$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/CA8007604A3011EFB101441AC4F9AE02.roa File: CA8007604A3011EFB101441AC4F9AE02.roa (raw, json) Hash identifier: tG+xEb4Bj22fmRv5Ap5El7N6H/BamXJAvudixhV4S5A= Subject key identifier: 78:AB:3F:B9:97:1F:BF:3E:B6:0D:60:29:E4:52:28:C9:0A:4A:E7:18 Certificate issuer: /CN=A91CE814/serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Certificate serial: 6C Authority key identifier: 11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/CA8007604A3011EFB101441AC4F9AE02.roa Signing time: Thu 13 Feb 2025 08:19:21 +0000 ROA not before: Thu 13 Feb 2025 08:19:21 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 24074 IP address blocks: 202.49.200.0/23 maxlen: 23 202.49.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE814 Validity Not Before: Feb 13 08:19:21 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67adab09-1dc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:45:f2:06:86:e2:f5:0c:08:ce:de:d9:d7:77: 11:c2:18:6e:5a:f8:5e:3d:b2:75:e9:57:94:f5:01: 60:36:ac:1d:58:12:53:ae:21:ea:3a:d5:ae:3e:0e: 86:2f:81:48:69:cc:92:62:64:b9:89:c8:27:3a:db: 6a:a2:50:d6:32:cb:9c:f2:0d:c8:8d:50:af:27:e1: cd:1d:c5:4e:8e:45:06:c0:97:bb:74:74:4c:03:4e: f2:1d:d8:a7:08:3d:a3:d8:1a:7f:cf:a8:cb:8e:b3: 1d:98:7a:db:56:7b:e3:10:d9:ee:99:47:2f:37:b1: 71:29:cd:44:20:1c:bd:5b:0a:cc:24:35:ed:de:e5: 97:8f:16:08:e8:3c:70:f8:b8:8c:27:c7:16:39:0a: 9b:81:11:25:36:b6:75:68:40:99:40:0a:4a:f0:59: 88:a9:f7:c7:8c:bc:45:f4:47:cb:83:a2:e2:4a:6a: 76:66:c8:86:ce:f5:8c:1d:e1:03:df:a8:54:0a:4d: 2a:43:a3:7b:c2:71:5d:ee:92:96:d8:b1:d6:b7:85: e2:f5:b9:d8:71:be:45:5e:d5:15:a9:ad:e5:a6:8e: 49:d1:62:e5:9d:74:a9:bd:f6:f5:2d:21:be:81:ed: ce:1d:15:15:60:e3:a5:94:cb:dc:26:b5:5f:9c:67: ba:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AB:3F:B9:97:1F:BF:3E:B6:0D:60:29:E4:52:28:C9:0A:4A:E7:18 X509v3 Authority Key Identifier: keyid:11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/CA8007604A3011EFB101441AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.200.0/22 Signature Algorithm: sha256WithRSAEncryption 03:8e:67:ca:70:f5:6d:4b:52:04:1d:f9:5f:2f:c3:71:43:3e: 7d:89:d9:83:d1:4c:ba:67:15:76:1a:24:14:4b:02:da:3e:1b: 4b:7a:e1:b4:cc:da:08:0c:69:1d:2f:df:50:76:33:ab:7f:98: 18:22:1c:87:63:43:b9:99:d6:80:58:f0:70:88:5c:61:d9:6e: 25:73:a7:e5:af:80:e2:f8:b4:4a:3f:44:67:a1:55:29:65:7c: 69:3b:15:16:e6:70:15:6d:24:92:c1:9e:6d:19:27:e1:5c:d3: 1d:d0:3e:bd:d0:72:91:11:6d:85:6b:ec:7c:96:7a:6f:bd:60: a5:df:08:e2:f3:82:9c:69:6f:d1:32:a0:d4:44:3b:37:d6:17: 0c:85:25:16:10:92:27:cb:a7:8c:6e:7f:4a:e9:6d:22:66:9a: 07:4b:5d:8e:36:64:4e:62:a5:82:00:f2:22:20:34:93:69:07: a3:15:42:33:2f:61:99:6e:68:cd:cd:59:84:12:ba:b9:d1:df: 12:5f:a9:4f:68:f9:05:12:cf:b7:47:33:92:39:6a:cf:1e:71: 89:91:43:b4:a9:e9:8d:f2:fb:00:d2:9a:ab:e3:4b:98:52:f7: 83:a2:dd:e5:83:ee:5c:fe:8a:92:b7:f3:67:31:f4:fa:16:4c: 75:b7:c9:68 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTgxNDExMC8GA1UEBRMoMTE4RDlCREUzMTc1NEY5ODU0Q0I1NTQ3NDBBMjk5RjEz N0UyNDFFMjAeFw0yNTAyMTMwODE5MjFaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWRhYjA5LTFkYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5RfIGhuL1DAjO3tnXdxHCGG5a+F49snXpV5T1AWA2rB1YElOuIeo61a4+DoYv gUhpzJJiZLmJyCc622qiUNYyy5zyDciNUK8n4c0dxU6ORQbAl7t0dEwDTvId2KcI PaPYGn/PqMuOsx2YettWe+MQ2e6ZRy83sXEpzUQgHL1bCswkNe3e5ZePFgjoPHD4 uIwnxxY5CpuBESU2tnVoQJlACkrwWYip98eMvEX0R8uDouJKanZmyIbO9Ywd4QPf qFQKTSpDo3vCcV3ukpbYsda3heL1udhxvkVe1RWpreWmjknRYuWddKm99vUtIb6B 7c4dFRVg46WUy9wmtV+cZ7rnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUeKs/uZcf vz62DWAp5FIoyQpK5xgwHwYDVR0jBBgwFoAUEY2b3jF1T5hUy1VHQKKZ8TfiQeIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFODE0LzhDNTdGMTVBNEEz MDExRUZBODMwNzcxOUM0RjlBRTAyL0VZMmIzakYxVDVoVXkxVkhRS0taOFRmaVFl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRVkyYjNqRjFUNWhVeTFWSFFLS1o4VGZpUWVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgxNC84QzU3RjE1QTRBMzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9DQTgwMDc2MDRB MzAxMUVGQjEwMTQ0MUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsoxyDANBgkqhkiG9w0BAQsFAAOCAQEAA45nynD1bUtSBB35 Xy/DcUM+fYnZg9FMumcVdhokFEsC2j4bS3rhtMzaCAxpHS/fUHYzq3+YGCIch2ND uZnWgFjwcIhcYdluJXOn5a+A4vi0Sj9EZ6FVKWV8aTsVFuZwFW0kksGebRkn4VzT HdA+vdBykRFthWvsfJZ6b71gpd8I4vOCnGlv0TKg1EQ7N9YXDIUlFhCSJ8unjG5/ SultImaaB0tdjjZkTmKlggDyIiA0k2kHoxVCMy9hmW5ozc1ZhBK6udHfEl+pT2j5 BRLPt0czkjlqzx5xiZFDtKnpjfL7ANKaq+NLmFL3g6Ld5YPuXP6KkrfzZzH0+hZM dbfJaA== -----END CERTIFICATE-----Generated at Sat Apr 5 01:57:59 2025 by rpki-client