAQELBQADggEBAO0x6/tGdgiXDPqU WS152R8fHhsdApwJAh0B+MJBMNaKug3wKXhRcv5Z+iSwKIx6TdXfp2ZxalehmRmC BkVb0M4N8jUJxenZmm3jNaxzdQ2sXB7k6MlsIpzYocGUyzCLs6dLESWzpjpePqv3 kZUOw7ggwwWQwnX4FknxaOz5nYwUOQOcK3ejdh3xX47Hj72QYEkuTD8+zSNjVuX4 lZL8l0ZNvw6slAHE+JcSiVtIS7FpJ66y52aPEdgEAYu6VK2bAE4YOL0yBSdK/NU7 UvqNJuFwhZGdKMTbxrI81wTjoFYYoIVSx6wj8c6OCm7d/7WwT6Mii7kkcp5pEq91 sVp4hD4= -----END CERTIFICATE-----Generated at Sat Apr 5 21:59:47 2025 by rpki-client