$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/2CF180F0809511EFB8A82822C4F9AE02.roa File: 2CF180F0809511EFB8A82822C4F9AE02.roa (raw, json) Hash identifier: CYhh4XyVeRLyav6pYm+YkGRqLbzQ4uo88iItY+mTMJ0= Subject key identifier: 50:5E:EA:FB:07:0E:73:1B:CB:7D:ED:A8:23:0C:AA:28:E5:5F:20:EC Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Certificate serial: 1633 Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/2CF180F0809511EFB8A82822C4F9AE02.roa Signing time: Fri 20 Dec 2024 01:02:53 +0000 ROA not before: Fri 20 Dec 2024 01:02:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 15830 IP address blocks: 27.111.208.0/20 maxlen: 20 27.111.224.0/22 maxlen: 22 27.111.232.0/21 maxlen: 21 101.97.64.0/22 maxlen: 22 101.97.72.0/21 maxlen: 21 101.97.80.0/21 maxlen: 21 118.103.180.0/22 maxlen: 22 202.79.192.0/22 maxlen: 22 202.79.196.0/23 maxlen: 23 202.79.200.0/21 maxlen: 21 202.79.208.0/20 maxlen: 20 202.79.208.0/22 maxlen: 22 202.79.213.0/24 maxlen: 24 202.79.214.0/23 maxlen: 23 202.79.216.0/21 maxlen: 21 2403:b100::/32 maxlen: 32 2403:b101::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:51:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5683 (0x1633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914254C Validity Not Before: Dec 20 01:02:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6764c23d-6e19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9c:d9:b5:71:23:7d:61:9f:00:81:bc:0d:ae: c7:98:af:de:7c:69:2f:4b:70:d3:67:4d:d8:7e:68: 10:f4:39:bd:f6:79:9f:1a:df:1f:07:53:3b:cc:80: a4:2e:dc:57:49:a3:7f:97:6b:5f:43:50:4e:c6:a5: 96:5a:1d:ee:1b:2c:36:9c:dc:3d:32:47:bb:5a:a5: 6c:87:53:ff:2f:a3:07:48:0a:d5:ea:c1:f7:1d:cb: e7:9d:46:49:29:16:67:09:24:8d:6e:4f:68:e8:82: a3:c3:2e:11:0e:3b:6b:0e:7a:7e:20:c2:f6:f9:3b: c7:42:ca:ac:ca:9e:70:4f:2f:e0:2f:b5:00:02:00: 4f:20:53:1c:f1:47:d7:2d:3e:9a:b4:b0:6e:23:0d: 61:b3:62:d3:32:27:6e:44:c7:39:d0:e9:4f:64:7e: 1a:bd:8c:79:cf:a0:78:23:26:99:42:36:2a:a7:6a: 60:bf:8a:68:31:65:6d:ed:d9:2b:18:b9:62:35:98: a2:b2:4e:16:bd:a8:bd:14:c5:8c:fd:3d:81:dc:9f: ee:34:04:ff:98:ee:bf:9c:8c:3e:7c:2e:09:bf:84: 2d:e5:64:b9:8f:be:cf:61:e9:da:68:f5:be:1d:06: 92:b7:fc:5c:ca:fa:b0:35:4f:cc:16:12:25:9f:80: 47:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5E:EA:FB:07:0E:73:1B:CB:7D:ED:A8:23:0C:AA:28:E5:5F:20:EC X509v3 Authority Key Identifier: keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/2CF180F0809511EFB8A82822C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.208.0-27.111.227.255 27.111.232.0/21 101.97.64.0/22 101.97.72.0-101.97.87.255 118.103.180.0/22 202.79.192.0-202.79.197.255 202.79.200.0-202.79.223.255 IPv6: 2403:b100::-2403:b101:ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 6e:38:4e:df:f6:03:44:d6:ac:7f:a1:8c:96:a1:5c:0b:93:65: 42:63:d2:0b:e1:7d:82:82:e4:b0:b2:b5:75:7f:98:3c:80:82: f7:b2:3a:a7:cf:8d:75:15:16:a4:96:6d:ff:d5:7d:f7:e8:1d: 2c:49:37:fe:57:23:f2:45:33:c9:5a:ef:4e:6d:17:22:30:0b: dd:b2:f2:d2:79:9c:20:a3:e3:e6:f4:e1:25:ed:82:a1:ae:4f: 37:c9:ea:be:33:f2:89:df:eb:10:95:11:e5:43:b8:d2:0f:36: 3d:4e:e8:1e:13:47:3f:2f:06:c2:52:af:0c:dd:b4:f8:4e:6a: 30:3d:ea:08:48:15:cf:81:09:90:39:1d:d6:c4:85:6d:4b:8b: de:0c:f0:12:07:41:75:2b:25:b5:c9:b0:a6:dc:87:7c:1a:df: df:fb:82:5c:be:bd:d8:c8:f5:53:34:9e:5e:03:b0:49:e8:30: 5e:27:8e:a4:1e:b1:ac:91:c1:38:e3:88:a0:fa:43:e6:ca:93: ac:13:22:d4:2c:d3:c8:75:e0:62:dd:44:83:e4:ad:c2:bc:3d: 67:49:1a:c0:47:dd:cb:30:cd:3c:10:2e:ee:1c:fb:08:b8:04: cf:b8:53:52:99:2a:b7:03:4f:ab:b5:48:64:0d:33:24:96:86: 2f:84:27:e5 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgICFjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1NEMxMTAvBgNVBAUTKDdCM0Y2MEQ5QjFBMjgwMDJBMDc4NzVDQUI1OEEyMTQ1 NzA3M0UxN0YwHhcNMjQxMjIwMDEwMjUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY0YzIzZC02ZTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZzZtXEjfWGfAIG8Da7HmK/efGkvS3DTZ03YfmgQ9Dm99nmfGt8fB1M7zICk LtxXSaN/l2tfQ1BOxqWWWh3uGyw2nNw9Mke7WqVsh1P/L6MHSArV6sH3HcvnnUZJ KRZnCSSNbk9o6IKjwy4RDjtrDnp+IML2+TvHQsqsyp5wTy/gL7UAAgBPIFMc8UfX LT6atLBuIw1hs2LTMiduRMc50OlPZH4avYx5z6B4IyaZQjYqp2pgv4poMWVt7dkr GLliNZiisk4Wvai9FMWM/T2B3J/uNAT/mO6/nIw+fC4Jv4Qt5WS5j77PYenaaPW+ HQaSt/xcyvqwNU/MFhIln4BHhwIDAQABo4IC8TCCAu0wHQYDVR0OBBYEFFBe6vsH DnMby33tqCMMqijlXyDsMB8GA1UdIwQYMBaAFHs/YNmxooACoHh1yrWKIUVwc+F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjU0Qy81QTU2NEQ0ODE5 RTgxMUU4Qjk2NTBDN0VDNEY5QUUwMi9lejlnMmJHaWdBS2dlSFhLdFlvaFJYQno0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V6OWcyYkdpZ0FLZ2VIWEt0WW9oUlhCejRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI1NEMvNUE1NjRENDgxOUU4MTFFOEI5NjUwQzdFQzRGOUFFMDIvMkNGMTgwRjA4 MDk1MTFFRkI4QTgyODIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwewYIKwYBBQUHAQcBAf8E bDBqMFAEAgABMEowDAMEBBtv0AMEAhtv4AMEAxtv6AMEAmVhQDAMAwQDZWFIAwQD ZWFQAwQCdme0MAwDBAbKT8ADBAHKT8QwDAMEA8pPyAMEBcpPwDAWBAIAAjAQMA4D BAAkA7EDBgAkA7EBADANBgkqhkiG9w0BAQsFAAOCAQEAbjhO3/YDRNasf6GMlqFc C5NlQmPSC+F9goLksLK1dX+YPICC97I6p8+NdRUWpJZt/9V99+gdLEk3/lcj8kUz yVrvTm0XIjAL3bLy0nmcIKPj5vThJe2Coa5PN8nqvjPyid/rEJUR5UO40g82PU7o HhNHPy8GwlKvDN20+E5qMD3qCEgVz4EJkDkd1sSFbUuL3gzwEgdBdSsltcmwptyH fBrf3/uCXL692Mj1UzSeXgOwSegwXieOpB6xrJHBOOOIoPpD5sqTrBMi1CzTyHXg Yt1Eg+Stwrw9Z0kawEfdyzDNPBAu7hz7CLgEz7hTUpkqtwNPq7VIZA0zJJaGL4Qn 5Q== -----END CERTIFICATE-----Generated at Sat Apr 5 05:57:28 2025 by rpki-client