$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/EBDB1D16FD7A11EF9979942FC4F9AE02.roa File: EBDB1D16FD7A11EF9979942FC4F9AE02.roa (raw, json) Hash identifier: zYHbIc0JHiGk/BRVPubrtM0zcfJRbdPCLyAGz46CHJU= Subject key identifier: EA:B1:66:08:20:8C:02:D4:07:7A:69:41:5D:E3:C6:47:50:39:19:A8 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0839 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/EBDB1D16FD7A11EF9979942FC4F9AE02.roa Signing time: Mon 10 Mar 2025 06:43:06 +0000 ROA not before: Mon 10 Mar 2025 06:43:06 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45752 IP address blocks: 203.150.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2105 (0x839) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D Validity Not Before: Mar 10 06:43:06 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67ce89f9-0bd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bc:04:5d:f0:d4:63:6b:c4:b6:0f:e6:ea:c0: ad:64:28:f2:ab:be:77:4d:74:8b:c3:25:ed:e8:b3: 92:68:f5:2d:cc:d3:e3:9e:cd:6e:66:f8:1f:db:e2: 24:ed:cf:95:d0:93:c8:7d:54:90:b6:25:52:02:a6: 37:bf:7d:50:0a:f6:5c:e0:3a:17:b3:04:d3:4f:6d: be:96:39:ac:15:e8:34:20:4d:3a:5c:aa:88:27:56: 89:53:9d:1e:65:cc:31:60:44:af:97:8b:d2:5a:bf: b5:13:7a:50:49:e6:03:25:02:03:05:c4:1c:8d:e7: c4:4b:9c:13:9c:d5:38:f0:69:5a:fd:8e:44:26:8f: fe:38:d4:1f:b7:69:e0:f6:65:b3:70:22:56:12:92: ae:0a:c0:33:cd:0e:38:7b:96:9c:ad:23:5e:43:3c: 27:60:73:02:8a:b0:6f:29:92:9c:c4:74:e4:68:0a: 77:56:ba:84:89:0c:7e:3f:01:93:d6:0e:12:d9:42: 63:8e:d9:07:95:3c:a7:f3:75:9d:7c:e7:55:ad:d9: e2:96:00:e6:d3:3d:f4:d5:38:1a:91:de:e9:71:27: ab:0b:5b:f9:fe:56:86:fc:6a:82:6a:56:7d:7a:5a: 7d:ed:33:09:e5:46:91:60:18:27:a8:88:eb:5a:b3: 35:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B1:66:08:20:8C:02:D4:07:7A:69:41:5D:E3:C6:47:50:39:19:A8 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/EBDB1D16FD7A11EF9979942FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.150.134.0/24 Signature Algorithm: sha256WithRSAEncryption 19:ab:65:51:8f:e3:fb:3a:5c:a4:9d:9e:05:06:2b:5c:6b:b9: e7:af:09:32:dc:af:7e:59:6c:bb:ea:89:8f:31:d5:c3:42:d5: aa:da:13:8b:89:a9:fc:b2:e1:1d:dc:6a:d5:22:c3:34:bc:79: 04:09:85:00:04:8a:5a:77:e0:5e:d7:df:30:3b:58:3a:38:b3: e7:94:26:63:28:03:41:cc:ba:24:56:00:4f:8a:43:00:5b:86: 0f:11:ad:4a:31:d7:c4:80:f0:77:c0:6c:d2:df:ef:44:ff:60: 25:36:0f:92:b9:d1:cf:b1:79:0e:b9:e5:1c:4c:43:d7:55:91: 8c:0c:04:d4:5c:0d:e9:17:74:33:8d:e7:c0:33:5b:f4:db:4d: c0:9a:d8:c0:90:43:05:7a:4c:86:8d:5c:2d:0a:ee:04:70:6c: 1e:3c:e8:29:b0:8c:a2:74:b8:fb:21:cf:1c:13:80:87:c7:94: 13:50:44:64:0f:45:63:40:20:f1:18:15:6b:c0:ff:27:7b:78: 4c:09:b9:35:4d:dc:3b:bd:f2:a3:8b:90:f6:f9:02:2f:2a:87: f3:70:ba:1a:dd:1f:20:56:9b:77:54:1f:4c:4c:08:19:e9:71: 6c:3a:3e:b1:40:c8:37:1d:91:64:3a:27:05:eb:77:f5:d2:50: f9:c3:d4:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwMzEwMDY0MzA2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NlODlmOS0wYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrwEXfDUY2vEtg/m6sCtZCjyq753TXSLwyXt6LOSaPUtzNPjns1uZvgf2+Ik 7c+V0JPIfVSQtiVSAqY3v31QCvZc4DoXswTTT22+ljmsFeg0IE06XKqIJ1aJU50e ZcwxYESvl4vSWr+1E3pQSeYDJQIDBcQcjefES5wTnNU48Gla/Y5EJo/+ONQft2ng 9mWzcCJWEpKuCsAzzQ44e5acrSNeQzwnYHMCirBvKZKcxHTkaAp3VrqEiQx+PwGT 1g4S2UJjjtkHlTyn83WdfOdVrdnilgDm0z301Tgakd7pcSerC1v5/laG/GqCalZ9 elp97TMJ5UaRYBgnqIjrWrM1cQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOqxZggg jALUB3ppQV3jxkdQORmoMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvRUJEQjFEMTZG RDdBMTFFRjk5Nzk5NDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLloYwDQYJKoZIhvcNAQELBQADggEBABmrZVGP4/s6XKSd ngUGK1xrueevCTLcr35ZbLvqiY8x1cNC1araE4uJqfyy4R3catUiwzS8eQQJhQAE ilp34F7X3zA7WDo4s+eUJmMoA0HMuiRWAE+KQwBbhg8RrUox18SA8HfAbNLf70T/ YCU2D5K50c+xeQ655RxMQ9dVkYwMBNRcDekXdDON58AzW/TbTcCa2MCQQwV6TIaN XC0K7gRwbB486CmwjKJ0uPshzxwTgIfHlBNQRGQPRWNAIPEYFWvA/yd7eEwJuTVN 3Du98qOLkPb5Ai8qh/NwuhrdHyBWm3dUH0xMCBnpcWw6PrFAyDcdkWQ6JwXrd/XS UPnD1PE= -----END CERTIFICATE-----Generated at Sat Apr 5 03:54:00 2025 by rpki-client