$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/41E32C9852E411EC9E19AA2FC4F9AE02.roa File: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (raw, json) Hash identifier: TI6U5DDyMx2oNjPAY1onItBRjW+RoIBeg5nOMGrAMag= Subject key identifier: 0A:34:38:C3:DA:14:34:64:21:04:55:1B:C4:D7:4C:B4:18:B6:5E:0A Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 03F7 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/41E32C9852E411EC9E19AA2FC4F9AE02.roa Signing time: Thu 01 Aug 2024 20:23:56 +0000 ROA not before: Thu 01 Aug 2024 20:23:56 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 16509 IP address blocks: 202.92.192.0/24 maxlen: 24 202.92.193.0/24 maxlen: 24 202.92.196.0/24 maxlen: 24 202.92.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF Validity Not Before: Aug 1 20:23:56 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66abeedb-d688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:62:70:f2:c9:0d:63:97:20:35:5c:5a:e0:73: 98:4e:38:2b:2a:f1:5e:ba:a3:18:cf:eb:33:55:5e: 6e:12:a8:88:19:3e:a2:bb:ce:6c:75:ba:4d:0d:fa: 3c:dc:04:13:30:cb:17:71:44:0c:b0:a3:df:5b:23: 8a:92:5c:36:1c:b6:ad:72:4a:aa:db:c2:40:1e:15: e5:a9:90:e2:db:46:60:4e:4b:fe:e1:ca:13:40:b6: f3:0e:05:d5:54:fa:8c:32:b8:ec:70:3a:49:aa:b4: 7f:86:31:00:04:40:71:f7:ea:b7:fe:a8:31:66:7a: 7b:fa:a5:15:0f:21:4b:ac:c6:5d:4f:77:46:a6:f2: b5:42:79:64:27:c5:da:7b:9c:28:4e:82:88:a1:e5: cc:0e:56:c9:1d:e7:d2:92:91:dd:1a:46:22:9d:3a: 31:da:80:d0:10:12:d6:c9:68:05:36:0b:b2:49:36: 06:2c:08:30:a7:01:bd:5a:4f:c2:2c:75:ad:ec:b8: 96:61:35:a1:f7:d6:3f:35:41:16:87:94:0d:ef:7c: e2:10:7b:37:8e:e2:39:41:3c:76:82:af:1d:a1:d8: df:72:fb:4c:31:25:c4:6a:bb:03:8f:39:a8:80:fe: c9:e0:d9:89:ca:2c:7f:42:a5:20:ed:4d:c3:b1:86: 1b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:34:38:C3:DA:14:34:64:21:04:55:1B:C4:D7:4C:B4:18:B6:5E:0A X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/41E32C9852E411EC9E19AA2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.92.192.0/23 202.92.196.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:2d:26:46:ca:4b:d7:81:c0:45:94:0e:0e:48:ed:31:ca:3b: f3:b3:2e:01:55:4f:0e:5d:3f:14:19:a1:bd:5a:6f:a5:6f:dc: a5:62:90:8f:42:1f:95:6f:2e:3f:91:a1:ca:b9:72:9d:7e:6f: 05:44:57:db:46:f3:cb:c4:99:2a:5b:8d:dd:77:bd:b9:f1:a4: c6:35:de:4e:0c:73:4a:9e:20:d8:27:59:8b:ba:5d:3f:03:10: 2a:c9:65:79:75:de:3a:22:05:29:bc:a6:de:5f:0c:a7:ea:f0: e9:61:d8:f9:bc:5e:90:14:07:d4:33:2e:74:ea:e3:19:57:f7: e0:7b:bb:65:10:91:89:f3:12:9c:3e:da:d1:3a:6c:e1:32:f4: 15:8e:5d:df:2b:01:20:d5:24:8c:a8:e8:96:b5:1e:5f:fc:64: 5c:ac:f9:7c:bf:ea:04:93:f3:d7:e0:40:43:d5:45:dc:a6:19: e6:14:a8:a3:d4:9d:5a:a4:d2:35:b7:a5:3b:2b:61:dd:a4:e6: 43:b1:08:70:95:5d:68:c3:2d:56:7c:d2:2b:0b:42:07:1f:d0: 4a:df:9d:1b:4d:35:34:23:f7:94:4c:aa:0f:af:62:ca:d8:c2: 02:58:23:01:d8:ba:7a:4b:d1:10:fc:75:1c:2d:e5:9a:09:01: 98:4f:20:05 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjQwODAxMjAyMzU2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFiZWVkYi1kNjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72Jw8skNY5cgNVxa4HOYTjgrKvFeuqMYz+szVV5uEqiIGT6iu85sdbpNDfo8 3AQTMMsXcUQMsKPfWyOKklw2HLatckqq28JAHhXlqZDi20ZgTkv+4coTQLbzDgXV VPqMMrjscDpJqrR/hjEABEBx9+q3/qgxZnp7+qUVDyFLrMZdT3dGpvK1QnlkJ8Xa e5woToKIoeXMDlbJHefSkpHdGkYinTox2oDQEBLWyWgFNguySTYGLAgwpwG9Wk/C LHWt7LiWYTWh99Y/NUEWh5QN73ziEHs3juI5QTx2gq8dodjfcvtMMSXEarsDjzmo gP7J4NmJyix/QqUg7U3DsYYbawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAo0OMPa FDRkIQRVG8TXTLQYtl4KMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNDRkYvOUE1RUMxNkM0NkZFMTFFQzk0RTNEMjRBQzRGOUFFMDIvNDFFMzJDOTg1 MkU0MTFFQzlFMTlBQTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHKXMADBAHKXMQwDQYJKoZIhvcNAQELBQADggEBAB8tJkbK S9eBwEWUDg5I7THKO/OzLgFVTw5dPxQZob1ab6Vv3KVikI9CH5VvLj+Rocq5cp1+ bwVEV9tG88vEmSpbjd13vbnxpMY13k4Mc0qeINgnWYu6XT8DECrJZXl13joiBSm8 pt5fDKfq8Olh2Pm8XpAUB9QzLnTq4xlX9+B7u2UQkYnzEpw+2tE6bOEy9BWOXd8r ASDVJIyo6Ja1Hl/8ZFys+Xy/6gST89fgQEPVRdymGeYUqKPUnVqk0jW3pTsrYd2k 5kOxCHCVXWjDLVZ80isLQgcf0ErfnRtNNTQj95RMqg+vYsrYwgJYIwHYunpL0RD8 dRwt5ZoJAZhPIAU= -----END CERTIFICATE-----Generated at Sun Feb 16 15:44:09 2025 by rpki-client