$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/028640A8242B11ED9547B486C4F9AE02.roa File: 028640A8242B11ED9547B486C4F9AE02.roa (raw, json) Hash identifier: DITeel3omkt/jAmQ2Y46ZSrzxcvWz4LWzu2U9pUQbEA= Subject key identifier: 24:7A:DA:DC:6C:8B:87:BF:98:CC:CE:D4:DC:1A:6A:3B:9E:86:56:E9 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 01A1 Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/028640A8242B11ED9547B486C4F9AE02.roa Signing time: Tue 23 Jul 2024 03:45:21 +0000 ROA not before: Tue 23 Jul 2024 03:45:21 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17639 IP address blocks: 45.251.24.0/22 maxlen: 22 103.219.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F Validity Not Before: Jul 23 03:45:21 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=669f2750-12ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5e:a8:ec:f9:75:d7:0b:8e:5b:9a:ab:d6:d4: 11:97:a9:00:ad:ad:86:ce:01:25:0b:34:55:b5:bf: aa:22:a9:79:ca:04:23:8e:b0:f4:5d:9b:0b:96:18: 98:15:9d:7a:77:94:78:3b:f5:d5:da:85:ac:a2:a1: 81:89:4b:15:74:0b:ed:03:f3:19:61:f0:00:47:44: 11:94:1f:7a:18:3e:4d:11:b0:04:b0:3e:46:c2:90: 20:9d:86:70:1a:e2:35:ad:d3:15:2c:b2:9b:ca:70: b5:15:fd:da:b1:53:89:c5:86:56:7a:c6:8e:5d:33: 5f:78:85:4f:f5:42:4e:ee:5e:a4:f9:fe:04:e1:6f: e9:78:cc:2f:4f:99:35:ee:3c:78:c4:40:d7:80:cf: 15:c8:0f:d5:ae:f5:f9:28:e3:f9:52:94:b1:d1:5b: 12:7d:35:e6:51:2a:af:89:81:6c:a8:e6:55:c4:ef: fd:81:b1:88:17:7c:b9:ee:98:a3:f4:e0:b1:db:cd: e3:29:ec:83:14:80:e6:80:3f:34:16:ba:20:92:06: a1:86:15:f7:29:60:0f:2f:0a:3a:d8:cb:77:45:e7: aa:91:35:06:93:9a:64:f2:a8:ab:ca:18:07:3f:ec: 8d:f6:10:9a:ab:a3:90:62:8b:1c:95:ee:e2:82:07: 85:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7A:DA:DC:6C:8B:87:BF:98:CC:CE:D4:DC:1A:6A:3B:9E:86:56:E9 X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/028640A8242B11ED9547B486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.251.24.0/22 103.219.188.0/22 Signature Algorithm: sha256WithRSAEncryption 53:f8:e5:37:a4:39:e9:c0:fd:fd:57:35:47:98:61:58:cd:ad: ff:8c:d7:6a:3d:67:49:24:37:dc:81:36:19:88:ab:29:2f:e4: 48:c4:fe:bd:8b:a2:ee:e8:df:15:e2:ff:43:e3:1f:5e:4f:79: 2a:50:28:9b:40:f6:2e:51:94:6c:0b:73:04:c3:da:d5:12:67: 3b:97:2e:e5:f7:47:55:72:7a:ab:de:9c:65:3c:17:1a:ed:8d: 42:fa:51:f1:7e:b3:b8:bb:58:6e:bf:80:a9:27:3e:3d:57:f5: d8:9b:f5:87:5d:6a:8a:77:fd:b4:6f:da:29:a9:de:01:04:02: 92:6d:08:97:e9:23:b9:cb:b4:a1:54:fe:d3:e3:a1:e3:39:7f: 97:4d:c0:76:c2:e0:f2:53:de:9f:27:9f:cd:f5:07:e8:ad:66: 14:05:0b:7d:61:cd:d8:ba:0c:28:e2:fc:d0:69:bb:08:d5:b8: 3a:2f:c5:71:16:37:1b:4d:22:59:6d:ef:ca:a8:6f:d7:50:71: 91:b8:84:d9:fa:f5:9a:8e:94:1b:fa:35:91:49:ad:81:1d:45: db:64:a7:25:87:64:1a:1b:ce:04:92:3c:0c:08:26:b2:ea:64: 71:63:d6:87:2b:7c:95:a0:fe:a3:59:d3:26:5b:18:dc:d3:56: 4d:ba:0c:a0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjQwNzIzMDM0NTIxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjlmMjc1MC0xMmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArl6o7Pl11wuOW5qr1tQRl6kAra2GzgElCzRVtb+qIql5ygQjjrD0XZsLlhiY FZ16d5R4O/XV2oWsoqGBiUsVdAvtA/MZYfAAR0QRlB96GD5NEbAEsD5GwpAgnYZw GuI1rdMVLLKbynC1Ff3asVOJxYZWesaOXTNfeIVP9UJO7l6k+f4E4W/peMwvT5k1 7jx4xEDXgM8VyA/VrvX5KOP5UpSx0VsSfTXmUSqviYFsqOZVxO/9gbGIF3y57pij 9OCx283jKeyDFIDmgD80FrogkgahhhX3KWAPLwo62Mt3ReeqkTUGk5pk8qiryhgH P+yN9hCaq6OQYoscle7iggeFwwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCR62txs i4e/mMzO1NwaajuehlbpMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVBOEYvRTNBMzVCQjQyNDI4MTFFRDhGRDI0Qzg2QzRGOUFFMDIvMDI4NjQwQTgy NDJCMTFFRDk1NDdCNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+xgDBAJn27wwDQYJKoZIhvcNAQELBQADggEBAFP45Tek OenA/f1XNUeYYVjNrf+M12o9Z0kkN9yBNhmIqykv5EjE/r2Lou7o3xXi/0PjH15P eSpQKJtA9i5RlGwLcwTD2tUSZzuXLuX3R1VyeqvenGU8FxrtjUL6UfF+s7i7WG6/ gKknPj1X9dib9Yddaop3/bRv2imp3gEEApJtCJfpI7nLtKFU/tPjoeM5f5dNwHbC 4PJT3p8nn831B+itZhQFC31hzdi6DCji/NBpuwjVuDovxXEWNxtNIllt78qob9dQ cZG4hNn69ZqOlBv6NZFJrYEdRdtkpyWHZBobzgSSPAwIJrLqZHFj1ocrfJWg/qNZ 0yZbGNzTVk26DKA= -----END CERTIFICATE-----Generated at Sun Feb 16 21:06:51 2025 by rpki-client