$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/89654CDAB83B11EFAA80DD09C4F9AE02.roa File: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (raw, json) Hash identifier: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34= Subject key identifier: 5A:3F:F5:14:BC:14:E5:12:D3:9B:32:17:B2:0B:72:ED:9D:3F:69:8A Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D01 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/89654CDAB83B11EFAA80DD09C4F9AE02.roa Signing time: Tue 18 Feb 2025 16:43:44 +0000 ROA not before: Tue 18 Feb 2025 16:43:44 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 396982 IP address blocks: 202.144.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7425 (0x1d01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2 Validity Not Before: Feb 18 16:43:44 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b4b8c0-80b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:eb:c2:e8:e5:86:f7:25:95:ab:16:60:a2:f7: a2:36:62:aa:14:19:23:8f:0a:a9:e9:1e:93:d5:60: bb:d7:e4:73:d2:6e:b7:36:62:ee:12:1b:24:02:ea: 83:ac:30:92:74:99:bf:bb:77:dc:50:a5:d9:34:f7: f0:84:51:1b:69:04:9c:cf:75:85:f4:d4:36:fd:b8: 6a:d1:76:7b:4a:c8:38:ef:ed:4a:04:8c:73:1d:5a: 9a:2f:66:a3:d7:f8:47:df:9f:c2:98:6c:5d:4e:0c: 1b:fb:03:26:56:0a:db:86:c4:70:aa:d5:2e:f1:e1: c5:96:fa:ab:c8:0c:a4:86:4b:b6:66:6b:6c:43:4e: ae:49:46:0b:78:cc:f1:75:d1:17:10:35:07:3e:5d: ee:f0:76:ab:c6:45:a7:14:ae:0d:e9:28:5a:ae:44: 59:7b:bb:5c:d0:3d:69:c2:d7:c6:01:b3:bf:d1:4f: ed:8f:c0:33:24:55:17:44:0f:bb:04:c1:a1:5f:60: 31:f1:12:a9:6c:bf:a6:53:46:c8:6b:e5:41:6a:22: 70:c9:a1:f3:1b:19:00:db:12:55:ca:21:c9:48:da: 48:a4:98:ea:ec:58:1a:2b:c2:ad:8b:a0:d7:94:a5: 8d:c7:6c:98:29:93:cb:1e:b8:59:f7:c6:69:f8:51: e7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3F:F5:14:BC:14:E5:12:D3:9B:32:17:B2:0B:72:ED:9D:3F:69:8A X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/89654CDAB83B11EFAA80DD09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.144.196.0/23 Signature Algorithm: sha256WithRSAEncryption 17:94:d1:2a:c7:94:f9:51:a5:68:6c:b4:ae:f6:2e:eb:15:31: a4:5e:5f:be:c9:e3:22:61:dd:da:ee:a8:e4:04:f4:c0:12:af: 35:4b:ee:b8:2b:02:d9:58:25:20:ca:13:a4:01:c5:18:64:70: ce:b4:08:40:f7:ae:da:1d:a6:af:93:c4:01:2d:68:70:0a:cb: 04:d2:6c:c6:34:eb:b9:38:6e:d5:cc:6a:ef:7f:4e:09:86:4f: ec:fc:e6:cd:a1:ba:a3:98:5b:90:68:e7:58:e3:d7:85:1b:7b: ca:1d:95:22:ca:17:34:21:c0:97:57:4e:6a:e9:d9:59:f4:2a: f3:e1:b4:8f:60:89:ba:4e:eb:13:9b:2f:0e:da:97:c1:8c:ea: ad:36:e5:03:52:c6:2a:e1:fe:97:97:8a:d2:b7:94:af:c9:91: cd:e1:a1:cc:17:6e:9d:b9:03:b5:be:7c:0e:bc:64:9e:b4:b8: 23:da:d3:22:22:94:51:a7:ea:36:63:82:a4:e3:73:91:68:e1: 08:ea:ff:5b:e1:cd:7c:03:13:a0:80:7a:a3:7f:4a:57:2c:fa: 19:f5:2c:91:bb:fe:98:69:13:1a:99:0b:25:5c:9a:ae:86:fa: da:84:a4:f7:0f:86:6c:43:15:36:96:fd:b1:93:ee:20:b4:3f: 3d:84:62:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUwMjE4MTY0MzQ0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YjhjMC04MGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+vC6OWG9yWVqxZgoveiNmKqFBkjjwqp6R6T1WC71+Rz0m63NmLuEhskAuqD rDCSdJm/u3fcUKXZNPfwhFEbaQScz3WF9NQ2/bhq0XZ7Ssg47+1KBIxzHVqaL2aj 1/hH35/CmGxdTgwb+wMmVgrbhsRwqtUu8eHFlvqryAykhku2ZmtsQ06uSUYLeMzx ddEXEDUHPl3u8HarxkWnFK4N6SharkRZe7tc0D1pwtfGAbO/0U/tj8AzJFUXRA+7 BMGhX2Ax8RKpbL+mU0bIa+VBaiJwyaHzGxkA2xJVyiHJSNpIpJjq7FgaK8Kti6DX lKWNx2yYKZPLHrhZ98Zp+FHnXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFo/9RS8 FOUS05syF7ILcu2dP2mKMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvODk2NTRDREFC ODNCMTFFRkFBODBERDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKkMQwDQYJKoZIhvcNAQELBQADggEBABeU0SrHlPlRpWhs tK72LusVMaReX77J4yJh3druqOQE9MASrzVL7rgrAtlYJSDKE6QBxRhkcM60CED3 rtodpq+TxAEtaHAKywTSbMY067k4btXMau9/TgmGT+z85s2huqOYW5Bo51jj14Ub e8odlSLKFzQhwJdXTmrp2Vn0KvPhtI9gibpO6xObLw7al8GM6q025QNSxirh/peX itK3lK/Jkc3hocwXbp25A7W+fA68ZJ60uCPa0yIilFGn6jZjgqTjc5Fo4Qjq/1vh zXwDE6CAeqN/Slcs+hn1LJG7/phpExqZCyVcmq6G+tqEpPcPhmxDFTaW/bGT7iC0 Pz2EYg8= -----END CERTIFICATE-----Generated at Fri Apr 4 22:02:17 2025 by rpki-client