$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/2B633118DF2F11EFAD7BEE6BC4F9AE02.roa File: 2B633118DF2F11EFAD7BEE6BC4F9AE02.roa (raw, json) Hash identifier: LCBsasgUklncuTCZqxiSNtZe0VPDq700osnXP0sG1fE= Subject key identifier: 24:52:C1:E5:2C:99:A9:B4:6C:41:61:7A:F7:34:2C:0C:18:A8:E0:2B Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0C21 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/2B633118DF2F11EFAD7BEE6BC4F9AE02.roa Signing time: Thu 30 Jan 2025 17:25:16 +0000 ROA not before: Thu 30 Jan 2025 17:25:16 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 10075 IP address blocks: 43.230.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2 Validity Not Before: Jan 30 17:25:16 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679bb5fb-bfd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:35:a7:34:b7:a2:dd:00:81:f2:c9:89:8c:28: 99:7a:81:b7:36:d8:40:15:b1:21:ef:92:68:2f:15: 00:77:16:f7:3d:84:8b:89:2a:84:9b:e7:49:50:28: 2a:14:0e:44:d5:5d:eb:dc:7b:cc:2d:5a:8f:b0:79: 2f:9a:01:3d:9a:84:8f:23:de:7a:7a:2d:16:a7:73: 7f:bf:09:c9:11:bf:42:53:51:83:b3:92:73:bf:38: 5c:c3:f4:91:2e:d8:0e:d3:64:5c:f6:d5:c6:89:ab: 6a:48:5a:38:84:c3:cd:73:c7:eb:1c:22:15:b4:73: be:29:2a:14:4f:6d:0e:88:f6:5c:c6:4c:6e:c3:03: 85:31:3b:43:00:61:1b:ea:9e:d2:d4:0b:b4:e3:2e: ac:73:4e:53:eb:81:ce:95:4f:ab:89:22:4c:0d:4c: a9:01:94:5a:b6:9e:60:5c:f1:b7:40:62:19:ba:a8: 45:84:12:9b:20:78:a2:4e:cf:81:4a:9b:c2:51:4e: 4a:29:07:63:2c:96:0c:65:b3:90:0c:ec:1e:1f:36: 3a:5c:e8:2a:e5:01:42:cf:4b:3d:cf:ab:78:e5:7a: 09:e9:db:be:0d:b0:bc:4b:7e:4e:c8:3c:1a:b1:f5: 2b:11:c7:43:78:df:37:74:01:14:93:e4:47:b8:3e: 42:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:52:C1:E5:2C:99:A9:B4:6C:41:61:7A:F7:34:2C:0C:18:A8:E0:2B X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/2B633118DF2F11EFAD7BEE6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.211.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:63:27:52:43:1b:dd:5c:61:c9:86:c8:13:70:49:90:61:6f: fb:de:ab:8d:ee:6d:e3:6e:49:64:7f:c6:5c:2d:e1:cf:32:0e: fa:34:71:61:72:0e:8b:b9:9d:b2:14:a0:af:91:0f:a8:a7:5b: cd:0f:28:6a:86:2b:b0:c5:55:9a:2b:5d:0b:c0:ce:8b:16:a4: bb:1b:5e:eb:9a:69:15:0a:f0:7e:fa:ba:20:68:31:90:08:6d: 97:90:f5:e8:27:ed:2b:89:f7:eb:66:de:38:75:09:63:ff:5b: 8f:d9:22:33:c1:08:af:62:f9:33:ce:22:f0:fb:b1:14:7b:54: c9:4d:28:bc:80:4d:51:95:dc:e8:19:08:07:54:21:75:f2:03: 32:11:2f:54:96:46:e1:a1:7e:e6:a1:8b:75:9d:e6:11:44:4b: ec:4d:3d:30:c4:64:aa:9b:e5:71:9b:ea:3e:31:dc:1d:c1:de: 36:11:c4:c3:f6:5c:85:0d:57:d9:bd:63:c3:f3:61:e7:3c:5d: 8f:be:4c:80:7e:fb:cd:e5:05:1f:dd:84:15:04:1b:58:73:96: 52:c8:50:18:e5:5e:03:30:f9:df:6a:77:95:b9:26:dc:1d:ea: 56:49:4a:56:ff:50:a7:00:93:76:24:e9:cd:72:f3:ca:7b:d3: 98:b0:e8:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwMTMwMTcyNTE2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliYjVmYi1iZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zWnNLei3QCB8smJjCiZeoG3NthAFbEh75JoLxUAdxb3PYSLiSqEm+dJUCgq FA5E1V3r3HvMLVqPsHkvmgE9moSPI956ei0Wp3N/vwnJEb9CU1GDs5Jzvzhcw/SR LtgO02Rc9tXGiatqSFo4hMPNc8frHCIVtHO+KSoUT20OiPZcxkxuwwOFMTtDAGEb 6p7S1Au04y6sc05T64HOlU+riSJMDUypAZRatp5gXPG3QGIZuqhFhBKbIHiiTs+B SpvCUU5KKQdjLJYMZbOQDOweHzY6XOgq5QFCz0s9z6t45XoJ6du+DbC8S35OyDwa sfUrEcdDeN83dAEUk+RHuD5C5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCRSweUs mam0bEFhevc0LAwYqOArMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI1RjIvRUY5MENENEUwM0IwMTFFQTg1RjAyOTM0QzRGOUFFMDIvMkI2MzMxMThE RjJGMTFFRkFEN0JFRTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5tMwDQYJKoZIhvcNAQELBQADggEBAFpjJ1JDG91cYcmG yBNwSZBhb/veq43ubeNuSWR/xlwt4c8yDvo0cWFyDou5nbIUoK+RD6inW80PKGqG K7DFVZorXQvAzosWpLsbXuuaaRUK8H76uiBoMZAIbZeQ9egn7SuJ9+tm3jh1CWP/ W4/ZIjPBCK9i+TPOIvD7sRR7VMlNKLyATVGV3OgZCAdUIXXyAzIRL1SWRuGhfuah i3Wd5hFES+xNPTDEZKqb5XGb6j4x3B3B3jYRxMP2XIUNV9m9Y8PzYec8XY++TIB+ +83lBR/dhBUEG1hzllLIUBjlXgMw+d9qd5W5Jtwd6lZJSlb/UKcAk3Yk6c1y88p7 05iw6Fg= -----END CERTIFICATE-----Generated at Sat Apr 5 01:52:43 2025 by rpki-client