$ rpki-client -vvf rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/AF17D342228A11EDBBB7C135C4F9AE02.roa File: AF17D342228A11EDBBB7C135C4F9AE02.roa (raw, json) Hash identifier: nhFejZbPmF/mHGnNhHKJIEbR5bZWtdWdp3ZM+fASALI= Subject key identifier: 52:BE:7D:B0:27:77:31:AF:D7:20:94:29:2A:49:7B:9F:A2:C5:FC:72 Certificate issuer: /CN=A917544F/serialNumber=B601214C9628C9F421D36734B381CDEC92894748 Certificate serial: 01F4 Authority key identifier: B6:01:21:4C:96:28:C9:F4:21:D3:67:34:B3:81:CD:EC:92:89:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgEhTJYoyfQh02c0s4HN7JKJR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/AF17D342228A11EDBBB7C135C4F9AE02.roa Signing time: Thu 05 Dec 2024 01:45:42 +0000 ROA not before: Thu 05 Dec 2024 01:45:41 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 37931 IP address blocks: 203.19.222.0/24 maxlen: 24 203.89.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/tgEhTJYoyfQh02c0s4HN7JKJR0g.crl rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/tgEhTJYoyfQh02c0s4HN7JKJR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgEhTJYoyfQh02c0s4HN7JKJR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 01:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917544F Validity Not Before: Dec 5 01:45:41 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675105c5-7c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:60:7b:18:5e:d1:d5:5d:8d:5b:4e:6b:19:3f: c1:8c:90:58:a8:54:20:96:4f:dd:64:fa:9d:56:33: 45:b2:64:24:b2:bc:d1:fd:20:a4:b8:f4:82:f2:03: a8:f0:12:ef:e8:29:62:f0:e6:8f:b1:63:e0:93:b4: 42:24:f7:3b:17:35:34:9d:61:0c:e1:4d:a2:f6:59: 0f:83:2b:e6:c0:ed:d4:46:dc:52:d1:59:d8:6a:a5: 78:8d:fb:0c:41:52:d6:2e:47:8e:5f:d6:a8:2d:03: 00:d6:22:ba:12:37:66:c2:93:42:fb:87:17:d3:a7: a2:5f:df:99:b7:e4:09:a1:9c:eb:a9:87:60:59:75: 1e:5b:f2:84:c8:02:cb:9a:a8:0b:6a:e4:92:0a:b7: b9:c7:ce:db:02:04:bb:37:b3:4b:10:05:8d:b1:17: b6:94:3c:2f:19:86:f2:99:a5:8c:8a:97:9b:ed:aa: b8:62:d9:9b:ee:dc:e3:d5:cc:1c:96:19:4f:ac:2e: 55:cf:aa:e2:db:c5:4c:73:03:57:51:20:50:db:03: f5:c3:0c:83:60:56:a3:ac:a6:23:43:49:24:ad:88: 6c:d1:09:3f:f2:0c:75:aa:be:b8:e5:77:e4:7c:7b: 0c:c6:7d:31:cd:84:2d:d4:e4:ca:50:2d:03:8f:ce: 2f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BE:7D:B0:27:77:31:AF:D7:20:94:29:2A:49:7B:9F:A2:C5:FC:72 X509v3 Authority Key Identifier: keyid:B6:01:21:4C:96:28:C9:F4:21:D3:67:34:B3:81:CD:EC:92:89:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/tgEhTJYoyfQh02c0s4HN7JKJR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgEhTJYoyfQh02c0s4HN7JKJR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917544F/9012CA44228811ED89155E35C4F9AE02/AF17D342228A11EDBBB7C135C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.222.0/24 203.89.5.0/24 Signature Algorithm: sha256WithRSAEncryption 57:e1:9a:77:4b:66:5f:1f:60:51:0b:41:ec:10:fd:73:f2:4d: 6b:3a:db:37:7b:f1:14:c5:a9:e7:b7:f0:71:2f:b4:cf:51:5d: fb:24:2b:88:94:2c:bb:bb:3b:f5:69:dd:7e:32:40:fb:f9:89: cb:15:f9:01:bd:5d:af:99:1f:e8:23:d7:3f:75:5e:c0:fc:bb: b9:27:a0:2f:83:4b:b0:61:a8:2d:4c:82:4e:23:9e:d6:48:7e: 3c:b3:dc:83:27:74:71:df:02:f4:4b:2c:93:d0:fd:d1:67:14: 27:4f:9a:00:b5:8d:41:4c:17:04:55:60:51:43:ff:54:b9:4a: f8:3f:d7:ac:74:8b:25:0e:f0:84:70:05:d8:08:14:15:18:50: 73:0b:57:f5:08:f8:0d:5b:4a:c1:d4:fc:57:8f:6a:c4:cb:70: 89:34:cf:76:b4:48:aa:6b:fd:6b:1b:ff:c5:cf:13:f1:61:f3: 40:94:0f:0b:5e:68:8a:d8:a0:1d:ca:dd:a3:49:51:db:5a:42: b0:1e:66:8e:e2:fa:2b:d8:63:9a:c3:c2:ce:e0:81:3b:a1:66: 24:a4:59:97:ef:16:df:37:80:21:0c:50:27:d0:dc:5e:1c:ea: d9:69:f4:5d:8f:62:50:cf:97:dd:c7:03:1a:b6:60:20:2b:81: 5d:27:b7:a9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0NEYxMTAvBgNVBAUTKEI2MDEyMTRDOTYyOEM5RjQyMUQzNjczNEIzODFDREVD OTI4OTQ3NDgwHhcNMjQxMjA1MDE0NTQxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUxMDVjNS03YzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumB7GF7R1V2NW05rGT/BjJBYqFQglk/dZPqdVjNFsmQksrzR/SCkuPSC8gOo 8BLv6Cli8OaPsWPgk7RCJPc7FzU0nWEM4U2i9lkPgyvmwO3URtxS0VnYaqV4jfsM QVLWLkeOX9aoLQMA1iK6EjdmwpNC+4cX06eiX9+Zt+QJoZzrqYdgWXUeW/KEyALL mqgLauSSCre5x87bAgS7N7NLEAWNsRe2lDwvGYbymaWMipeb7aq4Ytmb7tzj1cwc lhlPrC5Vz6ri28VMcwNXUSBQ2wP1wwyDYFajrKYjQ0kkrYhs0Qk/8gx1qr645Xfk fHsMxn0xzYQt1OTKUC0Dj84vYQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFK+fbAn dzGv1yCUKSpJe5+ixfxyMB8GA1UdIwQYMBaAFLYBIUyWKMn0IdNnNLOBzeySiUdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTQ0Ri85MDEyQ0E0NDIy ODgxMUVEODkxNTVFMzVDNEY5QUUwMi90Z0VoVEpZb3lmUWgwMmMwczRITjdKS0pS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnRWhUSllveWZRaDAyYzBzNEhON0pLSlIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU0NEYvOTAxMkNBNDQyMjg4MTFFRDg5MTU1RTM1QzRGOUFFMDIvQUYxN0QzNDIy MjhBMTFFREJCQjdDMTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLE94DBADLWQUwDQYJKoZIhvcNAQELBQADggEBAFfhmndL Zl8fYFELQewQ/XPyTWs62zd78RTFqee38HEvtM9RXfskK4iULLu7O/Vp3X4yQPv5 icsV+QG9Xa+ZH+gj1z91XsD8u7knoC+DS7BhqC1Mgk4jntZIfjyz3IMndHHfAvRL LJPQ/dFnFCdPmgC1jUFMFwRVYFFD/1S5Svg/16x0iyUO8IRwBdgIFBUYUHMLV/UI +A1bSsHU/FePasTLcIk0z3a0SKpr/Wsb/8XPE/Fh80CUDwteaIrYoB3K3aNJUdta QrAeZo7i+ivYY5rDws7ggTuhZiSkWZfvFt83gCEMUCfQ3F4c6tlp9F2PYlDPl93H Axq2YCArgV0nt6k= -----END CERTIFICATE-----Generated at Thu Mar 13 21:52:29 2025 by rpki-client