$ rpki-client -vvf rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/B48F5974897C11EB9D7AE318C4F9AE02.roa File: B48F5974897C11EB9D7AE318C4F9AE02.roa (raw, json) Hash identifier: UjEhrY6BSDNfZnVVPw3EjbmEipeGvEYmxIV0JR9ypjw= Subject key identifier: 27:F2:AE:BA:C2:3C:D9:39:00:64:37:F5:10:7D:31:8B:83:66:14:20 Certificate issuer: /CN=A913D30A/serialNumber=EB811B1488B20F12664E648A82624A3050689F25 Certificate serial: 0D32 Authority key identifier: EB:81:1B:14:88:B2:0F:12:66:4E:64:8A:82:62:4A:30:50:68:9F:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/B48F5974897C11EB9D7AE318C4F9AE02.roa Signing time: Fri 10 Jan 2025 18:06:50 +0000 ROA not before: Fri 10 Jan 2025 18:06:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 63996 IP address blocks: 202.125.108.0/24 maxlen: 24 203.17.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.crl rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 17:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3378 (0xd32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D30A Validity Not Before: Jan 10 18:06:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=678161ba-5980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8f:28:20:9f:95:c8:50:59:30:c4:b3:6a:5b: 62:d4:80:f5:f7:8d:f6:00:d7:8c:b6:0d:29:70:fe: b3:61:36:b5:c4:cb:90:b9:8d:96:bb:2b:7d:cb:64: 5c:6d:32:9e:2d:28:35:0d:7b:83:c4:30:7d:f6:3b: 6e:8d:61:46:ab:a2:fb:f7:45:59:0c:d5:f0:6b:7d: 77:fc:bd:5d:ef:59:d1:ff:25:09:92:b4:ad:68:3e: 66:e4:9d:90:cf:f5:b1:95:d2:6d:83:37:36:f9:a3: 14:db:fa:cc:cd:b8:ec:64:b1:3e:5c:fa:4d:d9:ba: 7e:fc:38:fb:14:05:6a:ab:a3:8e:a1:07:54:97:9d: c3:0b:89:87:88:8d:31:97:3f:eb:45:07:d4:d5:cb: bd:23:a8:25:da:f6:54:24:c0:81:2a:22:79:92:19: 9b:9d:5a:c1:86:1c:e4:30:f0:7a:e9:86:8c:59:ad: fd:53:60:74:d9:9b:8a:49:39:bd:91:0c:76:c7:96: e6:89:50:38:0a:b7:92:13:67:78:81:aa:ba:ce:38: c4:f4:ab:94:5c:97:b0:b3:78:ad:78:35:b6:a8:c1: d1:79:5f:d7:85:90:e4:c3:7f:1f:3a:8d:19:59:5a: 7b:e5:29:d0:dc:9e:19:44:d0:bf:c4:21:4b:b5:8c: 0a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F2:AE:BA:C2:3C:D9:39:00:64:37:F5:10:7D:31:8B:83:66:14:20 X509v3 Authority Key Identifier: keyid:EB:81:1B:14:88:B2:0F:12:66:4E:64:8A:82:62:4A:30:50:68:9F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/B48F5974897C11EB9D7AE318C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.125.108.0/24 203.17.65.0/24 Signature Algorithm: sha256WithRSAEncryption 65:58:b4:ab:1d:07:08:b1:bd:3c:cd:2d:5e:a2:e5:22:c6:8b: d4:ba:69:12:31:e0:26:69:2f:f0:67:f0:5a:ee:36:b3:6e:9c: 5e:1b:bf:7a:98:c8:a6:1f:f0:96:3b:60:c4:f8:74:a7:03:06: 1d:c9:43:8d:90:97:19:da:bf:78:05:0c:fd:f6:e3:69:19:47: a5:85:02:14:9d:aa:d8:5f:d2:a4:1b:16:dd:58:2a:d0:7d:4c: 53:24:67:f1:58:2f:1f:96:3b:fd:5d:82:16:4b:15:dc:93:51: 82:70:9a:fd:bb:80:7b:5f:8e:68:dd:47:41:ba:47:78:e8:b8: 87:ce:d4:50:7a:cb:8f:f6:26:b4:dc:5b:18:0f:ab:4c:66:8a: cf:65:14:14:8c:94:14:49:54:9d:1a:3f:32:00:69:0f:1c:7e: 17:08:b6:bd:b6:c1:52:34:75:03:85:3e:e1:13:6e:fc:a1:69: 93:e8:85:81:13:c5:d6:3f:14:9f:4c:18:1f:95:1b:51:3c:a6: 09:21:6d:65:fd:81:03:41:1f:42:c5:b7:ef:41:6a:4b:59:28: cd:91:68:ae:31:ea:fe:3a:d7:1c:a9:e3:54:23:9a:2a:17:8a: 20:80:b9:9e:09:31:a8:ec:b4:fc:b6:4e:53:cc:cd:8e:ad:69: 12:75:a3:ff -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QzMEExMTAvBgNVBAUTKEVCODExQjE0ODhCMjBGMTI2NjRFNjQ4QTgyNjI0QTMw NTA2ODlGMjUwHhcNMjUwMTEwMTgwNjUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzgxNjFiYS01OTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo8oIJ+VyFBZMMSzalti1ID19432ANeMtg0pcP6zYTa1xMuQuY2Wuyt9y2Rc bTKeLSg1DXuDxDB99jtujWFGq6L790VZDNXwa313/L1d71nR/yUJkrStaD5m5J2Q z/WxldJtgzc2+aMU2/rMzbjsZLE+XPpN2bp+/Dj7FAVqq6OOoQdUl53DC4mHiI0x lz/rRQfU1cu9I6gl2vZUJMCBKiJ5khmbnVrBhhzkMPB66YaMWa39U2B02ZuKSTm9 kQx2x5bmiVA4CreSE2d4gaq6zjjE9KuUXJews3iteDW2qMHReV/XhZDkw38fOo0Z WVp75SnQ3J4ZRNC/xCFLtYwKTwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCfyrrrC PNk5AGQ39RB9MYuDZhQgMB8GA1UdIwQYMBaAFOuBGxSIsg8SZk5kioJiSjBQaJ8l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDMwQS9CODU0MjRGOEQ0 OTgxMUU5Qjk0NzQ3MzhDNEY5QUUwMi82NEViRklpeUR4Sm1UbVNLZ21KS01GQm9u eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RWJGSWl5RHhKbVRtU0tnbUpLTUZCb255VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QzMEEvQjg1NDI0RjhENDk4MTFFOUI5NDc0NzM4QzRGOUFFMDIvQjQ4RjU5NzQ4 OTdDMTFFQjlEN0FFMzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKfWwDBADLEUEwDQYJKoZIhvcNAQELBQADggEBAGVYtKsd BwixvTzNLV6i5SLGi9S6aRIx4CZpL/Bn8FruNrNunF4bv3qYyKYf8JY7YMT4dKcD Bh3JQ42Qlxnav3gFDP3242kZR6WFAhSdqthf0qQbFt1YKtB9TFMkZ/FYLx+WO/1d ghZLFdyTUYJwmv27gHtfjmjdR0G6R3jouIfO1FB6y4/2JrTcWxgPq0xmis9lFBSM lBRJVJ0aPzIAaQ8cfhcItr22wVI0dQOFPuETbvyhaZPohYETxdY/FJ9MGB+VG1E8 pgkhbWX9gQNBH0LFt+9BaktZKM2RaK4x6v461xyp41QjmioXiiCAuZ4JMajstPy2 TlPMzY6taRJ1o/8= -----END CERTIFICATE-----Generated at Mon Apr 7 01:43:41 2025 by rpki-client