$ rpki-client -vvf rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/35969588CA9211EE833EF985C4F9AE02.roa File: 35969588CA9211EE833EF985C4F9AE02.roa (raw, json) Hash identifier: hAX7VR993CmhhsaA1nmPwPNSS2+Tuw+X9CTSJbnnlDM= Subject key identifier: 36:BA:18:E8:77:04:3A:C1:92:E0:99:5A:20:CB:84:B8:8F:0E:19:ED Certificate issuer: /CN=A912981B/serialNumber=337B450FDDC9FC70221DA5CA09785885B1D1B7CC Certificate serial: C4 Authority key identifier: 33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/35969588CA9211EE833EF985C4F9AE02.roa Signing time: Fri 31 Jan 2025 05:19:21 +0000 ROA not before: Fri 31 Jan 2025 05:19:21 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152296 IP address blocks: 157.10.30.0/24 maxlen: 24 157.10.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 07:19:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912981B Validity Not Before: Jan 31 05:19:21 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679c5d59-4eee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f1:92:ac:76:c8:2a:00:46:1d:59:47:cf:82: e6:d0:7a:52:58:cf:fe:f5:41:48:39:75:d6:cd:19: 05:b9:4f:9b:68:ec:0a:df:5e:9a:02:c9:bd:ad:68: a7:30:3c:de:97:ec:c4:2e:e0:2d:f5:30:94:2b:1c: ec:0f:cb:57:85:a3:07:df:3f:dc:fc:5a:5d:0f:11: 42:da:18:59:2f:f7:00:05:77:d3:99:5e:84:0e:36: 1c:82:c0:fe:9d:32:d3:27:44:17:b6:8a:e8:9a:c3: 80:8a:30:66:c4:43:00:de:ff:0e:94:77:98:c5:b6: 16:b8:43:0d:4a:d0:0f:cf:b6:88:e3:98:3e:4b:2b: 94:1b:09:f6:e4:b9:0b:5d:29:4c:32:de:0b:62:f1: 26:23:fe:6d:f0:0d:a3:67:c6:d5:94:7e:bb:62:46: da:52:63:e0:32:57:0c:f9:94:ba:47:b0:19:60:99: c5:a5:97:1a:b2:4f:9f:e8:7c:dc:3c:3e:d5:ae:ef: ef:81:2e:58:e6:17:87:88:48:7b:7f:c1:de:c5:e7: a2:09:b4:2a:77:29:72:c8:dd:12:02:25:82:95:4d: 5f:76:e9:7f:d0:a0:b5:24:ec:0d:54:3c:e8:70:86: 16:54:db:df:f8:49:f7:ac:64:bc:3e:b1:49:04:25: af:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:BA:18:E8:77:04:3A:C1:92:E0:99:5A:20:CB:84:B8:8F:0E:19:ED X509v3 Authority Key Identifier: keyid:33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/35969588CA9211EE833EF985C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.30.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:78:5b:5b:46:c1:38:3c:ac:bd:84:3c:fd:42:b0:22:90:35: 9b:ec:e3:17:24:40:68:be:16:5b:37:bf:c6:6f:dc:49:ad:67: 5c:8c:94:eb:14:18:7e:a2:cf:08:10:a9:15:ec:f2:b2:e0:d9: 51:4a:97:bd:38:95:8a:c9:a5:05:f2:16:23:15:0c:f1:1f:df: c0:f7:d7:3e:0d:07:09:62:a4:2f:f8:84:72:e0:a2:11:e2:37: a8:b3:bf:61:52:76:2a:a7:a6:f7:27:6d:3c:c6:6f:7c:fd:c9: f8:d7:22:7f:0b:96:e0:0d:9a:c4:30:31:76:2c:19:6d:1d:4b: 20:ed:f6:ec:ac:9d:21:34:b3:f8:76:f1:58:59:1d:30:ae:11: c7:c8:3b:2b:88:48:3f:74:22:19:f7:0d:2f:28:df:64:15:05: 13:f1:ba:c4:66:25:44:3a:83:56:b8:47:9b:93:a6:e5:31:9f: 38:65:bc:b3:45:49:0d:1d:34:27:5b:f2:e7:df:ef:3d:0b:58: 69:ec:d5:7b:ac:a9:97:eb:77:98:c9:b5:84:18:fc:99:49:69: 20:0a:fa:c6:5c:f3:1b:92:ff:2f:64:00:ed:51:eb:46:0f:6b: ee:6b:ec:aa:34:0b:c4:62:1a:40:fa:18:3e:f4:91:c5:4d:8e: 39:56:90:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4MUIxMTAvBgNVBAUTKDMzN0I0NTBGRERDOUZDNzAyMjFEQTVDQTA5Nzg1ODg1 QjFEMUI3Q0MwHhcNMjUwMTMxMDUxOTIxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljNWQ1OS00ZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvGSrHbIKgBGHVlHz4Lm0HpSWM/+9UFIOXXWzRkFuU+baOwK316aAsm9rWin MDzel+zELuAt9TCUKxzsD8tXhaMH3z/c/FpdDxFC2hhZL/cABXfTmV6EDjYcgsD+ nTLTJ0QXtoromsOAijBmxEMA3v8OlHeYxbYWuEMNStAPz7aI45g+SyuUGwn25LkL XSlMMt4LYvEmI/5t8A2jZ8bVlH67YkbaUmPgMlcM+ZS6R7AZYJnFpZcask+f6Hzc PD7Vru/vgS5Y5heHiEh7f8HexeeiCbQqdylyyN0SAiWClU1fdul/0KC1JOwNVDzo cIYWVNvf+En3rGS8PrFJBCWvIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDa6GOh3 BDrBkuCZWiDLhLiPDhntMB8GA1UdIwQYMBaAFDN7RQ/dyfxwIh2lygl4WIWx0bfM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTgxQi9CQzVDRUFCNkNB OEExMUVFQjA1NkU2MUZDNEY5QUUwMi9NM3RGRDkzSl9IQWlIYVhLQ1hoWWhiSFJ0 OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00zdEZEOTNKX0hBaUhhWEtDWGhZaGJIUnQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4MUIvQkM1Q0VBQjZDQThBMTFFRUIwNTZFNjFGQzRGOUFFMDIvMzU5Njk1ODhD QTkyMTFFRTgzM0VGOTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCh4wDQYJKoZIhvcNAQELBQADggEBAJ94W1tGwTg8rL2E PP1CsCKQNZvs4xckQGi+Fls3v8Zv3EmtZ1yMlOsUGH6izwgQqRXs8rLg2VFKl704 lYrJpQXyFiMVDPEf38D31z4NBwlipC/4hHLgohHiN6izv2FSdiqnpvcnbTzGb3z9 yfjXIn8LluANmsQwMXYsGW0dSyDt9uysnSE0s/h28VhZHTCuEcfIOyuISD90Ihn3 DS8o32QVBRPxusRmJUQ6g1a4R5uTpuUxnzhlvLNFSQ0dNCdb8uff7z0LWGns1Xus qZfrd5jJtYQY/JlJaSAK+sZc8xuS/y9kAO1R60YPa+5r7Ko0C8RiGkD6GD70kcVN jjlWkCA= -----END CERTIFICATE-----Generated at Wed Feb 19 20:36:09 2025 by rpki-client