$ rpki-client -vvf rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa File: DB4932CEC2B611EB9BF18A81C4F9AE02.roa (raw, json) Hash identifier: Lf+OpNRolRnNyf7s3LctxABHJRYGwAmVNkJb5Q4x0vo= Subject key identifier: 5C:B2:BE:B5:33:F5:7A:9C:67:BE:CA:CD:CC:57:36:30:F5:70:80:4B Certificate issuer: /CN=A9133E16/serialNumber=31C4F9064F89E56B194EB88492E9021C152DEB3E Certificate serial: 08AF Authority key identifier: 31:C4:F9:06:4F:89:E5:6B:19:4E:B8:84:92:E9:02:1C:15:2D:EB:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa Signing time: Sat 28 Dec 2024 20:09:09 +0000 ROA not before: Sat 28 Dec 2024 20:09:09 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 19905 IP address blocks: 42.200.3.0/24 maxlen: 24 42.200.23.0/24 maxlen: 24 42.200.54.0/24 maxlen: 24 202.82.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.crl rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2223 (0x8af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133E16 Validity Not Before: Dec 28 20:09:09 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67705ae5-df53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ba:ee:b8:c2:cb:64:12:5a:74:5b:a9:cc:96: 32:78:a7:11:35:71:88:b9:8f:35:ff:34:93:7e:8b: 3a:3e:22:2f:6b:2e:e5:7c:e2:8b:95:50:3c:08:4a: 33:ee:9d:59:b4:e0:88:25:62:c7:70:70:c5:55:9a: 93:f6:5f:77:af:bc:de:67:ad:4f:dd:66:0e:4d:df: 88:7e:70:b5:cd:c4:d1:c8:6f:b2:ab:55:dd:0e:20: df:c4:e4:0e:87:5b:46:e3:5e:c7:72:ab:40:33:72: 17:05:7b:2a:80:e4:81:7b:aa:bb:96:15:a3:a3:a0: e6:2f:67:16:ef:5b:32:ba:02:89:92:fc:62:d1:10: 4c:f4:33:07:5d:b2:8c:98:5f:78:0f:a5:d1:50:8a: 5d:2f:3c:96:14:67:13:b3:e1:45:3d:bf:8e:19:3b: 5a:12:c1:42:d7:79:a3:14:2c:46:42:93:e1:e7:28: ea:11:a0:e9:e6:27:16:c9:0c:c3:5e:a1:c4:79:a6: 5c:c2:d0:bd:af:20:4f:5b:ec:7a:bb:05:2a:7f:64: 27:73:d0:97:c8:b2:1a:4b:f4:30:66:df:4a:dc:80: 20:41:59:45:22:17:87:80:1e:30:05:ea:5e:7f:e8: 3b:15:61:1f:3a:13:13:54:d6:92:0a:64:98:91:15: 71:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B2:BE:B5:33:F5:7A:9C:67:BE:CA:CD:CC:57:36:30:F5:70:80:4B X509v3 Authority Key Identifier: keyid:31:C4:F9:06:4F:89:E5:6B:19:4E:B8:84:92:E9:02:1C:15:2D:EB:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.200.3.0/24 42.200.23.0/24 42.200.54.0/24 202.82.250.0/24 Signature Algorithm: sha256WithRSAEncryption 76:b0:97:e5:8d:cf:2e:4b:b3:5d:15:a9:e9:80:14:78:1c:7e: fb:4e:d1:06:e0:10:13:06:74:a3:97:43:c6:f1:2b:30:33:60: ea:2a:45:f2:a3:c5:b5:0a:63:79:87:2a:dd:7f:aa:99:bb:43: dc:ea:d5:e2:4e:5b:00:b7:8d:39:93:6d:e8:a6:30:47:90:bf: 8e:6d:27:86:21:a1:0a:a3:88:d3:f7:f7:83:1b:d0:68:bf:8a: 3c:8b:b0:7a:11:07:fc:d6:84:df:53:1a:10:74:e2:4d:e6:01: af:c3:1b:21:0d:c3:e0:71:42:58:30:78:b1:b5:5e:69:b7:10: 3b:f7:fd:0f:48:89:91:3d:59:bd:e6:d3:4d:9c:5a:ff:be:26: 5d:a5:7e:ea:7b:a5:89:d9:74:66:24:1c:ec:17:b1:c7:ff:cc: b7:6f:85:32:bb:40:12:51:dd:b0:85:fc:5f:a1:82:2f:93:a5: 7b:ed:6b:72:00:d6:39:17:5a:23:dd:80:66:f5:dd:03:5b:80: 41:5a:be:1a:77:cc:60:b3:e9:b8:fc:58:bf:23:ed:1f:a3:ec: 9a:44:82:08:0c:bb:4b:50:d2:b8:3e:52:54:ec:b5:e1:49:c0: 67:d8:ce:e8:bc:b6:51:82:60:95:9b:d9:85:cc:00:1f:7b:2e: a3:36:66:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNFMTYxMTAvBgNVBAUTKDMxQzRGOTA2NEY4OUU1NkIxOTRFQjg4NDkyRTkwMjFD MTUyREVCM0UwHhcNMjQxMjI4MjAwOTA5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcwNWFlNS1kZjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLruuMLLZBJadFupzJYyeKcRNXGIuY81/zSTfos6PiIvay7lfOKLlVA8CEoz 7p1ZtOCIJWLHcHDFVZqT9l93r7zeZ61P3WYOTd+IfnC1zcTRyG+yq1XdDiDfxOQO h1tG417HcqtAM3IXBXsqgOSBe6q7lhWjo6DmL2cW71syugKJkvxi0RBM9DMHXbKM mF94D6XRUIpdLzyWFGcTs+FFPb+OGTtaEsFC13mjFCxGQpPh5yjqEaDp5icWyQzD XqHEeaZcwtC9ryBPW+x6uwUqf2Qnc9CXyLIaS/QwZt9K3IAgQVlFIheHgB4wBepe f+g7FWEfOhMTVNaSCmSYkRVxGQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFFyyvrUz 9XqcZ77KzcxXNjD1cIBLMB8GA1UdIwQYMBaAFDHE+QZPieVrGU64hJLpAhwVLes+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0UxNi9EQzU0RDlBNkFD NzQxMUVBODZFQTlGNDhDNEY5QUUwMi9NY1Q1QmstSjVXc1pUcmlFa3VrQ0hCVXQ2 ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01jVDVCay1KNVdzWlRyaUVrdWtDSEJVdDZ6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzNFMTYvREM1NEQ5QTZBQzc0MTFFQTg2RUE5RjQ4QzRGOUFFMDIvREI0OTMyQ0VD MkI2MTFFQjlCRjE4QTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAqyAMDBAAqyBcDBAAqyDYDBADKUvowDQYJKoZIhvcNAQEL BQADggEBAHawl+WNzy5Ls10VqemAFHgcfvtO0QbgEBMGdKOXQ8bxKzAzYOoqRfKj xbUKY3mHKt1/qpm7Q9zq1eJOWwC3jTmTbeimMEeQv45tJ4YhoQqjiNP394Mb0Gi/ ijyLsHoRB/zWhN9TGhB04k3mAa/DGyENw+BxQlgweLG1Xmm3EDv3/Q9IiZE9Wb3m 002cWv++Jl2lfup7pYnZdGYkHOwXscf/zLdvhTK7QBJR3bCF/F+hgi+TpXvta3IA 1jkXWiPdgGb13QNbgEFavhp3zGCz6bj8WL8j7R+j7JpEgggMu0tQ0rg+UlTsteFJ wGfYzui8tlGCYJWb2YXMAB97LqM2ZtY= -----END CERTIFICATE-----Generated at Thu Mar 13 21:53:35 2025 by rpki-client