$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/FC458FFABD2F11EFACAEDF48C4F9AE02.roa File: FC458FFABD2F11EFACAEDF48C4F9AE02.roa (raw, json) Hash identifier: JhXAK3rvu+eA5A55zrWLUy9P2VWJ9TdInDYIPpvwJmg= Subject key identifier: CA:F6:7C:EB:2A:B8:27:18:F3:24:BD:20:B4:74:98:AB:A4:FD:E7:8D Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0403 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/FC458FFABD2F11EFACAEDF48C4F9AE02.roa Signing time: Wed 18 Dec 2024 11:05:26 +0000 ROA not before: Wed 18 Dec 2024 11:05:26 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 398343 IP address blocks: 203.32.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 01:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75 Validity Not Before: Dec 18 11:05:26 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6762ac76-e38e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:72:59:c3:88:48:1a:59:fa:40:10:16:5f:c7: 6a:eb:6d:da:7b:cb:63:2c:0f:ce:89:67:e2:28:3a: c4:ca:77:82:78:15:c8:da:d0:85:f2:ca:a7:36:9c: c3:0f:89:45:ad:e7:1a:e0:1c:30:11:e0:32:d6:08: 8b:e3:66:62:63:7a:25:62:80:d7:09:99:b7:cf:82: 08:f3:bf:91:da:82:9a:a5:ff:3a:15:53:94:fc:d3: 72:9b:ee:54:75:84:32:e5:a6:20:fe:27:af:70:36: 75:7e:21:c7:79:ae:b0:e4:7d:e6:b2:82:9c:7e:b8: f7:6e:1d:58:94:24:7e:f0:7b:e2:a7:8a:b1:0e:a1: 03:af:e7:3b:b6:b3:59:23:a1:4c:ea:33:3d:6b:28: 67:7e:53:73:a9:74:0e:9f:b0:d6:b9:31:be:9c:c0: 7b:a4:be:9c:67:03:7a:d2:00:36:3b:c1:1f:e8:46: e2:d0:ac:bb:ea:1b:05:27:53:01:0c:bb:b3:5d:71: 72:aa:cf:b2:81:61:e9:dd:1f:16:08:81:a2:12:06: 69:58:b8:4e:99:e3:51:dd:a4:95:cf:5a:b0:c9:6b: ea:aa:55:83:2f:cc:60:6d:19:9d:0e:d7:3b:ac:f8: 5f:f4:0c:fe:50:47:83:62:17:d7:99:99:9d:02:5d: c6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F6:7C:EB:2A:B8:27:18:F3:24:BD:20:B4:74:98:AB:A4:FD:E7:8D X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/FC458FFABD2F11EFACAEDF48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.22.0/24 Signature Algorithm: sha256WithRSAEncryption b9:28:b6:8a:87:06:10:d4:2b:39:b4:e3:66:5e:d3:16:64:c0: bc:fd:8c:f7:74:e8:1b:49:09:7b:80:2a:c6:74:5c:bc:e5:d1: a7:eb:c3:1b:d7:3a:3e:bb:b7:bd:a2:8b:0f:f4:72:78:e5:24: b8:75:5f:ab:48:36:7d:41:51:c4:05:d6:69:ca:3e:1f:68:12: 31:6f:d5:63:98:84:64:0c:03:6d:59:b6:5f:84:c0:de:08:f1: 0c:d8:ca:85:f0:1f:52:7c:fd:eb:a6:6d:59:ad:db:81:1d:b5: e1:f6:62:e8:3d:a9:2c:bc:be:82:f6:e0:de:60:fd:c3:35:8d: b4:14:81:f7:af:60:f3:e3:07:b9:ae:32:ae:7d:d0:d5:ca:66: 98:1c:3f:bb:3d:01:ab:7b:79:84:54:54:0c:12:ef:2f:27:69: 88:42:34:06:ac:7c:35:29:3f:4c:2d:60:c4:64:cd:94:8a:62: 11:2f:22:0f:d1:07:0a:2f:72:62:94:c6:20:10:66:5d:cd:0e: f8:27:30:d2:78:2e:dd:d1:4b:8a:12:10:48:7c:96:55:ca:47: 24:02:f8:22:d4:e8:ab:0f:40:6b:55:79:43:27:0b:06:01:2d: a5:ac:4e:c0:59:2d:66:bd:0e:f4:d1:1f:c2:75:dd:1c:c0:01: a3:1a:5a:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjQxMjE4MTEwNTI2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyYWM3Ni1lMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3JZw4hIGln6QBAWX8dq623ae8tjLA/OiWfiKDrEyneCeBXI2tCF8sqnNpzD D4lFreca4BwwEeAy1giL42ZiY3olYoDXCZm3z4II87+R2oKapf86FVOU/NNym+5U dYQy5aYg/ievcDZ1fiHHea6w5H3msoKcfrj3bh1YlCR+8Hvip4qxDqEDr+c7trNZ I6FM6jM9ayhnflNzqXQOn7DWuTG+nMB7pL6cZwN60gA2O8Ef6Ebi0Ky76hsFJ1MB DLuzXXFyqs+ygWHp3R8WCIGiEgZpWLhOmeNR3aSVz1qwyWvqqlWDL8xgbRmdDtc7 rPhf9Az+UEeDYhfXmZmdAl3GWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMr2fOsq uCcY8yS9ILR0mKuk/eeNMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvRkM0NThGRkFC RDJGMTFFRkFDQUVERjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIBYwDQYJKoZIhvcNAQELBQADggEBALkotoqHBhDUKzm0 42Ze0xZkwLz9jPd06BtJCXuAKsZ0XLzl0afrwxvXOj67t72iiw/0cnjlJLh1X6tI Nn1BUcQF1mnKPh9oEjFv1WOYhGQMA21Ztl+EwN4I8QzYyoXwH1J8/eumbVmt24Ed teH2Yug9qSy8voL24N5g/cM1jbQUgfevYPPjB7muMq590NXKZpgcP7s9Aat7eYRU VAwS7y8naYhCNAasfDUpP0wtYMRkzZSKYhEvIg/RBwovcmKUxiAQZl3NDvgnMNJ4 Lt3RS4oSEEh8llXKRyQC+CLU6KsPQGtVeUMnCwYBLaWsTsBZLWa9DvTRH8J13RzA AaMaWgo= -----END CERTIFICATE-----Generated at Wed Feb 5 13:03:13 2025 by rpki-client