$ rpki-client -vvf rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/21F42C4EFE5511EC9A3F6F31C4F9AE02.roa File: 21F42C4EFE5511EC9A3F6F31C4F9AE02.roa (raw, json) Hash identifier: xc/k3wBL9PbMVeZ6NnzVVYqpCqcpVpMHNoEeu9dWgdo= Subject key identifier: 7D:E6:E3:9A:A5:BD:1D:E2:CA:5E:1F:79:AC:99:88:63:8F:60:75:E1 Certificate issuer: /CN=A9151F3B/serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE Certificate serial: 05CB Authority key identifier: BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/21F42C4EFE5511EC9A3F6F31C4F9AE02.roa Signing time: Sat 01 Mar 2025 00:52:17 +0000 ROA not before: Sat 01 Mar 2025 00:52:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 38451 IP address blocks: 113.197.64.0/24 maxlen: 24 113.197.66.0/24 maxlen: 24 203.84.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 22:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1483 (0x5cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151F3B Validity Not Before: Mar 1 00:52:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c25a40-2239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8e:5b:33:63:e4:02:c6:90:de:4e:42:02:b5: ae:fe:ff:a3:eb:49:5e:d7:c4:c8:2d:98:61:2a:e6: f7:29:fe:7b:5c:fe:7c:9b:2d:73:8f:4a:d4:d1:ed: 2e:a1:e8:46:b8:d4:ef:ee:7e:c5:51:50:e5:4d:c0: 3a:a5:a5:0b:8f:9b:33:ad:40:4a:8b:3a:c0:d9:08: af:fd:fd:5a:88:fc:38:08:b4:9c:1f:f7:f2:7a:50: 01:68:c3:ca:32:3e:df:cb:2b:b8:92:39:6d:78:0e: 63:9e:36:58:2c:a0:36:06:0c:42:6e:3f:c4:c9:70: 6f:46:b0:5e:46:aa:f4:2f:08:35:8b:f4:ad:e8:69: 21:34:70:44:cc:0a:32:68:81:15:fa:b1:fe:5a:88: ac:2d:a7:27:2a:fa:9f:0d:2a:28:ac:40:80:54:b5: fb:f3:25:73:ad:fd:b5:07:46:c1:44:37:97:96:3d: 21:54:f3:f8:60:7a:f6:0a:fe:fd:67:fa:33:f8:87: b2:c1:dd:fe:cd:f3:2b:1c:f9:a9:6e:c1:cd:45:d4: c3:e8:60:e3:c3:78:76:e7:90:25:e5:b7:8c:b9:b9: a4:86:1d:e9:c6:41:e1:10:14:ed:3b:a8:f5:cd:51: 82:f5:98:35:04:a3:58:95:80:42:66:44:40:7b:e1: 8a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E6:E3:9A:A5:BD:1D:E2:CA:5E:1F:79:AC:99:88:63:8F:60:75:E1 X509v3 Authority Key Identifier: keyid:BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/21F42C4EFE5511EC9A3F6F31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.64.0/24 113.197.66.0/24 203.84.134.0/23 Signature Algorithm: sha256WithRSAEncryption 65:fd:54:e5:15:19:4e:8b:eb:a7:b5:84:ba:93:e7:f4:92:08: cc:90:14:22:69:15:d0:cd:67:39:8f:7c:8c:9f:89:f7:c3:01: cc:06:3a:14:73:68:1b:22:0c:61:9b:bc:bf:eb:15:60:dc:60: 4f:98:f0:18:1a:5e:1d:39:48:92:31:1e:de:a2:df:10:3f:7b: 6b:2b:82:df:03:e8:94:2e:96:a8:43:b8:a9:b7:98:98:3f:06: cd:0f:ff:be:ae:39:3f:c5:dd:82:e3:80:5f:f6:52:f8:9f:83: 3f:77:ed:57:70:45:96:a0:37:03:a3:e8:e0:9a:91:74:b1:7f: 5d:ab:78:4f:e2:b6:1e:f5:8c:16:3e:36:43:2e:9f:b1:35:67: 14:5b:d0:1c:59:f2:9f:b6:2e:0f:5e:be:d3:1f:2f:09:9e:d2: da:88:67:b4:10:ac:d4:d0:93:df:7e:b2:39:c8:27:be:1f:3e: 1b:e2:99:bb:16:c6:b1:1b:47:a1:ba:b4:30:eb:07:5c:75:df: b4:dd:7c:e5:3e:81:ff:8a:3c:fc:5c:69:be:36:48:4e:8b:78: a9:c8:32:b3:a4:32:a7:51:97:e1:97:97:3e:2f:99:b5:bc:f4: 48:5e:64:4f:75:49:b8:ad:f1:7b:e9:61:1b:bc:d3:5c:93:53: 2f:ea:62:6b -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFGM0IxMTAvBgNVBAUTKEJFOTJBQkE0QTAxNDQzMTlFRTZENDVBQjkwOTBEODhE NURBRjM3RkUwHhcNMjUwMzAxMDA1MjE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyNWE0MC0yMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Y5bM2PkAsaQ3k5CArWu/v+j60le18TILZhhKub3Kf57XP58my1zj0rU0e0u oehGuNTv7n7FUVDlTcA6paULj5szrUBKizrA2Qiv/f1aiPw4CLScH/fyelABaMPK Mj7fyyu4kjlteA5jnjZYLKA2BgxCbj/EyXBvRrBeRqr0Lwg1i/St6GkhNHBEzAoy aIEV+rH+WoisLacnKvqfDSoorECAVLX78yVzrf21B0bBRDeXlj0hVPP4YHr2Cv79 Z/oz+Ieywd3+zfMrHPmpbsHNRdTD6GDjw3h255Al5beMubmkhh3pxkHhEBTtO6j1 zVGC9Zg1BKNYlYBCZkRAe+GKeQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH3m45ql vR3iyl4feayZiGOPYHXhMB8GA1UdIwQYMBaAFL6Sq6SgFEMZ7m1Fq5CQ2I1drzf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUYzQi80RjhCOTFCOEI5 QjYxMUVCQjQxMUU5MkVDNEY5QUUwMi92cEtycEtBVVF4bnViVVdya0pEWWpWMnZO XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwS3JwS0FVUXhudWJVV3JrSkRZalYydk5fNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFGM0IvNEY4QjkxQjhCOUI2MTFFQkI0MTFFOTJFQzRGOUFFMDIvMjFGNDJDNEVG RTU1MTFFQzlBM0Y2RjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABxxUADBABxxUIDBAHLVIYwDQYJKoZIhvcNAQELBQADggEB AGX9VOUVGU6L66e1hLqT5/SSCMyQFCJpFdDNZzmPfIyfiffDAcwGOhRzaBsiDGGb vL/rFWDcYE+Y8BgaXh05SJIxHt6i3xA/e2srgt8D6JQulqhDuKm3mJg/Bs0P/76u OT/F3YLjgF/2Uvifgz937VdwRZagNwOj6OCakXSxf12reE/ith71jBY+NkMun7E1 ZxRb0BxZ8p+2Lg9evtMfLwme0tqIZ7QQrNTQk99+sjnIJ74fPhvimbsWxrEbR6G6 tDDrB1x137TdfOU+gf+KPPxcab42SE6LeKnIMrOkMqdRl+GXlz4vmbW89EheZE91 Sbit8XvpYRu801yTUy/qYms= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:42 2025 by rpki-client