$ rpki-client -vvf rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/CF946690E5E711EE89AF4E5AC4F9AE02.roa File: CF946690E5E711EE89AF4E5AC4F9AE02.roa (raw, json) Hash identifier: Hy5wV1LNqpxbM5ijt7NUzM7tVBcEJ4OJJPk557Hpy8c= Subject key identifier: 37:EE:E0:80:D7:2D:0E:A5:BA:55:0D:2C:40:AD:69:63:EA:9A:F2:01 Certificate issuer: /CN=A915AE5F/serialNumber=AFE727E4209DCDF82762574B5E33C8083787A18F Certificate serial: 1E49 Authority key identifier: AF:E7:27:E4:20:9D:CD:F8:27:62:57:4B:5E:33:C8:08:37:87:A1:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/CF946690E5E711EE89AF4E5AC4F9AE02.roa Signing time: Thu 28 Nov 2024 16:33:37 +0000 ROA not before: Thu 28 Nov 2024 16:33:36 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 58659 IP address blocks: 202.179.77.0/24 maxlen: 24 202.179.78.0/24 maxlen: 24 202.179.80.0/24 maxlen: 24 202.179.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.crl rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7753 (0x1e49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AE5F Validity Not Before: Nov 28 16:33:36 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67489b60-63a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:76:85:28:d3:3b:1e:33:32:0d:0b:57:77:8a: 43:b1:e4:2f:47:48:dd:9e:93:0e:57:c3:63:74:57: 3f:77:64:d6:6e:0b:c9:36:53:ff:2c:69:e7:1d:89: 4f:35:3a:65:70:77:26:e3:f1:40:ad:66:f2:b5:9e: 1b:ef:e3:33:94:91:ea:a0:fd:ac:8c:42:fb:ac:fb: 39:d2:8e:4d:fa:0b:e3:42:70:6b:61:53:9d:a8:26: c0:11:34:2d:4a:90:d2:09:a6:c1:e7:fb:9b:4d:c7: 58:7a:00:95:08:ff:16:5e:1e:11:ce:a3:da:d0:7b: 9e:85:36:5c:59:6c:16:d6:cc:c1:2a:2d:67:d5:48: 9b:16:28:e1:6f:78:d2:6c:0c:25:d2:b7:0b:50:5b: 85:5a:a6:3b:d5:ce:20:35:31:20:65:15:ce:f4:11: 6f:2d:b6:34:6a:34:cf:6e:f8:c6:d6:25:52:56:bc: ce:f2:03:05:f3:49:0b:3e:c7:14:a3:00:3a:a4:43: b4:1d:eb:e6:df:9a:df:93:90:d9:06:7f:75:bd:9d: c4:bb:3c:e0:64:9b:87:49:49:1c:cb:ad:c0:cb:93: f2:71:a4:8e:03:a6:fe:45:fe:38:be:50:ac:58:75: 02:98:e4:64:b9:94:5c:89:7d:d5:fb:af:9b:65:1d: 83:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:EE:E0:80:D7:2D:0E:A5:BA:55:0D:2C:40:AD:69:63:EA:9A:F2:01 X509v3 Authority Key Identifier: keyid:AF:E7:27:E4:20:9D:CD:F8:27:62:57:4B:5E:33:C8:08:37:87:A1:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/r-cn5CCdzfgnYldLXjPICDeHoY8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-cn5CCdzfgnYldLXjPICDeHoY8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AE5F/8B79B678885111E6A692DE78C4F9AE02/CF946690E5E711EE89AF4E5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.179.77.0-202.179.78.255 202.179.80.0/24 202.179.89.0/24 Signature Algorithm: sha256WithRSAEncryption c3:e2:4d:8e:24:1e:c8:be:ee:6d:6a:20:cf:81:99:c1:36:b3: 7f:00:08:97:0b:e3:e0:5e:fc:3d:d3:14:9a:b3:7a:22:df:cc: de:87:f4:4f:e6:53:6f:22:9b:66:44:8c:99:88:ca:02:af:3a: a5:6a:37:a8:53:4a:dd:f5:36:82:e9:ab:27:8f:18:46:8d:a2: 2c:00:1e:58:f0:85:8f:d1:13:53:93:81:c5:f3:45:4b:0b:f2: bf:4a:c9:f4:37:2c:88:e8:e5:6f:01:33:24:ca:2a:2b:0c:a7: 06:95:8d:40:cf:75:b1:ed:68:1a:e9:e8:e7:46:62:b5:78:a0: 2e:c0:e0:fd:7a:60:11:d1:e2:cd:0d:eb:47:32:f2:a8:51:aa: a3:78:57:14:b9:08:11:60:94:d5:c9:5d:a3:97:79:c1:26:a7: 88:ac:55:d3:32:57:93:ee:25:f5:18:77:cb:1c:76:39:97:bb: d8:b6:ef:43:47:40:c3:3d:94:84:02:cb:49:7c:66:01:9d:30: 14:6d:15:24:57:be:8a:03:a9:11:93:ee:df:52:9d:fe:7a:89: 82:c8:73:fd:1d:b0:50:4b:81:2d:e9:ce:33:e6:2a:54:f4:eb: 02:8c:91:90:96:63:dc:2a:92:c9:0c:fc:e7:23:25:6b:97:ca: 25:85:30:70 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICHkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFFNUYxMTAvBgNVBAUTKEFGRTcyN0U0MjA5RENERjgyNzYyNTc0QjVFMzNDODA4 Mzc4N0ExOEYwHhcNMjQxMTI4MTYzMzM2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4OWI2MC02M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43aFKNM7HjMyDQtXd4pDseQvR0jdnpMOV8NjdFc/d2TWbgvJNlP/LGnnHYlP NTplcHcm4/FArWbytZ4b7+MzlJHqoP2sjEL7rPs50o5N+gvjQnBrYVOdqCbAETQt SpDSCabB5/ubTcdYegCVCP8WXh4RzqPa0HuehTZcWWwW1szBKi1n1UibFijhb3jS bAwl0rcLUFuFWqY71c4gNTEgZRXO9BFvLbY0ajTPbvjG1iVSVrzO8gMF80kLPscU owA6pEO0Hevm35rfk5DZBn91vZ3EuzzgZJuHSUkcy63Ay5PycaSOA6b+Rf44vlCs WHUCmORkuZRciX3V+6+bZR2DyQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFDfu4IDX LQ6lulUNLECtaWPqmvIBMB8GA1UdIwQYMBaAFK/nJ+Qgnc34J2JXS14zyAg3h6GP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUU1Ri84Qjc5QjY3ODg4 NTExMUU2QTY5MkRFNzhDNEY5QUUwMi9yLWNuNUNDZHpmZ25ZbGRMWGpQSUNEZUhv WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItY241Q0NkemZnbllsZExYalBJQ0RlSG9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFFNUYvOEI3OUI2Nzg4ODUxMTFFNkE2OTJERTc4QzRGOUFFMDIvQ0Y5NDY2OTBF NUU3MTFFRTg5QUY0RTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAMqzTQMEAMqzTgMEAMqzUAMEAMqzWTANBgkqhkiG9w0B AQsFAAOCAQEAw+JNjiQeyL7ubWogz4GZwTazfwAIlwvj4F78PdMUmrN6It/M3of0 T+ZTbyKbZkSMmYjKAq86pWo3qFNK3fU2gumrJ48YRo2iLAAeWPCFj9ETU5OBxfNF Swvyv0rJ9DcsiOjlbwEzJMoqKwynBpWNQM91se1oGuno50ZitXigLsDg/XpgEdHi zQ3rRzLyqFGqo3hXFLkIEWCU1cldo5d5wSaniKxV0zJXk+4l9Rh3yxx2OZe72Lbv Q0dAwz2UhALLSXxmAZ0wFG0VJFe+igOpEZPu31Kd/nqJgshz/R2wUEuBLenOM+Yq VPTrAoyRkJZj3CqSyQz85yMla5fKJYUwcA== -----END CERTIFICATE-----Generated at Sat Apr 5 08:06:43 2025 by rpki-client