$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/1ADDEF70D25C11EFB20F5434C4F9AE02.roa File: 1ADDEF70D25C11EFB20F5434C4F9AE02.roa (raw, json) Hash identifier: xUi42MdXIE4YcyUgYrhq14wpwz5gdttkiTULl85MIDA= Subject key identifier: 41:69:A0:F1:CC:F6:EE:8B:21:21:86:31:38:4D:FD:0C:BA:9F:CF:97 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0C52 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/1ADDEF70D25C11EFB20F5434C4F9AE02.roa Signing time: Wed 05 Feb 2025 20:02:16 +0000 ROA not before: Wed 05 Feb 2025 20:02:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 43260 IP address blocks: 14.192.134.0/24 maxlen: 24 14.192.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Feb 2025 21:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3154 (0xc52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD Validity Not Before: Feb 5 20:02:16 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67a3c3c8-bfc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:42:5e:87:7a:27:b4:6a:0d:b9:51:8e:a9:c9: e5:37:53:17:8e:1f:35:b7:08:df:c5:6b:3d:15:81: b4:cc:3a:0f:3e:79:c7:90:51:ff:29:d7:f7:4c:3b: 70:27:b9:1a:9f:79:43:68:9f:b3:ab:91:92:45:89: d3:da:c3:b4:f8:51:9e:24:d3:c8:83:f2:40:e1:38: fe:89:ae:0c:f2:a8:ea:be:45:be:eb:7c:c8:1b:aa: af:79:88:0e:c1:d1:32:10:84:49:ee:62:6e:7e:7b: 80:81:ae:d3:09:77:38:59:4a:ed:56:1e:ca:10:d7: 22:df:8f:79:ca:79:86:70:7a:0a:e7:b5:2b:f7:09: f0:ff:a8:2d:bf:2c:9d:02:b9:29:a2:da:74:85:5c: 94:57:af:d4:31:94:94:db:99:05:23:5a:37:20:9b: 45:5c:16:6f:be:6d:7c:9c:48:a9:a3:75:17:99:92: 13:45:e3:ad:3c:fe:ab:d8:a6:7b:d3:2f:05:50:fb: 5e:c9:e7:6c:53:32:46:b7:a9:90:da:41:dc:90:9e: dc:72:8c:27:b6:83:a0:7b:67:fd:3e:03:38:1c:e5: 05:33:71:95:89:e0:09:0c:c3:c0:50:61:11:a7:ff: c0:95:38:9e:f0:eb:63:3c:b4:ca:8e:45:eb:c5:8f: d4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:69:A0:F1:CC:F6:EE:8B:21:21:86:31:38:4D:FD:0C:BA:9F:CF:97 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/1ADDEF70D25C11EFB20F5434C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.134.0/24 14.192.142.0/24 Signature Algorithm: sha256WithRSAEncryption 34:ab:66:cc:58:ec:9b:1b:ec:21:76:54:40:ae:9f:89:5b:52: 17:12:6a:87:ec:f5:69:0c:fe:60:e0:60:3e:5c:f3:ca:42:15: df:5b:26:96:70:4d:ee:46:bb:92:d2:ae:e7:e8:b8:a3:48:3a: 62:5c:54:b3:62:2c:32:95:26:ca:a0:33:5f:b2:f9:b8:c7:81: 48:0c:08:28:cd:dd:f4:26:3e:99:a8:26:ad:ec:af:50:ac:25: 1c:81:08:90:c4:c7:a8:4e:f9:37:25:ac:27:4d:e7:57:08:47: 43:42:de:cb:55:e0:4a:e2:c6:00:b5:2b:70:54:70:ad:a0:af: 75:d7:98:c7:6f:4a:2f:86:8e:8b:3b:6d:26:93:a8:8a:39:59: d8:46:3d:ab:54:90:24:ec:dd:5a:bf:f8:61:97:98:64:fb:da: 81:9a:f9:1b:89:f6:55:b7:be:d9:a9:e1:ed:92:76:5a:62:a7: 1e:5b:56:c6:f0:2d:c1:03:b0:ff:9b:07:44:07:31:a1:44:b4: 78:d2:07:06:57:ba:b5:26:72:64:99:38:d7:d0:9e:e0:03:98: ef:20:a7:d8:86:9a:04:15:f4:b6:08:17:b7:04:dc:01:6a:67: 24:70:18:a8:2a:41:81:f2:e1:87:46:8b:b2:5f:fe:2a:d7:f2: a5:16:84:d4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwMjA1MjAwMjE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EzYzNjOC1iZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EJeh3ontGoNuVGOqcnlN1MXjh81twjfxWs9FYG0zDoPPnnHkFH/Kdf3TDtw J7kan3lDaJ+zq5GSRYnT2sO0+FGeJNPIg/JA4Tj+ia4M8qjqvkW+63zIG6qveYgO wdEyEIRJ7mJufnuAga7TCXc4WUrtVh7KENci3495ynmGcHoK57Ur9wnw/6gtvyyd Arkpotp0hVyUV6/UMZSU25kFI1o3IJtFXBZvvm18nEipo3UXmZITReOtPP6r2KZ7 0y8FUPteyedsUzJGt6mQ2kHckJ7ccowntoOge2f9PgM4HOUFM3GVieAJDMPAUGER p//AlTie8OtjPLTKjkXrxY/UgwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEFpoPHM 9u6LISGGMThN/Qy6n8+XMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvMUFEREVGNzBE MjVDMTFFRkIyMEY1NDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAOwIYDBAAOwI4wDQYJKoZIhvcNAQELBQADggEBADSrZsxY 7Jsb7CF2VECun4lbUhcSaofs9WkM/mDgYD5c88pCFd9bJpZwTe5Gu5LSrufouKNI OmJcVLNiLDKVJsqgM1+y+bjHgUgMCCjN3fQmPpmoJq3sr1CsJRyBCJDEx6hO+Tcl rCdN51cIR0NC3stV4ErixgC1K3BUcK2gr3XXmMdvSi+Gjos7bSaTqIo5WdhGPatU kCTs3Vq/+GGXmGT72oGa+RuJ9lW3vtmp4e2Sdlpipx5bVsbwLcEDsP+bB0QHMaFE tHjSBwZXurUmcmSZONfQnuADmO8gp9iGmgQV9LYIF7cE3AFqZyRwGKgqQYHy4YdG i7Jf/irX8qUWhNQ= -----END CERTIFICATE-----Generated at Wed Feb 19 22:42:29 2025 by rpki-client