$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/0E0C2FDA8A9211EF928F7977C4F9AE02.roa File: 0E0C2FDA8A9211EF928F7977C4F9AE02.roa (raw, json) Hash identifier: D50MfgKogwzT5uP2v0jQRRWmVMAdx71+85AyPtqqgw0= Subject key identifier: 84:0B:BB:6C:4A:96:75:FB:A8:66:20:19:A0:AD:73:92:DA:92:CE:76 Certificate issuer: /CN=A911AD81/serialNumber=2DE8F216DCD2BEC6D38FEBF01E06D8A990270EBF Certificate serial: 3B Authority key identifier: 2D:E8:F2:16:DC:D2:BE:C6:D3:8F:EB:F0:1E:06:D8:A9:90:27:0E:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/0E0C2FDA8A9211EF928F7977C4F9AE02.roa Signing time: Tue 07 Jan 2025 06:19:32 +0000 ROA not before: Tue 07 Jan 2025 06:19:32 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 8075 IP address blocks: 203.20.128.0/24 maxlen: 24 203.20.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.crl rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD81 Validity Not Before: Jan 7 06:19:32 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677cc774-9e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b2:54:6c:e1:a9:a7:fe:4d:ae:b4:94:23:6e: 7a:c5:54:5b:42:ef:c1:33:32:35:35:41:58:6f:7e: 4c:f2:44:05:2e:05:a1:11:fe:d9:69:57:b3:2e:ac: bd:bd:a1:c7:92:39:cb:56:2e:6b:5d:2b:1a:0c:53: 6b:7c:ec:1c:6a:bf:ae:40:d2:f0:6d:70:da:48:98: 85:db:d5:1d:ba:5b:cb:a5:21:54:fb:1d:89:29:4b: fd:72:13:06:c3:5f:de:c9:f8:a3:f5:2e:cd:32:3f: d3:7e:d9:a3:24:92:70:27:5d:f8:25:5a:4f:52:95: b0:42:c9:7d:df:a2:22:09:b3:e0:a8:47:a8:40:bf: 27:f6:eb:dc:cb:05:a0:29:b7:7f:7a:94:70:c6:39: 8a:66:5b:23:a2:68:a1:dd:cd:72:98:e4:57:d0:17: 04:3f:0d:46:35:33:db:8f:24:f3:7a:83:fe:dd:a5: 8c:90:1a:54:2a:51:3d:93:92:43:b1:1a:5c:49:0d: 9c:99:f7:80:2b:ae:0e:da:ec:18:37:ef:a4:92:8b: 3c:05:65:9d:2a:3c:db:4b:1d:17:76:20:25:fa:58: cc:db:5e:04:7e:90:50:b4:98:42:ad:3d:ef:96:47: e2:0f:39:31:4f:15:fe:5f:32:96:1d:b9:cb:bd:33: 1d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:0B:BB:6C:4A:96:75:FB:A8:66:20:19:A0:AD:73:92:DA:92:CE:76 X509v3 Authority Key Identifier: keyid:2D:E8:F2:16:DC:D2:BE:C6:D3:8F:EB:F0:1E:06:D8:A9:90:27:0E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/0E0C2FDA8A9211EF928F7977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.128.0/23 Signature Algorithm: sha256WithRSAEncryption 66:6b:58:09:df:09:be:63:27:c2:e1:05:4c:71:39:4b:18:14: c5:9e:a4:9e:43:b0:57:88:96:f7:73:57:98:7b:5e:e8:e0:1a: b5:fa:9d:58:f5:a8:2e:a1:53:7f:e4:6b:99:22:4e:22:3c:b4: 37:71:aa:14:85:71:84:24:3a:d8:90:92:15:4f:e3:e7:6e:f4: 18:a4:fd:28:46:f0:34:dc:e4:4c:85:f8:2b:c2:a7:42:40:a4: c8:11:82:11:d4:35:31:89:6c:5f:26:31:77:96:65:96:15:df: 02:d4:52:21:92:29:f8:30:72:3e:d2:d2:7e:3f:f6:09:b5:17: 84:8f:e8:bc:fd:f4:21:ac:25:65:8c:5f:81:c2:3b:36:01:51: b9:a7:45:ad:0d:15:9b:e0:14:4e:38:88:f3:f4:08:3b:65:2c: 08:67:27:a0:8a:53:cb:ef:b2:c3:88:2a:e3:5e:f7:39:9e:64: 26:e8:e9:58:90:14:fa:91:a2:22:ab:c2:01:bc:64:4f:f0:32: 50:df:26:ea:97:c7:10:54:71:d0:0f:19:91:b4:75:55:92:84: e9:45:50:02:50:54:f4:d1:7c:f0:2d:01:16:14:dd:0a:ca:1f: 2b:9e:aa:79:39:be:c9:51:75:8e:60:9f:06:ea:f5:0b:2d:99: 62:81:04:2c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUQ4MTExMC8GA1UEBRMoMkRFOEYyMTZEQ0QyQkVDNkQzOEZFQkYwMUUwNkQ4QTk5 MDI3MEVCRjAeFw0yNTAxMDcwNjE5MzJaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2NjNzc0LTllODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFslRs4amn/k2utJQjbnrFVFtC78EzMjU1QVhvfkzyRAUuBaER/tlpV7MurL29 oceSOctWLmtdKxoMU2t87Bxqv65A0vBtcNpImIXb1R26W8ulIVT7HYkpS/1yEwbD X97J+KP1Ls0yP9N+2aMkknAnXfglWk9SlbBCyX3foiIJs+CoR6hAvyf269zLBaAp t396lHDGOYpmWyOiaKHdzXKY5FfQFwQ/DUY1M9uPJPN6g/7dpYyQGlQqUT2TkkOx GlxJDZyZ94Arrg7a7Bg376SSizwFZZ0qPNtLHRd2ICX6WMzbXgR+kFC0mEKtPe+W R+IPOTFPFf5fMpYducu9Mx29AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhAu7bEqW dfuoZiAZoK1zktqSznYwHwYDVR0jBBgwFoAULejyFtzSvsbTj+vwHgbYqZAnDr8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBRDgxLzg3RDM1MjBBODlF MTExRUY4OTIxNDA0REM0RjlBRTAyL0xlanlGdHpTdnNiVGotdndIZ2JZcVpBbkRy OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTGVqeUZ0elN2c2JUai12d0hnYllxWkFuRHI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUQ4MS84N0QzNTIwQTg5RTExMUVGODkyMTQwNERDNEY5QUUwMi8wRTBDMkZEQThB OTIxMUVGOTI4Rjc5NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsUgDANBgkqhkiG9w0BAQsFAAOCAQEAZmtYCd8JvmMnwuEF THE5SxgUxZ6knkOwV4iW93NXmHte6OAatfqdWPWoLqFTf+RrmSJOIjy0N3GqFIVx hCQ62JCSFU/j5270GKT9KEbwNNzkTIX4K8KnQkCkyBGCEdQ1MYlsXyYxd5ZllhXf AtRSIZIp+DByPtLSfj/2CbUXhI/ovP30IawlZYxfgcI7NgFRuadFrQ0Vm+AUTjiI 8/QIO2UsCGcnoIpTy++yw4gq4173OZ5kJujpWJAU+pGiIqvCAbxkT/AyUN8m6pfH EFRx0A8ZkbR1VZKE6UVQAlBU9NF88C0BFhTdCsofK56qeTm+yVF1jmCfBur1Cy2Z YoEELA== -----END CERTIFICATE-----Generated at Fri Apr 4 23:20:39 2025 by rpki-client