$ rpki-client -vvf rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/9718BA74EA9E11EB8575F62AC4F9AE02.roa File: 9718BA74EA9E11EB8575F62AC4F9AE02.roa (raw, json) Hash identifier: TE3s0G2x6gReIvykLHQ1D6r2CYQk8g9jtQHZlN8D244= Subject key identifier: 4D:3C:BA:A4:29:8A:FF:5A:77:44:7A:53:D1:04:EF:8C:52:CD:58:73 Certificate issuer: /CN=A916A6D2/serialNumber=8098A1A4A657A770AFBD66A58DADE0193F5A1E88 Certificate serial: 0521 Authority key identifier: 80:98:A1:A4:A6:57:A7:70:AF:BD:66:A5:8D:AD:E0:19:3F:5A:1E:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJihpKZXp3CvvWalja3gGT9aHog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/9718BA74EA9E11EB8575F62AC4F9AE02.roa Signing time: Mon 20 Jan 2025 23:12:56 +0000 ROA not before: Mon 20 Jan 2025 23:12:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 10098 IP address blocks: 203.78.64.0/19 maxlen: 19 203.78.66.0/24 maxlen: 24 203.78.72.0/23 maxlen: 23 203.78.85.0/24 maxlen: 24 203.78.94.0/23 maxlen: 23 203.78.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/gJihpKZXp3CvvWalja3gGT9aHog.crl rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/gJihpKZXp3CvvWalja3gGT9aHog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJihpKZXp3CvvWalja3gGT9aHog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1313 (0x521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A6D2 Validity Not Before: Jan 20 23:12:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=678ed878-a4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:83:4b:c7:8d:4c:51:16:59:3a:6c:1e:94:fa: 14:12:1d:5f:bb:48:cf:02:bd:1a:46:5c:1a:28:d9: c8:70:58:40:df:2b:3f:aa:75:eb:9b:45:99:73:ff: 29:ba:f3:e8:62:2e:13:26:fd:79:83:7c:6f:d2:c8: 9b:62:9e:8a:95:7e:d1:3c:fc:d7:25:74:79:66:41: 97:29:ba:e1:3d:6e:1e:aa:53:59:ab:61:ca:75:ab: b2:82:61:3a:e2:96:0a:7b:a6:6a:54:ef:c8:af:96: 07:ac:6f:43:c9:89:bc:ae:7e:91:b4:6d:6a:23:06: 08:a0:7e:d6:5f:79:b8:32:cd:26:b5:98:be:a3:5a: 43:86:92:14:29:c2:be:85:38:48:20:df:42:c2:a7: cc:d9:9b:f8:02:0e:5d:40:c0:97:8d:a8:bf:60:58: a3:19:5e:d8:5a:ea:b2:33:4f:77:bb:08:27:6c:2b: 88:10:38:4a:02:b0:49:03:8f:b7:cd:4c:98:16:a7: 57:d1:58:46:0c:5e:b6:c1:08:31:c7:5b:1d:70:83: 37:78:f5:79:06:c2:41:93:b4:ac:6d:34:bc:dd:83: 9b:37:58:be:61:6a:f1:5c:06:66:7a:30:bc:57:93: 2d:2c:3e:42:41:22:a2:a2:86:45:85:15:e8:5a:b7: f8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:3C:BA:A4:29:8A:FF:5A:77:44:7A:53:D1:04:EF:8C:52:CD:58:73 X509v3 Authority Key Identifier: keyid:80:98:A1:A4:A6:57:A7:70:AF:BD:66:A5:8D:AD:E0:19:3F:5A:1E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/gJihpKZXp3CvvWalja3gGT9aHog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJihpKZXp3CvvWalja3gGT9aHog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/9718BA74EA9E11EB8575F62AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.78.64.0/19 Signature Algorithm: sha256WithRSAEncryption 54:a5:8e:f0:27:f1:7b:9d:ba:c3:34:13:15:bc:8f:0e:0f:dd: 57:7d:4a:72:49:45:48:db:1b:06:27:28:4a:bc:7d:9b:62:16: 59:f3:b3:06:ce:bb:ce:16:30:dd:e1:5c:2d:78:c7:39:d0:da: 46:81:ca:8e:51:29:75:8b:a8:0a:d9:c1:58:87:c1:b4:90:c8: 96:9f:42:83:6c:2f:9d:af:55:c6:24:1c:7b:1e:37:00:88:01: ee:e5:2a:99:44:76:88:70:e8:55:fe:d2:24:8b:50:7e:df:b3: 43:80:42:e5:58:69:d9:1c:45:97:47:ce:a5:fc:d1:1e:2b:a1: ab:21:1e:b9:43:f7:cf:f3:c5:61:d1:cc:81:ea:9b:99:0a:3a: e5:93:28:4f:34:4c:2a:51:29:57:26:e2:d4:38:4a:03:ca:8d: 4c:db:94:1e:82:54:fb:bf:46:81:99:06:99:71:ea:12:dd:a0: 44:53:45:23:14:59:5e:ab:52:c5:61:9f:6a:a9:20:d5:c9:5d: 61:72:b3:64:ef:b3:f8:b7:31:3b:fd:ee:14:7b:12:e0:ee:80: 35:ff:d7:99:4a:d6:0b:58:5c:8e:ac:03:79:07:4f:89:db:8b: 84:a0:44:15:22:63:87:3a:be:ca:94:72:e1:cc:0e:27:a7:c5: 10:ec:36:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE2RDIxMTAvBgNVBAUTKDgwOThBMUE0QTY1N0E3NzBBRkJENjZBNThEQURFMDE5 M0Y1QTFFODgwHhcNMjUwMTIwMjMxMjU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhlZDg3OC1hNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YNLx41MURZZOmwelPoUEh1fu0jPAr0aRlwaKNnIcFhA3ys/qnXrm0WZc/8p uvPoYi4TJv15g3xv0sibYp6KlX7RPPzXJXR5ZkGXKbrhPW4eqlNZq2HKdauygmE6 4pYKe6ZqVO/Ir5YHrG9DyYm8rn6RtG1qIwYIoH7WX3m4Ms0mtZi+o1pDhpIUKcK+ hThIIN9CwqfM2Zv4Ag5dQMCXjai/YFijGV7YWuqyM093uwgnbCuIEDhKArBJA4+3 zUyYFqdX0VhGDF62wQgxx1sdcIM3ePV5BsJBk7SsbTS83YObN1i+YWrxXAZmejC8 V5MtLD5CQSKiooZFhRXoWrf4ywIDAQABo4IClTCCApEwHQYDVR0OBBYEFE08uqQp iv9ad0R6U9EE74xSzVhzMB8GA1UdIwQYMBaAFICYoaSmV6dwr71mpY2t4Bk/Wh6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTZEMi83RDU3QUVFRUVB OUMxMUVCQTMxMkE5MjZDNEY5QUUwMi9nSmlocEtaWHAzQ3Z2V2FsamEzZ0dUOWFI b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKaWhwS1pYcDNDdnZXYWxqYTNnR1Q5YUhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE2RDIvN0Q1N0FFRUVFQTlDMTFFQkEzMTJBOTI2QzRGOUFFMDIvOTcxOEJBNzRF QTlFMTFFQjg1NzVGNjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXLTkAwDQYJKoZIhvcNAQELBQADggEBAFSljvAn8XudusM0 ExW8jw4P3Vd9SnJJRUjbGwYnKEq8fZtiFlnzswbOu84WMN3hXC14xznQ2kaByo5R KXWLqArZwViHwbSQyJafQoNsL52vVcYkHHseNwCIAe7lKplEdohw6FX+0iSLUH7f s0OAQuVYadkcRZdHzqX80R4roashHrlD98/zxWHRzIHqm5kKOuWTKE80TCpRKVcm 4tQ4SgPKjUzblB6CVPu/RoGZBplx6hLdoERTRSMUWV6rUsVhn2qpINXJXWFys2Tv s/i3MTv97hR7EuDugDX/15lK1gtYXI6sA3kHT4nbi4SgRBUiY4c6vsqUcuHMDien xRDsNtk= -----END CERTIFICATE-----Generated at Sun Apr 6 05:43:41 2025 by rpki-client