$ rpki-client -vvf rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/4F7CFB9A82B711EE997EB92AC4F9AE02.roa File: 4F7CFB9A82B711EE997EB92AC4F9AE02.roa (raw, json) Hash identifier: VY07hPoAnZ6HhFnmDGOrse/S2/32FKp0YWgAY+x8IqE= Subject key identifier: 9B:3B:8C:5D:63:E5:39:F2:0A:61:F6:41:B4:1E:CE:68:E2:0D:37:7C Certificate issuer: /CN=A9196CE1/serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323 Certificate serial: CA Authority key identifier: 3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/4F7CFB9A82B711EE997EB92AC4F9AE02.roa Signing time: Tue 03 Dec 2024 04:37:58 +0000 ROA not before: Tue 03 Dec 2024 04:37:58 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136418 IP address blocks: 202.47.164.0/24 maxlen: 24 202.47.165.0/24 maxlen: 24 2001:df3:2440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196CE1 Validity Not Before: Dec 3 04:37:58 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e8b26-3461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:07:8f:fc:45:c3:9f:64:90:d0:af:e5:9d:ec: 85:cd:c6:7f:b2:08:91:d9:de:a1:97:1a:bb:b8:a7: 3c:4e:39:5c:fc:24:3d:d1:47:d8:37:3c:0a:2b:50: 50:18:c6:27:a6:c0:67:39:3a:fb:18:15:04:bc:c3: 9f:13:84:eb:1e:66:f0:19:84:51:7b:6f:64:cb:5e: 2f:53:90:11:cb:3c:b8:9e:6d:c9:e8:03:30:90:81: 40:f3:ce:16:fd:89:d8:4c:75:49:8f:85:e8:26:89: 3a:eb:5f:12:90:85:2c:2f:e2:32:a1:08:a8:48:ef: db:c7:ad:f9:5a:08:cd:39:55:06:2a:75:63:8f:ec: 1c:2f:32:21:b7:d7:66:dd:a9:1a:f5:82:8f:a4:5c: 80:c0:ab:95:4d:e1:1f:8a:af:ee:74:13:11:5e:8a: 29:0f:64:28:cd:fa:ac:d7:9c:be:3b:ee:0e:e6:d3: 21:ec:e3:89:fd:93:9e:b9:b0:85:ff:83:68:d6:56: d8:5e:06:bd:5d:8a:06:67:67:4c:f1:1f:04:7c:71: 50:f5:fb:04:7a:4b:33:a7:9c:b0:08:23:39:b1:60: b3:ff:7f:22:44:d9:73:7f:2b:b9:24:c2:f4:6d:c0: 27:40:5f:e9:e3:a6:ca:7f:26:53:a7:94:1a:fd:5d: 72:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3B:8C:5D:63:E5:39:F2:0A:61:F6:41:B4:1E:CE:68:E2:0D:37:7C X509v3 Authority Key Identifier: keyid:3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/4F7CFB9A82B711EE997EB92AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.47.164.0/23 IPv6: 2001:df3:2440::/48 Signature Algorithm: sha256WithRSAEncryption 6d:a4:69:3f:9d:66:ea:86:b8:af:89:80:4b:2b:0c:77:82:52: 15:10:3a:f6:ba:6c:0d:ff:b6:d4:73:7c:4c:69:f0:13:3a:7f: 7a:b3:8c:36:7b:19:b0:41:6b:c0:84:07:d3:f6:2c:6e:f0:31: fb:54:9e:4d:3b:e1:83:06:5a:65:6a:86:ce:4d:e0:14:37:0d: 54:f3:ff:de:af:f9:73:0e:cf:4b:62:de:56:c5:23:23:c6:71: c8:81:34:24:a0:34:b8:83:05:e9:c5:37:eb:2b:f1:62:a6:0e: a7:51:0d:dc:c5:7d:58:5b:5b:1e:32:ec:d1:72:0d:20:78:4b: 0e:33:d0:55:eb:55:17:92:41:7f:fb:1a:af:dc:f3:7b:79:78: 71:d2:a1:24:3d:bd:9f:ba:00:39:d7:c3:58:d2:cb:8d:ef:50: 4e:ce:4e:6c:1b:92:fc:5a:82:35:3c:60:67:c1:b8:02:7b:e3: cc:e8:79:80:a9:d1:f2:9a:e0:0c:7b:43:67:d4:6b:ca:7f:c9: e7:42:48:a7:93:04:41:ef:06:1e:6d:9e:b7:c2:a2:0e:b3:6d: ee:2a:78:62:f2:67:01:8f:fe:f6:32:63:98:4b:bc:f2:35:ef: 70:7c:fa:e2:a3:ad:72:3a:07:ac:5d:88:f8:64:a2:04:36:c3: b0:2c:a5:16 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZDRTExMTAvBgNVBAUTKDNDRDcxNTUyQUZBQTAxMzhGOUE2NEUwMTYwRUVGMDYw OTYwNjUzMjMwHhcNMjQxMjAzMDQzNzU4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlOGIyNi0zNDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAeP/EXDn2SQ0K/lneyFzcZ/sgiR2d6hlxq7uKc8Tjlc/CQ90UfYNzwKK1BQ GMYnpsBnOTr7GBUEvMOfE4TrHmbwGYRRe29ky14vU5ARyzy4nm3J6AMwkIFA884W /YnYTHVJj4XoJok6618SkIUsL+IyoQioSO/bx635WgjNOVUGKnVjj+wcLzIht9dm 3aka9YKPpFyAwKuVTeEfiq/udBMRXoopD2Qozfqs15y+O+4O5tMh7OOJ/ZOeubCF /4No1lbYXga9XYoGZ2dM8R8EfHFQ9fsEekszp5ywCCM5sWCz/38iRNlzfyu5JML0 bcAnQF/p46bKfyZTp5Qa/V1ynwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJs7jF1j 5TnyCmH2QbQezmjiDTd8MB8GA1UdIwQYMBaAFDzXFVKvqgE4+aZOAWDu8GCWBlMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkNFMS9FODgxRThFQzgy QjYxMUVFOUJGQzA2MURDNEY5QUUwMi9QTmNWVXEtcUFUajVwazRCWU83d1lKWUdV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOY1ZVcS1xQVRqNXBrNEJZTzd3WUpZR1V5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZDRTEvRTg4MUU4RUM4MkI2MTFFRTlCRkMwNjFEQzRGOUFFMDIvNEY3Q0ZCOUE4 MkI3MTFFRTk5N0VCOTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHKL6QwDwQCAAIwCQMHACABDfMkQDANBgkqhkiG9w0BAQsF AAOCAQEAbaRpP51m6oa4r4mASysMd4JSFRA69rpsDf+21HN8TGnwEzp/erOMNnsZ sEFrwIQH0/YsbvAx+1SeTTvhgwZaZWqGzk3gFDcNVPP/3q/5cw7PS2LeVsUjI8Zx yIE0JKA0uIMF6cU36yvxYqYOp1EN3MV9WFtbHjLs0XINIHhLDjPQVetVF5JBf/sa r9zze3l4cdKhJD29n7oAOdfDWNLLje9QTs5ObBuS/FqCNTxgZ8G4AnvjzOh5gKnR 8prgDHtDZ9Rryn/J50JIp5MEQe8GHm2et8KiDrNt7ip4YvJnAY/+9jJjmEu88jXv cHz64qOtcjoHrF2I+GSiBDbDsCylFg== -----END CERTIFICATE-----Generated at Sat Apr 5 01:42:41 2025 by rpki-client