$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/DF6FAF5EAF0111EB96FC344BC4F9AE02.roa File: DF6FAF5EAF0111EB96FC344BC4F9AE02.roa (raw, json) Hash identifier: TyCt3u20snbUr9ZugwsDoJ78BUxe6j6OvDquQDy+bJw= Subject key identifier: 7F:C5:F5:8B:62:23:9D:38:D3:E1:6A:DC:9C:D8:BC:DC:F5:9A:CE:B5 Certificate issuer: /CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Certificate serial: 35C9 Authority key identifier: AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/DF6FAF5EAF0111EB96FC344BC4F9AE02.roa Signing time: Tue 20 Aug 2024 14:30:25 +0000 ROA not before: Tue 20 Aug 2024 14:30:25 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 32787 IP address blocks: 203.125.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13769 (0x35c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C Validity Not Before: Aug 20 14:30:25 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4a880-9838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e7:ae:9c:33:5e:29:49:9d:4c:5e:fd:07:04: 22:30:e3:99:02:db:81:ba:0f:82:5d:09:6f:bf:b3: ce:b7:36:9d:ff:4f:0b:a3:6c:b2:bd:56:1a:c6:78: 6b:81:58:52:20:f7:8e:69:d9:ff:d3:d2:29:6d:41: 15:66:60:8a:e7:39:06:34:3c:bd:bc:ee:d5:ab:68: a4:34:c8:f1:2d:4d:55:9d:f3:29:e6:97:db:99:57: 39:b4:d0:3f:22:74:2b:d5:ee:31:64:8d:d5:b8:7c: 25:b5:0d:53:0d:38:bc:cc:fb:e5:5a:08:cf:fc:43: 45:fe:6c:76:ba:d5:82:10:48:21:7a:d6:8d:06:ea: a3:2e:d4:55:be:f4:ee:56:79:78:21:c4:49:af:fe: 59:1f:69:3e:e7:f1:88:04:97:d0:25:a7:4b:91:cb: 19:32:4c:de:d6:62:4a:d9:24:0c:a9:d9:0a:51:6f: 50:33:3b:db:88:46:a2:97:71:7d:45:dd:2b:00:5e: 9b:0f:5a:f5:6d:30:fe:c7:32:04:06:f4:78:b1:2a: be:45:4c:47:8d:40:a3:af:06:8b:6d:39:81:34:ca: 1d:55:27:ec:d4:dd:87:18:05:45:78:3e:a5:3b:7b: 06:39:e9:74:40:e8:10:eb:5e:00:7a:5c:6d:9c:d5: 83:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C5:F5:8B:62:23:9D:38:D3:E1:6A:DC:9C:D8:BC:DC:F5:9A:CE:B5 X509v3 Authority Key Identifier: keyid:AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/DF6FAF5EAF0111EB96FC344BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.125.128.0/24 Signature Algorithm: sha256WithRSAEncryption 59:b2:92:7c:6b:d0:a8:8b:e3:71:60:d0:e3:4c:9f:2a:1e:cd: 62:1b:45:5d:06:98:0a:d5:38:16:e8:cd:b5:98:21:19:58:52: 9f:23:f1:16:fc:93:62:60:f1:f5:24:60:cb:84:5e:25:80:2c: e9:94:ef:bb:22:fe:d1:69:62:b1:bb:94:33:4d:2c:f5:39:49: da:3d:85:27:a1:db:4f:10:24:0f:00:d0:9d:81:6a:9d:0a:f4: ac:7a:e3:f4:25:5a:b5:62:11:1a:5d:18:52:50:8d:74:58:16: a2:1e:c1:dd:fd:9e:a5:9d:d3:60:c8:5f:e3:6d:fc:1c:7d:ef: b9:0c:15:90:d8:cb:55:ea:dc:9d:84:de:a3:ac:84:7c:c1:7a: f7:4b:7c:31:f4:d9:3f:93:a5:5b:3b:79:6f:71:53:15:1f:ee: d5:1b:5c:74:01:b1:43:83:54:74:5a:04:68:ee:b7:7e:8f:c5: ac:40:b2:ab:3f:64:9b:cf:0a:35:fe:24:15:e5:c5:06:1c:e5: cd:11:ed:0d:f4:00:11:1a:34:43:e1:8a:84:25:e5:75:ec:97: 5d:af:e9:07:c7:12:d3:d0:75:8f:79:af:d5:e0:ce:67:c3:fb: 85:8a:e0:bf:b9:ed:6e:26:98:93:9c:2e:15:71:25:20:c5:88: 67:99:93:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEFGOEYwQ0ZCNDdGQkZDQzdDNDkzM0M0NzNDREIzNjQ0 MkI1MDUxQ0UwHhcNMjQwODIwMTQzMDI1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YTg4MC05ODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+eunDNeKUmdTF79BwQiMOOZAtuBug+CXQlvv7POtzad/08Lo2yyvVYaxnhr gVhSIPeOadn/09IpbUEVZmCK5zkGNDy9vO7Vq2ikNMjxLU1VnfMp5pfbmVc5tNA/ InQr1e4xZI3VuHwltQ1TDTi8zPvlWgjP/ENF/mx2utWCEEghetaNBuqjLtRVvvTu Vnl4IcRJr/5ZH2k+5/GIBJfQJadLkcsZMkze1mJK2SQMqdkKUW9QMzvbiEail3F9 Rd0rAF6bD1r1bTD+xzIEBvR4sSq+RUxHjUCjrwaLbTmBNModVSfs1N2HGAVFeD6l O3sGOel0QOgQ614AelxtnNWDlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH/F9Yti I5040+Fq3JzYvNz1ms61MB8GA1UdIwQYMBaAFK+PDPtH+/zHxJM8RzzbNkQrUFHO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy82OTA3QzNFMjFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi9yNDhNLTBmN19NZkVrenhIUE5zMlJDdFFV YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0OE0tMGY3X01mRWt6eEhQTnMyUkN0UVVjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNjkwN0MzRTIxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvREY2RkFGNUVB RjAxMTFFQjk2RkMzNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLfYAwDQYJKoZIhvcNAQELBQADggEBAFmyknxr0KiL43Fg 0ONMnyoezWIbRV0GmArVOBbozbWYIRlYUp8j8Rb8k2Jg8fUkYMuEXiWALOmU77si /tFpYrG7lDNNLPU5Sdo9hSeh208QJA8A0J2Bap0K9Kx64/QlWrViERpdGFJQjXRY FqIewd39nqWd02DIX+Nt/Bx977kMFZDYy1Xq3J2E3qOshHzBevdLfDH02T+TpVs7 eW9xUxUf7tUbXHQBsUODVHRaBGjut36PxaxAsqs/ZJvPCjX+JBXlxQYc5c0R7Q30 ABEaNEPhioQl5XXsl12v6QfHEtPQdY95r9XgzmfD+4WK4L+57W4mmJOcLhVxJSDF iGeZk1Q= -----END CERTIFICATE-----Generated at Sun Feb 16 15:47:03 2025 by rpki-client