$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/D327C18CDFEC11ED9AB6E147C4F9AE02.roa File: D327C18CDFEC11ED9AB6E147C4F9AE02.roa (raw, json) Hash identifier: DkDF5ioX13OuJfh2JylvgLRRw6+AIn++z0lBKozZ6IM= Subject key identifier: 28:88:99:34:2D:1A:D1:D0:07:7F:33:11:A5:40:16:7A:25:71:18:EF Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 240B Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/D327C18CDFEC11ED9AB6E147C4F9AE02.roa Signing time: Tue 20 Aug 2024 16:03:13 +0000 ROA not before: Tue 20 Aug 2024 16:03:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132819 IP address blocks: 203.208.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9227 (0x240b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B Validity Not Before: Aug 20 16:03:13 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4be40-e6fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b2:25:25:12:d6:70:0f:0c:f7:c3:16:b1:31: d8:ea:44:11:6c:de:65:7c:9f:2a:0e:5c:f4:b5:3d: 41:dc:10:c2:3d:3a:41:3f:37:21:5b:ca:33:98:5d: 47:fe:07:a9:da:3e:6d:05:30:90:25:a4:33:c6:6f: 83:ca:fe:6f:4c:1d:02:7f:66:fb:e9:f9:b0:00:99: 5a:49:c2:85:d5:72:6a:9e:a0:3b:82:33:6e:ba:dd: 22:c3:fa:56:1f:e9:b6:22:43:64:3e:dc:00:b3:94: e9:5b:d2:b4:9f:7f:cb:67:42:73:c5:03:49:5b:f1: e8:65:42:be:33:b6:4f:5c:49:bd:14:05:fa:6b:0a: 33:ba:79:0b:82:fe:92:61:d7:52:1a:de:32:44:e0: 6f:5d:bd:86:6a:b2:41:9d:d7:b1:28:a4:fa:64:56: 64:46:48:16:a7:4c:6f:af:be:f4:08:47:b6:6f:01: 04:ee:e5:76:ae:50:1e:46:9a:ab:54:35:7e:9c:4d: 85:69:81:2a:a3:56:e7:69:1f:c3:85:d0:a9:7f:10: 0c:2a:7d:5d:7e:cd:39:05:2c:30:5a:2f:06:77:ce: 97:84:a0:70:a9:31:19:62:f9:56:5e:c7:3d:56:de: 52:eb:16:3c:eb:97:e1:a3:26:87:4a:3d:d7:08:8e: 2c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:88:99:34:2D:1A:D1:D0:07:7F:33:11:A5:40:16:7A:25:71:18:EF X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/D327C18CDFEC11ED9AB6E147C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.208.201.0/24 Signature Algorithm: sha256WithRSAEncryption b0:42:63:4c:a2:65:22:e4:9e:87:05:94:2d:0f:6f:20:09:7d: 04:cc:ac:ed:09:0d:8c:c1:86:f5:d3:ed:e6:9a:95:10:d7:34: 15:33:b5:90:9b:9b:11:c4:f2:04:99:31:72:65:54:70:5f:86: 64:3a:6f:de:3b:2e:0f:6e:76:6c:de:24:1b:10:01:14:e4:84: cb:bf:66:50:c4:c4:47:6d:cb:9c:3f:2b:ab:3a:a9:62:14:d2: 8e:ae:e5:fa:ee:93:5f:49:cc:6b:d6:5e:73:fb:50:15:25:b5: 74:82:2b:99:23:bd:61:c5:e9:6c:c1:a8:1d:a1:b2:56:1d:4b: 40:63:c6:e5:88:13:d3:71:0d:e1:84:e3:61:44:40:2a:d9:c8: 29:84:06:45:5b:46:eb:65:58:69:69:84:d8:73:09:5c:a1:52: a8:07:c4:78:08:b6:69:f7:6d:d0:13:af:95:eb:0f:63:be:1e: 5f:f5:98:88:bf:9b:7b:2c:db:5a:f6:f2:41:0f:a4:e9:13:bd: 5c:37:6c:16:ae:d1:4f:a4:82:e1:5b:54:20:a4:6b:d2:73:0c: ac:c0:ee:8f:e8:29:6a:6f:77:04:d0:a8:97:59:67:52:3c:e3: 0f:e6:57:de:7e:e9:ae:7d:b3:c6:b4:ae:db:c5:42:7c:d2:f6: d3:e8:90:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjQwODIwMTYwMzEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YmU0MC1lNmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbIlJRLWcA8M98MWsTHY6kQRbN5lfJ8qDlz0tT1B3BDCPTpBPzchW8ozmF1H /gep2j5tBTCQJaQzxm+Dyv5vTB0Cf2b76fmwAJlaScKF1XJqnqA7gjNuut0iw/pW H+m2IkNkPtwAs5TpW9K0n3/LZ0JzxQNJW/HoZUK+M7ZPXEm9FAX6awozunkLgv6S YddSGt4yROBvXb2GarJBndexKKT6ZFZkRkgWp0xvr770CEe2bwEE7uV2rlAeRpqr VDV+nE2FaYEqo1bnaR/DhdCpfxAMKn1dfs05BSwwWi8Gd86XhKBwqTEZYvlWXsc9 Vt5S6xY865fhoyaHSj3XCI4sSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCiImTQt GtHQB38zEaVAFnolcRjvMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MkIvNjRBMDUxNDY2MDEyMTFFNUJFOTI1MDcwQzRGOUFFMDIvRDMyN0MxOENE RkVDMTFFRDlBQjZFMTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL0MkwDQYJKoZIhvcNAQELBQADggEBALBCY0yiZSLknocF lC0PbyAJfQTMrO0JDYzBhvXT7eaalRDXNBUztZCbmxHE8gSZMXJlVHBfhmQ6b947 Lg9udmzeJBsQARTkhMu/ZlDExEdty5w/K6s6qWIU0o6u5fruk19JzGvWXnP7UBUl tXSCK5kjvWHF6WzBqB2hslYdS0BjxuWIE9NxDeGE42FEQCrZyCmEBkVbRutlWGlp hNhzCVyhUqgHxHgItmn3bdATr5XrD2O+Hl/1mIi/m3ss21r28kEPpOkTvVw3bBau 0U+kguFbVCCka9JzDKzA7o/oKWpvdwTQqJdZZ1I84w/mV95+6a59s8a0rtvFQnzS 9tPokHo= -----END CERTIFICATE-----Generated at Sun Feb 16 20:40:04 2025 by rpki-client