$ rpki-client -vvf rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/AA71F05C60EF11EF8D645D72C4F9AE02.roa File: AA71F05C60EF11EF8D645D72C4F9AE02.roa (raw, json) Hash identifier: tFX2mHpCejE1T1hhbkEHTKBu8FY85bbr60BmVvCm9y8= Subject key identifier: 2A:4A:61:FC:48:8A:9C:C2:F2:8C:40:DC:2C:EF:F0:5D:B1:42:7A:59 Certificate issuer: /CN=A917452D/serialNumber=E4AE80372A867987BB2A0ABBE110AB804370D5E3 Certificate serial: 02C0 Authority key identifier: E4:AE:80:37:2A:86:79:87:BB:2A:0A:BB:E1:10:AB:80:43:70:D5:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5K6ANyqGeYe7Kgq74RCrgENw1eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/AA71F05C60EF11EF8D645D72C4F9AE02.roa Signing time: Wed 15 Jan 2025 01:55:41 +0000 ROA not before: Wed 15 Jan 2025 01:55:41 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 19905 IP address blocks: 202.166.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/5K6ANyqGeYe7Kgq74RCrgENw1eM.crl rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/5K6ANyqGeYe7Kgq74RCrgENw1eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5K6ANyqGeYe7Kgq74RCrgENw1eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 704 (0x2c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917452D Validity Not Before: Jan 15 01:55:41 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6787159c-1b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:eb:fd:c2:b3:ec:21:6a:ad:96:76:99:9b:ed: c7:61:b4:94:dd:30:b2:d8:0f:28:1e:ae:99:73:3f: 8e:b3:28:fa:83:c2:ca:29:15:86:47:eb:50:d1:12: 55:cd:5d:96:0d:80:c7:07:b2:16:f2:f7:62:b1:10: a5:ee:b6:45:18:e6:81:99:24:ba:cb:6c:08:ac:c7: 6b:29:52:e4:77:cc:51:38:eb:35:c5:a3:e2:3d:16: c1:78:2f:db:9d:ef:7e:02:af:b0:3b:5f:fe:8c:38: af:c1:56:aa:d3:4c:44:0b:16:8e:40:a4:43:01:55: 44:25:60:86:62:f7:9c:da:c7:dd:eb:5a:27:3e:b8: d0:1a:43:e9:84:43:23:1f:8c:39:c1:f9:9c:d3:09: 16:7e:b7:34:f1:ce:b4:b4:41:f8:f4:44:e6:e9:f4: 85:d3:e9:14:d0:c1:9e:9c:97:67:2b:28:c4:84:46: 28:12:c3:83:40:9c:3c:a4:c6:e9:93:da:d6:4a:d7: 2c:1b:65:ec:ae:6f:83:d3:b3:09:af:8f:b0:44:47: bb:ee:38:8d:82:1f:ce:bd:0f:67:f2:44:ee:16:e2: bf:86:57:3d:c4:4f:42:d6:2e:27:40:d3:3b:da:67: 85:f7:34:ee:79:2c:44:38:be:6a:cc:f4:ef:dd:ed: cc:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:4A:61:FC:48:8A:9C:C2:F2:8C:40:DC:2C:EF:F0:5D:B1:42:7A:59 X509v3 Authority Key Identifier: keyid:E4:AE:80:37:2A:86:79:87:BB:2A:0A:BB:E1:10:AB:80:43:70:D5:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/5K6ANyqGeYe7Kgq74RCrgENw1eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5K6ANyqGeYe7Kgq74RCrgENw1eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/AA71F05C60EF11EF8D645D72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.166.0.0/17 Signature Algorithm: sha256WithRSAEncryption 2b:a4:88:3f:db:c8:ac:14:11:fb:fd:f3:cb:c3:b9:2a:43:31: 64:cb:bc:c4:16:f2:95:ff:04:cc:0d:22:ce:70:a2:26:a2:b9: 06:e8:21:a1:63:89:08:b7:c9:70:b7:5c:7c:25:fb:5c:f9:ae: 49:36:71:22:cd:f8:ac:23:8e:a3:f4:0e:2a:80:95:52:e7:e0: 4d:63:63:5c:9d:89:a4:36:0b:8c:a3:00:fb:e4:a3:da:1d:d1: d7:16:31:73:cb:14:18:0a:84:64:1f:71:1a:45:9b:fb:46:23: a9:1a:16:34:46:c3:51:a9:8a:e9:8d:8c:63:9b:2b:95:d5:78: 19:ea:ce:d5:5a:3a:e1:93:79:57:a1:d8:00:fa:a5:95:f2:69: 8d:fe:29:ad:28:1a:0a:59:42:78:bd:e0:ac:ed:be:7e:e6:8c: c6:cc:ae:04:92:8a:3a:7f:5c:2e:b5:fc:dc:ad:2e:45:c6:90: 1b:14:4f:d6:c5:59:e2:82:49:2e:d8:a9:9a:0d:13:02:9e:c4: 45:e5:08:6d:86:ca:05:6a:87:3b:93:17:60:5b:2a:d9:f3:75: 11:bc:d7:a5:b7:10:13:de:1c:e7:b6:14:58:da:ac:e7:c9:35: c9:b2:25:8d:84:60:12:d9:3a:a8:63:62:10:9c:66:be:45:94: 77:3b:b3:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1MkQxMTAvBgNVBAUTKEU0QUU4MDM3MkE4Njc5ODdCQjJBMEFCQkUxMTBBQjgw NDM3MEQ1RTMwHhcNMjUwMTE1MDE1NTQxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3MTU5Yy0xYjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxev9wrPsIWqtlnaZm+3HYbSU3TCy2A8oHq6Zcz+Osyj6g8LKKRWGR+tQ0RJV zV2WDYDHB7IW8vdisRCl7rZFGOaBmSS6y2wIrMdrKVLkd8xROOs1xaPiPRbBeC/b ne9+Aq+wO1/+jDivwVaq00xECxaOQKRDAVVEJWCGYvec2sfd61onPrjQGkPphEMj H4w5wfmc0wkWfrc08c60tEH49ETm6fSF0+kU0MGenJdnKyjEhEYoEsODQJw8pMbp k9rWStcsG2Xsrm+D07MJr4+wREe77jiNgh/OvQ9n8kTuFuK/hlc9xE9C1i4nQNM7 2meF9zTueSxEOL5qzPTv3e3MlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCpKYfxI ipzC8oxA3Czv8F2xQnpZMB8GA1UdIwQYMBaAFOSugDcqhnmHuyoKu+EQq4BDcNXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDUyRC9BQTQyMTcxRTI3 NjgxMUVEOUEyMjE3MzBDNEY5QUUwMi81SzZBTnlxR2VZZTdLZ3E3NFJDcmdFTncx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLNkFOeXFHZVllN0tncTc0UkNyZ0VOdzFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ1MkQvQUE0MjE3MUUyNzY4MTFFRDlBMjIxNzMwQzRGOUFFMDIvQUE3MUYwNUM2 MEVGMTFFRjhENjQ1RDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAfKpgAwDQYJKoZIhvcNAQELBQADggEBACukiD/byKwUEfv9 88vDuSpDMWTLvMQW8pX/BMwNIs5woiaiuQboIaFjiQi3yXC3XHwl+1z5rkk2cSLN +KwjjqP0DiqAlVLn4E1jY1ydiaQ2C4yjAPvko9od0dcWMXPLFBgKhGQfcRpFm/tG I6kaFjRGw1GpiumNjGObK5XVeBnqztVaOuGTeVeh2AD6pZXyaY3+Ka0oGgpZQni9 4Kztvn7mjMbMrgSSijp/XC61/NytLkXGkBsUT9bFWeKCSS7YqZoNEwKexEXlCG2G ygVqhzuTF2BbKtnzdRG816W3EBPeHOe2FFjarOfJNcmyJY2EYBLZOqhjYhCcZr5F lHc7s80= -----END CERTIFICATE-----Generated at Sun Feb 16 15:27:19 2025 by rpki-client