$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/4B848DCEA6ED11EDA9E80454C4F9AE02.roa File: 4B848DCEA6ED11EDA9E80454C4F9AE02.roa (raw, json) Hash identifier: 2SAdCKQcIWqABPUcECk5L/zG6WToDQOSztNZtA6yviw= Subject key identifier: F3:BD:B0:AB:48:BE:E6:98:D4:57:81:01:38:07:C3:5E:18:D2:25:BF Certificate issuer: /CN=A91C2663/serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Certificate serial: 228F Authority key identifier: 1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/4B848DCEA6ED11EDA9E80454C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:54:32 +0000 ROA not before: Tue 31 Dec 2024 15:54:32 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 135004 IP address blocks: 202.165.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8847 (0x228f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2663 Validity Not Before: Dec 31 15:54:32 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677413b7-a70c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ea:73:ee:68:ae:c1:d6:43:9f:4c:07:48:b5: 84:28:a6:b2:6d:67:79:d3:50:a5:52:1b:3d:79:70: f3:ae:23:82:5c:65:89:95:3d:bc:8d:76:23:d3:9b: 70:6a:a6:4b:5c:dc:df:37:85:8e:cc:d3:75:59:dd: e2:2b:03:3e:71:a9:b3:8f:d4:7a:af:8a:ef:d1:37: b1:57:a7:73:c0:eb:9a:d6:fa:65:f0:c7:dd:e0:a9: 2c:f6:1d:3e:4f:7f:f9:9b:f1:2c:3a:53:29:67:72: 64:ed:49:fa:0a:29:0f:fe:78:fa:bf:f2:4f:b2:08: 1a:67:22:e6:d3:a7:6e:4f:7b:06:17:9e:e4:d2:c6: 6a:80:66:3a:91:c9:ab:ad:60:be:45:5c:27:e2:e5: 51:22:7d:c7:48:a6:fa:1c:12:25:2d:41:e5:5c:cc: 02:bd:4c:e9:ba:d5:2b:7e:06:4d:d3:bd:b5:cf:57: 21:2e:37:8a:10:ac:ba:0f:0a:7a:c4:98:34:7f:cc: 1f:d3:6e:42:f3:7d:1e:9c:52:c2:49:28:c0:56:fb: af:c8:bb:8b:ab:b1:51:6f:bc:25:13:4b:f3:47:ae: 86:d8:59:7e:64:61:7c:ed:03:27:17:60:e4:3f:47: 85:f6:bd:6d:4d:87:a5:49:4c:dc:aa:9c:54:e3:de: 28:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:BD:B0:AB:48:BE:E6:98:D4:57:81:01:38:07:C3:5E:18:D2:25:BF X509v3 Authority Key Identifier: keyid:1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/4B848DCEA6ED11EDA9E80454C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.165.124.0/24 Signature Algorithm: sha256WithRSAEncryption 40:f7:6b:b1:94:4d:00:03:b2:28:b4:1f:d3:3a:23:ca:66:64: 27:95:04:51:e8:17:ca:9b:de:bd:94:f0:17:27:8d:ba:c2:23: f9:3b:97:3d:4d:49:c3:7b:99:51:8c:a6:59:3e:4e:b0:94:ec: 7e:81:2f:ce:fb:18:ad:1d:ab:53:a3:4f:ce:53:2c:7f:c1:fb: cf:e6:99:f8:45:ed:f3:f5:cd:80:97:37:85:7a:79:f3:57:18: 54:6b:4c:27:65:7b:ac:52:e3:41:f4:fb:2a:18:b3:4d:49:de: 65:df:47:b4:0a:2d:5a:b2:2c:3a:89:19:79:6a:8d:48:31:4d: b5:d8:c0:d3:63:ea:36:56:11:d0:20:8f:ec:c2:14:9d:43:40: 65:41:9f:4a:59:85:3e:2e:8b:c2:84:47:97:cc:19:8e:96:f4: 74:11:bc:33:46:90:88:82:88:61:a4:35:00:4c:5f:09:0c:af: 4d:d0:ef:04:07:a7:c5:f7:37:75:33:95:d5:4b:07:b5:5b:45: cb:db:df:be:2b:3d:8d:bd:9b:1d:13:70:bd:55:9d:16:e8:90: f0:a0:65:d0:b8:be:24:12:38:3b:2e:d6:95:00:fa:b5:2b:99: b3:82:6a:42:03:2f:a6:2c:56:2d:3b:3c:07:bc:f3:3d:46:28: 9a:7c:d2:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NjMxMTAvBgNVBAUTKDFBOTdDMkY0NzExRjdCQzgwMkUyNjhBQzY2RjExMDg2 MkJFNTc4ODgwHhcNMjQxMjMxMTU1NDMyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTNiNy1hNzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxupz7miuwdZDn0wHSLWEKKaybWd501ClUhs9eXDzriOCXGWJlT28jXYj05tw aqZLXNzfN4WOzNN1Wd3iKwM+camzj9R6r4rv0TexV6dzwOua1vpl8Mfd4Kks9h0+ T3/5m/EsOlMpZ3Jk7Un6CikP/nj6v/JPsggaZyLm06duT3sGF57k0sZqgGY6kcmr rWC+RVwn4uVRIn3HSKb6HBIlLUHlXMwCvUzputUrfgZN0721z1chLjeKEKy6Dwp6 xJg0f8wf025C830enFLCSSjAVvuvyLuLq7FRb7wlE0vzR66G2Fl+ZGF87QMnF2Dk P0eF9r1tTYelSUzcqpxU494o6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPO9sKtI vuaY1FeBATgHw14Y0iW/MB8GA1UdIwQYMBaAFBqXwvRxH3vIAuJorGbxEIYr5XiI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY2My9COEFFRjEzOEE5 NEMxMUU1ODI5MUNBNjdDNEY5QUUwMi9HcGZDOUhFZmU4Z0M0bWlzWnZFUWhpdmxl SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dwZkM5SEVmZThnQzRtaXNadkVRaGl2bGVJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI2NjMvQjhBRUYxMzhBOTRDMTFFNTgyOTFDQTY3QzRGOUFFMDIvNEI4NDhEQ0VB NkVEMTFFREE5RTgwNDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKpXwwDQYJKoZIhvcNAQELBQADggEBAED3a7GUTQADsii0 H9M6I8pmZCeVBFHoF8qb3r2U8BcnjbrCI/k7lz1NScN7mVGMplk+TrCU7H6BL877 GK0dq1OjT85TLH/B+8/mmfhF7fP1zYCXN4V6efNXGFRrTCdle6xS40H0+yoYs01J 3mXfR7QKLVqyLDqJGXlqjUgxTbXYwNNj6jZWEdAgj+zCFJ1DQGVBn0pZhT4ui8KE R5fMGY6W9HQRvDNGkIiCiGGkNQBMXwkMr03Q7wQHp8X3N3UzldVLB7VbRcvb374r PY29mx0TcL1VnRbokPCgZdC4viQSODsu1pUA+rUrmbOCakIDL6YsVi07PAe88z1G KJp80h4= -----END CERTIFICATE-----Generated at Sat Apr 5 14:53:59 2025 by rpki-client