$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/D608F2E2E6FF11EFB4DA6570C4F9AE02.roa File: D608F2E2E6FF11EFB4DA6570C4F9AE02.roa (raw, json) Hash identifier: ysaAv2pf9lllE0PGvRjqLCcDkC5NpKeO1LA0KJ/ye1I= Subject key identifier: 8F:D3:28:00:60:65:B2:2A:C6:79:56:80:B6:29:8E:34:9B:D2:47:35 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0C67 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/D608F2E2E6FF11EFB4DA6570C4F9AE02.roa Signing time: Sun 09 Feb 2025 16:06:36 +0000 ROA not before: Sun 09 Feb 2025 16:06:36 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 213990 IP address blocks: 14.192.144.0/24 maxlen: 24 103.20.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3175 (0xc67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD Validity Not Before: Feb 9 16:06:36 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67a8d28b-c556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:44:c1:43:80:73:cb:2c:67:3f:7f:d0:85:0d: c5:fb:12:e9:a3:b4:bc:2b:5e:0b:a3:19:33:07:28: 0a:55:8b:af:e4:65:a3:a2:4c:88:21:49:6e:7d:f5: 97:0d:de:99:96:03:e7:20:2a:f3:07:55:a2:2a:19: a9:44:0b:53:2f:75:b5:3b:1b:b8:37:50:c5:72:4b: 7e:81:14:f5:64:4d:f6:79:87:b7:d1:dc:8f:81:1f: b1:ff:9d:62:c2:a4:68:8e:2c:1c:89:72:72:97:f3: c1:2e:d3:b6:ec:a6:99:6e:91:d9:62:25:a2:4d:05: 6c:d9:a7:8a:98:18:af:0a:3c:85:33:87:12:25:97: 94:42:9d:8b:a8:b4:1f:a1:25:c8:2e:d2:83:23:44: 30:68:0f:53:7b:ff:9b:33:1f:45:96:4e:5a:f8:b7: 63:26:b9:f5:75:22:7f:bc:6c:13:b6:9b:80:b3:3c: 32:04:d0:41:8f:91:bc:82:5e:55:13:a6:3f:40:93: a7:3c:c0:ec:15:b6:54:dd:45:c3:73:32:11:3a:e5: 66:b0:fc:c7:bd:9e:62:2c:28:af:c1:4b:45:ee:d1: a8:0c:a8:15:3f:5d:01:2a:52:06:24:e6:39:76:97: c5:25:9f:10:8a:80:7b:28:da:fa:b3:3c:53:01:76: 9b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D3:28:00:60:65:B2:2A:C6:79:56:80:B6:29:8E:34:9B:D2:47:35 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/D608F2E2E6FF11EFB4DA6570C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.144.0/24 103.20.134.0/24 Signature Algorithm: sha256WithRSAEncryption 74:32:84:ee:be:40:b3:d0:45:31:cf:a3:47:77:d3:fa:23:79: 09:3b:ea:88:71:5f:21:af:9e:bc:90:18:62:7c:fa:1d:cf:5c: 5c:34:38:e6:fa:a4:ef:bc:29:f9:f8:65:8c:73:f7:45:26:1f: 7a:81:a1:13:1f:f9:e9:71:a9:72:03:8b:00:0d:f4:95:08:4f: eb:46:4d:58:29:ce:1a:30:a1:27:a8:46:08:41:72:1b:9f:42: 86:f0:b2:ea:de:c8:47:39:c0:1c:d2:e0:6b:12:90:d0:0c:5a: e7:43:e5:84:df:3b:0d:cb:e8:bf:77:76:f0:9e:86:3a:d3:da: bd:4c:da:70:25:17:67:ca:27:30:1a:67:6f:2b:ce:50:11:ab: 8a:4f:6c:9b:c4:a7:77:d5:60:64:4a:c9:e7:f9:36:dd:d1:0c: c3:9f:59:ba:a5:e1:39:25:ce:13:b6:dc:a8:8c:c7:92:3c:d0: 52:a9:5e:ce:4b:ce:53:65:97:b0:b4:92:ab:8d:ab:92:b2:e9: 2e:4a:dd:ab:cc:03:06:57:f8:f0:fe:08:73:d3:74:e0:16:17: 6f:60:17:91:91:57:2f:c7:ad:55:0a:ae:f3:a9:f3:01:c0:5c: 90:46:02:5a:a4:e9:2a:7f:2e:d6:7d:7b:4a:67:92:5b:0b:16: 78:bc:21:28 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwMjA5MTYwNjM2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E4ZDI4Yi1jNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UTBQ4BzyyxnP3/QhQ3F+xLpo7S8K14LoxkzBygKVYuv5GWjokyIIUluffWX Dd6ZlgPnICrzB1WiKhmpRAtTL3W1Oxu4N1DFckt+gRT1ZE32eYe30dyPgR+x/51i wqRojiwciXJyl/PBLtO27KaZbpHZYiWiTQVs2aeKmBivCjyFM4cSJZeUQp2LqLQf oSXILtKDI0QwaA9Te/+bMx9Flk5a+LdjJrn1dSJ/vGwTtpuAszwyBNBBj5G8gl5V E6Y/QJOnPMDsFbZU3UXDczIROuVmsPzHvZ5iLCivwUtF7tGoDKgVP10BKlIGJOY5 dpfFJZ8QioB7KNr6szxTAXabrQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI/TKABg ZbIqxnlWgLYpjjSb0kc1MB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvRDYwOEYyRTJF NkZGMTFFRkI0REE2NTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAOwJADBABnFIYwDQYJKoZIhvcNAQELBQADggEBAHQyhO6+ QLPQRTHPo0d30/ojeQk76ohxXyGvnryQGGJ8+h3PXFw0OOb6pO+8Kfn4ZYxz90Um H3qBoRMf+elxqXIDiwAN9JUIT+tGTVgpzhowoSeoRghBchufQobwsureyEc5wBzS 4GsSkNAMWudD5YTfOw3L6L93dvCehjrT2r1M2nAlF2fKJzAaZ28rzlARq4pPbJvE p3fVYGRKyef5Nt3RDMOfWbql4TklzhO23KiMx5I80FKpXs5LzlNll7C0kquNq5Ky 6S5K3avMAwZX+PD+CHPTdOAWF29gF5GRVy/HrVUKrvOp8wHAXJBGAlqk6Sp/LtZ9 e0pnklsLFni8ISg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:37:11 2025 by rpki-client