$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa File: BCA3B016F72811EE8C4CBB51C4F9AE02.roa (raw, json) Hash identifier: vD8uFo9ZdrCHkm7kGVREsqduAN/X3LQWjfNNIMx3BBA= Subject key identifier: 28:3E:91:0E:3C:23:5E:90:D7:81:92:18:B2:FB:A6:7D:C7:9B:14:FB Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1963 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa Signing time: Tue 14 Jan 2025 16:34:26 +0000 ROA not before: Tue 14 Jan 2025 16:34:26 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55836 IP address blocks: 118.215.152.0/21 maxlen: 21 122.252.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6499 (0x1963) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A Validity Not Before: Jan 14 16:34:26 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67869212-28b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b8:30:ee:bc:d6:df:31:12:1b:2c:40:8e:52: 5a:16:d9:90:fb:17:a9:ad:89:c7:db:11:5b:d8:a6: 60:1a:54:79:a7:22:cb:0b:fb:a1:c5:06:da:b2:bc: 74:1c:52:62:c9:50:fe:f7:60:02:f1:6e:f7:ec:1d: d0:7c:9c:f3:a0:cc:fa:90:05:18:af:a2:ea:35:c2: 06:55:2c:3d:38:4e:13:cf:d1:00:01:1a:1a:8b:38: fa:3d:30:82:c3:0d:c5:07:f2:4a:5b:5c:12:77:af: dc:9e:2e:be:bf:db:a7:1b:6d:6f:69:3b:ba:55:f4: 04:e1:f0:e5:ac:0b:6c:67:9e:94:da:2e:74:01:a9: e0:76:77:d7:cb:72:02:6f:30:8b:54:06:e3:6b:d0: a3:80:98:10:eb:87:39:38:f8:66:fd:eb:04:75:e6: 5b:3e:df:f7:c1:53:6e:29:03:87:f9:55:a4:cd:d6: 0b:e4:c2:21:d8:3a:d7:90:14:da:d5:fb:45:71:77: ec:a2:ff:ec:bc:d2:60:27:60:28:0b:a4:c0:ed:db: 80:c8:1a:8a:d7:e2:e7:9c:df:fa:4f:5c:97:cf:a4: ef:3f:63:29:fa:31:35:c9:88:aa:90:f3:22:07:15: e0:ab:a1:da:d8:d6:fc:5b:f7:15:e6:41:bb:92:de: 0f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3E:91:0E:3C:23:5E:90:D7:81:92:18:B2:FB:A6:7D:C7:9B:14:FB X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/BCA3B016F72811EE8C4CBB51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.215.152.0/21 122.252.136.0/21 Signature Algorithm: sha256WithRSAEncryption 85:8d:ad:9c:54:2a:7d:1c:50:e6:80:4a:b1:59:14:b5:fa:62: 10:5e:80:ee:bf:c3:f1:ce:ce:63:71:3d:ab:ce:95:20:9f:91: b6:eb:1a:6b:ca:f9:e2:73:89:0b:c1:9b:24:28:02:d4:a9:f9: 47:fb:a2:ca:fc:3e:3b:d4:2c:45:24:55:7e:32:13:0a:ce:0d: 57:43:55:d7:cf:f0:57:1e:be:bd:fd:80:d4:2f:08:f3:06:41: 5e:38:85:6b:9c:54:1f:42:08:56:6a:31:4e:bc:f0:e1:41:87: f1:c8:b7:1e:7e:09:56:ae:fb:af:9c:07:e7:0b:52:c3:0c:42: 23:c7:69:e5:d2:0a:36:3f:00:a7:5d:d8:02:24:33:60:f7:45: 85:99:b6:56:d1:c0:56:30:4d:8e:aa:a6:0c:3e:18:5a:09:4a: 67:b6:bd:b6:3b:5e:a0:b7:c9:34:40:72:65:3d:d7:2a:29:9d: 71:13:b4:c9:8c:d8:82:6c:49:8d:67:25:b6:bd:ff:41:07:0c: 46:8e:8c:3c:95:33:78:37:c1:53:53:e4:66:4f:40:66:2d:c4: 8f:7a:42:a0:d1:fe:11:39:6c:20:6d:30:46:cc:86:27:38:c3: e1:c8:d3:61:a5:b7:51:f2:f9:98:df:a1:3d:81:27:85:26:e8: f0:54:de:91 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjUwMTE0MTYzNDI2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2OTIxMi0yOGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07gw7rzW3zESGyxAjlJaFtmQ+xeprYnH2xFb2KZgGlR5pyLLC/uhxQbasrx0 HFJiyVD+92AC8W737B3QfJzzoMz6kAUYr6LqNcIGVSw9OE4Tz9EAARoaizj6PTCC ww3FB/JKW1wSd6/cni6+v9unG21vaTu6VfQE4fDlrAtsZ56U2i50AangdnfXy3IC bzCLVAbja9CjgJgQ64c5OPhm/esEdeZbPt/3wVNuKQOH+VWkzdYL5MIh2DrXkBTa 1ftFcXfsov/svNJgJ2AoC6TA7duAyBqK1+LnnN/6T1yXz6TvP2Mp+jE1yYiqkPMi BxXgq6Ha2Nb8W/cV5kG7kt4PqQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCg+kQ48 I16Q14GSGLL7pn3HmxT7MB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvQkNBM0IwMTZG NzI4MTFFRThDNENCQjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAN215gDBAN6/IgwDQYJKoZIhvcNAQELBQADggEBAIWNrZxU Kn0cUOaASrFZFLX6YhBegO6/w/HOzmNxPavOlSCfkbbrGmvK+eJziQvBmyQoAtSp +Uf7osr8PjvULEUkVX4yEwrODVdDVdfP8Fcevr39gNQvCPMGQV44hWucVB9CCFZq MU688OFBh/HItx5+CVau+6+cB+cLUsMMQiPHaeXSCjY/AKdd2AIkM2D3RYWZtlbR wFYwTY6qpgw+GFoJSme2vbY7XqC3yTRAcmU91yopnXETtMmM2IJsSY1nJba9/0EH DEaOjDyVM3g3wVNT5GZPQGYtxI96QqDR/hE5bCBtMEbMhic4w+HI02Glt1Hy+Zjf oT2BJ4Um6PBU3pE= -----END CERTIFICATE-----Generated at Sun Feb 16 21:00:23 2025 by rpki-client