$ rpki-client -vvf rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa File: 14EC8116B10B11E58EB48F13C4F9AE02.roa (raw, json) Hash identifier: dICqWrTdlFtrMZe68AJTlZkc2xz/VXcxAztydCwI54o= Subject key identifier: 4D:CE:1D:D0:C2:68:01:CD:A5:E7:43:35:8F:90:F4:4A:5E:5C:36:E6 Certificate issuer: /CN=A9175529/serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Certificate serial: 277F Authority key identifier: CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa Signing time: Sat 28 Dec 2024 15:35:32 +0000 ROA not before: Sat 28 Dec 2024 15:35:32 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132124 IP address blocks: 43.224.124.0/22 maxlen: 22 103.11.32.0/22 maxlen: 22 2402:cb00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 15:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10111 (0x277f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175529, serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Validity Not Before: Dec 28 15:35:32 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67701ac3-bf00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:da:9a:49:39:ae:0d:84:bb:a1:77:e4:90:92: 52:75:64:57:06:d5:6a:f3:13:0d:02:06:69:b3:50: 6c:7d:c7:4d:39:20:3a:ca:ca:4a:56:4d:b8:83:dd: 94:ef:13:0b:d2:08:7e:cb:0e:3b:51:d0:20:26:c5: 68:e9:cd:74:60:73:a7:32:a3:91:8f:f4:e4:a5:f9: b7:2d:e5:f2:0a:d0:ec:df:b1:3b:c6:88:a2:8e:90: 34:92:01:72:bb:63:87:f5:b3:53:22:16:fa:74:f9: 09:09:2f:ac:f6:3c:78:a8:26:9e:83:b3:73:78:0f: 92:2f:34:ef:46:58:66:66:e3:e6:e4:4a:61:7f:3f: e9:62:a1:c5:f5:d5:0f:6f:15:77:48:fa:1b:01:90: 72:48:36:e2:23:0e:c1:fe:37:ea:e8:85:98:24:ec: 07:9f:95:de:5f:5b:f6:2c:38:49:32:24:90:a4:63: 31:cf:5d:fa:85:9a:3e:60:dc:d3:93:3d:1f:36:1a: 12:9f:8d:e5:f8:d7:86:2b:c4:02:45:bd:99:84:a0: f9:24:80:29:df:02:95:7b:cb:54:a0:f9:6c:a3:f0: 2b:91:47:6f:e0:67:16:0c:3e:89:02:99:21:64:f3: 96:d2:a0:8c:24:84:65:8c:5c:66:1f:b6:ae:8a:f3: 47:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:CE:1D:D0:C2:68:01:CD:A5:E7:43:35:8F:90:F4:4A:5E:5C:36:E6 X509v3 Authority Key Identifier: keyid:CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.124.0/22 103.11.32.0/22 IPv6: 2402:cb00::/32 Signature Algorithm: sha256WithRSAEncryption 0f:c7:41:b1:37:b7:6a:2d:b5:33:00:a5:96:ff:54:13:ab:6c: f5:8b:a4:d4:8f:85:1e:f3:c3:de:1a:a7:c1:e9:b5:8e:41:c8: 2b:6d:27:42:f5:d4:41:6e:c5:a8:e1:c2:de:25:16:10:8a:26: 3e:7c:e8:e3:2c:d6:8a:78:4f:0c:a2:48:76:b9:c3:17:3a:b0: fb:51:9c:f7:39:63:d6:01:47:13:c6:a5:f2:cc:48:b9:53:b3: 81:61:66:59:58:ac:75:bb:14:d9:5e:52:ec:5a:db:c5:f0:cd: 6c:52:79:2d:12:01:f5:2a:5d:3c:9a:98:5c:b7:b7:54:ad:73: 2e:a2:e1:32:56:72:80:9f:7b:2a:6e:53:f4:7d:83:ac:46:7e: 57:4f:bd:bb:ca:9a:ef:59:c9:eb:14:54:b6:2e:b3:65:9e:75: 4f:0b:4b:2f:55:87:3f:2f:38:25:63:2e:35:43:8c:6f:da:97: b6:45:82:3c:88:12:77:ef:67:3d:b6:03:f0:ec:24:97:90:b4: f3:ae:34:fd:8e:75:1e:c1:20:22:1b:49:ca:86:77:02:ff:81: 07:ea:6d:15:dc:68:c7:e3:57:74:79:f2:ed:5f:bb:24:1f:22: f6:bd:97:fe:cb:34:7c:b6:48:b1:93:21:5a:9d:26:4f:52:5c: dc:59:9d:8e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJ38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU1MjkxMTAvBgNVBAUTKENFRTY5MzBGNDhENzc0RDY0M0Q1NUNGRkU5OEIxRTYz QTRENjM1MzQwHhcNMjQxMjI4MTUzNTMyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcwMWFjMy1iZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9qaSTmuDYS7oXfkkJJSdWRXBtVq8xMNAgZps1BsfcdNOSA6yspKVk24g92U 7xML0gh+yw47UdAgJsVo6c10YHOnMqORj/Tkpfm3LeXyCtDs37E7xoiijpA0kgFy u2OH9bNTIhb6dPkJCS+s9jx4qCaeg7NzeA+SLzTvRlhmZuPm5Ephfz/pYqHF9dUP bxV3SPobAZBySDbiIw7B/jfq6IWYJOwHn5XeX1v2LDhJMiSQpGMxz136hZo+YNzT kz0fNhoSn43l+NeGK8QCRb2ZhKD5JIAp3wKVe8tUoPlso/ArkUdv4GcWDD6JApkh ZPOW0qCMJIRljFxmH7auivNHbwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFE3OHdDC aAHNpedDNY+Q9EpeXDbmMB8GA1UdIwQYMBaAFM7mkw9I13TWQ9Vc/+mLHmOk1jU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTUyOS8wQjY2MDA0MEEy MDcxMUU0QkQ5RUMxNDRDNEY5QUUwMi96dWFURDBqWGROWkQxVnpfNllzZVk2VFdO VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1YVREMGpYZE5aRDFWel82WXNlWTZUV05UUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU1MjkvMEI2NjAwNDBBMjA3MTFFNEJEOUVDMTQ0QzRGOUFFMDIvMTRFQzgxMTZC MTBCMTFFNThFQjQ4RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr4HwDBAJnCyAwDQQCAAIwBwMFACQCywAwDQYJKoZIhvcN AQELBQADggEBAA/HQbE3t2ottTMApZb/VBOrbPWLpNSPhR7zw94ap8HptY5ByCtt J0L11EFuxajhwt4lFhCKJj586OMs1op4TwyiSHa5wxc6sPtRnPc5Y9YBRxPGpfLM SLlTs4FhZllYrHW7FNleUuxa28XwzWxSeS0SAfUqXTyamFy3t1Stcy6i4TJWcoCf eypuU/R9g6xGfldPvbvKmu9ZyesUVLYus2WedU8LSy9Vhz8vOCVjLjVDjG/al7ZF gjyIEnfvZz22A/DsJJeQtPOuNP2OdR7BICIbScqGdwL/gQfqbRXcaMfjV3R58u1f uyQfIva9l/7LNHy2SLGTIVqdJk9SXNxZnY4= -----END CERTIFICATE-----Generated at Sat Apr 19 01:03:48 2025 by rpki-client