$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/F90F9A403ACB11EC9FEBB367C4F9AE02.roa File: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (raw, json) Hash identifier: +xOv12aaFD+ElTkbMbM+GL6Nan/ResHUQv6dF6h2KxA= Subject key identifier: E7:C9:6D:D0:BC:69:6A:D9:9C:6E:52:98:82:B1:B9:E7:0B:FF:09:0C Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 09C9 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/F90F9A403ACB11EC9FEBB367C4F9AE02.roa Signing time: Fri 26 Apr 2024 21:09:51 +0000 ROA not before: Fri 26 Apr 2024 21:09:51 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133752 IP address blocks: 203.9.150.0/24 maxlen: 24 203.20.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2505 (0x9c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8 Validity Not Before: Apr 26 21:09:51 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662c181e-a9b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:65:29:2a:8a:c4:b7:be:4c:7f:ad:1a:31:98: 83:90:de:4b:33:b4:bb:71:f8:94:51:dd:8f:c1:f7: fb:0f:e0:4b:c8:0c:bd:85:a2:11:2c:57:c2:ce:9e: a6:c7:6c:f7:fc:24:94:df:29:f5:a6:91:1a:68:52: 22:97:de:2c:30:5b:18:fd:2b:76:91:6d:d0:d4:85: ba:1a:a7:6f:96:7d:02:d7:36:5a:ec:73:3d:c3:b9: 62:d2:cb:70:c8:d7:92:ee:84:d2:37:c7:d8:82:22: e6:10:e6:ce:15:b5:fc:fa:bb:ff:6a:5d:39:e3:2f: 65:f0:d1:fd:bc:62:cc:6b:75:9c:3c:91:69:21:89: b1:42:6c:97:b2:cc:d7:80:3d:38:67:84:54:a1:f9: c1:3f:40:de:99:d3:81:16:46:65:52:22:92:f5:92: 09:5e:3e:3e:bf:e2:25:ca:25:98:dd:1e:a3:09:19: fe:f1:e5:14:66:a9:07:d1:c5:a8:43:8f:0e:bf:bd: a6:98:e8:c9:e6:9d:a9:40:05:9f:a3:a5:d1:9f:e0: 0d:ba:ba:70:74:48:a4:b9:f3:09:0f:64:6e:77:e1: 25:cc:18:9c:2f:f9:ee:70:40:f9:d7:cb:53:e0:3e: 3f:ea:c7:bb:36:c6:64:30:b4:5a:e1:68:5e:b3:b1: b6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C9:6D:D0:BC:69:6A:D9:9C:6E:52:98:82:B1:B9:E7:0B:FF:09:0C X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/F90F9A403ACB11EC9FEBB367C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.150.0/24 203.20.113.0/24 Signature Algorithm: sha256WithRSAEncryption 52:cb:80:0b:8b:b2:fd:4e:f6:43:ec:a3:3b:55:06:7c:c6:d0: 65:fe:d2:34:31:2d:4c:e9:76:75:fe:43:f8:c5:3a:79:b1:49: 3f:70:f8:e5:20:2a:98:9b:05:4c:c3:e9:82:58:25:19:c8:02: df:46:85:8c:eb:99:b7:2a:e6:9c:59:e0:19:01:24:67:9c:f9: f5:df:e6:2c:e0:7f:d8:10:4c:c7:d9:20:4c:4c:2e:84:05:62: 7c:a2:fe:37:1d:29:95:1c:e6:48:0e:a9:18:e5:08:44:93:5a: 34:ee:43:ad:d3:6a:36:bb:65:65:ab:4f:dd:a3:b3:2d:ee:ee: 9c:07:b1:07:db:ab:b4:40:1d:47:ec:f8:58:b9:36:fc:8a:e5: be:06:2b:4b:aa:0c:45:12:27:16:ca:d3:00:31:f5:6a:53:9a: 17:48:27:3d:a2:89:21:db:75:b4:d3:a6:cf:da:9b:b0:91:bc: 03:d4:1e:12:7c:a0:70:e2:0d:20:26:33:d1:98:62:36:20:38: 85:0b:1e:9a:bb:06:a5:95:36:49:37:e7:7f:e9:a5:81:d7:aa: e2:39:9d:45:c3:b8:a1:95:04:0d:38:cf:2b:51:f2:b9:2d:64: 88:ac:38:81:e2:1c:6e:ec:cd:ad:67:48:b6:97:b6:f6:3c:1b: 9c:09:c8:f3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjQwNDI2MjEwOTUxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjMTgxZS1hOWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGUpKorEt75Mf60aMZiDkN5LM7S7cfiUUd2Pwff7D+BLyAy9haIRLFfCzp6m x2z3/CSU3yn1ppEaaFIil94sMFsY/St2kW3Q1IW6Gqdvln0C1zZa7HM9w7li0stw yNeS7oTSN8fYgiLmEObOFbX8+rv/al054y9l8NH9vGLMa3WcPJFpIYmxQmyXsszX gD04Z4RUofnBP0DemdOBFkZlUiKS9ZIJXj4+v+IlyiWY3R6jCRn+8eUUZqkH0cWo Q48Ov72mmOjJ5p2pQAWfo6XRn+ANurpwdEikufMJD2Rud+ElzBicL/nucED518tT 4D4/6se7NsZkMLRa4Whes7G2zQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOfJbdC8 aWrZnG5SmIKxuecL/wkMMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvRjkwRjlBNDAz QUNCMTFFQzlGRUJCMzY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLCZYDBADLFHEwDQYJKoZIhvcNAQELBQADggEBAFLLgAuL sv1O9kPsoztVBnzG0GX+0jQxLUzpdnX+Q/jFOnmxST9w+OUgKpibBUzD6YJYJRnI At9GhYzrmbcq5pxZ4BkBJGec+fXf5izgf9gQTMfZIExMLoQFYnyi/jcdKZUc5kgO qRjlCESTWjTuQ63Taja7ZWWrT92jsy3u7pwHsQfbq7RAHUfs+Fi5NvyK5b4GK0uq DEUSJxbK0wAx9WpTmhdIJz2iiSHbdbTTps/am7CRvAPUHhJ8oHDiDSAmM9GYYjYg OIULHpq7BqWVNkk353/ppYHXquI5nUXDuKGVBA04zytR8rktZIisOIHiHG7sza1n SLaXtvY8G5wJyPM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:45:00 2025 by rpki-client