$ rpki-client -vvf rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/C8D5160AE75E11EF97E59E40C4F9AE02.roa File: C8D5160AE75E11EF97E59E40C4F9AE02.roa (raw, json) Hash identifier: bKr4P1tj2W/ZQ8OT//pbumAfeisJIxJ7Wd8AUxErHkY= Subject key identifier: 1F:1D:47:4F:D0:0C:7A:4C:DF:FB:F8:FB:67:50:52:0A:A7:F8:2B:59 Certificate issuer: /CN=A919D180/serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Certificate serial: 1D Authority key identifier: 87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/C8D5160AE75E11EF97E59E40C4F9AE02.roa Signing time: Mon 10 Feb 2025 03:26:15 +0000 ROA not before: Mon 10 Feb 2025 03:26:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 17794 IP address blocks: 202.45.82.0/23 maxlen: 23 202.45.85.0/24 maxlen: 24 202.45.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Mar 2025 07:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D180 Validity Not Before: Feb 10 03:26:15 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67a971d7-4fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:32:d1:90:05:80:75:30:a6:6b:15:76:0b:23: 9f:e9:7c:76:d6:76:3e:6e:c8:a9:fe:ed:2a:15:75: d6:ce:18:4f:0c:78:ea:6f:3d:f1:17:9c:78:0d:33: 53:b5:b6:7b:1d:1a:42:b4:63:34:8d:0a:c1:58:df: 89:10:2d:02:d7:aa:57:08:81:f4:27:4d:b7:53:97: 72:90:2b:05:03:ff:0b:00:f6:b2:93:4f:f7:b1:19: ac:84:18:a3:ff:8a:d9:8a:ae:33:6d:41:c6:4a:b0: dd:d7:1c:a1:c9:47:be:19:fa:91:42:ab:a1:f0:7f: bb:ec:a5:fe:d0:cc:82:88:05:85:a3:5c:2e:6b:9d: 85:42:e0:fe:d1:42:bb:9c:ce:c9:28:fb:4c:87:db: 3c:21:59:90:45:b5:82:0c:a9:30:3b:fe:1a:70:70: a5:65:85:01:4f:6a:d4:f7:3f:1f:10:2f:44:85:68: 36:5f:07:58:aa:f9:d4:f1:d1:d0:a7:1e:f4:b4:8d: d5:e5:19:08:42:c8:f9:ea:76:64:ff:d4:7d:ff:03: e3:46:14:f0:c8:ea:c0:9f:44:9d:5c:4b:dc:22:2f: 03:3d:f6:71:37:1b:56:c2:53:c4:c5:50:96:5c:56: 66:d5:dd:ac:08:f7:3d:8a:55:fb:44:70:eb:db:87: 69:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1D:47:4F:D0:0C:7A:4C:DF:FB:F8:FB:67:50:52:0A:A7:F8:2B:59 X509v3 Authority Key Identifier: keyid:87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/C8D5160AE75E11EF97E59E40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.82.0/23 202.45.85.0/24 202.45.88.0/24 Signature Algorithm: sha256WithRSAEncryption 63:e1:fa:2c:90:4e:6e:ce:4a:0c:81:ad:61:12:42:8f:26:45: b5:89:5a:c6:11:4e:b4:79:1e:0e:27:0c:b9:00:06:60:6e:fb: 52:52:75:2f:c9:37:ac:70:3c:e0:dc:ac:e4:1d:6f:cf:aa:51: 0c:6a:d9:5b:9a:b2:a1:5d:2e:16:cd:ea:27:b6:ee:6c:51:98: e7:d6:53:d9:60:da:74:51:2d:6c:79:5a:3c:f1:5c:2e:86:94: ae:71:c4:79:aa:bb:7d:65:e6:1e:38:9d:6f:15:2a:5b:2d:b1: 23:31:dd:9f:5d:33:e9:b4:91:5f:7d:25:8e:79:92:bc:ec:cd: a4:73:c8:3f:b4:c2:0e:60:3f:78:63:30:a2:b2:53:72:2a:87: 1c:8d:6e:c8:62:1c:dd:10:44:f0:36:77:4e:20:86:bb:a2:d1: 7e:4f:49:80:09:a6:26:94:36:1d:62:2e:22:55:4f:f7:bb:57: 4e:82:20:9e:16:64:87:60:bf:23:c3:60:f2:6c:eb:da:9a:0b: 88:b5:9e:c8:f5:98:02:e1:e4:8d:3c:f2:21:7f:75:72:b4:dc: b2:74:c3:70:2f:06:12:e8:83:92:0c:60:4d:1a:32:da:c4:8a: c2:e1:29:54:ab:fb:9d:46:34:0b:3d:42:69:df:03:63:db:2d: 6b:21:93:14 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDE4MDExMC8GA1UEBRMoODdEQTQ0QTRDRjgzOUMzODgxQzZCQzM4NjgzQ0NEQzMw OENBN0NFOTAeFw0yNTAyMTAwMzI2MTVaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTk3MWQ3LTRmYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhMtGQBYB1MKZrFXYLI5/pfHbWdj5uyKn+7SoVddbOGE8MeOpvPfEXnHgNM1O1 tnsdGkK0YzSNCsFY34kQLQLXqlcIgfQnTbdTl3KQKwUD/wsA9rKTT/exGayEGKP/ itmKrjNtQcZKsN3XHKHJR74Z+pFCq6Hwf7vspf7QzIKIBYWjXC5rnYVC4P7RQruc zsko+0yH2zwhWZBFtYIMqTA7/hpwcKVlhQFPatT3Px8QL0SFaDZfB1iq+dTx0dCn HvS0jdXlGQhCyPnqdmT/1H3/A+NGFPDI6sCfRJ1cS9wiLwM99nE3G1bCU8TFUJZc VmbV3awI9z2KVftEcOvbh2kdAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUHx1HT9AM ekzf+/j7Z1BSCqf4K1kwHwYDVR0jBBgwFoAUh9pEpM+DnDiBxrw4aDzNwwjKfOkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEMTgwLzc3NDI4N0YyRDZD NzExRUZBM0UxRDgxQ0M0RjlBRTAyL2g5cEVwTS1EbkRpQnhydzRhRHpOd3dqS2ZP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDlwRXBNLURuRGlCeHJ3NGFEek53d2pLZk9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDE4MC83NzQyODdGMkQ2QzcxMUVGQTNFMUQ4MUNDNEY5QUUwMi9DOEQ1MTYwQUU3 NUUxMUVGOTdFNTlFNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAcotUgMEAMotVQMEAMotWDANBgkqhkiG9w0BAQsFAAOCAQEA Y+H6LJBObs5KDIGtYRJCjyZFtYlaxhFOtHkeDicMuQAGYG77UlJ1L8k3rHA84Nys 5B1vz6pRDGrZW5qyoV0uFs3qJ7bubFGY59ZT2WDadFEtbHlaPPFcLoaUrnHEeaq7 fWXmHjidbxUqWy2xIzHdn10z6bSRX30ljnmSvOzNpHPIP7TCDmA/eGMworJTciqH HI1uyGIc3RBE8DZ3TiCGu6LRfk9JgAmmJpQ2HWIuIlVP97tXToIgnhZkh2C/I8Ng 8mzr2poLiLWeyPWYAuHkjTzyIX91crTcsnTDcC8GEuiDkgxgTRoy2sSKwuEpVKv7 nUY0Cz1Cad8DY9stayGTFA== -----END CERTIFICATE-----Generated at Tue Mar 11 19:40:35 2025 by rpki-client