$ rpki-client -vvf rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/4335BE9C0D0611EFA3ECB057C4F9AE02.roa File: 4335BE9C0D0611EFA3ECB057C4F9AE02.roa (raw, json) Hash identifier: DY8IlqJNovXZ15/RMJieaaoHFKTdyQOVWYO2fidjVFA= Subject key identifier: E0:F3:C2:2E:D8:01:EC:9C:1D:18:B6:32:86:53:D7:6A:B0:54:A3:E1 Certificate issuer: /CN=A9161099/serialNumber=03A02E2F5DABF0FF3938628BC4FF5FB61653F045 Certificate serial: B3 Authority key identifier: 03:A0:2E:2F:5D:AB:F0:FF:39:38:62:8B:C4:FF:5F:B6:16:53:F0:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/4335BE9C0D0611EFA3ECB057C4F9AE02.roa Signing time: Wed 05 Feb 2025 05:34:44 +0000 ROA not before: Wed 05 Feb 2025 05:34:44 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 121.127.32.0/24 maxlen: 24 202.157.180.0/23 maxlen: 24 2401:cb60::/48 maxlen: 48 2401:cb60:1::/48 maxlen: 48 2401:cb60:2::/48 maxlen: 48 2401:cb60:3::/48 maxlen: 48 2401:cb60:4::/48 maxlen: 48 2401:cb60:5::/48 maxlen: 48 2401:cb60:6::/48 maxlen: 48 2401:cb60:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.crl rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161099 Validity Not Before: Feb 5 05:34:44 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67a2f874-0703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:31:38:bb:c2:a1:ca:3f:49:0f:dd:55:96: 35:1d:38:d1:ce:72:c4:b0:54:48:cc:a8:cd:44:fe: 84:e1:16:f9:09:00:83:ea:2c:50:e2:62:b8:d0:ca: f8:bb:da:45:a0:73:04:e9:c0:c0:c1:14:af:ef:fc: 3c:3f:e6:c8:c9:6f:c3:e6:f0:42:23:6f:0e:e0:a7: 29:c6:ce:db:02:1e:5b:64:ee:e1:b7:0d:f8:b3:fd: c1:1d:b1:f1:11:89:89:15:13:28:13:63:bf:d0:45: 86:e4:f6:8c:c5:37:60:92:f9:71:70:ff:88:3a:cb: 27:8a:ce:f9:c4:0e:3a:d0:45:cc:c4:a8:9a:8d:24: 00:74:b9:ac:aa:ac:fc:70:c6:5a:a9:f2:c4:e6:d3: ea:e4:62:d6:9c:f9:e6:fd:f2:9e:9f:77:86:19:99: bf:e4:8e:a4:6b:cb:73:3e:17:57:40:1f:9c:1e:71: 2e:61:4f:04:c9:b9:a1:77:92:a6:94:9c:a2:8b:29: 42:61:1e:3f:61:67:23:d5:e3:5f:f0:69:9a:5f:74: ca:ff:ab:52:11:0b:bd:ac:37:3c:f4:2e:82:b4:8e: a7:0a:a4:13:8c:68:a4:c7:72:ee:c7:79:5b:c0:34: 0e:5d:0a:24:bf:38:32:0b:8b:40:70:71:85:18:4f: 35:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F3:C2:2E:D8:01:EC:9C:1D:18:B6:32:86:53:D7:6A:B0:54:A3:E1 X509v3 Authority Key Identifier: keyid:03:A0:2E:2F:5D:AB:F0:FF:39:38:62:8B:C4:FF:5F:B6:16:53:F0:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/4335BE9C0D0611EFA3ECB057C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.127.32.0/24 202.157.180.0/23 IPv6: 2401:cb60::/45 Signature Algorithm: sha256WithRSAEncryption 08:83:06:02:1b:ea:e3:5a:12:90:15:f7:a2:96:b9:d5:43:62: 44:a5:13:ad:66:c1:0e:b1:80:ab:5e:bd:14:c9:e3:7e:2e:52: 8d:06:dd:a1:df:97:6b:1f:60:c0:fc:84:7f:54:de:94:cf:92: d9:d5:38:14:10:a0:fc:77:a5:4a:04:a4:d3:f1:bc:f3:8a:75: bf:2c:1b:46:74:61:14:68:6a:17:60:bd:52:ba:ba:79:fe:b4: 8e:d9:2d:6f:84:f0:21:67:8f:c4:c1:6f:ae:95:51:9a:a8:10: 2f:08:06:5b:b6:4f:d2:32:d3:e0:27:f1:98:09:33:2a:1f:8f: 35:ba:12:32:da:9f:a4:6a:ce:f9:d2:1d:0b:b7:81:39:de:98: b7:09:db:db:f7:f3:bc:0f:b7:06:70:fa:c7:dd:bb:29:07:30: bb:d3:05:e3:96:fb:34:12:d1:1f:eb:43:8f:1e:94:2f:89:9b: ad:5a:ad:93:9f:62:df:1b:35:06:7c:86:ec:e8:c1:61:68:44: cc:d4:83:58:51:15:21:12:18:ea:ee:af:cb:63:ba:04:a5:a7: ca:61:1a:34:70:24:cb:8d:25:97:54:14:b9:9c:ce:a3:bb:a4: c6:09:dd:06:b1:fd:40:e6:f0:69:9d:57:da:ac:29:70:f4:4a: 97:f3:5c:34 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwOTkxMTAvBgNVBAUTKDAzQTAyRTJGNURBQkYwRkYzOTM4NjI4QkM0RkY1RkI2 MTY1M0YwNDUwHhcNMjUwMjA1MDUzNDQ0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyZjg3NC0wNzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNcxOLvCoco/SQ/dVZY1HTjRznLEsFRIzKjNRP6E4Rb5CQCD6ixQ4mK40Mr4 u9pFoHME6cDAwRSv7/w8P+bIyW/D5vBCI28O4Kcpxs7bAh5bZO7htw34s/3BHbHx EYmJFRMoE2O/0EWG5PaMxTdgkvlxcP+IOssnis75xA460EXMxKiajSQAdLmsqqz8 cMZaqfLE5tPq5GLWnPnm/fKen3eGGZm/5I6ka8tzPhdXQB+cHnEuYU8Eybmhd5Km lJyiiylCYR4/YWcj1eNf8GmaX3TK/6tSEQu9rDc89C6CtI6nCqQTjGikx3Lux3lb wDQOXQokvzgyC4tAcHGFGE81RQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFODzwi7Y AeycHRi2MoZT12qwVKPhMB8GA1UdIwQYMBaAFAOgLi9dq/D/OThii8T/X7YWU/BF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA5OS9GRDM2N0M3MDBE MDQxMUVGODVFNDZGNTVDNEY5QUUwMi9BNkF1TDEycjhQODVPR0tMeFA5ZnRoWlQ4 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2QXVMMTJyOFA4NU9HS0x4UDlmdGhaVDhFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjEwOTkvRkQzNjdDNzAwRDA0MTFFRjg1RTQ2RjU1QzRGOUFFMDIvNDMzNUJFOUMw RDA2MTFFRkEzRUNCMDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAB5fyADBAHKnbQwDwQCAAIwCQMHAyQBy2AAADANBgkqhkiG 9w0BAQsFAAOCAQEACIMGAhvq41oSkBX3opa51UNiRKUTrWbBDrGAq169FMnjfi5S jQbdod+Xax9gwPyEf1TelM+S2dU4FBCg/HelSgSk0/G884p1vywbRnRhFGhqF2C9 Urq6ef60jtktb4TwIWePxMFvrpVRmqgQLwgGW7ZP0jLT4CfxmAkzKh+PNboSMtqf pGrO+dIdC7eBOd6Ytwnb2/fzvA+3BnD6x927KQcwu9MF45b7NBLRH+tDjx6UL4mb rVqtk59i3xs1BnyG7OjBYWhEzNSDWFEVIRIY6u6vy2O6BKWnymEaNHAky40ll1QU uZzOo7ukxgndBrH9QObwaZ1X2qwpcPRKl/NcNA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:10:35 2025 by rpki-client