$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/4BF67550A4C911E782854F50C4F9AE02.roa File: 4BF67550A4C911E782854F50C4F9AE02.roa (raw, json) Hash identifier: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE= Subject key identifier: 35:75:BA:8E:E3:E9:9D:D7:D3:D1:2B:63:8D:3D:43:3B:84:4D:38:22 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 3599 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/4BF67550A4C911E782854F50C4F9AE02.roa Signing time: Thu 12 Dec 2024 14:30:32 +0000 ROA not before: Thu 12 Dec 2024 14:30:32 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135345 IP address blocks: 202.69.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13721 (0x3599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454 Validity Not Before: Dec 12 14:30:32 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675af388-86b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:5b:6b:0f:33:fb:3c:09:80:45:4e:ff:95: b5:f5:cd:0d:17:39:c9:0d:7d:dd:7d:5b:a6:e7:cd: de:5f:37:28:05:05:5f:d0:d0:79:f1:ac:68:28:61: cb:14:07:35:d4:18:73:0c:f5:33:92:5e:63:f4:db: 63:1d:29:4d:80:c5:93:d6:c9:b4:6a:fe:ce:5d:b3: 51:a7:f9:e2:ec:41:ed:48:13:40:d3:97:64:36:a6: 79:93:6b:d2:95:df:12:a1:a9:44:44:76:dc:6e:8c: 76:13:9e:43:a7:60:02:23:1c:ed:42:d8:29:0b:ef: 89:0c:f1:de:06:25:7b:4b:93:4f:ab:4e:fe:ba:e0: 53:0f:39:2b:b7:06:9c:f6:af:01:e0:8b:86:b8:84: 1d:20:35:65:b5:3b:50:02:df:4f:94:f1:c8:e2:70: f7:a2:9c:8a:17:76:5f:bc:ef:60:17:e3:07:d7:27: 11:23:a2:3e:27:e7:69:76:b9:85:80:25:bc:be:45: 90:4b:5e:33:c3:76:3e:56:ee:fe:37:b4:a4:ea:98: 87:a4:ba:b6:a2:63:3a:51:79:71:ac:5f:d4:40:75: ad:38:5d:04:4f:2a:13:b0:3d:2e:53:f7:8d:07:ff: 80:9b:45:bb:95:dc:5f:ca:88:a5:83:a1:6e:e6:41: 17:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:75:BA:8E:E3:E9:9D:D7:D3:D1:2B:63:8D:3D:43:3B:84:4D:38:22 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/4BF67550A4C911E782854F50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.69.163.0/24 Signature Algorithm: sha256WithRSAEncryption 87:d6:43:ff:63:99:0f:3f:57:23:c9:a7:e1:13:57:96:13:53: 92:8c:e6:70:94:75:c5:55:ca:b0:6f:38:4d:61:5c:04:55:78: 65:d7:93:8b:82:b4:82:e7:68:f2:02:89:d2:21:9e:58:50:98: 44:44:f5:70:ca:d9:8c:48:e7:6b:cc:e9:d9:22:ec:5f:fb:7e: 83:0d:7c:6d:ee:bd:bd:f3:80:ff:e2:a4:be:33:8e:4e:62:1c: b5:78:91:85:48:c6:00:87:19:d0:bb:6d:ba:6c:16:79:b2:96: 5a:e9:84:3b:10:cd:6e:56:be:72:31:e2:1f:94:fc:e0:3d:9f: de:55:b6:b8:db:d5:f2:c9:c1:ed:bb:8e:62:a1:c3:48:65:18: 78:e6:a1:f9:05:cd:23:bb:29:2f:07:6d:50:db:0d:24:57:6a: 0c:b5:9c:69:86:4d:2f:1a:64:6f:32:48:06:40:98:e7:6e:06: 97:7b:fa:ed:b2:82:20:6c:40:d7:7f:77:10:5a:cf:cc:ff:ca: 12:b3:bf:63:b6:6b:d6:c9:87:89:36:2d:44:f2:f2:86:bb:2c: c0:08:ac:97:71:f3:9b:4e:cf:ce:3d:ba:8e:f4:fb:2d:6f:a3: ef:2c:67:75:88:c2:76:82:18:d0:74:f6:7e:1b:4c:88:72:d8: 81:ff:6e:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjQxMjEyMTQzMDMyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVhZjM4OC04NmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvttbaw8z+zwJgEVO/5W19c0NFznJDX3dfVum583eXzcoBQVf0NB58axoKGHL FAc11BhzDPUzkl5j9NtjHSlNgMWT1sm0av7OXbNRp/ni7EHtSBNA05dkNqZ5k2vS ld8SoalERHbcbox2E55Dp2ACIxztQtgpC++JDPHeBiV7S5NPq07+uuBTDzkrtwac 9q8B4IuGuIQdIDVltTtQAt9PlPHI4nD3opyKF3ZfvO9gF+MH1ycRI6I+J+dpdrmF gCW8vkWQS14zw3Y+Vu7+N7Sk6piHpLq2omM6UXlxrF/UQHWtOF0ETyoTsD0uU/eN B/+Am0W7ldxfyoilg6Fu5kEXAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDV1uo7j 6Z3X09ErY409QzuETTgiMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI0NTQvRDRDMzBCNDIxRDg3MTFFMkExOTgyMkUwMDhCMDJDRDIvNEJGNjc1NTBB NEM5MTFFNzgyODU0RjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKRaMwDQYJKoZIhvcNAQELBQADggEBAIfWQ/9jmQ8/VyPJ p+ETV5YTU5KM5nCUdcVVyrBvOE1hXARVeGXXk4uCtILnaPICidIhnlhQmERE9XDK 2YxI52vM6dki7F/7foMNfG3uvb3zgP/ipL4zjk5iHLV4kYVIxgCHGdC7bbpsFnmy llrphDsQzW5WvnIx4h+U/OA9n95Vtrjb1fLJwe27jmKhw0hlGHjmofkFzSO7KS8H bVDbDSRXagy1nGmGTS8aZG8ySAZAmOduBpd7+u2ygiBsQNd/dxBaz8z/yhKzv2O2 a9bJh4k2LUTy8oa7LMAIrJdx85tOz849uo70+y1vo+8sZ3WIwnaCGNB09n4bTIhy 2IH/bmc= -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:24 2025 by rpki-client