$ rpki-client -vvf rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/02A3523ABC5C11EF9108934FC4F9AE02.roa File: 02A3523ABC5C11EF9108934FC4F9AE02.roa (raw, json) Hash identifier: tOqCLeToyx3OlovnhW3Ug6iPrFYH9Umb6yvHYh2Zk9w= Subject key identifier: EA:0B:33:41:B8:9F:3B:C2:9B:7A:44:0F:86:6A:7C:05:65:2A:9A:2B Certificate issuer: /CN=A9173D12/serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Certificate serial: 4B Authority key identifier: 5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/02A3523ABC5C11EF9108934FC4F9AE02.roa Signing time: Tue 17 Dec 2024 09:48:04 +0000 ROA not before: Tue 17 Dec 2024 09:48:04 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 203.0.207.0/24 maxlen: 24 203.0.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173D12 Validity Not Before: Dec 17 09:48:04 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=676148d4-eef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:43:81:02:81:ed:a5:c9:4c:39:ea:e1:ba:50: e1:0b:2c:5b:b7:58:43:ba:29:57:f7:5b:65:eb:ec: f5:28:a8:7e:88:31:77:10:fc:b4:99:3c:90:57:85: d7:7b:5a:3a:db:c2:9a:22:85:e8:8a:07:a4:22:99: 46:8b:30:6a:c5:34:fb:83:43:c6:1c:a2:2c:5a:67: c1:16:cb:13:0c:60:d5:b5:88:84:70:0a:71:ed:d7: 56:4e:f2:e8:c2:7e:0b:0a:7b:de:1d:71:fa:60:12: 37:4b:08:3c:fc:38:69:8c:c5:89:3d:15:41:c5:67: b5:0c:a1:eb:0b:75:8f:3c:90:5e:61:83:88:ce:6a: 4b:a3:47:1e:35:7f:37:a9:90:f6:4c:57:ad:26:95: 64:5a:fd:e6:0d:c1:16:a2:33:20:ac:39:7d:ff:90: 9c:fa:4b:02:06:b6:9f:b4:25:73:ce:10:f3:f0:43: 6f:0d:28:6f:95:64:e1:47:c1:fb:a6:d2:83:17:ba: b1:cf:88:58:d5:ef:a7:0d:f5:7f:21:16:24:0d:bb: 24:b4:14:d7:50:6f:2b:4f:d9:2b:90:8c:b1:00:f2: 90:5a:1c:91:b7:f9:ee:e1:40:99:6a:4e:84:99:00: 5c:53:9e:fb:1b:7f:42:79:0c:f9:59:5c:93:f8:71: 4e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0B:33:41:B8:9F:3B:C2:9B:7A:44:0F:86:6A:7C:05:65:2A:9A:2B X509v3 Authority Key Identifier: keyid:5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/02A3523ABC5C11EF9108934FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.0.207.0-203.0.208.255 Signature Algorithm: sha256WithRSAEncryption 4c:79:c9:cf:7f:f2:ce:ac:2e:9e:c6:a5:3a:01:d0:0a:3e:48: 10:05:b9:cb:65:bc:43:f3:74:95:65:0b:ee:c1:5d:0d:e5:c2: 89:7e:0b:12:99:e4:d2:b9:62:95:2a:bc:8c:b5:1d:12:2c:b9: 63:7f:3b:9d:0f:ee:f9:a7:94:f9:87:9c:c1:3b:1a:2c:73:29: 59:55:e2:03:06:b5:03:8e:a1:6c:8d:e8:aa:dd:9b:10:e4:49: 3c:42:41:1a:ff:29:df:de:4b:1e:78:95:3f:a3:01:a7:c4:fe: 7b:81:76:a7:63:23:dc:e6:9d:da:a8:57:fb:80:42:a6:6b:db: 5c:28:d6:fd:34:f8:ca:f7:d5:f3:14:8b:dc:33:44:1e:d8:2c: 99:82:8f:d6:93:8a:eb:48:4e:5b:8f:4a:d8:73:c8:38:42:94: 4a:6a:bf:99:9e:69:eb:c7:3a:92:3e:6c:8f:f5:cc:db:5a:e3: 0d:d2:5b:15:7f:36:73:4d:3e:4f:69:7a:16:49:56:49:b5:26: bc:80:61:fc:df:b1:25:37:b1:9f:2c:1d:c6:e8:9b:fa:48:e4: bf:f5:0b:72:30:b7:70:98:8c:fb:47:63:7c:82:ee:01:fe:92: e6:b0:3b:41:9f:bf:9c:e4:c1:fc:55:0d:7c:00:cf:a2:b7:d8: 2c:e1:94:e5 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0QxMjExMC8GA1UEBRMoNUE4QjYxQkM1M0EzMjREN0EyQjRGNDE1M0QwNzc0NkVD MkEzMzVEMjAeFw0yNDEyMTcwOTQ4MDRaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NjE0OGQ0LWVlZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzQ4ECge2lyUw56uG6UOELLFu3WEO6KVf3W2Xr7PUoqH6IMXcQ/LSZPJBXhdd7 WjrbwpoiheiKB6QimUaLMGrFNPuDQ8YcoixaZ8EWyxMMYNW1iIRwCnHt11ZO8ujC fgsKe94dcfpgEjdLCDz8OGmMxYk9FUHFZ7UMoesLdY88kF5hg4jOakujRx41fzep kPZMV60mlWRa/eYNwRaiMyCsOX3/kJz6SwIGtp+0JXPOEPPwQ28NKG+VZOFHwfum 0oMXurHPiFjV76cN9X8hFiQNuyS0FNdQbytP2SuQjLEA8pBaHJG3+e7hQJlqToSZ AFxTnvsbf0J5DPlZXJP4cU5tAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQU6gszQbif O8KbekQPhmp8BWUqmiswHwYDVR0jBBgwFoAUWothvFOjJNeitPQVPQd0bsKjNdIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRDEyL0FCODkzNEYyNTJD NDExRUY4RERGRDUzRkM0RjlBRTAyL1dvdGh2Rk9qSk5laXRQUVZQUWQwYnNLak5k SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV290aHZGT2pKTmVpdFBRVlBRZDBic0tqTmRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0QxMi9BQjg5MzRGMjUyQzQxMUVGOERERkQ1M0ZDNEY5QUUwMi8wMkEzNTIzQUJD NUMxMUVGOTEwODkzNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQAywDPAwQAywDQMA0GCSqGSIb3DQEBCwUAA4IBAQBMecnP f/LOrC6exqU6AdAKPkgQBbnLZbxD83SVZQvuwV0N5cKJfgsSmeTSuWKVKryMtR0S LLljfzudD+75p5T5h5zBOxoscylZVeIDBrUDjqFsjeiq3ZsQ5Ek8QkEa/ynf3kse eJU/owGnxP57gXanYyPc5p3aqFf7gEKma9tcKNb9NPjK99XzFIvcM0Qe2CyZgo/W k4rrSE5bj0rYc8g4QpRKar+ZnmnrxzqSPmyP9czbWuMN0lsVfzZzTT5PaXoWSVZJ tSa8gGH837ElN7GfLB3G6Jv6SOS/9QtyMLdwmIz7R2N8gu4B/pLmsDtBn7+c5MH8 VQ18AM+it9gs4ZTl -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:41 2025 by rpki-client