$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/AFF73BD2BA0811EAB2479081C4F9AE02.roa File: AFF73BD2BA0811EAB2479081C4F9AE02.roa (raw, json) Hash identifier: p9SLtL5if79gMeg3/pCzWcvV/1N47/hD8cmWrtc34us= Subject key identifier: EB:8E:71:2F:8C:73:15:F6:7A:4C:B0:62:04:20:FC:DE:0D:3E:FE:5D Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 240C Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/AFF73BD2BA0811EAB2479081C4F9AE02.roa Signing time: Tue 20 Aug 2024 16:03:14 +0000 ROA not before: Tue 20 Aug 2024 16:03:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 19905 IP address blocks: 203.208.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 15:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9228 (0x240c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B Validity Not Before: Aug 20 16:03:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4be41-e051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dc:8c:1a:3d:ca:74:fe:94:3c:48:59:ed:66: 6a:3a:61:c6:66:a8:b2:ae:ef:78:8d:91:1f:ee:66: cb:b5:af:59:63:2f:51:1e:9e:53:ee:69:7c:1c:ea: 2a:07:79:9a:e2:ee:88:f1:0f:c2:50:3c:f5:73:33: cd:bf:b4:0b:58:a3:e3:7b:74:bd:f3:e2:cf:bb:de: c1:bc:d6:7f:0b:8b:19:07:7c:b2:0a:ef:6a:0a:1d: 24:ce:0d:88:51:27:0e:de:d8:fa:24:0b:75:e0:58: d1:9e:a6:3b:af:71:16:fb:de:03:0f:ea:31:f7:c5: 89:d7:3f:76:ab:b1:e7:07:db:6f:5e:a0:db:9b:15: 7b:b6:3d:a1:8c:c5:84:76:0b:20:6f:92:46:8e:9f: 14:58:ff:63:d8:6b:4f:c5:03:f4:d6:29:e0:4f:16: e3:8e:48:99:a5:68:b0:75:04:21:b6:c9:86:64:b5: ba:05:6f:84:e0:63:bc:91:8e:8b:50:ea:81:dc:be: 55:bb:46:6e:af:e0:2b:c4:21:39:57:d3:b2:22:c6: 56:2b:32:c0:9d:69:9f:73:03:35:4d:f3:28:32:d0: 4b:96:06:06:7a:28:af:b2:65:20:2a:29:56:d7:a7: 0b:28:1b:98:4a:c2:66:cb:79:dc:fd:96:28:9f:d9: d9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8E:71:2F:8C:73:15:F6:7A:4C:B0:62:04:20:FC:DE:0D:3E:FE:5D X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/AFF73BD2BA0811EAB2479081C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.208.223.0/24 Signature Algorithm: sha256WithRSAEncryption a0:b1:fa:6f:49:d2:c5:f1:58:fe:d7:8c:fa:a2:1f:93:3d:fb: 6f:6d:8a:71:f3:d1:16:00:89:e1:d2:38:24:7f:69:f4:69:0c: 76:f3:8c:09:f8:dd:63:19:2a:64:0f:ff:1f:c0:69:f7:58:a3: d0:a5:04:4f:b8:61:f2:a0:02:c9:9f:14:a8:6a:14:5e:0f:ce: c2:5a:e1:ca:49:23:f0:a5:26:c9:ba:2c:1b:1b:23:e0:90:8c: 5b:2b:6c:d1:fd:47:ed:80:39:03:76:3a:cc:27:29:3c:f8:62: ed:b6:e2:fe:9c:c5:f4:62:6c:7d:82:1f:44:04:77:61:9a:cc: 70:a6:29:58:4d:b0:96:b7:bd:02:19:fc:53:aa:77:ea:a3:4a: ca:39:ce:b6:59:93:e2:f3:6d:f0:a2:e5:9e:cf:c6:d5:25:f8: 7c:b1:a8:53:cf:ec:0c:27:12:26:18:70:3f:5f:a9:1d:82:56: 4b:5d:3a:ba:fb:1c:72:26:64:58:30:86:03:13:39:ac:99:78: f3:e3:be:05:92:e6:bf:10:ed:17:13:d9:39:e0:2e:ae:c3:c7: 7f:38:50:52:71:64:a3:c6:48:bb:da:15:5b:d0:41:35:b1:d3: ef:f6:8e:0b:e6:2b:f8:a7:1d:55:ce:f7:f2:8a:ff:ba:c1:7c: 90:b3:69:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjQwODIwMTYwMzE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YmU0MS1lMDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdyMGj3KdP6UPEhZ7WZqOmHGZqiyru94jZEf7mbLta9ZYy9RHp5T7ml8HOoq B3ma4u6I8Q/CUDz1czPNv7QLWKPje3S98+LPu97BvNZ/C4sZB3yyCu9qCh0kzg2I UScO3tj6JAt14FjRnqY7r3EW+94DD+ox98WJ1z92q7HnB9tvXqDbmxV7tj2hjMWE dgsgb5JGjp8UWP9j2GtPxQP01ingTxbjjkiZpWiwdQQhtsmGZLW6BW+E4GO8kY6L UOqB3L5Vu0Zur+ArxCE5V9OyIsZWKzLAnWmfcwM1TfMoMtBLlgYGeiivsmUgKilW 16cLKBuYSsJmy3nc/ZYon9nZ6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOuOcS+M cxX2ekywYgQg/N4NPv5dMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MkIvNjRBMDUxNDY2MDEyMTFFNUJFOTI1MDcwQzRGOUFFMDIvQUZGNzNCRDJC QTA4MTFFQUIyNDc5MDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL0N8wDQYJKoZIhvcNAQELBQADggEBAKCx+m9J0sXxWP7X jPqiH5M9+29tinHz0RYAieHSOCR/afRpDHbzjAn43WMZKmQP/x/AafdYo9ClBE+4 YfKgAsmfFKhqFF4PzsJa4cpJI/ClJsm6LBsbI+CQjFsrbNH9R+2AOQN2OswnKTz4 Yu224v6cxfRibH2CH0QEd2GazHCmKVhNsJa3vQIZ/FOqd+qjSso5zrZZk+LzbfCi 5Z7PxtUl+HyxqFPP7AwnEiYYcD9fqR2CVktdOrr7HHImZFgwhgMTOayZePPjvgWS 5r8Q7RcT2TngLq7Dx384UFJxZKPGSLvaFVvQQTWx0+/2jgvmK/inHVXO9/KK/7rB fJCzaQI= -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:00 2025 by rpki-client