$ rpki-client -vvf rpki.apnic.net/member_repository/A91806C2/1624D1D8C49F11EC831CAF0EC4F9AE02/1CD62088C4A211EC8FD6D313C4F9AE02.roa File: 1CD62088C4A211EC8FD6D313C4F9AE02.roa (raw, json) Hash identifier: ETDxPvShx5+OyBoTOg4K/0GFPoGxe8exQUKFLOPyavs= Subject key identifier: FB:B3:55:73:28:8B:E5:0B:3C:5E:24:5A:15:22:5E:D7:C9:86:1F:DD Certificate issuer: /CN=A91806C2/serialNumber=5B0BBC84B5CBD15C30D90142706528CF19010568 Certificate serial: 025F Authority key identifier: 5B:0B:BC:84:B5:CB:D1:5C:30:D9:01:42:70:65:28:CF:19:01:05:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wwu8hLXL0Vww2QFCcGUozxkBBWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91806C2/1624D1D8C49F11EC831CAF0EC4F9AE02/1CD62088C4A211EC8FD6D313C4F9AE02.roa Signing time: Wed 03 Apr 2024 04:06:38 +0000 ROA not before: Wed 03 Apr 2024 04:06:38 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 16509 IP address blocks: 203.27.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91806C2/1624D1D8C49F11EC831CAF0EC4F9AE02/Wwu8hLXL0Vww2QFCcGUozxkBBWg.crl rsync://rpki.apnic.net/member_repository/A91806C2/1624D1D8C49F11EC831CAF0EC4F9AE02/Wwu8hLXL0Vww2QFCcGUozxkBBWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wwu8hLXL0Vww2QFCcGUozxkBBWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91806C2 Validity Not Before: Apr 3 04:06:38 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660cd5cd-385d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a3:1d:09:0e:ec:93:20:4c:ff:a0:f7:2a:4f: 9e:62:64:0c:ec:01:7d:ff:54:7e:0d:24:5a:bc:e0: b0:6d:f1:e1:90:00:af:0b:e4:07:b6:66:f2:b0:f3: b7:cd:92:f1:f0:8e:c5:5b:f2:3f:49:84:b5:31:89: f9:ec:aa:ce:c4:cf:ec:e7:25:e7:db:ef:b1:a2:a3: 8f:6b:13:84:92:b6:4e:dd:a4:95:9c:d5:4d:31:c3: 5a:77:4b:44:ac:d3:5a:7c:1f:d7:76:14:1b:92:b2: cf:d1:e0:7c:b5:f8:fe:b1:c3:4e:fe:5c:e6:52:d7: d1:97:78:03:69:6f:9b:0f:29:5f:70:69:91:e3:34: fd:ba:c7:cb:d1:05:42:d8:da:ed:a3:7a:e1:5c:8a: 3b:53:e6:33:95:91:cf:57:fa:e0:03:5a:b8:6d:df: f3:68:68:e1:6c:f4:df:1a:b1:df:27:97:44:20:e8: d0:c2:ee:07:fb:41:b3:a2:dd:bc:85:2c:76:22:cc: 1b:2b:76:95:9c:f8:29:70:ed:bb:ef:d8:67:95:2a: 1b:5d:1e:af:b9:fd:e9:cc:de:b2:91:8b:99:dd:3c: 76:64:fb:e4:e2:d5:23:c7:99:17:ec:1b:ee:e6:56: c0:0f:6d:5f:e5:81:c4:eb:88:7e:0e:de:a7:19:f8: f2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B3:55:73:28:8B:E5:0B:3C:5E:24:5A:15:22:5E:D7:C9:86:1F:DD X509v3 Authority Key Identifier: keyid:5B:0B:BC:84:B5:CB:D1:5C:30:D9:01:42:70:65:28:CF:19:01:05:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91806C2/1624D1D8C49F11EC831CAF0EC4F9AE02/Wwu8hLXL0Vww2QFCcGUozxkBBWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wwu8hLXL0Vww2QFCcGUozxkBBWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91806C2/1624D1D8C49F11EC831CAF0EC4F9AE02/1CD62088C4A211EC8FD6D313C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.115.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:5a:03:3e:97:2d:3e:24:c3:d7:f4:40:08:7f:25:84:86:78: 46:d6:3d:ea:a2:e1:46:65:60:5b:00:7c:42:77:de:33:ab:b5: 6f:88:e5:a9:8d:05:b6:b4:b1:7b:94:64:5e:b8:39:d9:1e:c1: 7f:2e:63:0c:d4:7e:4b:d8:61:62:b5:71:7f:cb:5d:74:fb:f5: 7f:4d:17:5b:73:a8:fc:cd:5f:a0:3e:42:8e:fc:21:60:61:c7: ee:91:b3:b8:f6:87:b1:d6:ad:87:df:6b:f1:9a:0d:db:91:3b: 30:f5:c9:d1:73:f8:b6:36:49:db:ca:f2:5c:12:7d:46:1f:5d: 52:1c:f0:67:33:91:60:6c:b8:bd:71:6e:17:26:98:3e:5b:77: 40:a9:98:fd:a1:0b:61:48:a0:03:6a:ae:19:8a:b6:56:9b:6f: fb:25:de:66:3e:99:3b:21:f0:d9:cc:8a:9e:b0:f0:97:4d:af: 0a:3f:d3:b5:b9:56:2b:40:26:87:d1:79:0e:93:19:91:14:6d: ed:f2:61:ff:92:1b:9c:cb:a8:6d:09:be:8a:b3:c6:9a:c3:f7: 2a:bc:28:a6:da:c9:b7:82:73:07:0a:42:06:ac:ec:ed:55:59: c0:8f:ed:18:1a:72:25:cb:47:66:a6:1e:a5:76:b3:0b:8c:70: 20:52:a9:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA2QzIxMTAvBgNVBAUTKDVCMEJCQzg0QjVDQkQxNUMzMEQ5MDE0MjcwNjUyOENG MTkwMTA1NjgwHhcNMjQwNDAzMDQwNjM4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjZDVjZC0zODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26MdCQ7skyBM/6D3Kk+eYmQM7AF9/1R+DSRavOCwbfHhkACvC+QHtmbysPO3 zZLx8I7FW/I/SYS1MYn57KrOxM/s5yXn2++xoqOPaxOEkrZO3aSVnNVNMcNad0tE rNNafB/XdhQbkrLP0eB8tfj+scNO/lzmUtfRl3gDaW+bDylfcGmR4zT9usfL0QVC 2Nrto3rhXIo7U+YzlZHPV/rgA1q4bd/zaGjhbPTfGrHfJ5dEIOjQwu4H+0Gzot28 hSx2IswbK3aVnPgpcO2779hnlSobXR6vuf3pzN6ykYuZ3Tx2ZPvk4tUjx5kX7Bvu 5lbAD21f5YHE64h+Dt6nGfjylwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPuzVXMo i+ULPF4kWhUiXtfJhh/dMB8GA1UdIwQYMBaAFFsLvIS1y9FcMNkBQnBlKM8ZAQVo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDZDMi8xNjI0RDFEOEM0 OUYxMUVDODMxQ0FGMEVDNEY5QUUwMi9Xd3U4aExYTDBWd3cyUUZDY0dVb3p4a0JC V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d3dThoTFhMMFZ3dzJRRkNjR1VvenhrQkJXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA2QzIvMTYyNEQxRDhDNDlGMTFFQzgzMUNBRjBFQzRGOUFFMDIvMUNENjIwODhD NEEyMTFFQzhGRDZEMzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLG3MwDQYJKoZIhvcNAQELBQADggEBAIxaAz6XLT4kw9f0 QAh/JYSGeEbWPeqi4UZlYFsAfEJ33jOrtW+I5amNBba0sXuUZF64OdkewX8uYwzU fkvYYWK1cX/LXXT79X9NF1tzqPzNX6A+Qo78IWBhx+6Rs7j2h7HWrYffa/GaDduR OzD1ydFz+LY2SdvK8lwSfUYfXVIc8GczkWBsuL1xbhcmmD5bd0CpmP2hC2FIoANq rhmKtlabb/sl3mY+mTsh8NnMip6w8JdNrwo/07W5VitAJofReQ6TGZEUbe3yYf+S G5zLqG0JvoqzxprD9yq8KKbaybeCcwcKQgas7O1VWcCP7RgaciXLR2amHqV2swuM cCBSqSI= -----END CERTIFICATE-----Generated at Sun Feb 16 15:38:04 2025 by rpki-client