$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/CEC68F44973211E9954F0565C4F9AE02.roa File: CEC68F44973211E9954F0565C4F9AE02.roa (raw, json) Hash identifier: 1JZ1OOenzlz7dOVNT0ysjgGRJusSE3+1Rk7pSgH2Okk= Subject key identifier: 78:24:3D:2B:0C:CF:73:DC:DD:A0:2B:4F:49:68:3B:33:03:0D:1E:67 Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 34F0 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/CEC68F44973211E9954F0565C4F9AE02.roa Signing time: Mon 22 Jul 2024 14:40:42 +0000 ROA not before: Mon 22 Jul 2024 14:40:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7470 IP address blocks: 203.155.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13552 (0x34f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA Validity Not Before: Jul 22 14:40:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669e6f6a-15e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e3:e8:15:9f:71:58:23:e4:fb:52:6a:a8:8a: bf:63:b1:f8:cf:37:78:a3:0a:29:86:62:52:7f:d1: 0f:4e:bd:3f:c8:2a:80:e1:cb:b1:8b:2e:31:dc:dc: 1a:81:79:a9:e0:ec:b2:f5:b5:34:4b:70:42:2d:5c: aa:1f:66:7b:1c:1f:ed:a4:70:2f:73:71:98:9e:2d: d3:fc:06:bd:86:7d:02:a0:ff:6a:0a:e1:11:2b:8d: a5:7f:58:a5:09:a8:9b:36:ca:00:81:f2:96:1f:ce: b1:61:bb:2a:d5:6b:55:f3:64:23:9b:8c:b7:f1:54: 10:96:3e:8c:2f:33:53:2a:9a:72:9a:fb:cb:b5:72: 50:8a:9e:bb:3c:31:19:79:ca:24:94:18:68:65:83: 64:7f:80:64:ae:71:ca:2e:1b:12:70:5d:53:0a:b9: dd:16:95:00:60:7a:3f:66:4c:fa:34:a4:1b:db:a9: a8:0e:b4:f2:fb:f8:19:d4:a2:c5:d7:00:7e:92:98: 7e:b1:02:fd:ff:83:9d:b8:67:4a:48:50:e5:76:64: e7:27:1f:7c:d1:ba:a7:70:c3:7f:a7:e2:3b:a0:6f: 5f:9a:c0:58:91:27:06:f7:b1:49:d9:84:60:2e:74: eb:72:1d:54:b6:b6:ae:a5:6b:ba:b8:e7:60:8a:52: 5f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:24:3D:2B:0C:CF:73:DC:DD:A0:2B:4F:49:68:3B:33:03:0D:1E:67 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/CEC68F44973211E9954F0565C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.155.150.0/24 Signature Algorithm: sha256WithRSAEncryption b4:08:b2:c4:f4:75:81:d8:76:5e:7c:44:ee:67:43:2d:ff:97: a7:22:a1:0e:b7:38:dd:cf:2a:ae:ea:19:87:ab:45:15:23:ca: 69:e4:d1:43:5f:92:39:a9:ce:26:ba:dc:fa:da:1d:36:f3:f8: 2e:39:42:30:6d:35:e1:14:19:af:85:ea:c6:eb:d8:6f:3e:f6: 00:3c:bc:bf:9d:1b:61:b0:51:54:04:c2:1b:bf:aa:59:f0:69: e1:19:4e:4a:74:ee:e4:11:20:cc:84:d4:4c:90:cf:49:72:74: e7:85:b5:d7:27:26:05:43:b1:17:8b:b2:ee:91:46:93:dc:38: 82:cc:c5:6f:05:de:d2:62:2c:d7:57:fe:c5:86:ab:7a:31:30: 2c:6d:59:71:fd:02:21:a1:8f:cd:1a:97:ff:78:3e:62:56:28: 94:72:32:30:d2:81:ea:25:6b:5d:a0:3d:8a:af:e6:81:92:b6: f6:f2:40:26:d8:6b:46:4f:97:f1:44:2b:3f:60:61:18:88:49: b7:75:be:b9:ef:25:24:7a:a2:ca:16:12:e6:1f:93:bb:59:bb: 3e:16:f3:a6:3d:b8:9a:0a:c8:b5:b9:e8:e1:d0:b2:a9:fe:22: d0:db:c5:ce:4e:4b:b4:05:f9:a0:bb:72:01:c4:0a:c7:e6:3c: 37:7f:ba:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjQwNzIyMTQ0MDQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjllNmY2YS0xNWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOPoFZ9xWCPk+1JqqIq/Y7H4zzd4owophmJSf9EPTr0/yCqA4cuxiy4x3Nwa gXmp4Oyy9bU0S3BCLVyqH2Z7HB/tpHAvc3GYni3T/Aa9hn0CoP9qCuERK42lf1il CaibNsoAgfKWH86xYbsq1WtV82Qjm4y38VQQlj6MLzNTKppymvvLtXJQip67PDEZ ecoklBhoZYNkf4BkrnHKLhsScF1TCrndFpUAYHo/Zkz6NKQb26moDrTy+/gZ1KLF 1wB+kph+sQL9/4OduGdKSFDldmTnJx980bqncMN/p+I7oG9fmsBYkScG97FJ2YRg LnTrch1UtraupWu6uOdgilJfkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHgkPSsM z3Pc3aArT0loOzMDDR5nMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvQ0VDNjhGNDQ5 NzMyMTFFOTk1NEYwNTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLm5YwDQYJKoZIhvcNAQELBQADggEBALQIssT0dYHYdl58 RO5nQy3/l6cioQ63ON3PKq7qGYerRRUjymnk0UNfkjmpzia63PraHTbz+C45QjBt NeEUGa+F6sbr2G8+9gA8vL+dG2GwUVQEwhu/qlnwaeEZTkp07uQRIMyE1EyQz0ly dOeFtdcnJgVDsReLsu6RRpPcOILMxW8F3tJiLNdX/sWGq3oxMCxtWXH9AiGhj80a l/94PmJWKJRyMjDSgeola12gPYqv5oGStvbyQCbYa0ZPl/FEKz9gYRiISbd1vrnv JSR6osoWEuYfk7tZuz4W86Y9uJoKyLW56OHQsqn+ItDbxc5OS7QF+aC7cgHECsfm PDd/ulM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:15:39 2025 by rpki-client