$ rpki-client -vvf rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/24D4478E774611EFA3ACCD6AC4F9AE02.roa File: 24D4478E774611EFA3ACCD6AC4F9AE02.roa (raw, json) Hash identifier: RMEd5XMiiZ2qHrEfTZXxo60gqzZs/KrE41SmTIZdOU8= Subject key identifier: 7F:6A:9D:5F:99:78:5F:3F:3D:35:CC:AE:85:4A:41:38:A9:31:5C:40 Certificate issuer: /CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC Certificate serial: 1350 Authority key identifier: B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/24D4478E774611EFA3ACCD6AC4F9AE02.roa Signing time: Fri 20 Sep 2024 11:47:42 +0000 ROA not before: Fri 20 Sep 2024 11:47:42 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135542 IP address blocks: 14.192.48.0/24 maxlen: 24 14.192.51.0/24 maxlen: 24 103.64.12.0/24 maxlen: 24 103.64.13.0/24 maxlen: 24 103.78.242.0/24 maxlen: 24 2001:df2:8e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4944 (0x1350) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E93F Validity Not Before: Sep 20 11:47:42 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66ed60de-e1a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:64:f0:62:8b:83:d0:75:1f:01:59:9f:6e: 16:f0:34:d2:c5:48:53:82:f2:d9:5d:e5:c3:58:a1: 65:f4:62:ac:1c:94:d2:4a:36:97:2d:25:7b:ed:40: 3b:dd:2a:b9:77:a9:78:0f:5f:fb:5c:02:a2:84:c9: d2:05:25:8c:75:e7:17:f0:ac:e2:77:5d:27:93:33: 38:36:45:1a:53:b2:33:de:d6:46:ab:4f:86:ee:f3: 4f:75:2b:3c:fe:eb:5c:77:9a:b4:b9:a7:75:f1:f0: 3e:9f:31:7c:fd:4d:2c:eb:99:3a:03:87:92:f4:e8: dc:05:8f:4e:99:dd:44:1d:ec:bc:db:c5:e7:47:25: a5:87:b2:01:cb:3b:2f:47:2d:72:11:49:60:f1:34: d7:24:2b:1e:58:14:3d:dd:34:84:7d:e9:98:97:2d: 0d:b9:48:db:76:5b:b2:aa:57:ec:5a:a7:09:31:68: af:33:69:45:0d:bc:a6:ab:e1:24:cd:3c:f6:c3:5e: 20:f6:9f:45:44:e0:b7:6f:0b:8b:8a:ab:38:5f:08: 1d:61:6d:15:d4:5d:d8:25:86:69:26:e1:23:4e:72: 88:b2:48:36:34:62:0f:38:0b:71:da:6b:d1:5e:fc: d3:c6:36:56:fa:34:5d:9f:cb:d2:d2:81:2c:a3:40: ea:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:6A:9D:5F:99:78:5F:3F:3D:35:CC:AE:85:4A:41:38:A9:31:5C:40 X509v3 Authority Key Identifier: keyid:B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/24D4478E774611EFA3ACCD6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.48.0/24 14.192.51.0/24 103.64.12.0/23 103.78.242.0/24 IPv6: 2001:df2:8e00::/48 Signature Algorithm: sha256WithRSAEncryption 54:a7:f9:80:6f:22:e2:14:3a:78:2b:72:66:53:80:47:c1:fc: b5:ae:f4:b5:c1:68:43:c5:f2:28:de:7a:6b:a5:bf:3c:df:d1: 01:64:a0:d5:dd:da:29:87:a1:d1:77:b0:9b:b2:b1:48:6b:6c: b8:3e:57:20:1c:b4:57:6b:33:83:c4:96:8d:d4:d3:f5:26:d9: 75:69:e0:e1:a8:fd:71:7b:45:9f:9b:ac:2a:a4:57:3f:28:db: e6:e4:b9:c2:a2:eb:ec:c5:25:ef:28:60:f2:4e:7e:4a:12:30: 2e:e2:e6:19:3b:8f:50:21:fe:06:d8:5a:dc:6c:ec:34:2d:bf: 4e:97:a6:97:d2:ca:67:59:22:be:b4:e9:11:29:03:4e:cd:7f: 34:14:2b:2b:ee:f9:a5:04:35:13:5d:f7:5d:70:d8:b9:86:3d: 69:19:98:d3:12:c7:c7:cc:0f:e3:54:e4:1d:e7:c8:14:1e:de: 18:74:92:b7:40:5f:2b:31:ce:3c:5a:29:36:b5:e0:eb:24:aa: 5f:7e:aa:70:81:d8:00:ed:01:7e:cd:ca:4b:5c:23:d8:30:be: c1:58:3b:59:4d:fc:56:e1:0c:9b:f0:18:c6:99:85:bf:f5:77: 9f:b7:82:b7:0a:5e:b6:02:8e:a2:13:68:2c:2e:5d:82:2e:b6: 54:94:f2:27 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICE1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5M0YxMTAvBgNVBAUTKEIyRjhBQjAwRDU3NDY0REQ1RDA1QTQ1QTQ3QzQyMEY1 Rjg5NkI4RkMwHhcNMjQwOTIwMTE0NzQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkNjBkZS1lMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWBk8GKLg9B1HwFZn24W8DTSxUhTgvLZXeXDWKFl9GKsHJTSSjaXLSV77UA7 3Sq5d6l4D1/7XAKihMnSBSWMdecX8Kzid10nkzM4NkUaU7Iz3tZGq0+G7vNPdSs8 /utcd5q0uad18fA+nzF8/U0s65k6A4eS9OjcBY9Omd1EHey828XnRyWlh7IByzsv Ry1yEUlg8TTXJCseWBQ93TSEfemYly0NuUjbdluyqlfsWqcJMWivM2lFDbymq+Ek zTz2w14g9p9FROC3bwuLiqs4XwgdYW0V1F3YJYZpJuEjTnKIskg2NGIPOAtx2mvR XvzTxjZW+jRdn8vS0oEso0Dq8wIDAQABo4ICuDCCArQwHQYDVR0OBBYEFH9qnV+Z eF8/PTXMroVKQTipMVxAMB8GA1UdIwQYMBaAFLL4qwDVdGTdXQWkWkfEIPX4lrj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkzRi8yRUQ3NzVEQUEz NkMxMUU4OTE0MDU5MjZDNEY5QUUwMi9zdmlyQU5WMFpOMWRCYVJhUjhRZzlmaVd1 UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2aXJBTlYwWk4xZEJhUmFSOFFnOWZpV3VQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5M0YvMkVENzc1REFBMzZDMTFFODkxNDA1OTI2QzRGOUFFMDIvMjRENDQ3OEU3 NzQ2MTFFRkEzQUNDRDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAAOwDADBAAOwDMDBAFnQAwDBABnTvIwDwQCAAIwCQMHACAB DfKOADANBgkqhkiG9w0BAQsFAAOCAQEAVKf5gG8i4hQ6eCtyZlOAR8H8ta70tcFo Q8XyKN56a6W/PN/RAWSg1d3aKYeh0Xewm7KxSGtsuD5XIBy0V2szg8SWjdTT9SbZ dWng4aj9cXtFn5usKqRXPyjb5uS5wqLr7MUl7yhg8k5+ShIwLuLmGTuPUCH+Btha 3GzsNC2/Tpeml9LKZ1kivrTpESkDTs1/NBQrK+75pQQ1E133XXDYuYY9aRmY0xLH x8wP41TkHefIFB7eGHSSt0BfKzHOPFopNrXg6ySqX36qcIHYAO0Bfs3KS1wj2DC+ wVg7WU38VuEMm/AYxpmFv/V3n7eCtwpetgKOohNoLC5dgi62VJTyJw== -----END CERTIFICATE-----Generated at Sun Feb 16 21:43:08 2025 by rpki-client