$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa File: 7C3A615CFD2A11EE9030911CC4F9AE02.roa (raw, json) Hash identifier: /piRZvXAAsh1mpg66Okc/aC7aZTe1kUD5ojc4AIc6UQ= Subject key identifier: 49:66:32:49:D4:87:5C:EE:5E:61:62:17:80:76:B7:6B:C5:68:5B:FC Certificate issuer: /CN=A915FDA7/serialNumber=0BDBAC15225F1BF9B614B2A347A1B96C4A0F969C Certificate serial: 7B Authority key identifier: 0B:DB:AC:15:22:5F:1B:F9:B6:14:B2:A3:47:A1:B9:6C:4A:0F:96:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa Signing time: Tue 03 Dec 2024 05:09:56 +0000 ROA not before: Tue 03 Dec 2024 05:09:56 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 38305 IP address blocks: 202.14.106.0/24 maxlen: 24 202.27.239.0/24 maxlen: 24 202.37.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.crl rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDA7 Validity Not Before: Dec 3 05:09:56 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e92a4-745f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:83:18:4e:51:e0:c4:0a:af:cb:5f:be:83:eb: 24:a1:da:2b:cc:db:37:65:7e:5e:6f:52:f5:3d:63: 06:e9:05:8e:be:21:f3:57:9e:3b:55:73:25:8a:00: 01:cc:17:d8:81:cc:d5:e3:03:90:75:0b:60:00:1f: e5:1c:8e:75:2b:91:bd:64:a8:cc:76:3f:89:f2:49: 46:c9:79:f7:c6:34:ea:b1:66:f7:c6:53:37:b1:a9: a9:64:45:ed:7a:1c:e4:b6:e4:e5:33:60:65:fe:d8: eb:37:08:88:66:30:70:1b:c1:9b:4a:cb:90:6f:8a: a1:37:57:92:08:5d:e5:89:10:53:23:63:ed:b6:6f: 1e:03:bf:0f:3b:8a:0e:3f:4d:a5:f1:1d:ad:2e:7e: c6:f6:20:06:f9:3d:cb:ab:6e:31:9c:29:a5:31:2a: b7:ea:9b:4c:6a:b6:68:ec:93:eb:17:49:24:53:fb: 80:6d:4d:37:df:60:7f:ff:e4:2b:a3:25:ab:23:44: 18:92:92:26:8e:8a:09:e7:cf:fb:35:9b:15:90:90: c7:c6:c9:42:45:1f:02:e4:e6:5d:c1:13:c9:a9:79: 19:96:58:6d:11:40:b4:ec:08:8f:e4:e1:e3:f3:b1: 7b:c0:1b:0e:23:0d:4f:80:09:ff:2a:2e:4d:ac:e8: 08:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:66:32:49:D4:87:5C:EE:5E:61:62:17:80:76:B7:6B:C5:68:5B:FC X509v3 Authority Key Identifier: keyid:0B:DB:AC:15:22:5F:1B:F9:B6:14:B2:A3:47:A1:B9:6C:4A:0F:96:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/C9usFSJfG_m2FLKjR6G5bEoPlpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9usFSJfG_m2FLKjR6G5bEoPlpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDA7/4F481AC8FD2911EEA629AE62C4F9AE02/7C3A615CFD2A11EE9030911CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.14.106.0/24 202.27.239.0/24 202.37.99.0/24 Signature Algorithm: sha256WithRSAEncryption 45:8e:64:14:10:9c:6d:2c:32:d8:c2:8e:9c:54:c0:a7:32:e2: fa:c0:89:bd:26:ea:a3:31:a5:23:3f:bd:98:8e:d4:75:c4:b3: eb:51:c8:c4:87:54:99:ab:1e:bb:89:72:ca:c2:0e:6a:77:27: 80:06:ba:9a:8d:fa:50:84:0b:e9:1a:4b:1f:cc:c4:cb:9e:68: ef:fd:c3:da:9f:1c:42:35:91:03:2c:f3:97:e1:56:42:10:d5: 38:dd:7d:46:5d:01:88:10:e2:e2:47:1a:b9:21:28:dc:05:1b: d6:c1:19:d1:c8:43:85:9f:f1:4a:90:f5:56:d5:ca:4b:3d:45: af:b2:af:46:f8:22:23:02:ab:49:54:e9:f5:4c:e4:63:ff:94: 6c:3b:de:ea:55:b9:ad:13:b2:69:2e:2a:56:83:27:3b:8c:8e: 27:90:f4:4f:e8:7c:99:57:b2:f6:af:bd:0d:58:41:a7:8c:71: c0:3b:b5:fb:5d:ec:34:51:c1:bd:7c:28:fd:17:c5:d2:98:ad: f7:4c:6e:68:47:f7:5f:ac:31:6c:f2:48:a7:f6:4f:f3:8b:52: 82:a8:8e:03:32:b0:90:da:c0:15:13:77:1e:16:87:e6:97:46: 7d:80:43:48:87:2f:cb:d6:a2:5d:cb:2a:9c:44:5e:c1:26:d4: 5a:4b:44:a2 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkRBNzExMC8GA1UEBRMoMEJEQkFDMTUyMjVGMUJGOUI2MTRCMkEzNDdBMUI5NkM0 QTBGOTY5QzAeFw0yNDEyMDMwNTA5NTZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGU5MmE0LTc0NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCggxhOUeDECq/LX76D6ySh2ivM2zdlfl5vUvU9YwbpBY6+IfNXnjtVcyWKAAHM F9iBzNXjA5B1C2AAH+UcjnUrkb1kqMx2P4nySUbJeffGNOqxZvfGUzexqalkRe16 HOS25OUzYGX+2Os3CIhmMHAbwZtKy5BviqE3V5IIXeWJEFMjY+22bx4Dvw87ig4/ TaXxHa0ufsb2IAb5PcurbjGcKaUxKrfqm0xqtmjsk+sXSSRT+4BtTTffYH//5Cuj JasjRBiSkiaOignnz/s1mxWQkMfGyUJFHwLk5l3BE8mpeRmWWG0RQLTsCI/k4ePz sXvAGw4jDU+ACf8qLk2s6AhdAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUSWYySdSH XO5eYWIXgHa3a8VoW/wwHwYDVR0jBBgwFoAUC9usFSJfG/m2FLKjR6G5bEoPlpww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGREE3LzRGNDgxQUM4RkQy OTExRUVBNjI5QUU2MkM0RjlBRTAyL0M5dXNGU0pmR19tMkZMS2pSNkc1YkVvUGxw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQzl1c0ZTSmZHX20yRkxLalI2RzViRW9QbHB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkRBNy80RjQ4MUFDOEZEMjkxMUVFQTYyOUFFNjJDNEY5QUUwMi83QzNBNjE1Q0ZE MkExMUVFOTAzMDkxMUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAMoOagMEAMob7wMEAMolYzANBgkqhkiG9w0BAQsFAAOCAQEA RY5kFBCcbSwy2MKOnFTApzLi+sCJvSbqozGlIz+9mI7UdcSz61HIxIdUmaseu4ly ysIOancngAa6mo36UIQL6RpLH8zEy55o7/3D2p8cQjWRAyzzl+FWQhDVON19Rl0B iBDi4kcauSEo3AUb1sEZ0chDhZ/xSpD1VtXKSz1Fr7KvRvgiIwKrSVTp9UzkY/+U bDve6lW5rROyaS4qVoMnO4yOJ5D0T+h8mVey9q+9DVhBp4xxwDu1+13sNFHBvXwo /RfF0pit90xuaEf3X6wxbPJIp/ZP84tSgqiOAzKwkNrAFRN3HhaH5pdGfYBDSIcv y9aiXcsqnERewSbUWktEog== -----END CERTIFICATE-----Generated at Sun Feb 16 22:18:11 2025 by rpki-client