$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/F3A00666E6B311EF8C608F1FC4F9AE02.roa File: F3A00666E6B311EF8C608F1FC4F9AE02.roa (raw, json) Hash identifier: qenD3wjxVyrmaZZc254DfZiUFZYm+g8hoE0AT5lBmnw= Subject key identifier: 60:26:E4:D8:BE:4E:26:3B:27:66:23:EC:8E:BE:ED:DE:C0:3E:3D:2D Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0C63 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/F3A00666E6B311EF8C608F1FC4F9AE02.roa Signing time: Sun 09 Feb 2025 07:03:24 +0000 ROA not before: Sun 09 Feb 2025 07:03:24 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 213676 IP address blocks: 14.192.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD Validity Not Before: Feb 9 07:03:24 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67a8533b-29f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:be:17:17:06:7a:aa:81:92:09:28:41:ca: 90:d9:78:9b:c4:75:1a:a1:bf:7f:40:9f:8b:ec:4a: ef:db:4a:29:01:8a:d7:82:c9:32:4e:3e:a2:3f:2b: 33:91:41:c0:82:f3:5d:98:23:b7:73:c8:90:61:9c: b3:bb:f2:9e:ed:4b:20:22:46:7b:44:0f:38:aa:eb: 25:3b:51:59:df:cc:df:7d:01:73:4b:d3:ca:5c:47: fd:85:9e:bf:6a:31:f1:85:28:57:62:ab:34:57:c7: 2f:60:f4:dc:c7:66:c9:1b:f5:1d:ed:94:1e:2e:c0: 4d:e8:ad:b3:ef:f3:e2:de:c3:a4:2f:d1:5e:37:ba: 73:63:12:37:be:2f:57:f4:dc:29:7a:00:e7:a6:e4: 68:bb:fe:5f:a6:97:41:fd:a1:88:10:f9:7a:de:23: d7:14:61:56:6b:7c:1a:15:7b:27:0d:f4:3c:04:6a: 54:8a:fd:b3:bb:dd:61:e9:1d:27:38:d1:19:e1:13: ef:0a:81:ca:d4:ca:5f:60:84:ae:a9:a5:7e:e0:51: a7:ef:32:77:83:87:1e:53:76:31:99:3e:1d:15:3f: 56:d6:1c:85:91:9c:4d:30:5e:d6:8c:c5:4f:78:80: ac:f7:30:c2:87:27:59:dd:7d:2b:d6:bb:c9:57:3e: 75:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:26:E4:D8:BE:4E:26:3B:27:66:23:EC:8E:BE:ED:DE:C0:3E:3D:2D X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/F3A00666E6B311EF8C608F1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.130.0/24 Signature Algorithm: sha256WithRSAEncryption a3:ef:9d:4f:15:84:f3:39:59:aa:fd:b2:14:82:f6:de:22:d9: 4c:42:a4:a4:76:34:83:d2:63:3c:9e:ad:5d:e1:48:aa:0d:f8: 78:78:96:4c:1f:be:d9:e9:18:80:3f:7a:5f:43:f7:f1:40:fc: a3:f6:79:c5:5d:72:ed:d0:bc:62:67:24:99:33:fa:71:c6:4b: ca:df:02:f4:4b:11:66:58:7d:fe:2b:d0:5b:8b:9b:1f:d6:7c: 40:81:b4:5b:29:62:fd:ca:8a:fc:44:49:59:8b:7f:0c:95:7b: 61:bb:76:ec:0e:20:3b:e4:d0:6b:cd:2b:f9:df:59:0f:25:17: 40:b0:21:50:d7:29:29:4b:cb:96:b3:1a:95:61:3a:31:8a:9b: bb:21:a0:90:39:36:95:a1:ac:dc:2e:25:5c:4d:cc:1d:aa:4c: 5a:56:80:73:f5:4d:49:f0:33:a9:4d:a3:d5:0c:d1:d2:cf:c4: da:78:37:e2:0f:2a:f6:7d:b7:e4:ad:58:0f:68:d2:d3:57:59: 98:54:ee:29:04:a5:bf:ec:f5:c7:18:4e:cb:70:42:30:3f:ba: c1:f0:68:15:89:2a:3f:43:ab:39:32:b5:bf:f2:f2:d8:3d:ee: ac:ad:27:07:b0:31:39:5b:cc:fd:47:35:97:08:8c:3b:44:13: d5:7e:04:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwMjA5MDcwMzI0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E4NTMzYi0yOWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArN++FxcGeqqBkgkoQcqQ2XibxHUaob9/QJ+L7Erv20opAYrXgskyTj6iPysz kUHAgvNdmCO3c8iQYZyzu/Ke7UsgIkZ7RA84quslO1FZ38zffQFzS9PKXEf9hZ6/ ajHxhShXYqs0V8cvYPTcx2bJG/Ud7ZQeLsBN6K2z7/Pi3sOkL9FeN7pzYxI3vi9X 9NwpegDnpuRou/5fppdB/aGIEPl63iPXFGFWa3waFXsnDfQ8BGpUiv2zu91h6R0n ONEZ4RPvCoHK1MpfYISuqaV+4FGn7zJ3g4ceU3YxmT4dFT9W1hyFkZxNMF7WjMVP eICs9zDChydZ3X0r1rvJVz51cwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGAm5Ni+ TiY7J2Yj7I6+7d7APj0tMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvRjNBMDA2NjZF NkIzMTFFRjhDNjA4RjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAOwIIwDQYJKoZIhvcNAQELBQADggEBAKPvnU8VhPM5War9 shSC9t4i2UxCpKR2NIPSYzyerV3hSKoN+Hh4lkwfvtnpGIA/el9D9/FA/KP2ecVd cu3QvGJnJJkz+nHGS8rfAvRLEWZYff4r0FuLmx/WfECBtFspYv3KivxESVmLfwyV e2G7duwOIDvk0GvNK/nfWQ8lF0CwIVDXKSlLy5azGpVhOjGKm7shoJA5NpWhrNwu JVxNzB2qTFpWgHP1TUnwM6lNo9UM0dLPxNp4N+IPKvZ9t+StWA9o0tNXWZhU7ikE pb/s9ccYTstwQjA/usHwaBWJKj9Dqzkytb/y8tg97qytJwewMTlbzP1HNZcIjDtE E9V+BAI= -----END CERTIFICATE-----Generated at Wed Feb 19 22:33:30 2025 by rpki-client