$ rpki-client -vvf rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/B589332C498611EF90B46962C4F9AE02.roa File: B589332C498611EF90B46962C4F9AE02.roa (raw, json) Hash identifier: uDyhMVme3VTf+JhXqHqMKucF4UMzPNmrq3U6pJO1VaY= Subject key identifier: 72:A8:A2:0B:18:3E:BC:69:7B:82:70:39:A0:34:FE:3E:FB:7D:AF:32 Certificate issuer: /CN=A9148BFA/serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91 Certificate serial: 04FF Authority key identifier: 15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/B589332C498611EF90B46962C4F9AE02.roa Signing time: Tue 14 Jan 2025 23:42:35 +0000 ROA not before: Tue 14 Jan 2025 23:42:35 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137409 IP address blocks: 43.226.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148BFA Validity Not Before: Jan 14 23:42:35 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786f66b-5695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4e:27:17:bd:67:21:2c:3b:2d:74:f9:1f:20: 6c:4f:66:6b:84:e1:9c:e5:b1:02:eb:f1:68:f0:61: 7b:73:d5:93:f2:46:d2:ea:12:eb:c2:66:9d:de:ed: 49:0a:0e:f3:e8:38:b3:56:f1:d7:8e:2e:9c:c6:15: 47:23:a3:11:36:61:27:1a:0b:9d:56:79:a4:ba:1b: 8f:cc:87:82:95:8e:5d:85:91:d4:c9:f6:9a:b5:20: f6:6d:57:b0:a0:2f:ac:41:48:ba:ca:3b:68:12:4c: 44:b4:5e:c5:e0:b3:e6:88:52:49:4d:01:a6:66:84: 08:60:bd:00:f5:18:1a:b6:8a:a6:3a:7e:08:65:66: 32:ac:7c:f0:9f:a0:b4:7e:73:fd:5e:d9:8c:b7:88: ae:a6:fe:5b:4d:14:dc:90:80:64:24:78:c4:58:38: bc:e7:4c:bb:85:1f:24:20:4d:aa:47:cd:9f:80:3a: ec:4e:0e:f3:35:57:d9:7a:41:4b:24:12:cc:e9:e5: bb:44:2f:be:46:e6:61:e7:78:54:b6:7f:44:2b:2e: 0b:49:45:76:eb:c6:f7:e3:fc:c3:ca:41:9b:0d:f4: db:d5:92:bd:95:06:00:6d:26:1d:42:13:d6:42:52: a5:6f:f4:05:09:92:92:58:49:42:7e:6f:ac:97:50: 5a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A8:A2:0B:18:3E:BC:69:7B:82:70:39:A0:34:FE:3E:FB:7D:AF:32 X509v3 Authority Key Identifier: keyid:15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/B589332C498611EF90B46962C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.229.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:95:8e:89:9d:14:a3:db:9c:cb:b1:7f:c1:43:bc:02:46:bd: 57:9f:f7:d2:fb:e6:81:e2:0a:8f:c7:83:94:61:13:fb:ea:bb: 33:06:47:3f:f3:42:e6:3c:bc:3b:dc:7c:26:82:95:b6:82:4a: a2:7f:9d:63:1f:48:a6:e5:cd:47:6f:55:a4:20:d1:4f:df:39: 0e:4b:56:56:c8:d0:da:40:12:32:49:43:26:23:0c:ec:b6:36: 0e:b9:c0:52:b7:e6:fa:e1:c7:06:4d:4a:2d:00:a2:e5:8d:b4: ff:f5:01:35:54:f8:fa:0e:21:22:59:fb:94:5a:d3:e5:d8:27: 11:2f:dd:2a:00:7c:17:7a:66:0d:2e:28:9c:16:78:df:da:8e: c8:02:2e:06:04:d2:b3:e2:72:c5:8a:82:94:ec:fe:06:f3:cb: d2:da:27:33:46:65:1c:2d:14:48:d0:e5:f2:8a:c2:f5:6e:e9: 9a:46:05:d3:71:f3:a2:54:7f:04:2d:83:f7:93:f4:23:aa:bb: 68:a5:55:d8:a9:ea:21:36:7a:a5:7f:b8:a5:f9:8c:59:55:e1: 63:27:a8:fa:2b:3e:e7:bc:21:49:28:bc:05:3e:f4:dc:d4:05: 87:4a:8e:0d:71:15:f3:ea:69:4c:fd:d5:63:ea:39:a6:fd:24: 66:86:07:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCRkExMTAvBgNVBAUTKDE1N0IwQkRFMEUzQ0FEQjI5NDgzOUJDOTgxNTY1NTY0 NERCMjZFOTEwHhcNMjUwMTE0MjM0MjM1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2ZjY2Yi01Njk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArU4nF71nISw7LXT5HyBsT2ZrhOGc5bEC6/Fo8GF7c9WT8kbS6hLrwmad3u1J Cg7z6DizVvHXji6cxhVHI6MRNmEnGgudVnmkuhuPzIeClY5dhZHUyfaatSD2bVew oC+sQUi6yjtoEkxEtF7F4LPmiFJJTQGmZoQIYL0A9RgatoqmOn4IZWYyrHzwn6C0 fnP9XtmMt4iupv5bTRTckIBkJHjEWDi850y7hR8kIE2qR82fgDrsTg7zNVfZekFL JBLM6eW7RC++RuZh53hUtn9EKy4LSUV268b34/zDykGbDfTb1ZK9lQYAbSYdQhPW QlKlb/QFCZKSWElCfm+sl1BaZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHKoogsY Prxpe4JwOaA0/j77fa8yMB8GA1UdIwQYMBaAFBV7C94OPK2ylIObyYFWVWRNsm6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEJGQS8wNEEyNEMzNDEx NDMxMUVDOTczNjlGNzNDNEY5QUUwMi9GWHNMM2c0OHJiS1VnNXZKZ1ZaVlpFMnli cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZYc0wzZzQ4cmJLVWc1dkpnVlpWWkUyeWJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCRkEvMDRBMjRDMzQxMTQzMTFFQzk3MzY5RjczQzRGOUFFMDIvQjU4OTMzMkM0 OTg2MTFFRjkwQjQ2OTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr4uUwDQYJKoZIhvcNAQELBQADggEBAG6VjomdFKPbnMux f8FDvAJGvVef99L75oHiCo/Hg5RhE/vquzMGRz/zQuY8vDvcfCaClbaCSqJ/nWMf SKblzUdvVaQg0U/fOQ5LVlbI0NpAEjJJQyYjDOy2Ng65wFK35vrhxwZNSi0AouWN tP/1ATVU+PoOISJZ+5Ra0+XYJxEv3SoAfBd6Zg0uKJwWeN/ajsgCLgYE0rPicsWK gpTs/gbzy9LaJzNGZRwtFEjQ5fKKwvVu6ZpGBdNx86JUfwQtg/eT9COqu2ilVdip 6iE2eqV/uKX5jFlV4WMnqPorPue8IUkovAU+9NzUBYdKjg1xFfPqaUz91WPqOab9 JGaGB8E= -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:02 2025 by rpki-client