$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/670087C4EEF011ED9C693D31C4F9AE02.roa File: 670087C4EEF011ED9C693D31C4F9AE02.roa (raw, json) Hash identifier: aXVsQ3eTDOFY8R9G8hcsnCxP/cyR26ThIRn0dDawEqA= Subject key identifier: 07:77:B0:FD:C1:76:67:E0:4E:4B:39:38:D4:AE:CF:F8:99:D3:D3:D8 Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 018A Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/670087C4EEF011ED9C693D31C4F9AE02.roa Signing time: Wed 25 Dec 2024 02:06:22 +0000 ROA not before: Wed 25 Dec 2024 02:06:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9483 IP address blocks: 202.50.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F Validity Not Before: Dec 25 02:06:22 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676b689e-7a34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:05:5b:b6:fb:8f:ab:88:cd:36:0a:fb:4b:d3: d1:01:2a:38:f0:b0:52:37:9b:1a:ae:3d:1b:4d:3a: 63:9c:2e:d9:7b:1b:97:32:6c:c3:c6:ec:fa:39:01: e2:46:ea:47:6b:ea:d1:f4:11:d7:c2:b9:ae:79:3b: 78:53:90:7d:91:0a:b0:e8:86:31:6d:8f:68:e3:82: f6:7d:ed:53:80:1e:3e:1a:39:61:ff:f7:af:35:d2: ac:cb:51:e3:16:41:94:a0:cd:77:fa:3b:78:ae:27: 76:7f:3f:9f:3d:7d:ac:95:20:2d:00:43:0a:52:f1: 1e:35:eb:27:65:bb:36:cc:9e:ca:5c:ec:6a:92:7b: 51:a4:27:ce:7a:be:33:3c:c3:64:dc:fd:1b:5c:5e: 5b:66:c1:e7:ff:31:62:8d:92:bb:1e:6f:5f:5b:7a: 31:b2:71:16:6a:4a:93:69:5d:81:f9:c3:37:d5:33: 29:40:6f:56:49:3d:bc:cd:8d:a6:e6:25:b8:ff:22: 41:86:66:28:e3:8b:c9:67:96:c4:f5:68:24:c8:38: 26:f6:d0:43:70:ec:82:3f:e6:d4:33:42:f0:e6:58: 8a:6f:4a:b5:1a:f3:1b:2b:19:f3:6d:11:4b:65:d4: b2:85:ea:ca:22:ba:f0:55:dd:2b:31:43:34:a8:f4: bc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:77:B0:FD:C1:76:67:E0:4E:4B:39:38:D4:AE:CF:F8:99:D3:D3:D8 X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/670087C4EEF011ED9C693D31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.109.0/24 Signature Algorithm: sha256WithRSAEncryption 61:1c:12:8b:b5:1c:a4:f4:ee:af:4d:6e:1b:c4:fa:ce:ac:b8: c2:08:fa:26:58:b2:9a:b1:68:be:4d:bf:f8:54:4b:48:04:57: 8a:0c:49:57:6d:20:c6:70:1f:8d:55:ee:10:93:75:94:24:51: 32:ae:d7:07:03:24:f3:2b:46:1d:65:cc:f3:b6:99:a2:fd:95: 86:e7:a5:d0:a3:6a:a8:14:bd:eb:d1:43:90:dd:02:a5:fa:3e: ea:36:16:68:21:ff:d2:60:66:47:09:14:76:b7:c8:eb:06:79: 68:8a:95:75:e3:cd:20:9c:1b:44:cc:a6:c5:e0:78:eb:f9:0d: 1a:42:63:bd:eb:a7:15:95:f1:ad:47:80:9a:5a:93:80:cb:7b: e7:f1:8b:28:b1:bd:c5:16:fa:9f:5f:32:48:ff:e9:54:44:3f: 88:c4:b2:2e:ea:c0:b4:b2:d2:57:72:e3:45:fd:f9:07:06:89: c1:4b:5f:26:dc:5a:cc:92:40:bb:d4:e3:0d:2a:75:75:f8:2c: ea:1e:43:03:28:a2:c3:82:66:7f:70:23:00:f6:39:11:f7:fd: 45:66:fd:75:89:2e:ff:30:aa:eb:c2:33:bf:70:f2:30:68:2f: 80:19:34:70:0e:a4:e9:d8:40:15:89:35:37:91:fa:39:f9:a4: 00:44:7a:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjQxMjI1MDIwNjIyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZiNjg5ZS03YTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowVbtvuPq4jNNgr7S9PRASo48LBSN5sarj0bTTpjnC7ZexuXMmzDxuz6OQHi RupHa+rR9BHXwrmueTt4U5B9kQqw6IYxbY9o44L2fe1TgB4+Gjlh//evNdKsy1Hj FkGUoM13+jt4rid2fz+fPX2slSAtAEMKUvEeNesnZbs2zJ7KXOxqkntRpCfOer4z PMNk3P0bXF5bZsHn/zFijZK7Hm9fW3oxsnEWakqTaV2B+cM31TMpQG9WST28zY2m 5iW4/yJBhmYo44vJZ5bE9WgkyDgm9tBDcOyCP+bUM0Lw5liKb0q1GvMbKxnzbRFL ZdSyherKIrrwVd0rMUM0qPS8GQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAd3sP3B dmfgTks5ONSuz/iZ09PYMB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUNFMkYvMEJERUE1Mjg3MEUzMTFFREI1NzcwNDNGQzRGOUFFMDIvNjcwMDg3QzRF RUYwMTFFRDlDNjkzRDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKMm0wDQYJKoZIhvcNAQELBQADggEBAGEcEou1HKT07q9N bhvE+s6suMII+iZYspqxaL5Nv/hUS0gEV4oMSVdtIMZwH41V7hCTdZQkUTKu1wcD JPMrRh1lzPO2maL9lYbnpdCjaqgUvevRQ5DdAqX6Puo2Fmgh/9JgZkcJFHa3yOsG eWiKlXXjzSCcG0TMpsXgeOv5DRpCY73rpxWV8a1HgJpak4DLe+fxiyixvcUW+p9f Mkj/6VREP4jEsi7qwLSy0ldy40X9+QcGicFLXybcWsySQLvU4w0qdXX4LOoeQwMo osOCZn9wIwD2ORH3/UVm/XWJLv8wquvCM79w8jBoL4AZNHAOpOnYQBWJNTeR+jn5 pABEeqk= -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:38 2025 by rpki-client