$ rpki-client -vvf rpki.apnic.net/member_repository/A917BED0/DDB589A0801911EDBBBE306EC4F9AE02/24AC43889DE011EDA182F455C4F9AE02.roa File: 24AC43889DE011EDA182F455C4F9AE02.roa (raw, json) Hash identifier: VEixjX/Xe+G6aJHNRJCpYadqa0JmMvyZd3MR6Kj/fCY= Subject key identifier: 9C:9D:07:9D:AD:21:B2:B9:2B:05:E3:82:93:82:7C:39:CA:92:0D:FB Certificate issuer: /CN=A917BED0/serialNumber=692EBD3D03F258746E6843B6128DD209C51222E6 Certificate serial: 018C Authority key identifier: 69:2E:BD:3D:03:F2:58:74:6E:68:43:B6:12:8D:D2:09:C5:12:22:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aS69PQPyWHRuaEO2Eo3SCcUSIuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BED0/DDB589A0801911EDBBBE306EC4F9AE02/24AC43889DE011EDA182F455C4F9AE02.roa Signing time: Wed 15 Jan 2025 02:28:25 +0000 ROA not before: Wed 15 Jan 2025 02:28:25 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7600 IP address blocks: 203.5.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BED0/DDB589A0801911EDBBBE306EC4F9AE02/aS69PQPyWHRuaEO2Eo3SCcUSIuY.crl rsync://rpki.apnic.net/member_repository/A917BED0/DDB589A0801911EDBBBE306EC4F9AE02/aS69PQPyWHRuaEO2Eo3SCcUSIuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aS69PQPyWHRuaEO2Eo3SCcUSIuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BED0 Validity Not Before: Jan 15 02:28:25 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67871d48-3a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c4:01:0d:d3:b9:40:03:b8:ff:b6:4a:5e:fe: a6:20:25:87:b8:65:49:cc:2b:ac:56:a8:21:5d:3c: 98:52:85:71:22:e8:64:09:d3:07:e0:df:1e:c6:da: db:8c:6d:fc:91:4f:f1:22:57:4c:06:c5:b7:8b:2e: eb:f4:72:07:43:94:8f:af:a2:72:9e:61:31:17:62: a9:13:b9:f6:2b:32:57:1f:3f:54:28:26:7a:90:16: 4d:3e:55:35:7b:49:e2:73:5d:64:54:a7:b3:55:8f: a5:b7:3c:cb:37:a2:76:45:fa:37:2c:50:27:35:65: 88:0d:67:43:dc:23:06:4f:6c:c8:7b:fe:ec:a1:fc: a4:be:db:82:56:67:b1:e4:8a:cf:86:33:9a:56:7c: 59:81:58:47:27:c4:cc:2c:9b:7e:d8:8f:ba:1d:15: c2:1e:8c:5b:f0:aa:ca:a0:39:42:e5:1f:ee:32:43: 62:9b:84:16:9a:9e:b0:57:00:bb:8a:e2:12:59:ec: 17:6c:94:f9:18:7a:de:27:bb:20:d3:b9:1d:42:74: 8d:7e:5a:5e:eb:4f:86:fb:dd:fe:55:93:3d:95:29: 0c:a9:b5:70:7f:e8:93:04:94:43:c4:bd:71:bd:38: b7:8a:f1:65:9f:9c:6c:a0:66:9b:c8:b6:4a:46:bc: 27:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9D:07:9D:AD:21:B2:B9:2B:05:E3:82:93:82:7C:39:CA:92:0D:FB X509v3 Authority Key Identifier: keyid:69:2E:BD:3D:03:F2:58:74:6E:68:43:B6:12:8D:D2:09:C5:12:22:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BED0/DDB589A0801911EDBBBE306EC4F9AE02/aS69PQPyWHRuaEO2Eo3SCcUSIuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aS69PQPyWHRuaEO2Eo3SCcUSIuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BED0/DDB589A0801911EDBBBE306EC4F9AE02/24AC43889DE011EDA182F455C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.13.0/24 Signature Algorithm: sha256WithRSAEncryption a6:b4:eb:bc:6f:2c:0d:ad:90:c6:3e:f8:23:ab:ff:76:d0:ae: f3:b3:27:fc:2d:bd:a5:97:e5:84:7b:90:cb:88:77:db:5f:8b: 3b:76:fa:c0:9d:63:2e:b4:65:ff:3e:f7:40:94:7f:01:54:69: 3e:be:1d:ff:c4:3e:21:9f:1f:37:51:1f:dd:f8:30:f7:8e:c4: ce:e9:81:78:ec:e7:25:cd:82:2e:31:33:ab:3e:ff:57:b7:d6: 77:a7:83:47:3f:0f:59:85:5e:14:c5:37:27:77:85:e8:e3:f0: fa:8d:dd:e1:63:e8:0a:ca:78:e1:4a:38:56:bd:72:4c:ca:fc: 07:df:09:3e:4e:93:99:40:d5:d0:90:63:d1:c7:f0:c9:56:f6: b0:de:37:28:2b:d4:e9:ac:aa:1c:5d:ab:f0:1d:e5:0e:c1:c3: 55:5b:39:8a:44:f3:08:65:78:e5:3a:b7:3e:8e:49:83:64:ea: bd:61:62:67:c0:5e:f8:67:a7:99:c2:11:c4:0e:d7:2b:53:d6: 52:81:f9:56:7b:b8:bd:ba:6c:b5:c5:2f:d2:0c:3b:19:00:08: d2:33:3a:54:7c:21:06:8c:6a:aa:1a:5d:ba:f1:05:de:c0:54: 38:7e:69:2b:e6:bc:35:08:19:ce:3c:bd:4d:9d:94:39:0c:7a: 37:a5:e8:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFRDAxMTAvBgNVBAUTKDY5MkVCRDNEMDNGMjU4NzQ2RTY4NDNCNjEyOEREMjA5 QzUxMjIyRTYwHhcNMjUwMTE1MDIyODI1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3MWQ0OC0zYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMQBDdO5QAO4/7ZKXv6mICWHuGVJzCusVqghXTyYUoVxIuhkCdMH4N8extrb jG38kU/xIldMBsW3iy7r9HIHQ5SPr6JynmExF2KpE7n2KzJXHz9UKCZ6kBZNPlU1 e0nic11kVKezVY+ltzzLN6J2Rfo3LFAnNWWIDWdD3CMGT2zIe/7sofykvtuCVmex 5IrPhjOaVnxZgVhHJ8TMLJt+2I+6HRXCHoxb8KrKoDlC5R/uMkNim4QWmp6wVwC7 iuISWewXbJT5GHreJ7sg07kdQnSNflpe60+G+93+VZM9lSkMqbVwf+iTBJRDxL1x vTi3ivFln5xsoGabyLZKRrwnuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJydB52t IbK5KwXjgpOCfDnKkg37MB8GA1UdIwQYMBaAFGkuvT0D8lh0bmhDthKN0gnFEiLm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVEMC9EREI1ODlBMDgw MTkxMUVEQkJCRTMwNkVDNEY5QUUwMi9hUzY5UFFQeVdIUnVhRU8yRW8zU0NjVVNJ dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FTNjlQUVB5V0hSdWFFTzJFbzNTQ2NVU0l1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFRDAvRERCNTg5QTA4MDE5MTFFREJCQkUzMDZFQzRGOUFFMDIvMjRBQzQzODg5 REUwMTFFREExODJGNDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLBQ0wDQYJKoZIhvcNAQELBQADggEBAKa067xvLA2tkMY+ +COr/3bQrvOzJ/wtvaWX5YR7kMuId9tfizt2+sCdYy60Zf8+90CUfwFUaT6+Hf/E PiGfHzdRH934MPeOxM7pgXjs5yXNgi4xM6s+/1e31neng0c/D1mFXhTFNyd3hejj 8PqN3eFj6ArKeOFKOFa9ckzK/AffCT5Ok5lA1dCQY9HH8MlW9rDeNygr1Omsqhxd q/Ad5Q7Bw1VbOYpE8whleOU6tz6OSYNk6r1hYmfAXvhnp5nCEcQO1ytT1lKB+VZ7 uL26bLXFL9IMOxkACNIzOlR8IQaMaqoaXbrxBd7AVDh+aSvmvDUIGc48vU2dlDkM ejel6CM= -----END CERTIFICATE-----Generated at Sat Apr 5 13:45:07 2025 by rpki-client