$ rpki-client -vvf rpki.apnic.net/member_repository/A9163358/7D40647EC1CA11EFA3F24A87C4F9AE02/2B340AEAC1CB11EF9CFC9509C4F9AE02.roa File: 2B340AEAC1CB11EF9CFC9509C4F9AE02.roa (raw, json) Hash identifier: m2+w3MuoT8jahcLbP8IymDcYrHQo98+RI8vF7vbfRjY= Subject key identifier: 66:1A:40:31:0D:BA:96:54:A6:A5:D1:92:F6:B3:4E:4A:E7:DD:ED:7B Certificate issuer: /CN=A9163358/serialNumber=7FBFCF196BFD2EF070625BEEC426E860688AC2F1 Certificate serial: 0C Authority key identifier: 7F:BF:CF:19:6B:FD:2E:F0:70:62:5B:EE:C4:26:E8:60:68:8A:C2:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7_PGWv9LvBwYlvuxCboYGiKwvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163358/7D40647EC1CA11EFA3F24A87C4F9AE02/2B340AEAC1CB11EF9CFC9509C4F9AE02.roa Signing time: Tue 24 Dec 2024 09:11:54 +0000 ROA not before: Tue 24 Dec 2024 09:11:54 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 17541 IP address blocks: 202.44.56.0/24 maxlen: 24 202.44.57.0/24 maxlen: 24 202.44.58.0/24 maxlen: 24 202.44.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163358/7D40647EC1CA11EFA3F24A87C4F9AE02/f7_PGWv9LvBwYlvuxCboYGiKwvE.crl rsync://rpki.apnic.net/member_repository/A9163358/7D40647EC1CA11EFA3F24A87C4F9AE02/f7_PGWv9LvBwYlvuxCboYGiKwvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7_PGWv9LvBwYlvuxCboYGiKwvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163358 Validity Not Before: Dec 24 09:11:54 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=676a7ada-b360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:97:cf:7c:ac:71:3d:86:24:a8:ec:e3:ea:0e: d8:18:29:6b:36:bc:b1:9f:59:2e:c5:ee:72:a2:90: 6e:8c:fa:cd:20:32:d0:8a:a6:78:e6:f0:21:2e:fe: de:6f:bb:08:18:bd:58:c3:96:95:22:d2:ce:cd:ec: 62:ec:25:cb:b8:e7:fa:35:db:4b:2e:83:5c:1f:06: c7:e7:2d:aa:e8:d7:95:20:6d:8e:ea:7a:8e:76:a6: be:f3:1b:41:de:59:d9:94:4b:0b:7a:ef:f6:cb:34: 00:6e:95:80:2e:78:fa:ac:b3:11:32:cc:f9:32:8a: 5c:35:a6:e9:1e:3e:fd:08:5b:a4:62:3c:66:ce:78: a7:5f:dc:28:b4:c2:65:22:40:4d:b0:c4:b7:41:17: f3:8c:f9:90:5e:8a:6c:a7:10:f4:17:f3:21:03:7a: f9:7d:fd:fd:c6:95:0f:0f:34:4d:c0:ed:1b:e3:b2: 7b:60:d4:81:c0:11:78:f5:39:d6:76:a7:89:f6:d6: ac:57:d7:69:93:a6:f8:06:fd:d2:35:31:c9:f4:91: 61:0b:ea:9e:ab:7e:40:03:60:93:58:6b:6e:b7:96: 59:df:c4:d5:68:46:57:db:85:f3:81:11:bf:c8:0b: e2:08:39:d8:ff:b1:85:b4:37:e4:40:6c:18:7d:40: 6f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1A:40:31:0D:BA:96:54:A6:A5:D1:92:F6:B3:4E:4A:E7:DD:ED:7B X509v3 Authority Key Identifier: keyid:7F:BF:CF:19:6B:FD:2E:F0:70:62:5B:EE:C4:26:E8:60:68:8A:C2:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163358/7D40647EC1CA11EFA3F24A87C4F9AE02/f7_PGWv9LvBwYlvuxCboYGiKwvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7_PGWv9LvBwYlvuxCboYGiKwvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163358/7D40647EC1CA11EFA3F24A87C4F9AE02/2B340AEAC1CB11EF9CFC9509C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.44.56.0/22 Signature Algorithm: sha256WithRSAEncryption c8:50:81:22:27:e9:90:df:34:69:ca:81:26:ca:e2:f3:de:ac: 4a:65:87:99:59:c5:08:1c:7c:5a:88:53:08:28:2d:0f:76:5e: 61:1d:f8:ad:56:e4:07:16:b0:3b:97:5f:07:69:b0:5e:f4:b0: 98:f9:0e:73:11:01:ca:e4:4b:c9:50:1e:31:9b:e9:87:21:16: e2:3b:bd:d5:c5:20:f5:44:58:d9:da:20:0a:59:d1:28:4a:73: 3a:94:95:15:fb:ca:8b:63:9c:26:d2:96:97:c6:72:81:05:0f: 33:3d:11:8a:be:d0:a2:1f:a2:cd:b5:88:1c:d5:e4:35:de:06: 69:03:db:d0:77:98:d4:97:fb:84:fb:2f:b5:ea:b8:7b:f3:9f: 9c:8a:9b:59:27:e7:e2:77:0a:17:b2:e5:90:49:dd:2e:79:82: 56:25:04:1d:2c:bd:d0:b7:8c:b7:95:1a:7d:5c:71:7a:9f:c5: 07:3f:cc:5f:ba:90:5d:f9:bb:9d:0e:dd:6c:e8:3f:7f:58:fd: f0:ad:ad:18:41:4c:65:18:e2:e3:eb:0e:3c:3c:84:6e:6a:2d: c2:40:3a:c6:1b:08:88:d1:65:2a:ac:e8:33:36:20:bd:7b:33: a2:f1:91:62:c9:5e:0a:06:22:0b:95:da:9e:28:52:df:86:2a: 6d:11:27:41 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MzM1ODExMC8GA1UEBRMoN0ZCRkNGMTk2QkZEMkVGMDcwNjI1QkVFQzQyNkU4NjA2 ODhBQzJGMTAeFw0yNDEyMjQwOTExNTRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NmE3YWRhLWIzNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD9l898rHE9hiSo7OPqDtgYKWs2vLGfWS7F7nKikG6M+s0gMtCKpnjm8CEu/t5v uwgYvVjDlpUi0s7N7GLsJcu45/o120sug1wfBsfnLaro15UgbY7qeo52pr7zG0He WdmUSwt67/bLNABulYAuePqssxEyzPkyilw1pukePv0IW6RiPGbOeKdf3Ci0wmUi QE2wxLdBF/OM+ZBeimynEPQX8yEDevl9/f3GlQ8PNE3A7Rvjsntg1IHAEXj1OdZ2 p4n21qxX12mTpvgG/dI1Mcn0kWEL6p6rfkADYJNYa263llnfxNVoRlfbhfOBEb/I C+IIOdj/sYW0N+RAbBh9QG/hAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZhpAMQ26 llSmpdGS9rNOSufd7XswHwYDVR0jBBgwFoAUf7/PGWv9LvBwYlvuxCboYGiKwvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYzMzU4LzdENDA2NDdFQzFD QTExRUZBM0YyNEE4N0M0RjlBRTAyL2Y3X1BHV3Y5THZCd1lsdnV4Q2JvWUdpS3d2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZjdfUEdXdjlMdkJ3WWx2dXhDYm9ZR2lLd3ZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzM1OC83RDQwNjQ3RUMxQ0ExMUVGQTNGMjRBODdDNEY5QUUwMi8yQjM0MEFFQUMx Q0IxMUVGOUNGQzk1MDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsosODANBgkqhkiG9w0BAQsFAAOCAQEAyFCBIifpkN80acqB Jsri896sSmWHmVnFCBx8WohTCCgtD3ZeYR34rVbkBxawO5dfB2mwXvSwmPkOcxEB yuRLyVAeMZvphyEW4ju91cUg9URY2dogClnRKEpzOpSVFfvKi2OcJtKWl8ZygQUP Mz0Rir7Qoh+izbWIHNXkNd4GaQPb0HeY1Jf7hPsvteq4e/OfnIqbWSfn4ncKF7Ll kEndLnmCViUEHSy90LeMt5UafVxxep/FBz/MX7qQXfm7nQ7dbOg/f1j98K2tGEFM ZRji4+sOPDyEbmotwkA6xhsIiNFlKqzoMzYgvXszovGRYsleCgYiC5XanihS34Yq bREnQQ== -----END CERTIFICATE-----Generated at Sat Apr 5 05:57:28 2025 by rpki-client