$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/673E7D66F73911EE8BEC0A76C4F9AE02.roa File: 673E7D66F73911EE8BEC0A76C4F9AE02.roa (raw, json) Hash identifier: yf+DtpQHK15DsIR7hfI9Gbc6iXm71Iwwp13I2Suk7Rw= Subject key identifier: 5C:42:4A:09:4E:31:46:D7:6F:CC:38:EA:37:16:A6:37:6C:3F:16:1D Certificate issuer: /CN=A915DA76/serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Certificate serial: 3473 Authority key identifier: 4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/673E7D66F73911EE8BEC0A76C4F9AE02.roa Signing time: Wed 26 Mar 2025 14:50:44 +0000 ROA not before: Wed 26 Mar 2025 14:50:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139829 IP address blocks: 202.78.27.0/24 maxlen: 24 202.78.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13427 (0x3473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA76 Validity Not Before: Mar 26 14:50:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e41444-3c1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:1c:dc:55:fc:85:44:74:98:ca:3f:3c:e1: 33:38:e9:1a:18:e0:11:da:e0:97:32:70:a5:12:6d: 42:44:78:41:c0:0b:8e:4b:e7:fc:82:9c:49:ab:91: 79:7c:09:48:68:b7:3c:94:d6:5c:3c:dd:09:e9:7b: 8b:0f:99:7d:5e:80:db:b8:2e:21:6e:c5:1e:97:49: 50:2c:ca:e5:74:ee:f5:8a:b5:3d:0d:7b:94:7c:38: 75:38:22:89:59:4e:5c:c2:44:28:32:fa:38:2e:bf: 14:3c:52:0d:b6:85:7d:01:c6:fa:71:c6:79:6c:19: 92:7b:74:3e:9b:48:b4:4c:36:e5:7f:4e:94:f7:8d: b8:4a:fe:5c:f5:5d:34:83:f7:e4:a2:eb:60:c8:62: bc:c6:e0:17:57:ff:a6:66:df:10:2d:b8:d4:f9:e6: 90:de:b3:7c:9f:01:e4:96:e4:76:4b:8e:ce:a2:d8: b9:6d:f9:9e:03:d2:65:25:fb:a5:a9:d3:3f:d2:bd: 7f:6c:05:60:d3:f1:d2:c9:41:53:c5:d4:2f:4f:81: 6e:cb:b5:fc:4c:87:af:b4:5a:94:f3:75:37:97:e0: 9c:3b:3e:a0:82:29:73:5a:62:2b:a9:77:c2:e8:44: 2e:60:da:75:f6:55:73:c0:74:97:12:d5:91:fb:83: fa:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:42:4A:09:4E:31:46:D7:6F:CC:38:EA:37:16:A6:37:6C:3F:16:1D X509v3 Authority Key Identifier: keyid:4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/673E7D66F73911EE8BEC0A76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.78.27.0-202.78.29.255 Signature Algorithm: sha256WithRSAEncryption 87:64:69:01:99:d8:89:5b:d9:2a:c7:4c:a2:3d:3a:d3:96:dc: d3:9f:28:62:cd:cc:1e:9e:21:4c:43:14:db:35:c4:7a:92:a2: a5:81:0d:71:60:83:c2:bc:4e:fa:80:6e:c6:b7:ce:e5:1d:01: 96:8c:7f:18:93:30:64:6c:f7:e6:05:52:92:f3:e9:8e:10:af: 60:41:d3:0a:aa:fa:43:ea:0f:ac:e7:3c:38:f0:20:c8:54:69: 08:79:05:d6:72:37:49:e8:4d:0d:b9:a5:e5:e7:62:58:80:fb: 93:b9:1e:8b:a4:21:35:56:49:f7:e1:42:51:70:31:f1:23:46: 9e:77:e6:0d:dd:c3:98:fc:67:0e:34:4d:64:5b:dd:5d:b5:d8: 7c:be:97:79:2f:be:3f:31:f6:15:17:70:79:1f:17:1b:b2:c6: 6b:c2:ee:af:de:ab:6f:cb:e6:6e:da:8e:52:9e:f2:de:ec:83: 3d:0d:09:85:8c:a2:08:f9:6f:f8:5e:e5:ac:67:f7:9b:b2:6b: c3:a8:6c:b5:bf:ed:3e:eb:ff:96:a5:b7:6b:5e:f2:7e:a2:41: b9:1e:1c:01:f7:11:85:a0:de:b7:22:39:bd:97:03:aa:1f:f8: 24:af:96:7b:10:49:d9:cb:3a:73:77:35:9e:6f:07:b8:b6:41: e0:56:60:b5 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICNHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNzYxMTAvBgNVBAUTKDRERUJCOEUxMjIyQkUwRTNGMjNBRURCNzUyNDVFMEY5 N0I4N0M3NEQwHhcNMjUwMzI2MTQ1MDQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0MTQ0NC0zYzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrwc3FX8hUR0mMo/POEzOOkaGOAR2uCXMnClEm1CRHhBwAuOS+f8gpxJq5F5 fAlIaLc8lNZcPN0J6XuLD5l9XoDbuC4hbsUel0lQLMrldO71irU9DXuUfDh1OCKJ WU5cwkQoMvo4Lr8UPFINtoV9Acb6ccZ5bBmSe3Q+m0i0TDblf06U9424Sv5c9V00 g/fkoutgyGK8xuAXV/+mZt8QLbjU+eaQ3rN8nwHkluR2S47Ooti5bfmeA9JlJful qdM/0r1/bAVg0/HSyUFTxdQvT4Fuy7X8TIevtFqU83U3l+CcOz6ggilzWmIrqXfC 6EQuYNp19lVzwHSXEtWR+4P6BQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFFxCSglO MUbXb8w46jcWpjdsPxYdMB8GA1UdIwQYMBaAFE3ruOEiK+Dj8jrtt1JF4Pl7h8dN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE3Ni9BQUJBMzQ5ODFE OEIxMUUyQUE3NTZBRTYwOEIwMkNEMi9UZXU0NFNJcjRPUHlPdTIzVWtYZy1YdUh4 MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RldTQ0U0lyNE9QeU91MjNVa1hnLVh1SHgwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBNzYvQUFCQTM0OTgxRDhCMTFFMkFBNzU2QUU2MDhCMDJDRDIvNjczRTdENjZG NzM5MTFFRThCRUMwQTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAMpOGwMEAcpOHDANBgkqhkiG9w0BAQsFAAOCAQEAh2Rp AZnYiVvZKsdMoj0605bc058oYs3MHp4hTEMU2zXEepKipYENcWCDwrxO+oBuxrfO 5R0Blox/GJMwZGz35gVSkvPpjhCvYEHTCqr6Q+oPrOc8OPAgyFRpCHkF1nI3SehN Dbml5ediWID7k7kei6QhNVZJ9+FCUXAx8SNGnnfmDd3DmPxnDjRNZFvdXbXYfL6X eS++PzH2FRdweR8XG7LGa8Lur96rb8vmbtqOUp7y3uyDPQ0JhYyiCPlv+F7lrGf3 m7Jrw6hstb/tPuv/lqW3a17yfqJBuR4cAfcRhaDetyI5vZcDqh/4JK+WexBJ2cs6 c3c1nm8HuLZB4FZgtQ== -----END CERTIFICATE-----Generated at Sat Apr 5 07:16:54 2025 by rpki-client