$ rpki-client -vvf rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/F0C7266245D811EF9D851624C4F9AE02.roa File: F0C7266245D811EF9D851624C4F9AE02.roa (raw, json) Hash identifier: SZIMeYcJUuIC8rNtcwaM/lfCvbj4vLmNtyjgG3i25mE= Subject key identifier: 90:DA:3D:D2:68:FC:E3:B8:04:5F:9C:F0:DF:C0:AE:5B:53:25:A8:94 Certificate issuer: /CN=A9119465/serialNumber=70FA7911C7012E58EF9FB05A55A4CE6FB0609BCF Certificate serial: 7B Authority key identifier: 70:FA:79:11:C7:01:2E:58:EF:9F:B0:5A:55:A4:CE:6F:B0:60:9B:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPp5EccBLljvn7BaVaTOb7Bgm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/F0C7266245D811EF9D851624C4F9AE02.roa Signing time: Tue 25 Feb 2025 08:18:58 +0000 ROA not before: Tue 25 Feb 2025 08:18:58 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 56057 IP address blocks: 111.118.220.0/24 maxlen: 24 111.118.221.0/24 maxlen: 24 111.118.222.0/24 maxlen: 24 111.118.223.0/24 maxlen: 24 2402:e500:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/cPp5EccBLljvn7BaVaTOb7Bgm88.crl rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/cPp5EccBLljvn7BaVaTOb7Bgm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPp5EccBLljvn7BaVaTOb7Bgm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119465, serialNumber=70FA7911C7012E58EF9FB05A55A4CE6FB0609BCF Validity Not Before: Feb 25 08:18:58 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bd7cf2-06a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:42:63:09:cc:c3:9a:1d:d0:7a:80:c0:b3:dc: 62:00:dc:9a:61:70:10:48:e2:48:f3:9a:be:96:fd: fc:0f:01:16:00:43:2b:15:d9:34:df:7b:26:29:9e: 05:63:21:2b:95:15:21:34:47:a9:b9:a7:92:4c:8c: 57:fb:f9:be:b6:ed:d4:b0:da:a3:58:3d:20:db:82: 81:ab:25:49:2d:8d:61:6b:7d:6b:56:90:1e:2f:79: 03:43:47:ac:ce:0c:88:18:72:a0:c9:cc:87:66:a8: 42:58:10:95:ac:05:36:9d:b8:c3:73:8a:11:18:df: 21:be:60:95:e6:48:3d:dd:3b:71:ef:ef:2f:7c:d9: 7e:66:b8:85:e4:14:77:fb:63:de:15:2a:b5:fc:4e: fe:48:07:fc:af:28:84:aa:9c:9d:13:72:73:ba:f0: 51:ad:00:ec:80:5a:3e:c6:da:ed:76:c6:a8:11:da: a3:dc:c7:68:36:c1:5c:80:a0:83:6d:6f:42:94:82: 32:df:f9:14:b6:d4:9a:58:0a:dd:dc:5a:c8:a3:0e: 1d:8a:9b:74:39:7a:fa:8f:d9:e7:0e:11:05:ce:05: 23:74:7d:db:04:7b:89:fe:ce:da:e7:1a:a3:e8:d7: 0d:1f:e3:bb:b8:07:69:40:43:95:09:0e:fa:ce:3f: 55:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DA:3D:D2:68:FC:E3:B8:04:5F:9C:F0:DF:C0:AE:5B:53:25:A8:94 X509v3 Authority Key Identifier: keyid:70:FA:79:11:C7:01:2E:58:EF:9F:B0:5A:55:A4:CE:6F:B0:60:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/cPp5EccBLljvn7BaVaTOb7Bgm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPp5EccBLljvn7BaVaTOb7Bgm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/F0C7266245D811EF9D851624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.118.220.0/22 IPv6: 2402:e500:1000::/36 Signature Algorithm: sha256WithRSAEncryption 4c:c0:a3:e6:e0:18:9a:e1:fb:49:ab:3b:11:f5:87:35:8b:32: 76:28:fc:69:85:ba:ab:3b:aa:a9:d1:3d:21:67:ef:ff:c6:9f: 83:2b:0b:97:6a:5d:ff:a4:1e:a4:ae:d9:b2:ee:25:cb:be:72: 67:b3:31:3f:28:43:0d:3b:a5:df:9e:db:bb:97:65:85:ad:b7: 1b:8a:2f:dd:9a:e0:d8:88:c4:0d:ea:cd:8a:ab:3e:2e:1c:6f: 5d:88:95:81:b9:df:be:20:0e:18:4f:5f:96:e8:91:1a:92:b8: 44:be:0a:f8:f7:e6:0c:fb:c9:1d:fb:70:14:37:cf:7c:41:db: f8:bb:86:28:bd:5d:37:8d:69:9d:62:38:08:2c:3b:2c:50:65: 12:74:ab:c7:7a:15:95:d8:88:ae:d0:33:84:03:64:79:f2:69: ed:36:e8:d3:2d:f7:21:3a:41:31:b5:3a:b1:5b:01:18:b6:4b: 86:49:cb:e8:6c:b9:6b:2d:65:06:e5:e4:7f:12:30:c7:de:12: 7b:6f:6e:69:29:b1:f4:fe:5b:0d:c6:22:36:0f:73:0c:ac:24: 59:a3:e3:3c:56:35:8e:01:cd:74:13:20:bd:b0:9d:96:63:11: 6b:d6:70:e9:e7:c2:b5:af:14:0d:4d:23:c8:e4:aa:ae:2a:26: 6c:a4:89:8b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTQ2NTExMC8GA1UEBRMoNzBGQTc5MTFDNzAxMkU1OEVGOUZCMDVBNTVBNENFNkZC MDYwOUJDRjAeFw0yNTAyMjUwODE4NThaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YmQ3Y2YyLTA2YTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCRQmMJzMOaHdB6gMCz3GIA3JphcBBI4kjzmr6W/fwPARYAQysV2TTfeyYpngVj ISuVFSE0R6m5p5JMjFf7+b627dSw2qNYPSDbgoGrJUktjWFrfWtWkB4veQNDR6zO DIgYcqDJzIdmqEJYEJWsBTaduMNzihEY3yG+YJXmSD3dO3Hv7y982X5muIXkFHf7 Y94VKrX8Tv5IB/yvKISqnJ0TcnO68FGtAOyAWj7G2u12xqgR2qPcx2g2wVyAoINt b0KUgjLf+RS21JpYCt3cWsijDh2Km3Q5evqP2ecOEQXOBSN0fdsEe4n+ztrnGqPo 1w0f47u4B2lAQ5UJDvrOP1WxAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUkNo90mj8 47gEX5zw38CuW1MlqJQwHwYDVR0jBBgwFoAUcPp5EccBLljvn7BaVaTOb7Bgm88w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NDY1L0RDMzY4QUMyNDUy RDExRUZBREVENjM0Q0M0RjlBRTAyL2NQcDVFY2NCTGxqdm43QmFWYVRPYjdCZ204 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1BwNUVjY0JMbGp2bjdCYVZhVE9iN0JnbTg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTQ2NS9EQzM2OEFDMjQ1MkQxMUVGQURFRDYzNENDNEY5QUUwMi9GMEM3MjY2MjQ1 RDgxMUVGOUQ4NTE2MjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAvBggrBgEFBQcBBwEB/wQg MB4wDAQCAAEwBgMEAm923DAOBAIAAjAIAwYEJALlABAwDQYJKoZIhvcNAQELBQAD ggEBAEzAo+bgGJrh+0mrOxH1hzWLMnYo/GmFuqs7qqnRPSFn7//Gn4MrC5dqXf+k HqSu2bLuJcu+cmezMT8oQw07pd+e27uXZYWttxuKL92a4NiIxA3qzYqrPi4cb12I lYG5374gDhhPX5bokRqSuES+Cvj35gz7yR37cBQ3z3xB2/i7hii9XTeNaZ1iOAgs OyxQZRJ0q8d6FZXYiK7QM4QDZHnyae026NMt9yE6QTG1OrFbARi2S4ZJy+hsuWst ZQbl5H8SMMfeEntvbmkpsfT+Ww3GIjYPcwysJFmj4zxWNY4BzXQTIL2wnZZjEWvW cOnnwrWvFA1NI8jkqq4qJmykiYs= -----END CERTIFICATE-----Generated at Sat Apr 26 09:23:09 2025 by rpki-client