$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/E68E0FD4077B11EB98CA5D1CC4F9AE02.roa File: E68E0FD4077B11EB98CA5D1CC4F9AE02.roa (raw, json) Hash identifier: uVTYtUHXjzvA/dK6fjacM7pKV07g+NehzxqIMydfuDY= Subject key identifier: 7B:4A:FF:89:DC:32:F2:ED:F3:28:F2:96:85:BD:99:E9:33:24:BF:DE Certificate issuer: /CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Certificate serial: 343A Authority key identifier: 17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/E68E0FD4077B11EB98CA5D1CC4F9AE02.roa Signing time: Sat 14 Dec 2024 15:00:50 +0000 ROA not before: Sat 14 Dec 2024 15:00:50 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 38869 IP address blocks: 121.101.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 14:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13370 (0x343a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFB8 Validity Not Before: Dec 14 15:00:50 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675d9da2-5eff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0f:b9:49:45:41:91:91:bd:68:b1:4a:80:cf: 49:10:56:22:0c:61:50:30:da:80:bc:29:0e:48:e5: 64:db:87:cf:f9:ea:3d:23:a4:63:68:40:b4:be:d6: 84:7c:3d:df:f3:cd:e1:a8:0e:4f:94:b1:d8:a3:a6: 2b:40:57:94:34:17:ad:81:51:0d:08:51:7f:2e:ec: 03:8c:8d:92:9b:42:49:99:9d:8f:0a:02:c3:6c:53: d6:a0:b1:37:5f:23:7c:98:0d:c8:e6:03:0b:11:af: e7:61:f8:f3:e3:10:90:1c:91:8e:0d:67:c7:17:db: e0:ee:60:09:71:20:8b:34:a6:59:ca:08:57:ee:58: 23:48:21:de:12:44:ae:f0:1a:e8:40:10:66:c1:74: 17:39:47:22:9a:83:76:49:c5:28:87:32:b4:3c:a8: 9f:02:53:9d:57:4d:75:3c:76:ce:7e:83:09:4f:c8: 0e:05:de:f8:a9:33:45:ee:70:01:03:68:ca:a3:b7: ec:9e:0b:4c:bd:cc:35:55:57:48:a0:1e:a0:81:3f: fe:7c:87:20:a0:bc:36:6a:e5:7a:75:dd:0c:c1:26: 0a:8f:03:6a:27:77:0e:a3:4d:8c:97:4e:7d:2c:eb: 24:8a:9d:d7:69:51:a9:03:47:f5:af:f1:24:19:51: ce:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4A:FF:89:DC:32:F2:ED:F3:28:F2:96:85:BD:99:E9:33:24:BF:DE X509v3 Authority Key Identifier: keyid:17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/E68E0FD4077B11EB98CA5D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.101.176.0/21 Signature Algorithm: sha256WithRSAEncryption b4:d8:0e:15:76:fd:29:58:84:9d:d1:e9:9e:80:7e:86:22:f5: 38:06:46:dc:f7:88:2c:a2:fc:ea:ff:46:a3:4d:ca:96:8b:54: d2:e4:61:df:0a:88:85:98:4a:ca:9d:1c:4d:13:ce:8c:00:09: 1a:e0:94:c2:a1:98:e9:02:6f:d6:a8:96:ed:91:75:47:3d:4f: 38:3d:f4:bd:12:73:ca:e9:b7:3e:9b:fd:af:b9:8e:74:7a:fa: 48:0c:7e:d6:a8:72:d1:e3:ce:40:0d:a0:8f:7e:dd:8a:3d:ea: 34:da:e6:d6:94:06:5d:ed:d6:84:c4:53:84:a1:b0:15:95:24: 15:d7:96:0c:62:26:e5:bc:0c:de:24:64:a3:aa:35:e6:96:21: 1e:80:bc:03:f8:cc:80:7d:8e:07:10:5c:ca:07:0f:b0:e8:12: 6e:c8:bb:b2:c8:46:7c:dc:0e:c4:21:c6:db:7d:b5:6f:15:58: 5c:0e:1b:28:eb:86:c2:1c:f0:68:40:f9:43:0b:07:1c:29:eb: f0:5f:a7:d5:1c:04:07:b2:ce:c1:d8:d8:36:54:1c:14:5f:e0: 41:58:5e:52:99:48:f7:06:e3:ca:f7:f0:2d:ac:7b:e5:a1:75: b9:51:b7:3d:c1:31:ff:b3:01:b5:ae:d2:b9:41:d1:83:f7:c4: 5d:92:ab:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGQjgxMTAvBgNVBAUTKDE3MEU5Qzc2NzY0M0MzQzFGNjA1Nzk0MDg2NDhBM0Yw REE4NDA0NUEwHhcNMjQxMjE0MTUwMDUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVkOWRhMi01ZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQ+5SUVBkZG9aLFKgM9JEFYiDGFQMNqAvCkOSOVk24fP+eo9I6RjaEC0vtaE fD3f883hqA5PlLHYo6YrQFeUNBetgVENCFF/LuwDjI2Sm0JJmZ2PCgLDbFPWoLE3 XyN8mA3I5gMLEa/nYfjz4xCQHJGODWfHF9vg7mAJcSCLNKZZyghX7lgjSCHeEkSu 8BroQBBmwXQXOUcimoN2ScUohzK0PKifAlOdV011PHbOfoMJT8gOBd74qTNF7nAB A2jKo7fsngtMvcw1VVdIoB6ggT/+fIcgoLw2auV6dd0MwSYKjwNqJ3cOo02Ml059 LOskip3XaVGpA0f1r/EkGVHOGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHtK/4nc MvLt8yjyloW9mekzJL/eMB8GA1UdIwQYMBaAFBcOnHZ2Q8PB9gV5QIZIo/DahARa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUZCOC9EOTgwQTE3MjFE OTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4SDJCWGxBaGtpajhOcUVC Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z3NmNkblpEdzhIMkJYbEFoa2lqOE5xRUJGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VGQjgvRDk4MEExNzIxRDk1MTFFMjkyMTUwRTdFMDhCMDJDRDIvRTY4RTBGRDQw NzdCMTFFQjk4Q0E1RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN5ZbAwDQYJKoZIhvcNAQELBQADggEBALTYDhV2/SlYhJ3R 6Z6AfoYi9TgGRtz3iCyi/Or/RqNNypaLVNLkYd8KiIWYSsqdHE0TzowACRrglMKh mOkCb9aolu2RdUc9Tzg99L0Sc8rptz6b/a+5jnR6+kgMftaoctHjzkANoI9+3Yo9 6jTa5taUBl3t1oTEU4ShsBWVJBXXlgxiJuW8DN4kZKOqNeaWIR6AvAP4zIB9jgcQ XMoHD7DoEm7Iu7LIRnzcDsQhxtt9tW8VWFwOGyjrhsIc8GhA+UMLBxwp6/Bfp9Uc BAeyzsHY2DZUHBRf4EFYXlKZSPcG48r38C2se+WhdblRtz3BMf+zAbWu0rlB0YP3 xF2Sq7o= -----END CERTIFICATE-----Generated at Fri Apr 11 11:54:47 2025 by rpki-client