$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/DE0A76C805B511EE95562E2AC4F9AE02.roa File: DE0A76C805B511EE95562E2AC4F9AE02.roa (raw, json) Hash identifier: hMIakiTTivB+fRa4Rnc2jL//XFH58YMCoj5LWIbNoBM= Subject key identifier: C8:2C:A5:96:34:A7:30:51:F3:9D:FB:B7:1B:93:35:2D:86:EA:BF:8F Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1AD9 Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/DE0A76C805B511EE95562E2AC4F9AE02.roa Signing time: Tue 24 Dec 2024 16:34:00 +0000 ROA not before: Tue 24 Dec 2024 16:34:00 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 140726 IP address blocks: 203.93.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6873 (0x1ad9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3 Validity Not Before: Dec 24 16:34:00 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=676ae278-af13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ca:32:46:1a:e3:67:f1:d5:cd:70:6c:af:19: 6d:64:17:b3:56:59:1d:68:9b:14:31:4e:33:2f:f4: 17:9d:6d:9e:7a:d4:7f:4b:bd:62:f4:99:28:49:22: 37:af:0f:77:2b:13:21:33:86:d3:ae:b1:46:c5:5c: 6c:be:d6:6c:f8:75:c5:b0:17:5a:f3:80:a8:f8:9a: 9f:13:b9:bf:93:d8:4a:54:a8:09:b9:4a:8d:57:a9: 24:e6:0e:0c:d0:f2:2d:eb:a1:00:9e:0b:66:7e:fc: 22:35:cc:36:d3:d5:b1:00:53:bf:99:1f:c4:00:8c: 2b:5d:a5:68:4c:1e:d9:d7:cf:29:8f:ec:bd:9c:df: 22:b7:1b:96:68:89:f2:3b:54:cd:af:03:c1:57:cb: de:f5:5d:c6:72:60:08:da:e5:90:40:be:2d:1d:dc: 7e:c1:16:a2:d9:35:08:bd:c3:e6:93:10:82:ff:51: 66:8a:63:66:49:6a:3a:92:50:73:1d:d8:66:95:bc: cc:a2:0c:e9:37:e2:db:0b:6a:43:58:cb:b0:d0:35: 2e:73:10:d7:bd:89:8e:51:73:89:2f:5d:be:e7:96: f1:2f:43:73:9c:1f:5d:ea:3e:ee:b1:3f:c1:5b:40: 57:c1:a7:f6:ef:69:45:bb:63:17:95:b1:f4:db:77: 41:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:2C:A5:96:34:A7:30:51:F3:9D:FB:B7:1B:93:35:2D:86:EA:BF:8F X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/DE0A76C805B511EE95562E2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.93.240.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:68:3b:bb:5f:00:17:a8:b0:d0:39:37:68:0e:a3:86:22:8e: ca:38:9b:70:6f:d4:d4:09:ff:11:98:91:f0:b7:36:5c:cc:fb: f7:fa:88:9b:e7:b6:bc:37:15:f9:88:b5:98:10:ca:02:2f:3b: ae:00:65:10:72:3f:59:c8:46:82:52:63:84:f9:22:14:1e:a4: 55:d4:f5:4f:8c:12:25:89:fd:0b:c8:b5:10:4c:cc:15:24:c3: 9b:b4:9c:3d:e3:59:a6:d2:e5:55:d1:dd:97:fb:91:f3:87:62: 78:c3:7d:2c:bf:ed:5a:dd:1e:c6:d9:6e:b3:5e:eb:52:8a:a7: 03:f8:05:b6:4c:83:cc:dd:51:4c:f1:c3:6f:14:2a:47:0a:df: 96:6a:5a:84:1d:1a:cb:05:f4:56:3c:89:b1:08:02:8d:5c:49: d6:4e:14:ad:7f:13:57:15:ed:66:d4:25:20:3c:43:d4:33:aa: ab:e1:8a:a5:09:20:ad:68:53:15:7f:04:da:d2:35:5b:00:5c: 68:04:59:13:38:89:33:e6:df:f4:68:6e:ed:28:3b:0f:9d:cd: 88:9e:71:31:54:95:c6:87:b3:9b:3f:59:43:02:4e:36:6f:2e: f7:cc:37:8e:6f:93:5d:c0:f2:4b:76:d5:dd:8a:35:36:81:1c: 09:68:06:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjQxMjI0MTYzNDAwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZhZTI3OC1hZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMoyRhrjZ/HVzXBsrxltZBezVlkdaJsUMU4zL/QXnW2eetR/S71i9JkoSSI3 rw93KxMhM4bTrrFGxVxsvtZs+HXFsBda84Co+JqfE7m/k9hKVKgJuUqNV6kk5g4M 0PIt66EAngtmfvwiNcw209WxAFO/mR/EAIwrXaVoTB7Z188pj+y9nN8itxuWaIny O1TNrwPBV8ve9V3GcmAI2uWQQL4tHdx+wRai2TUIvcPmkxCC/1FmimNmSWo6klBz HdhmlbzMogzpN+LbC2pDWMuw0DUucxDXvYmOUXOJL12+55bxL0NznB9d6j7usT/B W0BXwaf272lFu2MXlbH023dBWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMgspZY0 pzBR8537txuTNS2G6r+PMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNDQjMvMURCNzk4M0MyNTlEMTFFNzg1RDMyNTBBQzRGOUFFMDIvREUwQTc2Qzgw NUI1MTFFRTk1NTYyRTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLXfAwDQYJKoZIhvcNAQELBQADggEBAFxoO7tfABeosNA5 N2gOo4Yijso4m3Bv1NQJ/xGYkfC3NlzM+/f6iJvntrw3FfmItZgQygIvO64AZRBy P1nIRoJSY4T5IhQepFXU9U+MEiWJ/QvItRBMzBUkw5u0nD3jWabS5VXR3Zf7kfOH YnjDfSy/7VrdHsbZbrNe61KKpwP4BbZMg8zdUUzxw28UKkcK35ZqWoQdGssF9FY8 ibEIAo1cSdZOFK1/E1cV7WbUJSA8Q9QzqqvhiqUJIK1oUxV/BNrSNVsAXGgEWRM4 iTPm3/Robu0oOw+dzYiecTFUlcaHs5s/WUMCTjZvLvfMN45vk13A8kt21d2KNTaB HAloBnU= -----END CERTIFICATE-----Generated at Sun Apr 6 15:23:11 2025 by rpki-client