$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/0120C296835D11EEA3484166C4F9AE02.roa File: 0120C296835D11EEA3484166C4F9AE02.roa (raw, json) Hash identifier: 7OzrwZ3Ky/gjMPnFBCcju8Q1dBXI74VmazgiOgPzNsc= Subject key identifier: 82:62:2C:D0:7E:B2:C3:30:4D:A3:CE:A5:23:A7:91:01:F8:51:F6:47 Certificate issuer: /CN=A91E7A8E/serialNumber=0B813E2BBA84069EB434D656667FECE1F61B494B Certificate serial: D6 Authority key identifier: 0B:81:3E:2B:BA:84:06:9E:B4:34:D6:56:66:7F:EC:E1:F6:1B:49:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C4E-K7qEBp60NNZWZn_s4fYbSUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/0120C296835D11EEA3484166C4F9AE02.roa Signing time: Fri 03 Jan 2025 03:47:35 +0000 ROA not before: Fri 03 Jan 2025 03:47:35 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 20473 IP address blocks: 203.34.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/C4E-K7qEBp60NNZWZn_s4fYbSUs.crl rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/C4E-K7qEBp60NNZWZn_s4fYbSUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C4E-K7qEBp60NNZWZn_s4fYbSUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7A8E Validity Not Before: Jan 3 03:47:35 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67775dd7-0b49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:90:99:4a:4d:7d:1d:85:4f:2d:92:a6:e4:6f: e7:28:e7:1e:49:f6:dc:e7:e7:8f:cc:da:0f:12:82: a7:34:1a:4e:c0:c4:af:42:f1:91:c0:6a:ad:ee:92: 80:c3:a3:be:77:13:a9:1e:d8:9d:10:86:12:17:53: 25:6e:b7:80:f6:3c:5c:d1:3b:c6:4d:95:c5:cc:f3: 12:ea:7a:6b:27:5a:eb:b3:57:5e:72:16:d0:c6:4b: fd:ba:86:5e:fb:f6:58:f8:5c:13:12:c4:0c:72:b6: 4c:3f:49:de:d7:52:78:81:3e:86:e4:92:f1:93:c0: 1f:19:d2:b7:92:ba:4e:c3:89:59:58:26:2c:e0:73: 31:9c:8a:c8:4a:cb:8f:46:65:28:94:b8:e5:83:64: 10:28:18:17:3a:24:79:32:dd:c8:c0:80:2c:56:14: 2d:ad:b8:4e:98:12:22:13:36:6e:a8:76:37:81:04: 97:de:1e:4c:6f:16:bf:59:f3:ef:cc:30:fd:f6:68: eb:ee:59:72:a6:3e:d5:a6:5d:e8:5c:b3:43:27:8e: e7:47:24:f2:52:97:29:bd:96:b4:50:d3:3e:1a:9e: bf:72:89:4b:5e:a3:66:c3:bc:0b:70:4a:50:a1:2b: ae:e7:65:31:2b:28:a4:e5:1a:21:7e:42:d7:c8:23: f3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:62:2C:D0:7E:B2:C3:30:4D:A3:CE:A5:23:A7:91:01:F8:51:F6:47 X509v3 Authority Key Identifier: keyid:0B:81:3E:2B:BA:84:06:9E:B4:34:D6:56:66:7F:EC:E1:F6:1B:49:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/C4E-K7qEBp60NNZWZn_s4fYbSUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C4E-K7qEBp60NNZWZn_s4fYbSUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7A8E/A05156A6835C11EE88EAB84FC4F9AE02/0120C296835D11EEA3484166C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.34.235.0/24 Signature Algorithm: sha256WithRSAEncryption 38:11:54:e4:41:8a:6d:74:b6:f9:71:79:4b:37:73:5b:fa:a5: 6e:3d:4a:e7:14:40:78:18:85:50:56:fe:9e:24:7a:8d:3d:4d: 6f:04:a4:bd:61:77:bb:7a:82:e5:6b:86:27:0d:07:2d:f7:2a: 35:f0:33:c0:7f:a4:f4:fa:39:8e:96:b1:a1:e2:93:11:da:c1: 03:1a:2a:ce:0b:fb:81:a0:9d:4b:43:c1:29:e3:a2:25:b3:c4: c4:04:f5:c8:1d:c6:1c:47:29:2f:f7:1b:ed:5e:ac:67:2a:42: 1d:6e:14:9e:d7:8b:f8:29:65:6f:69:52:81:e3:b5:79:3a:73: c8:a7:2e:0b:ce:e2:f0:d0:9b:ac:fd:a5:f0:5d:b4:ba:37:af: 36:cc:ea:15:5b:d1:1b:d6:90:89:cd:ce:00:72:c5:b4:b2:c9: 11:b6:9c:63:d2:aa:2f:0d:5a:53:93:60:94:06:eb:6a:fe:a8: 6f:d6:9a:cd:36:ee:7a:77:84:18:3e:ef:28:b0:47:d5:42:f5: af:be:2b:66:c7:57:3f:ae:75:5e:cf:62:e4:3c:f0:b6:32:82: bb:1b:e1:c1:2d:de:dd:7c:15:2e:8d:8e:2e:92:da:27:dd:51: 0e:22:f9:eb:42:ce:50:10:2e:36:18:02:87:43:53:68:f5:2d: 50:98:14:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdBOEUxMTAvBgNVBAUTKDBCODEzRTJCQkE4NDA2OUVCNDM0RDY1NjY2N0ZFQ0Ux RjYxQjQ5NEIwHhcNMjUwMTAzMDM0NzM1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3NWRkNy0wYjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZCZSk19HYVPLZKm5G/nKOceSfbc5+ePzNoPEoKnNBpOwMSvQvGRwGqt7pKA w6O+dxOpHtidEIYSF1MlbreA9jxc0TvGTZXFzPMS6nprJ1rrs1dechbQxkv9uoZe +/ZY+FwTEsQMcrZMP0ne11J4gT6G5JLxk8AfGdK3krpOw4lZWCYs4HMxnIrISsuP RmUolLjlg2QQKBgXOiR5Mt3IwIAsVhQtrbhOmBIiEzZuqHY3gQSX3h5Mbxa/WfPv zDD99mjr7llypj7Vpl3oXLNDJ47nRyTyUpcpvZa0UNM+Gp6/colLXqNmw7wLcEpQ oSuu52UxKyik5RohfkLXyCPz2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIJiLNB+ ssMwTaPOpSOnkQH4UfZHMB8GA1UdIwQYMBaAFAuBPiu6hAaetDTWVmZ/7OH2G0lL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0E4RS9BMDUxNTZBNjgz NUMxMUVFODhFQUI4NEZDNEY5QUUwMi9DNEUtSzdxRUJwNjBOTlpXWm5fczRmWWJT VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M0RS1LN3FFQnA2ME5OWldabl9zNGZZYlNVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdBOEUvQTA1MTU2QTY4MzVDMTFFRTg4RUFCODRGQzRGOUFFMDIvMDEyMEMyOTY4 MzVEMTFFRUEzNDg0MTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIuswDQYJKoZIhvcNAQELBQADggEBADgRVORBim10tvlx eUs3c1v6pW49SucUQHgYhVBW/p4keo09TW8EpL1hd7t6guVrhicNBy33KjXwM8B/ pPT6OY6WsaHikxHawQMaKs4L+4GgnUtDwSnjoiWzxMQE9cgdxhxHKS/3G+1erGcq Qh1uFJ7Xi/gpZW9pUoHjtXk6c8inLgvO4vDQm6z9pfBdtLo3rzbM6hVb0RvWkInN zgByxbSyyRG2nGPSqi8NWlOTYJQG62r+qG/Wms027np3hBg+7yiwR9VC9a++K2bH Vz+udV7PYuQ88LYygrsb4cEt3t18FS6Nji6S2ifdUQ4i+etCzlAQLjYYAodDU2j1 LVCYFEY= -----END CERTIFICATE-----Generated at Sun Feb 16 15:07:49 2025 by rpki-client