$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/5AF6DD08FAE611EF88903035C4F9AE02.roa File: 5AF6DD08FAE611EF88903035C4F9AE02.roa (raw, json) Hash identifier: KNe37v08jiMTHI1bvjZ6KE/Vcj+r6uVPwkyGH49Kddo= Subject key identifier: 7B:7F:6D:AD:8A:FB:82:E9:A4:F1:C9:FF:D2:96:AD:D9:18:B9:E2:50 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D03 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/5AF6DD08FAE611EF88903035C4F9AE02.roa Signing time: Thu 06 Mar 2025 23:54:35 +0000 ROA not before: Thu 06 Mar 2025 23:54:35 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 55154 IP address blocks: 111.119.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7427 (0x1d03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A Validity Not Before: Mar 6 23:54:35 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67ca35ba-772d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f0:3e:e0:88:28:7f:9a:ee:1d:90:cf:17:fc: 96:07:b2:e1:88:e7:6f:03:9b:21:11:29:e5:db:b2: 7d:4b:fe:52:b6:8d:e4:d9:30:9e:58:8d:83:61:7f: 0f:b3:7c:41:59:bc:ac:54:73:51:46:74:3c:6e:fa: 02:70:54:6a:d4:4d:4b:f9:04:c9:d6:ba:2e:bf:48: 22:9f:0f:bf:5a:8d:25:06:c0:ef:06:f1:ca:48:d3: 06:69:c7:c5:72:32:e7:54:6d:a3:ee:07:9d:aa:72: 25:7b:24:7f:7c:85:f8:a6:95:55:be:37:05:e0:66: 71:90:55:c8:bb:41:a9:cb:7e:a6:68:8a:75:ed:2e: 76:82:2f:31:b1:94:9a:b8:b2:87:05:0b:ae:23:aa: 85:ef:64:a0:17:ad:54:28:f7:29:93:07:1c:4b:85: 10:c4:53:59:28:98:2f:99:63:8d:59:10:ae:bb:74: fd:e0:af:0e:4b:73:29:5e:c7:5d:9e:c2:7b:96:a0: 8a:b5:eb:c8:ef:30:13:2d:8b:d0:fb:5d:b1:4e:bb: 5c:b2:be:ac:28:3d:2a:eb:39:c8:7a:fa:16:32:d6: ae:27:e0:0d:f5:85:72:01:0d:70:4b:fd:58:2f:3c: c2:57:05:24:62:8e:1d:6f:1f:28:6a:d5:f2:fb:e8: 7f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:7F:6D:AD:8A:FB:82:E9:A4:F1:C9:FF:D2:96:AD:D9:18:B9:E2:50 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/5AF6DD08FAE611EF88903035C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.119.165.0/24 Signature Algorithm: sha256WithRSAEncryption a3:e5:23:dc:d3:7d:bd:0d:4e:50:7b:de:1b:10:c8:d5:16:b5: 5c:70:47:72:dc:fb:f5:1d:1c:33:21:f1:18:9f:f8:93:21:cc: c1:81:41:43:07:01:85:77:77:b0:91:0c:60:0d:cc:5c:c1:5f: cd:5b:79:f1:65:5e:be:90:51:36:03:51:55:4d:69:df:ba:d7: 7d:12:b2:59:52:77:5c:08:da:b3:66:d3:23:58:3c:74:7b:8c: 23:9f:ab:6e:5c:7d:e7:be:92:19:59:fc:ac:d9:b7:b2:dd:07: a4:60:9e:06:f8:ec:cf:f7:c5:87:8d:4f:72:cd:f0:a6:7d:5a: 9a:c9:e0:7d:c2:e2:65:c5:d1:b6:04:f3:92:51:51:5d:3d:17: 64:2c:a9:ce:23:6f:64:8b:1d:ae:69:a9:21:5b:7f:8d:ff:a0: ce:2b:31:1c:10:1a:43:32:ae:e6:40:4a:cd:eb:93:06:ff:e0: 89:08:db:70:f4:7e:be:11:98:30:71:71:6f:5d:94:ce:a2:90: a2:88:ae:14:82:fa:0e:08:69:d9:3a:6c:d6:09:32:96:25:c5: a7:31:1e:a0:f5:08:df:22:c4:08:26:32:d9:05:03:6d:b8:78: a6:cb:6c:1a:4b:10:06:ae:23:8b:83:1b:d0:72:26:b6:54:c7: c6:28:78:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwMzA2MjM1NDM1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhMzViYS03NzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvA+4Igof5ruHZDPF/yWB7LhiOdvA5shESnl27J9S/5Sto3k2TCeWI2DYX8P s3xBWbysVHNRRnQ8bvoCcFRq1E1L+QTJ1rouv0ginw+/Wo0lBsDvBvHKSNMGacfF cjLnVG2j7gedqnIleyR/fIX4ppVVvjcF4GZxkFXIu0Gpy36maIp17S52gi8xsZSa uLKHBQuuI6qF72SgF61UKPcpkwccS4UQxFNZKJgvmWONWRCuu3T94K8OS3MpXsdd nsJ7lqCKtevI7zATLYvQ+12xTrtcsr6sKD0q6znIevoWMtauJ+AN9YVyAQ1wS/1Y LzzCVwUkYo4dbx8oatXy++h/3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHt/ba2K +4LppPHJ/9KWrdkYueJQMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvNUFGNkREMDhG QUU2MTFFRjg4OTAzMDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABvd6UwDQYJKoZIhvcNAQELBQADggEBAKPlI9zTfb0NTlB7 3hsQyNUWtVxwR3Lc+/UdHDMh8Rif+JMhzMGBQUMHAYV3d7CRDGANzFzBX81befFl Xr6QUTYDUVVNad+6130SsllSd1wI2rNm0yNYPHR7jCOfq25cfee+khlZ/KzZt7Ld B6Rgngb47M/3xYeNT3LN8KZ9WprJ4H3C4mXF0bYE85JRUV09F2Qsqc4jb2SLHa5p qSFbf43/oM4rMRwQGkMyruZASs3rkwb/4IkI23D0fr4RmDBxcW9dlM6ikKKIrhSC +g4Iadk6bNYJMpYlxacxHqD1CN8ixAgmMtkFA224eKbLbBpLEAauI4uDG9ByJrZU x8YoeA8= -----END CERTIFICATE-----Generated at Fri Apr 4 22:14:49 2025 by rpki-client