$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa File: A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa (raw, json) Hash identifier: t1OaNyFoyz1wPNGsEV6wvESq7YLX8mq5k1S0USUMtEE= Subject key identifier: 43:E3:80:F9:3A:32:34:80:75:AE:18:E4:EC:FB:F0:C0:8D:FE:31:E3 Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 0147 Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa Signing time: Fri 07 Feb 2025 03:16:20 +0000 ROA not before: Fri 07 Feb 2025 03:16:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 23854 IP address blocks: 119.15.64.0/24 maxlen: 24 119.15.70.0/23 maxlen: 24 203.8.95.0/24 maxlen: 24 203.26.51.0/24 maxlen: 24 203.26.177.0/24 maxlen: 24 203.31.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969 Validity Not Before: Feb 7 03:16:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a57b03-9474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:56:a9:8f:fa:3f:12:f0:41:92:15:b9:45:90: fb:8e:68:cb:d1:84:21:59:a6:a9:fb:ee:e5:de:a4: 69:44:b5:26:41:12:f1:22:c2:09:c3:42:d3:ee:b9: 40:47:e4:b6:84:72:c7:52:ae:e7:85:e5:04:68:cb: 36:04:83:91:ce:33:70:dc:37:93:8d:c3:98:e3:cb: 58:a8:12:82:e4:22:53:c1:c7:d0:6a:48:61:d4:ee: df:c0:b1:ee:a0:50:fc:05:46:28:88:4b:42:66:35: 52:d1:09:fd:6c:3b:58:91:85:7b:17:fb:59:e2:fa: c9:80:95:0a:71:c5:50:f7:1d:e8:41:1b:be:37:eb: e3:c9:4f:2c:67:0b:fd:f0:f6:b3:bc:fa:93:03:c8: 28:66:a9:9b:6d:76:45:c3:ba:4f:44:24:31:cb:5a: 79:ab:79:79:bb:82:08:cf:90:8a:1e:1f:d6:a4:87: a2:ea:92:43:8b:27:4c:ba:40:5d:f9:ce:4c:bd:22: 93:a2:8e:a2:c9:fc:e2:ff:41:c7:6f:a3:5c:94:a7: c8:e3:03:fa:cf:8a:a4:92:e7:b6:b5:f5:3b:87:5e: 33:c9:fd:4a:b3:f8:14:5a:c3:9b:ba:80:5d:c5:c1: 91:c2:dc:ea:ca:b3:3e:a0:90:62:76:6b:48:de:bf: 93:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E3:80:F9:3A:32:34:80:75:AE:18:E4:EC:FB:F0:C0:8D:FE:31:E3 X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.15.64.0/24 119.15.70.0/23 203.8.95.0/24 203.26.51.0/24 203.26.177.0/24 203.31.75.0/24 Signature Algorithm: sha256WithRSAEncryption 33:fb:42:d7:64:ee:d4:30:01:81:ac:6d:1b:25:6f:8b:13:c8: 44:04:d7:f2:fa:60:08:5b:ef:35:3a:30:89:11:c7:5f:d6:80: 93:49:49:93:c7:b9:5a:7e:82:df:0a:f8:7e:0e:f7:20:7e:f0: c3:3d:90:d7:cc:e5:be:1c:60:70:6f:df:5d:28:0d:ae:a9:c8: 06:6a:1a:14:ec:c6:9b:dc:4b:46:f5:b8:50:a1:7a:37:17:46: 4d:88:75:db:16:45:06:e6:83:83:97:38:c4:bd:a5:84:89:03: 63:3b:a5:b8:2c:54:bd:72:35:3f:2b:b4:27:11:5f:ea:58:19: 17:f8:bd:23:8b:90:44:3f:36:71:bf:a1:08:57:8d:69:12:51: 35:b3:69:41:c2:29:2a:35:2b:83:55:ca:8b:11:5b:d4:5b:f0: 47:1a:32:c4:ee:95:05:ba:5d:a8:0b:27:77:53:d6:90:d8:71: c2:1b:03:0b:7b:6a:e4:44:a9:60:1c:7c:c7:2e:e5:57:10:ce: 6a:8f:e0:7e:3f:05:5a:72:a5:38:2d:74:d1:87:0c:58:d2:6b: 75:43:d8:7b:4e:95:48:87:d9:77:e8:69:81:68:96:ca:76:c6: 2a:10:52:3e:b0:f2:ad:79:01:70:82:d2:ec:09:a8:6c:00:e5: db:f0:3e:46 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjUwMjA3MDMxNjE5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1N2IwMy05NDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lapj/o/EvBBkhW5RZD7jmjL0YQhWaap++7l3qRpRLUmQRLxIsIJw0LT7rlA R+S2hHLHUq7nheUEaMs2BIORzjNw3DeTjcOY48tYqBKC5CJTwcfQakhh1O7fwLHu oFD8BUYoiEtCZjVS0Qn9bDtYkYV7F/tZ4vrJgJUKccVQ9x3oQRu+N+vjyU8sZwv9 8PazvPqTA8goZqmbbXZFw7pPRCQxy1p5q3l5u4IIz5CKHh/WpIei6pJDiydMukBd +c5MvSKToo6iyfzi/0HHb6NclKfI4wP6z4qkkue2tfU7h14zyf1Ks/gUWsObuoBd xcGRwtzqyrM+oJBidmtI3r+TawIDAQABo4ICszCCAq8wHQYDVR0OBBYEFEPjgPk6 MjSAda4Y5Oz78MCN/jHjMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvQTVENzI2M0Mx RUNCMTFFRThGRUZFRTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAB3D0ADBAF3D0YDBADLCF8DBADLGjMDBADLGrEDBADLH0sw DQYJKoZIhvcNAQELBQADggEBADP7Qtdk7tQwAYGsbRslb4sTyEQE1/L6YAhb7zU6 MIkRx1/WgJNJSZPHuVp+gt8K+H4O9yB+8MM9kNfM5b4cYHBv310oDa6pyAZqGhTs xpvcS0b1uFChejcXRk2IddsWRQbmg4OXOMS9pYSJA2M7pbgsVL1yNT8rtCcRX+pY GRf4vSOLkEQ/NnG/oQhXjWkSUTWzaUHCKSo1K4NVyosRW9Rb8EcaMsTulQW6XagL J3dT1pDYccIbAwt7auREqWAcfMcu5VcQzmqP4H4/BVpypTgtdNGHDFjSa3VD2HtO lUiH2XfoaYFolsp2xioQUj6w8q15AXCC0uwJqGwA5dvwPkY= -----END CERTIFICATE-----Generated at Sun Apr 6 12:21:18 2025 by rpki-client