$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/897785E099AA11EE9E218060C4F9AE02.roa File: 897785E099AA11EE9E218060C4F9AE02.roa (raw, json) Hash identifier: Hbvrl5qt3755vAHPJTM1ht4CNvz+/1G82ZsixjxL3vU= Subject key identifier: 17:89:B7:A7:A9:ED:51:07:CB:4B:86:91:AC:B1:30:96:6F:C2:60:B2 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1961 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/897785E099AA11EE9E218060C4F9AE02.roa Signing time: Tue 14 Jan 2025 16:34:24 +0000 ROA not before: Tue 14 Jan 2025 16:34:24 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4775 IP address blocks: 118.214.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6497 (0x1961) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A Validity Not Before: Jan 14 16:34:24 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67869210-e8cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2a:6c:f7:89:16:7b:42:ca:a2:99:5e:90:65: cf:4a:cb:04:42:c6:e5:a7:74:54:b6:0a:55:51:bd: ef:10:88:ba:fe:a3:b3:da:c9:a7:76:2d:3f:6e:b9: 82:b2:be:d6:68:6b:f5:ac:fd:66:a8:15:61:f2:65: 0e:b0:7b:bb:96:61:ee:49:df:06:61:98:51:96:1e: 12:59:b0:2e:da:71:4e:b7:72:6c:3c:6d:19:31:50: be:50:e7:67:4d:1c:3b:ca:96:09:eb:91:37:80:be: c2:d7:e2:90:f8:56:b6:07:3d:e5:3d:04:37:58:62: ae:dc:f4:f4:1c:57:a8:58:cb:3d:7d:4c:ea:36:92: 95:cf:66:da:27:5e:27:f6:e5:d9:ac:8f:6a:a9:85: 0c:cb:07:64:70:5a:5a:27:65:af:d3:b0:d7:ef:89: dd:9d:6f:c1:68:a7:c5:1b:d3:b2:af:1b:77:10:50: 85:8f:c7:ff:22:8c:03:7b:0c:7a:ac:96:6f:46:98: 43:3f:b3:10:95:c3:f8:26:92:67:e8:ee:5a:12:01: 2b:1d:7b:9a:b3:c2:95:bb:51:c3:d4:0f:20:f9:00: 54:98:85:64:da:59:99:4f:60:0e:54:41:fd:ac:9a: bc:e6:5b:d6:86:f1:85:91:5c:b8:e8:6e:0d:2d:43: 78:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:89:B7:A7:A9:ED:51:07:CB:4B:86:91:AC:B1:30:96:6F:C2:60:B2 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/897785E099AA11EE9E218060C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.214.7.0/24 Signature Algorithm: sha256WithRSAEncryption 89:50:67:b7:10:3e:7e:aa:de:d4:eb:2c:40:5f:0d:65:2a:f2: 63:1c:10:a9:6c:41:7a:1c:a7:bc:bb:73:b0:7d:70:dc:cd:76: b7:c5:a0:f8:f3:b0:ff:1a:34:0c:f9:6a:8f:ab:3b:78:62:8c: ad:1d:a8:60:17:b2:84:c2:79:db:17:45:89:09:9c:98:f3:9d: e5:58:d4:c0:60:c8:85:1e:bb:77:15:9a:ab:a7:68:96:ad:4d: 42:ef:4c:8f:ce:05:8c:9e:20:e4:95:91:98:63:45:4f:13:06: 17:53:6d:3c:3f:d9:f5:c5:9b:3a:09:a1:f0:9f:e8:94:0f:42: 2d:d5:48:79:72:13:4a:e2:41:c7:ee:4a:01:f2:a8:77:58:b7: c3:cc:41:fd:78:f2:ed:64:cd:b7:3b:a3:01:e8:2a:cb:8a:9f: db:5e:f2:85:25:7c:2b:97:ac:0f:b6:06:83:bb:50:32:41:08: aa:4f:18:b1:db:73:e5:9d:e4:a6:e6:94:86:e7:5c:22:14:fc: 78:b6:0f:af:7a:e7:42:ea:ff:aa:be:0c:8a:ab:15:62:13:71: 57:30:5b:fd:01:9b:03:e2:f8:96:54:9b:9f:85:7e:ae:7e:c8: 55:fd:c2:bd:ae:d2:4c:1a:5e:0f:81:b3:f1:fe:2f:7b:27:31: 5d:3a:f9:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjUwMTE0MTYzNDI0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2OTIxMC1lOGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryps94kWe0LKoplekGXPSssEQsblp3RUtgpVUb3vEIi6/qOz2smndi0/brmC sr7WaGv1rP1mqBVh8mUOsHu7lmHuSd8GYZhRlh4SWbAu2nFOt3JsPG0ZMVC+UOdn TRw7ypYJ65E3gL7C1+KQ+Fa2Bz3lPQQ3WGKu3PT0HFeoWMs9fUzqNpKVz2baJ14n 9uXZrI9qqYUMywdkcFpaJ2Wv07DX74ndnW/BaKfFG9Oyrxt3EFCFj8f/IowDewx6 rJZvRphDP7MQlcP4JpJn6O5aEgErHXuas8KVu1HD1A8g+QBUmIVk2lmZT2AOVEH9 rJq85lvWhvGFkVy46G4NLUN4WQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBeJt6ep 7VEHy0uGkayxMJZvwmCyMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvODk3Nzg1RTA5 OUFBMTFFRTlFMjE4MDYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB21gcwDQYJKoZIhvcNAQELBQADggEBAIlQZ7cQPn6q3tTr LEBfDWUq8mMcEKlsQXocp7y7c7B9cNzNdrfFoPjzsP8aNAz5ao+rO3hijK0dqGAX soTCedsXRYkJnJjzneVY1MBgyIUeu3cVmqunaJatTULvTI/OBYyeIOSVkZhjRU8T BhdTbTw/2fXFmzoJofCf6JQPQi3VSHlyE0riQcfuSgHyqHdYt8PMQf148u1kzbc7 owHoKsuKn9te8oUlfCuXrA+2BoO7UDJBCKpPGLHbc+Wd5KbmlIbnXCIU/Hi2D696 50Lq/6q+DIqrFWITcVcwW/0BmwPi+JZUm5+Ffq5+yFX9wr2u0kwaXg+Bs/H+L3sn MV06+QE= -----END CERTIFICATE-----Generated at Sat Apr 5 12:53:14 2025 by rpki-client