$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa File: 215A8FDE4B9E11EEBF766C7FC4F9AE02.roa (raw, json) Hash identifier: ewzgLIZLx9Y5nPTQhL+AITVEb8oh3TwTplFpZhdDOMo= Subject key identifier: 17:5F:AC:37:32:D7:7F:39:A2:EA:14:18:62:16:40:F0:87:8F:95:73 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 0734 Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa Signing time: Mon 28 Oct 2024 21:52:36 +0000 ROA not before: Mon 28 Oct 2024 21:52:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 4682 IP address blocks: 61.245.0.0/22 maxlen: 22 61.245.0.0/24 maxlen: 24 61.245.1.0/24 maxlen: 24 61.245.2.0/24 maxlen: 24 61.245.3.0/24 maxlen: 24 2001:ded:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 22:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA, serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Oct 28 21:52:36 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672007a3-57ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cb:ad:18:66:fe:65:c1:5f:61:03:fd:a2:75: 1f:ec:dc:0c:da:41:ff:6e:82:58:ec:16:b7:97:72: d8:74:7e:cf:19:0d:ee:3c:eb:63:3f:c4:20:b2:18: 20:4f:d2:92:1a:d8:75:96:71:be:d3:bd:c1:65:c3: c9:42:6c:45:2c:b9:c9:5f:4f:2e:56:c5:82:4f:cc: ae:64:35:b4:c1:9b:98:2f:c4:c6:a3:d2:a1:c5:66: 6b:00:f2:e0:d7:c8:c9:13:7b:3b:d5:cf:da:fb:5b: 28:1c:68:af:3b:56:8e:bb:23:38:6b:fe:d4:d2:25: 2c:2a:9c:9a:15:30:da:70:2e:f1:4b:64:e9:92:07: ea:62:35:40:e1:d2:55:3f:34:c0:d7:84:2e:c9:ca: 42:a4:5d:8a:64:4c:02:95:68:1c:11:e1:58:aa:a7: 56:1e:8e:06:6b:1e:a5:ea:4f:ce:41:06:b0:58:d4: 8d:0d:ce:29:a1:41:d7:35:0f:4c:f7:f9:d5:a0:19: b7:00:fe:ed:81:74:aa:e0:24:d4:a6:77:e4:8a:b0: e0:b5:b7:67:bc:38:0a:ac:cb:d0:00:96:62:5b:bf: 12:c2:76:f3:d4:7f:41:54:07:12:67:1d:0b:af:45: 71:78:87:2d:b1:1b:51:a1:b0:9e:26:b9:3f:71:30: a1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5F:AC:37:32:D7:7F:39:A2:EA:14:18:62:16:40:F0:87:8F:95:73 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.245.0.0/22 IPv6: 2001:ded:4000::/48 Signature Algorithm: sha256WithRSAEncryption 07:52:74:1a:4a:41:3d:6c:47:04:1a:92:fd:57:9b:8f:04:8c: dd:dd:71:67:12:d1:24:4a:f7:ab:04:a3:52:ae:61:a4:32:9e: cc:17:27:c9:5a:91:a2:a1:2f:0f:57:ee:39:57:58:38:a7:21: 16:a5:0a:33:1a:0e:c6:8a:ab:42:7a:3c:94:8e:7a:59:88:48: f1:8d:97:61:3f:fd:78:c2:4a:f1:01:fc:c2:21:20:c0:7d:d3: 31:05:62:c4:a5:99:03:e2:0b:e9:2a:9b:37:d7:0b:9d:5f:5f: 81:af:3f:35:f0:5f:1e:9b:fd:1b:6e:aa:40:41:c8:99:13:0f: ff:1c:60:86:ea:af:8a:2d:cd:f3:29:fb:0d:07:58:90:3e:65: 4b:d3:bd:30:6a:b7:89:28:a1:5c:f5:8a:08:cc:db:b3:38:23: 8a:aa:2a:b1:3f:87:b2:e8:eb:6c:cb:50:e4:0c:fe:44:56:56: 45:38:e3:70:a4:98:1f:b4:11:86:d8:9e:1c:77:04:e1:1f:91: 6c:5f:cc:54:af:bf:35:a1:fd:89:2e:4e:32:10:d9:ad:fd:4e: 92:ba:c0:90:1b:15:8a:a6:43:54:01:37:18:6d:03:54:3e:3b: 8e:6e:b9:d9:93:35:f5:3f:02:49:1f:27:c0:47:03:85:09:e7: 76:de:36:e6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjQxMDI4MjE1MjM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMDdhMy01N2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MutGGb+ZcFfYQP9onUf7NwM2kH/boJY7Ba3l3LYdH7PGQ3uPOtjP8Qgshgg T9KSGth1lnG+073BZcPJQmxFLLnJX08uVsWCT8yuZDW0wZuYL8TGo9KhxWZrAPLg 18jJE3s71c/a+1soHGivO1aOuyM4a/7U0iUsKpyaFTDacC7xS2TpkgfqYjVA4dJV PzTA14QuycpCpF2KZEwClWgcEeFYqqdWHo4Gax6l6k/OQQawWNSNDc4poUHXNQ9M 9/nVoBm3AP7tgXSq4CTUpnfkirDgtbdnvDgKrMvQAJZiW78Swnbz1H9BVAcSZx0L r0VxeIctsRtRobCeJrk/cTChkQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBdfrDcy 1385ouoUGGIWQPCHj5VzMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvMjE1QThGREU0 QjlFMTFFRUJGNzY2QzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAI99QAwDwQCAAIwCQMHACABDe1AADANBgkqhkiG9w0BAQsF AAOCAQEAB1J0GkpBPWxHBBqS/VebjwSM3d1xZxLRJEr3qwSjUq5hpDKezBcnyVqR oqEvD1fuOVdYOKchFqUKMxoOxoqrQno8lI56WYhI8Y2XYT/9eMJK8QH8wiEgwH3T MQVixKWZA+IL6SqbN9cLnV9fga8/NfBfHpv9G26qQEHImRMP/xxghuqvii3N8yn7 DQdYkD5lS9O9MGq3iSihXPWKCMzbszgjiqoqsT+HsujrbMtQ5Az+RFZWRTjjcKSY H7QRhtieHHcE4R+RbF/MVK+/NaH9iS5OMhDZrf1OkrrAkBsViqZDVAE3GG0DVD47 jm652ZM19T8CSR8nwEcDhQnndt425g== -----END CERTIFICATE-----Generated at Sun Oct 26 03:34:59 2025 by rpki-client