$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DEB0EB98F74011EE9C9F952CC4F9AE02.roa File: DEB0EB98F74011EE9C9F952CC4F9AE02.roa (raw, json) Hash identifier: k+AAWBwdOcaG1er130l80X1HT3IwfL4MKpto67md1U4= Subject key identifier: AC:B9:62:6F:6A:A1:2F:52:2F:5E:B9:A2:75:30:88:2A:E1:02:51:60 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 195E Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DEB0EB98F74011EE9C9F952CC4F9AE02.roa Signing time: Tue 14 Jan 2025 16:34:22 +0000 ROA not before: Tue 14 Jan 2025 16:34:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 38040 IP address blocks: 118.214.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6494 (0x195e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A Validity Not Before: Jan 14 16:34:22 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6786920e-ecfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:13:d7:43:e0:b5:86:fc:ea:95:b1:11:11:1c: 53:d1:cf:7f:02:d0:30:de:fe:a8:2f:d8:d5:d8:d9: 7f:71:2d:f6:d2:f1:c3:3d:93:c1:54:33:04:17:02: 12:23:06:28:47:31:55:7d:e8:3e:50:79:24:e6:5d: 1b:30:bd:fb:a0:73:84:c5:56:b0:c9:55:9e:4f:1f: b2:4c:3c:f8:64:f8:b5:84:c0:d7:3e:63:49:6a:f0: 16:33:54:40:48:4f:c2:cf:c5:f4:30:fd:e0:48:ad: a5:bd:80:3f:3a:80:03:a8:23:ff:b5:3d:98:7b:06: 58:08:46:78:7c:b3:c8:8f:6f:58:dc:92:54:23:d5: 79:1e:b2:a4:48:ec:0e:23:60:0f:49:0b:13:47:0b: cb:92:95:b0:98:fa:aa:f3:42:91:fd:d8:b7:cb:1f: d6:94:03:64:b0:d7:0c:2a:e5:07:1f:cd:3a:17:e0: b5:b9:25:ac:73:ed:5e:13:b2:5c:d6:33:3f:3e:05: fd:cd:76:ea:86:cc:84:3c:f1:5d:17:0e:ee:ae:35: c8:39:8e:51:7a:61:8b:e4:c0:b1:72:6b:c1:9a:3f: b9:97:ca:a1:ae:d6:52:68:85:7d:78:78:b9:78:b2: ac:64:dd:44:1f:dc:3a:02:6b:6f:21:98:36:b9:ab: a7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B9:62:6F:6A:A1:2F:52:2F:5E:B9:A2:75:30:88:2A:E1:02:51:60 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DEB0EB98F74011EE9C9F952CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.214.4.0/24 Signature Algorithm: sha256WithRSAEncryption 03:db:5b:50:73:a7:54:8a:ae:59:b6:59:84:46:3c:cd:21:8a: da:fc:77:27:d5:0a:53:14:13:0c:19:64:57:6d:37:79:10:e3: e7:3b:31:06:37:46:57:3b:5a:aa:4f:4b:da:f6:ac:45:83:d3: c1:00:12:3b:da:f5:f9:de:53:76:20:08:c5:d7:b3:4e:be:d7: 74:fe:e4:76:44:ad:2f:75:90:8b:96:80:e6:07:59:46:64:7c: d2:ef:88:fe:79:16:c3:d5:a2:a9:9b:9d:e7:3e:bc:10:06:f5: e7:9b:f6:67:97:f7:ca:89:d7:48:e3:c6:c2:df:37:34:f7:9c: c5:e0:e8:de:78:9e:fb:22:b0:53:49:87:00:8a:bf:aa:a5:59: 70:a5:8e:3f:bd:57:53:b9:b1:39:e1:cd:f1:d5:b0:cb:f5:f0: 96:b7:e4:16:aa:cb:2e:19:e5:23:bb:17:71:97:66:88:cf:98: fe:43:1e:21:de:db:8e:e3:7c:a9:f6:10:b6:0a:50:24:b2:9e: b3:e5:79:42:2c:66:38:13:9e:9c:4a:b8:33:3d:36:a5:78:8a: 8e:88:de:ea:47:57:3b:0b:13:b1:04:42:fe:d3:34:26:37:4b: b1:ea:23:df:10:8a:85:31:d8:c3:f2:84:04:09:5f:01:04:a9: b0:91:69:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjUwMTE0MTYzNDIyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2OTIwZS1lY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhPXQ+C1hvzqlbERERxT0c9/AtAw3v6oL9jV2Nl/cS320vHDPZPBVDMEFwIS IwYoRzFVfeg+UHkk5l0bML37oHOExVawyVWeTx+yTDz4ZPi1hMDXPmNJavAWM1RA SE/Cz8X0MP3gSK2lvYA/OoADqCP/tT2YewZYCEZ4fLPIj29Y3JJUI9V5HrKkSOwO I2APSQsTRwvLkpWwmPqq80KR/di3yx/WlANksNcMKuUHH806F+C1uSWsc+1eE7Jc 1jM/PgX9zXbqhsyEPPFdFw7urjXIOY5RemGL5MCxcmvBmj+5l8qhrtZSaIV9eHi5 eLKsZN1EH9w6AmtvIZg2uaunVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKy5Ym9q oS9SL165onUwiCrhAlFgMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvREVCMEVCOThG NzQwMTFFRTlDOUY5NTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB21gQwDQYJKoZIhvcNAQELBQADggEBAAPbW1Bzp1SKrlm2 WYRGPM0hitr8dyfVClMUEwwZZFdtN3kQ4+c7MQY3Rlc7WqpPS9r2rEWD08EAEjva 9fneU3YgCMXXs06+13T+5HZErS91kIuWgOYHWUZkfNLviP55FsPVoqmbnec+vBAG 9eeb9meX98qJ10jjxsLfNzT3nMXg6N54nvsisFNJhwCKv6qlWXCljj+9V1O5sTnh zfHVsMv18Ja35Baqyy4Z5SO7F3GXZojPmP5DHiHe247jfKn2ELYKUCSynrPleUIs ZjgTnpxKuDM9NqV4io6I3upHVzsLE7EEQv7TNCY3S7HqI98QioUx2MPyhAQJXwEE qbCRae0= -----END CERTIFICATE-----Generated at Sun Apr 6 23:35:10 2025 by rpki-client