$ rpki-client -vvf rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa File: 165CEF66E60911EB950D930DC4F9AE02.roa (raw, json) Hash identifier: uP3i0qS5LluMvfR2PfesmPxlO4qRQ5bVxk7dZvX0wPI= Subject key identifier: 14:D4:B2:BA:5E:30:76:4A:A7:D0:9B:2C:3B:C8:79:A5:8F:39:E2:F3 Certificate issuer: /CN=A915A300/serialNumber=E1564FDA5CED5CAE694153097ED1942551209223 Certificate serial: 3481 Authority key identifier: E1:56:4F:DA:5C:ED:5C:AE:69:41:53:09:7E:D1:94:25:51:20:92:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa Signing time: Mon 08 Apr 2024 14:50:37 +0000 ROA not before: Mon 08 Apr 2024 14:50:37 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 198949 IP address blocks: 211.29.93.0/24 maxlen: 24 211.29.132.0/24 maxlen: 24 211.29.133.0/24 maxlen: 24 211.29.152.0/24 maxlen: 24 211.31.132.0/24 maxlen: 24 211.31.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.crl rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13441 (0x3481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A300 Validity Not Before: Apr 8 14:50:37 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6614043d-9233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ff:bc:9f:3f:6b:c2:ee:fd:57:a5:f0:a1:f8: b9:54:b5:25:f4:b5:b4:7b:66:d1:32:d5:34:d0:24: c9:7e:d1:3d:79:0e:39:b5:db:51:98:aa:a8:ae:d7: 58:c0:4a:b2:fb:d0:8e:1b:fe:d2:e9:25:35:f1:c9: cb:2d:82:d4:df:a8:63:fa:e5:4c:5b:7d:7b:bc:53: e7:71:21:15:08:8b:6f:63:b5:88:29:c4:7d:9a:c4: 1c:ad:b2:5a:9d:b8:cc:c1:8d:83:45:5e:9b:8f:85: 34:84:01:85:1a:1f:e2:9c:dc:5e:3a:fb:ad:91:48: 7f:4f:04:22:b8:f8:a5:a4:37:f1:1d:9b:e3:38:2f: 7c:a9:99:80:d3:ce:61:17:9e:1f:1f:e1:1b:88:39: e7:ae:19:5d:03:0b:db:b4:e2:66:ba:ff:11:3d:a5: f6:a5:28:f3:58:27:c8:b0:8f:66:43:8c:85:6e:b7: 29:18:58:e3:b5:75:13:a0:16:7b:a3:09:8c:00:ac: 11:83:a1:73:f3:6e:42:38:8f:89:db:f1:5b:3d:41: db:5c:85:42:a6:7d:f9:39:25:33:d6:fb:1f:3f:91: f6:8c:9c:a1:e9:c4:d0:0b:5a:19:b1:04:42:46:0b: ac:b9:84:60:90:01:3e:14:37:70:20:8a:4f:d5:7e: 90:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D4:B2:BA:5E:30:76:4A:A7:D0:9B:2C:3B:C8:79:A5:8F:39:E2:F3 X509v3 Authority Key Identifier: keyid:E1:56:4F:DA:5C:ED:5C:AE:69:41:53:09:7E:D1:94:25:51:20:92:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.29.93.0/24 211.29.132.0/23 211.29.152.0/24 211.31.132.0/24 211.31.138.0/24 Signature Algorithm: sha256WithRSAEncryption 96:a6:e3:cf:81:87:f5:ac:63:42:37:82:58:a1:02:66:3c:da: 7c:66:21:d3:ad:ad:84:71:59:8b:78:cb:36:67:aa:d4:23:99: ce:02:f2:04:ac:98:2a:aa:2b:12:04:cb:b6:86:0f:3e:e1:2b: 15:fa:da:c4:58:ca:49:47:6b:ad:30:53:05:7b:96:67:17:da: c0:3d:6a:91:94:ab:ba:d3:24:6f:2b:f8:65:01:9d:fc:a8:06: 8e:0c:44:91:e1:23:c3:e6:f9:c7:55:58:4e:6d:07:3b:4e:ad: 09:2a:ae:ae:39:c4:b9:2c:63:73:b4:5f:b9:a3:a3:70:46:db: a4:b2:d7:d9:16:fc:34:67:cf:fa:15:20:33:e1:e5:c1:ef:84: 00:59:41:30:23:75:67:bc:fb:e4:da:fb:d6:ac:84:fc:f9:11: 96:5d:c2:57:f3:a1:64:ee:91:b0:0a:48:5d:87:7d:47:4e:4a: cc:82:9e:96:c5:c6:61:4f:ac:a5:34:51:57:b1:66:41:56:4f: 91:5b:06:66:d9:8a:03:3d:a4:87:37:f2:ca:a3:66:f0:57:f4: f9:bd:1c:89:6c:b0:b3:15:0f:ca:9d:75:a5:7c:71:ab:c8:2f: 99:df:99:b2:16:58:a1:58:74:cf:eb:5c:03:6a:3c:f8:1c:42: 87:0f:b3:46 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICNIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEzMDAxMTAvBgNVBAUTKEUxNTY0RkRBNUNFRDVDQUU2OTQxNTMwOTdFRDE5NDI1 NTEyMDkyMjMwHhcNMjQwNDA4MTQ1MDM3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0MDQzZC05MjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2v+8nz9rwu79V6Xwofi5VLUl9LW0e2bRMtU00CTJftE9eQ45tdtRmKqortdY wEqy+9COG/7S6SU18cnLLYLU36hj+uVMW317vFPncSEVCItvY7WIKcR9msQcrbJa nbjMwY2DRV6bj4U0hAGFGh/inNxeOvutkUh/TwQiuPilpDfxHZvjOC98qZmA085h F54fH+EbiDnnrhldAwvbtOJmuv8RPaX2pSjzWCfIsI9mQ4yFbrcpGFjjtXUToBZ7 owmMAKwRg6Fz825COI+J2/FbPUHbXIVCpn35OSUz1vsfP5H2jJyh6cTQC1oZsQRC RgusuYRgkAE+FDdwIIpP1X6QvwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFBTUsrpe MHZKp9CbLDvIeaWPOeLzMB8GA1UdIwQYMBaAFOFWT9pc7VyuaUFTCX7RlCVRIJIj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTMwMC9DRDIwMzdFMjFE ODgxMUUyOEExMUEwRTEwOEIwMkNEMi80VlpQMmx6dFhLNXBRVk1KZnRHVUpWRWdr aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWWlAybHp0WEs1cFFWTUpmdEdVSlZFZ2tpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEzMDAvQ0QyMDM3RTIxRDg4MTFFMjhBMTFBMEUxMDhCMDJDRDIvMTY1Q0VGNjZF NjA5MTFFQjk1MEQ5MzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBADTHV0DBAHTHYQDBADTHZgDBADTH4QDBADTH4owDQYJKoZI hvcNAQELBQADggEBAJam48+Bh/WsY0I3glihAmY82nxmIdOtrYRxWYt4yzZnqtQj mc4C8gSsmCqqKxIEy7aGDz7hKxX62sRYyklHa60wUwV7lmcX2sA9apGUq7rTJG8r +GUBnfyoBo4MRJHhI8Pm+cdVWE5tBztOrQkqrq45xLksY3O0X7mjo3BG26Sy19kW /DRnz/oVIDPh5cHvhABZQTAjdWe8++Ta+9ashPz5EZZdwlfzoWTukbAKSF2HfUdO SsyCnpbFxmFPrKU0UVexZkFWT5FbBmbZigM9pIc38sqjZvBX9Pm9HIlssLMVD8qd daV8cavIL5nfmbIWWKFYdM/rXANqPPgcQocPs0Y= -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:08 2025 by rpki-client