$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa File: 35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa (raw, json) Hash identifier: Y77Vm4FDvzInxKFqdlF/vRWJ/K3yltYPE+Pe0UH2y2g= Subject key identifier: C4:C6:2B:8B:57:6B:5A:E6:F3:72:3E:5E:96:32:D2:E5:56:2E:6B:D1 Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 0815 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa Signing time: Fri 04 Apr 2025 21:34:31 +0000 ROA not before: Fri 04 Apr 2025 21:34:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23711 IP address blocks: 202.41.141.0/24 maxlen: 24 2001:dd8:16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2069 (0x815) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536 Validity Not Before: Apr 4 21:34:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f05067-45c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d5:4a:23:1a:13:51:f6:50:3a:a1:33:25:f5: b8:e7:64:ef:aa:92:48:c9:4d:68:6b:75:ce:3c:39: 94:a8:d4:68:df:c8:5c:bc:8a:3d:95:69:82:9a:35: 2a:96:ca:95:3f:f0:ec:8b:4c:83:be:5b:c6:a5:b9: 16:92:9e:18:ba:14:e5:d5:2b:ee:85:ee:0f:fa:b0: 25:92:bc:2e:28:2b:4f:4a:1a:23:db:14:d5:72:e1: 5f:ed:7f:d8:f9:b4:4f:09:ca:d6:e4:2a:65:e0:d0: b2:96:b1:5b:d4:fb:89:67:f0:16:f3:64:ee:15:65: 1e:f6:73:7d:30:94:fc:30:6e:de:b6:1f:20:97:c7: e8:71:69:ec:b8:64:dd:40:cf:3c:6a:32:29:6d:43: d9:9c:83:91:25:5d:dd:14:1d:00:ba:3b:4e:b8:b5: 3a:01:fc:5b:4a:c0:3a:a5:f6:c8:da:98:3a:16:be: 0b:b7:2e:fc:2c:67:e4:ef:e1:bd:c8:5a:5a:19:3e: 32:ae:20:77:90:df:19:50:a3:92:7a:d2:a2:e9:1f: fa:4f:ba:69:66:ab:fc:0f:f6:a5:7a:ab:00:09:87: 28:bc:3e:db:c1:38:d8:8b:53:bd:fc:12:14:71:95: 0f:f4:24:14:a5:c0:76:59:c3:77:7d:f9:92:ab:32: 90:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C6:2B:8B:57:6B:5A:E6:F3:72:3E:5E:96:32:D2:E5:56:2E:6B:D1 X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/35A8CF1EEC2411EA8B0DDA2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.141.0/24 IPv6: 2001:dd8:16::/48 Signature Algorithm: sha256WithRSAEncryption 9a:84:d3:0b:bf:b2:06:ae:10:a8:68:dd:b6:bb:c5:32:65:dd: 74:73:1c:e2:ec:ed:4c:0b:d1:53:ee:13:3b:c8:e8:e1:37:64: 7f:a8:f2:51:97:4c:e8:5e:11:6d:0a:eb:08:1f:d8:17:63:e8: eb:10:b0:76:0f:34:df:8a:14:71:a6:a0:e9:1c:4c:56:a1:74: d0:26:e0:b2:fe:5c:d7:00:a9:14:17:0e:2d:74:11:ca:d3:c0: 66:03:86:44:12:f3:64:8a:4b:cd:c4:7b:83:70:e7:74:43:ee: 61:b4:ea:d2:db:f8:8f:9b:23:62:12:3c:ea:3e:b0:33:72:82: d0:7e:49:d5:c2:4c:0f:35:fe:0b:ff:e3:1c:de:c3:6e:0c:c3: cb:d2:3c:eb:49:ef:d2:68:a7:44:a3:a9:74:95:31:f1:13:75: d1:0d:a7:2f:ad:1f:10:2f:3a:2c:d0:9f:7e:93:f8:50:01:5c: 2f:3e:71:e1:52:a7:1e:6c:52:f5:27:9e:77:5f:f4:97:a6:4c: 28:e5:40:25:1c:e6:cc:15:f6:01:01:89:97:1b:05:fb:e1:3d: 56:fb:63:91:9a:a7:3b:a0:b2:8d:b3:79:0f:b4:4a:11:67:ec: e9:37:11:00:6a:51:2b:7f:c6:bf:ad:1e:4a:dc:18:fa:57:49: 86:e0:d1:cb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjUwNDA0MjEzNDMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwNTA2Ny00NWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNVKIxoTUfZQOqEzJfW452TvqpJIyU1oa3XOPDmUqNRo38hcvIo9lWmCmjUq lsqVP/Dsi0yDvlvGpbkWkp4YuhTl1Svuhe4P+rAlkrwuKCtPShoj2xTVcuFf7X/Y +bRPCcrW5Cpl4NCylrFb1PuJZ/AW82TuFWUe9nN9MJT8MG7eth8gl8focWnsuGTd QM88ajIpbUPZnIORJV3dFB0AujtOuLU6AfxbSsA6pfbI2pg6Fr4Lty78LGfk7+G9 yFpaGT4yriB3kN8ZUKOSetKi6R/6T7ppZqv8D/aleqsACYcovD7bwTjYi1O9/BIU cZUP9CQUpcB2WcN3ffmSqzKQdQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMTGK4tX a1rm83I+XpYy0uVWLmvRMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvMzVBOENGMUVF QzI0MTFFQThCMEREQTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKKY0wDwQCAAIwCQMHACABDdgAFjANBgkqhkiG9w0BAQsF AAOCAQEAmoTTC7+yBq4QqGjdtrvFMmXddHMc4uztTAvRU+4TO8jo4Tdkf6jyUZdM 6F4RbQrrCB/YF2Po6xCwdg8034oUcaag6RxMVqF00Cbgsv5c1wCpFBcOLXQRytPA ZgOGRBLzZIpLzcR7g3DndEPuYbTq0tv4j5sjYhI86j6wM3KC0H5J1cJMDzX+C//j HN7DbgzDy9I860nv0minRKOpdJUx8RN10Q2nL60fEC86LNCffpP4UAFcLz5x4VKn HmxS9Seed1/0l6ZMKOVAJRzmzBX2AQGJlxsF++E9VvtjkZqnO6CyjbN5D7RKEWfs 6TcRAGpRK3/Gv60eStwY+ldJhuDRyw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:03:26 2025 by rpki-client