$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0515DA4721511EF9D7B9F3DC4F9AE02.roa File: C0515DA4721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: +I0lL8WL707Y6Afl0a2o8+iESjdKuYpEj+KVHOcUB8w= Subject key identifier: 40:FB:AA:7F:85:5F:38:96:D3:69:DE:B6:AD:06:64:CB:F1:50:98:7E Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: A5 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0515DA4721511EF9D7B9F3DC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:42 +0000 ROA not before: Sat 21 Dec 2024 05:49:42 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 134064 IP address blocks: 202.29.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:42 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656f6-2ba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6d:cb:74:61:2d:26:d5:ca:23:cb:f1:d4:67: 47:f0:a1:83:34:3f:74:31:88:41:eb:be:65:c9:90: cf:4a:df:ad:4b:b3:ed:83:1d:56:1c:c9:31:bd:bb: f9:2d:78:f8:19:01:10:19:81:4d:07:ae:a8:ea:78: 91:2d:1b:88:a9:9f:d0:21:13:af:15:3f:64:b4:20: 70:65:52:f9:77:c0:13:22:cd:6e:c8:21:1a:1e:83: be:d7:21:e0:5d:c9:ff:05:a6:b6:37:ab:87:bc:15: e4:bb:97:44:55:aa:ec:c8:d4:e8:7b:6b:6b:3e:9e: c9:99:86:73:e0:67:38:1f:5e:f9:7d:67:0b:c4:67: ed:81:83:06:89:46:de:39:4a:d5:10:30:c5:3b:25: a4:1e:7a:d1:a7:17:f6:bb:9c:be:64:99:ce:9b:e8: 94:ad:61:28:69:a1:e3:17:ae:ef:00:92:07:71:2c: a4:f3:d2:fe:0a:3b:f1:2a:df:f5:ab:f1:2d:9f:a6: 5c:83:d4:91:38:c2:19:4c:48:bf:f7:42:5c:bd:f2: ea:67:6f:5c:bc:bc:43:8c:1f:10:ab:34:e6:4b:c6: 24:4b:21:46:a0:9b:43:60:66:28:12:02:39:13:2c: 75:65:84:79:fa:c6:bb:42:57:5f:bd:a0:f8:af:87: cb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FB:AA:7F:85:5F:38:96:D3:69:DE:B6:AD:06:64:CB:F1:50:98:7E X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C0515DA4721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.29.106.0/24 Signature Algorithm: sha256WithRSAEncryption 09:4d:4d:94:c7:60:5e:32:cb:bb:86:7e:33:5b:a7:88:77:b5: 13:e7:4f:90:5f:2c:29:c2:14:a0:fa:ec:e6:2a:68:9d:f1:a1: 02:52:d0:e6:11:b5:aa:be:61:cb:29:a7:6c:5a:82:5b:e0:32: a6:d5:0a:af:7d:c3:a4:ed:5d:97:f0:72:81:e5:54:21:e4:92: dd:31:db:07:cb:0f:de:d7:e9:61:64:50:a3:64:3c:92:1c:61: 5b:65:1a:04:ec:e7:9d:10:d2:91:de:9a:42:ea:de:86:7a:df: a0:fc:a8:a9:3d:53:ad:98:bb:e3:22:d9:71:b9:5d:06:e6:55: b4:04:3f:b8:09:b8:3a:cb:f5:77:75:62:47:f4:03:cf:10:78: 4c:28:48:b3:f5:0e:33:e0:38:93:af:8b:0b:77:30:c1:c8:32: ce:f7:9e:97:76:0c:1d:73:7a:73:d1:61:35:36:b8:21:5c:d1: 95:0a:66:d9:81:8d:55:45:29:14:91:fe:27:e4:c4:6f:05:02: 53:98:9b:5d:34:5a:2b:bb:c9:95:44:ef:f1:94:be:46:a8:5a: 4a:41:cf:bc:ee:6b:04:73:a7:9f:a3:8b:8f:3c:7c:a7:2b:06: 24:8a:4d:d4:5c:a9:4a:19:ce:61:b3:5d:19:c8:8f:22:b9:e0: 80:8a:69:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTQyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZmNi0yYmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqG3LdGEtJtXKI8vx1GdH8KGDND90MYhB675lyZDPSt+tS7Ptgx1WHMkxvbv5 LXj4GQEQGYFNB66o6niRLRuIqZ/QIROvFT9ktCBwZVL5d8ATIs1uyCEaHoO+1yHg Xcn/Baa2N6uHvBXku5dEVarsyNToe2trPp7JmYZz4Gc4H175fWcLxGftgYMGiUbe OUrVEDDFOyWkHnrRpxf2u5y+ZJnOm+iUrWEoaaHjF67vAJIHcSyk89L+CjvxKt/1 q/Etn6Zcg9SROMIZTEi/90JcvfLqZ29cvLxDjB8QqzTmS8YkSyFGoJtDYGYoEgI5 Eyx1ZYR5+sa7QldfvaD4r4fLgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFED7qn+F XziW02netq0GZMvxUJh+MB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQzA1MTVEQTQ3 MjE1MTFFRjlEN0I5RjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKHWowDQYJKoZIhvcNAQELBQADggEBAAlNTZTHYF4yy7uG fjNbp4h3tRPnT5BfLCnCFKD67OYqaJ3xoQJS0OYRtaq+Ycspp2xaglvgMqbVCq99 w6TtXZfwcoHlVCHkkt0x2wfLD97X6WFkUKNkPJIcYVtlGgTs550Q0pHemkLq3oZ6 36D8qKk9U62Yu+Mi2XG5XQbmVbQEP7gJuDrL9Xd1Ykf0A88QeEwoSLP1DjPgOJOv iwt3MMHIMs73npd2DB1zenPRYTU2uCFc0ZUKZtmBjVVFKRSR/ifkxG8FAlOYm100 Wiu7yZVE7/GUvkaoWkpBz7zuawRzp5+ji488fKcrBiSKTdRcqUoZzmGzXRnIjyK5 4ICKaXU= -----END CERTIFICATE-----Generated at Sat Apr 5 01:52:53 2025 by rpki-client