$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/6DE5D7943FA311EDABCBBA25C4F9AE02.roa File: 6DE5D7943FA311EDABCBBA25C4F9AE02.roa (raw, json) Hash identifier: jCTMSC495WwQhM5z8iRSIfB2DjssKAElJteIhJkck/0= Subject key identifier: AD:02:4D:13:F8:9B:FD:66:8D:E8:5C:12:67:E5:8B:57:ED:93:63:E1 Certificate issuer: /CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Certificate serial: 0393 Authority key identifier: F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/6DE5D7943FA311EDABCBBA25C4F9AE02.roa Signing time: Sat 29 Jun 2024 02:54:57 +0000 ROA not before: Sat 29 Jun 2024 02:54:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 14618 IP address blocks: 202.50.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BD4 Validity Not Before: Jun 29 02:54:57 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f7780-612a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ab:17:3b:e8:fd:2c:4a:ad:ad:f4:b8:11:1c: 61:5c:d5:dd:a2:04:6e:19:67:63:40:44:82:6d:d7: 3b:1d:db:36:05:2e:1e:cb:87:cb:d8:a1:3a:0c:ec: 1a:40:4d:67:44:ff:0d:57:d6:08:84:17:22:96:67: d5:10:88:e6:ba:a9:a3:9e:73:99:58:96:53:7d:94: fa:af:d0:b2:41:d8:45:52:35:2e:d1:6e:26:84:6a: 44:c3:b3:2e:a3:6b:42:9c:0a:05:53:fa:4f:c8:d6: d0:5d:45:73:53:e2:6c:df:6d:58:77:39:20:db:60: 75:26:9d:55:82:f2:69:07:88:e9:79:6d:19:c4:24: 78:fc:66:fd:41:f0:9e:6d:54:d4:d7:4e:a7:57:e3: 11:29:25:18:bc:95:73:d8:7f:f0:f7:20:a2:fa:18: ad:30:17:41:f0:0f:84:4e:b1:27:e4:58:5a:4c:84: 42:0e:34:ff:2c:d3:5c:8f:67:c1:d4:8d:6c:95:9b: 45:f5:78:6d:2a:00:71:ac:ad:1c:a6:16:91:e2:ac: 9e:be:2c:ca:33:7c:8a:01:de:f4:fb:28:62:61:85: 41:8c:2e:7f:42:4d:af:39:f8:49:b6:aa:94:cf:3d: dd:33:ab:86:d5:8e:d3:01:28:c2:43:55:57:95:54: d0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:02:4D:13:F8:9B:FD:66:8D:E8:5C:12:67:E5:8B:57:ED:93:63:E1 X509v3 Authority Key Identifier: keyid:F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/6DE5D7943FA311EDABCBBA25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.194.0/24 Signature Algorithm: sha256WithRSAEncryption 30:75:47:53:82:3f:5c:bd:d9:c0:07:e7:66:45:65:fe:38:d4: 61:48:1e:1b:bc:ea:0a:86:0c:47:99:86:55:a2:5a:c7:78:c3: 7a:99:0b:ef:2c:27:2b:60:b8:b0:2e:c7:58:c7:fb:42:97:b8: 7f:85:02:a2:e7:a8:79:d9:af:41:c4:a1:74:da:5e:e6:61:9c: 72:79:6c:9a:2a:9f:6a:65:45:67:36:3b:5f:37:5b:e0:14:3b: 04:47:1f:4c:54:f4:8d:87:3c:81:c1:04:1c:34:b4:b8:0c:c1: 58:2d:04:93:1b:c4:68:e1:ec:fb:bc:d4:d0:8f:ad:02:b1:dd: 2e:ff:42:40:d8:88:fa:70:f7:90:50:84:20:02:3b:16:53:af: d3:79:42:84:1c:ba:44:63:fc:20:ca:65:b6:e1:76:8d:10:0a: 5f:4a:a3:42:4e:d8:f8:b5:3d:df:8a:8a:b8:36:c1:b6:84:74: 45:fb:da:6d:e6:af:86:79:e2:c3:ba:ff:46:92:1b:1a:94:f7: 25:d7:3b:36:54:b0:89:49:75:d4:d6:5f:00:a8:f5:e1:2c:41: 45:8f:40:66:47:50:28:58:3e:d2:d1:f8:5c:14:60:9c:5a:08: 78:28:43:8d:18:60:b9:08:a0:51:85:1e:6f:c8:83:1f:68:3b: c3:15:79:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRDQxMTAvBgNVBAUTKEYxM0JDQTgwNEY4RjE5ODE3NkY5OUU3QkM5QUVBOThD QUZDMEI4QjEwHhcNMjQwNjI5MDI1NDU3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmNzc4MC02MTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6sXO+j9LEqtrfS4ERxhXNXdogRuGWdjQESCbdc7Hds2BS4ey4fL2KE6DOwa QE1nRP8NV9YIhBcilmfVEIjmuqmjnnOZWJZTfZT6r9CyQdhFUjUu0W4mhGpEw7Mu o2tCnAoFU/pPyNbQXUVzU+Js321Ydzkg22B1Jp1VgvJpB4jpeW0ZxCR4/Gb9QfCe bVTU106nV+MRKSUYvJVz2H/w9yCi+hitMBdB8A+ETrEn5FhaTIRCDjT/LNNcj2fB 1I1slZtF9XhtKgBxrK0cphaR4qyevizKM3yKAd70+yhiYYVBjC5/Qk2vOfhJtqqU zz3dM6uG1Y7TASjCQ1VXlVTQUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK0CTRP4 m/1mjehcEmfli1ftk2PhMB8GA1UdIwQYMBaAFPE7yoBPjxmBdvmee8muqYyvwLix MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJENC80ODY1QkQ0ODYx MTExMUVDOTg0RTNFN0ZDNEY5QUUwMi84VHZLZ0UtUEdZRjItWjU3eWE2cGpLX0F1 TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhUdktnRS1QR1lGMi1aNTd5YTZwaktfQXVMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCRDQvNDg2NUJENDg2MTExMTFFQzk4NEUzRTdGQzRGOUFFMDIvNkRFNUQ3OTQz RkEzMTFFREFCQ0JCQTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKMsIwDQYJKoZIhvcNAQELBQADggEBADB1R1OCP1y92cAH 52ZFZf441GFIHhu86gqGDEeZhlWiWsd4w3qZC+8sJytguLAux1jH+0KXuH+FAqLn qHnZr0HEoXTaXuZhnHJ5bJoqn2plRWc2O183W+AUOwRHH0xU9I2HPIHBBBw0tLgM wVgtBJMbxGjh7Pu81NCPrQKx3S7/QkDYiPpw95BQhCACOxZTr9N5QoQcukRj/CDK Zbbhdo0QCl9Ko0JO2Pi1Pd+Kirg2wbaEdEX72m3mr4Z54sO6/0aSGxqU9yXXOzZU sIlJddTWXwCo9eEsQUWPQGZHUChYPtLR+FwUYJxaCHgoQ40YYLkIoFGFHm/Igx9o O8MVebM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:27:26 2025 by rpki-client