$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/203A920E9B5511EF93BA272BC4F9AE02.roa File: 203A920E9B5511EF93BA272BC4F9AE02.roa (raw, json) Hash identifier: 2cMkxAulRUt+RPZWIL+F0mv8QdjA2rBZuvpPO3wvRlQ= Subject key identifier: D9:D7:77:9D:6F:29:2F:35:8F:FC:40:7E:D0:A3:37:38:BA:BB:4F:7B Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E53 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/203A920E9B5511EF93BA272BC4F9AE02.roa Signing time: Tue 05 Nov 2024 09:05:39 +0000 ROA not before: Tue 05 Nov 2024 09:05:39 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 4811 IP address blocks: 202.101.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7763 (0x1e53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4 Validity Not Before: Nov 5 09:05:39 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6729dfe2-9226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:68:4c:c0:8d:27:c6:2c:6f:95:4e:52:59:4f: de:06:2a:c6:46:a6:39:0a:14:c2:c9:fa:c6:31:17: 7d:78:98:4b:e0:67:09:47:b6:89:22:89:eb:39:22: 37:e3:12:d7:4a:e2:ee:75:f3:5b:9a:cc:42:44:51: a6:52:9d:f1:ce:ed:fe:8b:f9:e3:0f:46:5b:4f:84: dc:a6:00:cf:56:bd:1f:3f:b4:04:98:e3:f8:1e:55: 23:37:27:07:d5:39:b3:a5:0b:e5:cd:61:9b:69:d4: 78:e1:d3:f2:3f:27:af:be:f8:5e:79:70:82:42:a1: 8f:0c:c0:a9:51:8d:f6:62:45:39:1a:a4:19:db:d3: 3b:02:b7:33:4c:05:e7:e0:76:a4:fa:0a:0c:99:9c: 49:f8:17:a6:e2:03:5f:06:63:7c:9a:fd:91:2e:4e: cc:58:e9:a5:fb:68:cc:dc:66:74:32:e7:f6:c8:73: 83:ab:1b:d3:24:e2:db:78:d7:70:95:9e:73:80:5c: cc:17:85:bc:9d:9f:9f:66:bd:c0:3d:d1:f9:fc:48: 56:69:75:f4:df:19:a2:64:9c:be:6f:cd:97:bf:0f: 19:4e:67:ab:c2:66:9a:dd:22:22:53:7c:e7:29:25: 23:c2:d3:0f:c4:d6:f0:7d:66:87:d0:d5:5f:22:f9: 6c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D7:77:9D:6F:29:2F:35:8F:FC:40:7E:D0:A3:37:38:BA:BB:4F:7B X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/203A920E9B5511EF93BA272BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.101.48.0/22 Signature Algorithm: sha256WithRSAEncryption 78:f7:22:51:5b:8f:af:aa:58:43:6b:c9:5b:91:4a:4c:4f:e2: 3d:ab:fd:2f:c4:d5:cf:c9:8c:39:2f:08:9b:a1:3e:cb:e7:09: da:d3:be:0b:19:05:c7:1f:44:9a:77:b2:d0:85:53:13:45:42: ce:c1:24:04:b4:53:ef:a5:b5:e4:bb:1d:d0:64:06:f5:44:8e: 25:ee:d2:32:dd:72:06:76:bc:aa:78:90:0b:cd:49:35:6a:eb: 83:dc:11:51:74:a4:ee:83:e0:2f:a0:9d:4b:46:28:06:1f:09: da:f9:67:71:48:ca:3d:71:da:47:40:21:63:4d:f1:b1:aa:e2: 29:f6:21:56:3d:df:4a:6c:65:17:a0:0d:f5:95:96:50:1a:c5: ee:42:2b:e9:21:9d:bf:54:bb:1d:47:4f:0e:c1:5e:99:fa:a3: 70:24:2e:e1:c3:d9:a9:8b:40:f9:9b:d8:5e:42:87:99:c4:dc: 63:08:fb:d7:26:f7:ce:0d:a5:47:15:80:f4:31:fd:c2:3e:d7: ab:d8:50:0c:0a:14:1c:39:01:79:17:7b:5c:1e:fd:04:84:c1: 38:f1:fe:ff:b6:7b:ed:e0:30:01:a3:ff:c3:08:34:8c:dc:6b: 75:e6:3f:be:db:63:20:e6:a9:89:13:45:5f:64:3c:c8:b1:e5: c5:9f:8c:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQxMTA1MDkwNTM5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5ZGZlMi05MjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmhMwI0nxixvlU5SWU/eBirGRqY5ChTCyfrGMRd9eJhL4GcJR7aJIonrOSI3 4xLXSuLudfNbmsxCRFGmUp3xzu3+i/njD0ZbT4TcpgDPVr0fP7QEmOP4HlUjNycH 1TmzpQvlzWGbadR44dPyPyevvvheeXCCQqGPDMCpUY32YkU5GqQZ29M7ArczTAXn 4Hak+goMmZxJ+Bem4gNfBmN8mv2RLk7MWOml+2jM3GZ0Muf2yHODqxvTJOLbeNdw lZ5zgFzMF4W8nZ+fZr3APdH5/EhWaXX03xmiZJy+b82Xvw8ZTmerwmaa3SIiU3zn KSUjwtMPxNbwfWaH0NVfIvlsRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNnXd51v KS81j/xAftCjNzi6u097MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMjAzQTkyMEU5 QjU1MTFFRjkzQkEyNzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKZTAwDQYJKoZIhvcNAQELBQADggEBAHj3IlFbj6+qWENr yVuRSkxP4j2r/S/E1c/JjDkvCJuhPsvnCdrTvgsZBccfRJp3stCFUxNFQs7BJAS0 U++lteS7HdBkBvVEjiXu0jLdcgZ2vKp4kAvNSTVq64PcEVF0pO6D4C+gnUtGKAYf Cdr5Z3FIyj1x2kdAIWNN8bGq4in2IVY930psZRegDfWVllAaxe5CK+khnb9Uux1H Tw7BXpn6o3AkLuHD2amLQPmb2F5Ch5nE3GMI+9cm984NpUcVgPQx/cI+16vYUAwK FBw5AXkXe1we/QSEwTjx/v+2e+3gMAGj/8MINIzca3XmP77bYyDmqYkTRV9kPMix 5cWfjOM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:21:02 2025 by rpki-client