$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa File: 0B0485A250B811EBA8A3C670C4F9AE02.roa (raw, json) Hash identifier: uJygWd52jCSDDQwzNFdfFy56jnQ/FexCJi3lv3fNL2E= Subject key identifier: 4E:EA:B7:03:68:A9:F2:51:BF:42:27:F6:68:29:8C:7D:54:D5:74:9B Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 09C4 Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa Signing time: Tue 14 May 2024 21:30:46 +0000 ROA not before: Tue 14 May 2024 21:30:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 198949 IP address blocks: 43.251.21.0/24 maxlen: 24 43.251.22.0/23 maxlen: 23 202.155.221.0/24 maxlen: 24 218.253.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 19:53:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2500 (0x9c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E Validity Not Before: May 14 21:30:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6643d806-daa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:54:8b:18:8e:fd:14:1e:8f:14:01:73:2a:dc: c0:d7:1d:52:a7:e9:a2:72:1b:bb:86:16:f1:21:5e: af:1f:33:af:9f:34:e7:fa:61:1e:35:98:76:1d:ed: 91:1f:28:b5:6a:76:e9:64:81:05:1b:a3:86:88:b9: c6:93:ee:c6:61:49:55:9f:76:7e:3b:9f:7b:3d:93: 23:79:1a:18:0d:03:9a:21:9a:c0:92:b7:2a:c9:16: 5a:d2:f7:8d:6b:fa:f8:db:d2:ea:40:a9:28:9b:61: 0f:05:41:53:9b:c4:e5:4e:70:35:1a:70:0d:c9:aa: 2a:8c:ec:1a:82:7b:3d:2c:79:88:17:e0:c7:2d:c5: 49:d7:fd:4e:51:bc:6e:78:8a:ce:9a:df:67:67:6d: c2:ac:c1:59:74:e5:3c:54:6d:d6:27:9d:ef:4d:02: 82:a9:f2:b0:b9:85:df:a7:5f:f1:36:d6:ea:94:6e: dd:b5:af:e8:ac:f1:c4:cf:d4:7a:0d:90:15:e3:26: 97:e4:f1:a3:c8:f3:6c:3b:98:d2:17:ca:e2:10:5c: 06:79:2d:63:f3:0b:99:91:0a:89:dd:57:11:96:7d: d3:db:fe:c4:76:11:0a:8e:a2:44:8b:89:71:18:84: 36:56:ff:76:20:f9:3c:ea:ea:ee:f1:87:73:ee:c5: dd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:EA:B7:03:68:A9:F2:51:BF:42:27:F6:68:29:8C:7D:54:D5:74:9B X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.21.0-43.251.23.255 202.155.221.0/24 218.253.207.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:d8:6d:1c:7f:e6:f2:ea:94:85:da:8a:64:d5:a7:09:3e:80: 0f:2d:fc:58:8f:de:a3:6c:b7:32:a6:af:b6:bc:f8:18:a7:a7: 81:d7:29:d6:dd:ea:4b:ff:b1:78:38:28:47:2b:01:93:e7:1d: ec:c2:3b:0b:db:dc:38:28:0d:70:e4:da:26:6d:68:f1:cc:ab: dc:9f:f1:04:ef:10:cd:0b:c3:b0:19:09:ba:7e:f0:5f:f8:cb: 48:47:f4:81:0a:7b:ac:7d:cb:29:94:22:ba:c2:dd:ac:07:89: de:3e:29:16:57:d2:ae:01:98:87:fa:26:03:7f:a7:78:3e:49: 33:90:fe:74:a9:28:1b:cb:b7:45:64:a9:db:19:28:7d:4f:58: 6e:04:6a:00:aa:39:4f:56:2a:1b:88:13:cf:76:c0:05:f2:6c: 06:22:09:14:79:23:a3:a0:35:53:a3:2d:bf:b6:4a:cc:24:7f: de:5e:a2:82:a7:06:06:25:a9:72:d1:ad:f7:3e:24:85:c0:fe: 49:d6:52:de:e6:d6:e7:24:b7:ea:25:9d:f3:37:94:97:37:ec: ce:39:23:42:19:03:35:61:f6:41:b5:ff:e8:93:04:6d:6a:ea: 9e:63:cd:7a:72:8a:d9:f7:68:7c:13:57:20:37:ae:3f:10:e0: 97:74:d4:9e -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjQwNTE0MjEzMDQ2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzZDgwNi1kYWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlSLGI79FB6PFAFzKtzA1x1Sp+michu7hhbxIV6vHzOvnzTn+mEeNZh2He2R Hyi1anbpZIEFG6OGiLnGk+7GYUlVn3Z+O597PZMjeRoYDQOaIZrAkrcqyRZa0veN a/r429LqQKkom2EPBUFTm8TlTnA1GnANyaoqjOwagns9LHmIF+DHLcVJ1/1OUbxu eIrOmt9nZ23CrMFZdOU8VG3WJ53vTQKCqfKwuYXfp1/xNtbqlG7dta/orPHEz9R6 DZAV4yaX5PGjyPNsO5jSF8riEFwGeS1j8wuZkQqJ3VcRln3T2/7EdhEKjqJEi4lx GIQ2Vv92IPk86uru8Ydz7sXdEwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFE7qtwNo qfJRv0In9mgpjH1U1XSbMB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvMEIwNDg1QTI1 MEI4MTFFQkE4QTNDNjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEACv7FQMEAyv7EAMEAMqb3QMEANr9zzANBgkqhkiG9w0B AQsFAAOCAQEAL9htHH/m8uqUhdqKZNWnCT6ADy38WI/eo2y3Mqavtrz4GKengdcp 1t3qS/+xeDgoRysBk+cd7MI7C9vcOCgNcOTaJm1o8cyr3J/xBO8QzQvDsBkJun7w X/jLSEf0gQp7rH3LKZQiusLdrAeJ3j4pFlfSrgGYh/omA3+neD5JM5D+dKkoG8u3 RWSp2xkofU9YbgRqAKo5T1YqG4gTz3bABfJsBiIJFHkjo6A1U6Mtv7ZKzCR/3l6i gqcGBiWpctGt9z4khcD+SdZS3ubW5yS36iWd8zeUlzfszjkjQhkDNWH2QbX/6JME bWrqnmPNenKK2fdofBNXIDeuPxDgl3TUng== -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:01 2025 by rpki-client