$ rpki-client -vvf rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/882AC358E1F511EE9188A919C4F9AE02.roa File: 882AC358E1F511EE9188A919C4F9AE02.roa (raw, json) Hash identifier: 7XnoI3SWGKSLq9zz7HLNS32aw+KK++smhLaAOQ+1lDo= Subject key identifier: 45:09:63:C5:FD:BF:BF:B6:9D:4F:47:40:0D:06:9A:04:4E:02:51:AE Certificate issuer: /CN=A915AE5F/serialNumber=AFE727E4209DCDF82762574B5E33C8083787A18F Certificate serial: 1E45 Authority key identifier: AF:E7:27:E4:20:9D:CD:F8:27:62:57:4B:5E:33:C8:08:37:87:A1:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/882AC358E1F511EE9188A919C4F9AE02.roa Signing time: Thu 28 Nov 2024 16:33:33 +0000 ROA not before: Thu 28 Nov 2024 16:33:33 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138296 IP address blocks: 202.179.70.0/24 maxlen: 24 202.179.71.0/24 maxlen: 24 202.179.72.0/24 maxlen: 24 202.179.73.0/24 maxlen: 24 202.179.74.0/24 maxlen: 24 202.179.75.0/24 maxlen: 24 202.179.76.0/24 maxlen: 24 202.179.79.0/24 maxlen: 24 202.179.81.0/24 maxlen: 24 202.179.82.0/24 maxlen: 24 202.179.83.0/24 maxlen: 24 202.179.84.0/24 maxlen: 24 202.179.85.0/24 maxlen: 24 202.179.86.0/24 maxlen: 24 202.179.87.0/24 maxlen: 24 202.179.88.0/24 maxlen: 24 202.179.90.0/24 maxlen: 24 202.179.91.0/24 maxlen: 24 202.179.92.0/24 maxlen: 24 202.179.93.0/24 maxlen: 24 202.179.94.0/24 maxlen: 24 202.179.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.crl rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7749 (0x1e45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AE5F Validity Not Before: Nov 28 16:33:33 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67489b5d-effb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:2d:be:51:c5:9c:03:01:4a:02:aa:5b:17:01: 72:5e:b7:c2:e7:d6:d3:22:df:10:b2:76:58:bb:95: 65:13:57:a8:0f:a4:a9:1d:0a:b4:12:36:c0:99:1e: 85:ce:a9:12:b5:96:85:b5:c1:d8:43:a5:7e:ec:6e: 74:01:b4:e2:31:74:53:e6:57:63:1a:7f:7f:b8:27: b2:04:21:41:0c:c6:9b:45:c0:56:ad:ea:8a:59:64: 7d:0b:fb:6d:bc:9e:f6:fa:88:23:1e:20:a6:56:bd: 0d:fc:de:9d:99:72:8d:af:59:16:78:0d:48:11:d7: bc:46:28:02:83:28:e2:d9:ab:a4:aa:91:9f:8d:75: 64:c5:ed:ae:cf:e1:fe:de:20:55:1b:52:ed:0c:2d: ee:1a:34:bc:ed:84:73:95:bd:58:d6:72:1a:29:1b: ba:73:6d:85:0d:9a:84:7f:a4:e0:cf:ba:fd:a4:50: 66:3b:7b:8b:fd:e6:7f:74:65:dd:61:5b:2e:78:35: 4f:b7:49:a6:6c:b6:5e:ba:58:85:6d:47:24:8b:23: f2:d8:01:c7:ab:57:e0:58:e5:c7:06:ef:bc:d8:79: 2d:d2:2c:57:9f:e7:ac:a9:8f:8e:3b:ce:1c:99:25: e9:33:9e:79:6b:fd:36:d2:af:26:d3:ea:9c:05:9d: 80:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:09:63:C5:FD:BF:BF:B6:9D:4F:47:40:0D:06:9A:04:4E:02:51:AE X509v3 Authority Key Identifier: keyid:AF:E7:27:E4:20:9D:CD:F8:27:62:57:4B:5E:33:C8:08:37:87:A1:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/882AC358E1F511EE9188A919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.179.70.0-202.179.76.255 202.179.79.0/24 202.179.81.0-202.179.88.255 202.179.90.0-202.179.95.255 Signature Algorithm: sha256WithRSAEncryption b2:83:58:7f:62:24:78:cb:37:db:ac:ae:eb:a0:f6:e7:13:7d: a0:de:8b:79:c5:04:56:85:7b:0b:3e:71:89:49:7b:dd:fd:e6: 8b:8c:72:1c:e4:36:07:eb:e0:32:01:c7:07:a5:51:7e:32:97: f9:f3:e1:60:a7:ef:10:45:61:01:d9:95:bb:40:d3:9d:0c:fb: b2:cb:4c:7e:0f:09:28:83:f2:c2:b2:f6:51:46:d3:1b:56:67: c2:6b:b1:b8:b8:71:cc:15:59:1d:08:3d:7d:18:38:3b:c7:8e: 57:c9:3b:23:0f:f3:11:a5:2b:69:ed:b0:10:59:a0:ea:76:7c: 25:ca:ed:41:64:1b:15:fb:21:a0:49:10:3f:5c:c2:c8:5e:70: b7:76:2e:4d:aa:d4:2c:f0:fe:0a:99:e2:82:22:89:1b:a3:da: 7e:2b:63:d9:2d:44:2c:e6:e1:bd:89:61:b7:91:ed:86:cb:f9: 24:58:90:30:45:b7:5a:c7:dc:b8:87:60:4a:7d:62:4b:1f:f6: 6c:ab:9e:9c:a5:ca:ca:d1:51:1f:dc:c5:bd:b0:12:08:1f:2e: 48:5d:80:15:4d:fb:61:99:63:9d:d7:31:55:59:d2:03:ea:17: 04:7c:51:75:4b:be:29:d9:32:e8:71:0c:6a:5c:f1:7a:42:88: 98:ac:d7:eb -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICHkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFFNUYxMTAvBgNVBAUTKEFGRTcyN0U0MjA5RENERjgyNzYyNTc0QjVFMzNDODA4 Mzc4N0ExOEYwHhcNMjQxMTI4MTYzMzMzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4OWI1ZC1lZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlC2+UcWcAwFKAqpbFwFyXrfC59bTIt8QsnZYu5VlE1eoD6SpHQq0EjbAmR6F zqkStZaFtcHYQ6V+7G50AbTiMXRT5ldjGn9/uCeyBCFBDMabRcBWreqKWWR9C/tt vJ72+ogjHiCmVr0N/N6dmXKNr1kWeA1IEde8RigCgyji2aukqpGfjXVkxe2uz+H+ 3iBVG1LtDC3uGjS87YRzlb1Y1nIaKRu6c22FDZqEf6Tgz7r9pFBmO3uL/eZ/dGXd YVsueDVPt0mmbLZeuliFbUckiyPy2AHHq1fgWOXHBu+82Hkt0ixXn+esqY+OO84c mSXpM555a/020q8m0+qcBZ2A7wIDAQABo4ICvzCCArswHQYDVR0OBBYEFEUJY8X9 v7+2nU9HQA0GmgROAlGuMB8GA1UdIwQYMBaAFK/nJ+Qgnc34J2JXS14zyAg3h6GP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUU1Ri84Qjc5QjY3ODg4 NTExMUU2QTY5MkRFNzhDNEY5QUUwMi9yLWNuNUNDZHpmZ25ZbGRMWGpQSUNEZUhv WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItY241Q0NkemZnbllsZExYalBJQ0RlSG9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFFNUYvOEI3OUI2Nzg4ODUxMTFFNkE2OTJERTc4QzRGOUFFMDIvODgyQUMzNThF MUY1MTFFRTkxODhBOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDAwDAMEAcqzRgMEAMqzTAMEAMqzTzAMAwQAyrNRAwQAyrNYMAwD BAHKs1oDBAXKs0AwDQYJKoZIhvcNAQELBQADggEBALKDWH9iJHjLN9usruug9ucT faDei3nFBFaFews+cYlJe9395ouMchzkNgfr4DIBxwelUX4yl/nz4WCn7xBFYQHZ lbtA050M+7LLTH4PCSiD8sKy9lFG0xtWZ8Jrsbi4ccwVWR0IPX0YODvHjlfJOyMP 8xGlK2ntsBBZoOp2fCXK7UFkGxX7IaBJED9cwshecLd2Lk2q1Czw/gqZ4oIiiRuj 2n4rY9ktRCzm4b2JYbeR7YbL+SRYkDBFt1rH3LiHYEp9Yksf9myrnpylysrRUR/c xb2wEggfLkhdgBVN+2GZY53XMVVZ0gPqFwR8UXVLvinZMuhxDGpc8XpCiJis1+s= -----END CERTIFICATE-----Generated at Sat Apr 5 23:10:53 2025 by rpki-client