$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/F0D8670E641711EEB4A16E1FC4F9AE02.roa File: F0D8670E641711EEB4A16E1FC4F9AE02.roa (raw, json) Hash identifier: 47XFa+/O+1qqR8kJkOYUWNPtX/jddJ4oiNfmWLvRACU= Subject key identifier: 0D:C4:86:6C:E6:77:65:F3:1F:B5:82:EE:E1:31:3C:E3:CF:7F:22:0B Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 35DC Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/F0D8670E641711EEB4A16E1FC4F9AE02.roa Signing time: Thu 04 Apr 2024 15:20:58 +0000 ROA not before: Thu 04 Apr 2024 15:20:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136602 IP address blocks: 202.70.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13788 (0x35dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832 Validity Not Before: Apr 4 15:20:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660ec559-ba2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:eb:e2:5f:c7:eb:59:c9:20:90:36:31:2a:51: 55:00:3f:39:73:cf:a3:9c:69:d9:f0:f1:68:61:b5: 7e:c9:89:f2:56:ef:68:0a:31:d8:e9:0b:d2:71:76: 13:00:3a:6f:3c:20:77:60:6e:dc:2c:d5:2f:94:be: d2:a1:fc:8c:a0:ab:2e:15:60:10:44:0b:fa:48:43: 91:d3:fe:3d:a8:10:d2:51:65:a7:b5:82:b3:65:c7: 55:dd:19:97:a5:0a:ca:3b:ce:00:54:4c:40:c3:b0: ba:35:1a:a6:b1:a8:9e:ee:26:16:cb:7d:b6:1f:11: 44:cb:5b:2a:ef:1e:93:cf:d9:5a:83:84:30:53:96: 15:54:0b:a3:33:38:75:6f:01:99:bc:1c:d3:3c:8e: e0:28:ae:58:24:0b:41:5d:3d:23:d2:72:04:5b:1f: c9:da:f7:de:00:07:33:26:12:d0:91:00:58:3b:44: 3a:30:eb:42:a4:b7:59:00:c1:fa:5a:42:a3:6e:51: 2a:7a:f9:8e:ef:1c:8e:a2:c6:b5:29:b9:76:85:f0: e7:ff:0d:b3:b1:53:e9:c2:85:69:3f:f2:3b:bb:1d: c9:ec:7b:4c:e1:d2:98:67:61:6a:16:b8:ca:21:56: a7:15:44:da:9d:41:a5:53:4e:64:4c:31:4d:bc:8d: ac:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C4:86:6C:E6:77:65:F3:1F:B5:82:EE:E1:31:3C:E3:CF:7F:22:0B X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/F0D8670E641711EEB4A16E1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.148.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:ab:b8:7d:d8:e5:a4:41:8b:c0:8f:e7:2f:d5:ae:0d:4c:b2: 9c:5d:39:bf:37:81:9b:d7:05:bb:b3:1a:ac:72:e8:32:cb:a9: c2:b5:5b:28:a6:86:5c:43:c1:c5:a7:4c:a9:d9:d2:9c:be:de: 9b:1d:bf:e2:18:b0:70:e2:23:d1:23:89:c0:da:aa:eb:8c:bf: 13:ba:69:4d:29:87:c8:87:7b:b0:08:99:ce:a4:57:1b:fd:b4: 2e:73:4c:fb:e9:6f:6d:4d:b7:94:aa:9c:38:cf:14:c7:a2:7e: c7:83:54:74:89:b4:32:29:ee:a3:51:42:e7:68:9f:2a:d1:6f: 8f:e8:f6:99:6a:a1:10:db:95:fe:b4:64:18:15:c5:42:43:f9: 7e:92:ce:78:8f:c9:e2:78:91:9e:e0:09:33:f9:ec:9d:9f:e0: 43:5c:a1:99:05:4c:b2:07:af:3f:cb:66:fe:2f:df:40:4d:da: 38:62:29:4b:59:0c:db:b5:f0:8f:98:92:e0:1a:c6:78:0c:76: 59:4d:5d:1b:24:6b:2c:94:9e:28:92:91:10:2e:46:d5:99:ee: 46:37:f5:a7:e4:d3:4a:9a:ae:69:8b:0d:ee:85:86:8c:af:36: ea:fb:a5:a1:bb:36:3c:89:9b:a0:26:4d:89:94:b3:b4:dc:01: 54:5e:58:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNDA0MTUyMDU4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYzU1OS1iYTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneviX8frWckgkDYxKlFVAD85c8+jnGnZ8PFoYbV+yYnyVu9oCjHY6QvScXYT ADpvPCB3YG7cLNUvlL7SofyMoKsuFWAQRAv6SEOR0/49qBDSUWWntYKzZcdV3RmX pQrKO84AVExAw7C6NRqmsaie7iYWy322HxFEy1sq7x6Tz9lag4QwU5YVVAujMzh1 bwGZvBzTPI7gKK5YJAtBXT0j0nIEWx/J2vfeAAczJhLQkQBYO0Q6MOtCpLdZAMH6 WkKjblEqevmO7xyOosa1Kbl2hfDn/w2zsVPpwoVpP/I7ux3J7HtM4dKYZ2FqFrjK IVanFUTanUGlU05kTDFNvI2sMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA3Ehmzm d2XzH7WC7uExPOPPfyILMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvRjBEODY3MEU2 NDE3MTFFRUI0QTE2RTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKRpQwDQYJKoZIhvcNAQELBQADggEBAFuruH3Y5aRBi8CP 5y/Vrg1MspxdOb83gZvXBbuzGqxy6DLLqcK1WyimhlxDwcWnTKnZ0py+3psdv+IY sHDiI9EjicDaquuMvxO6aU0ph8iHe7AImc6kVxv9tC5zTPvpb21Nt5SqnDjPFMei fseDVHSJtDIp7qNRQudonyrRb4/o9plqoRDblf60ZBgVxUJD+X6SzniPyeJ4kZ7g CTP57J2f4ENcoZkFTLIHrz/LZv4v30BN2jhiKUtZDNu18I+YkuAaxngMdllNXRsk ayyUniiSkRAuRtWZ7kY39afk00qarmmLDe6FhoyvNur7paG7NjyJm6AmTYmUs7Tc AVReWI0= -----END CERTIFICATE-----Generated at Sun Feb 16 20:40:37 2025 by rpki-client