$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/86DD2732D86011E9AA427365C4F9AE02.roa File: 86DD2732D86011E9AA427365C4F9AE02.roa (raw, json) Hash identifier: GQtVFQhv0HfBqywxDmjCHvU0ENYCpqu1drRvjx0LORI= Subject key identifier: 25:FD:45:AE:96:F2:12:EB:F5:EF:A6:A2:A6:76:94:71:8E:49:B1:9B Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2992 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/86DD2732D86011E9AA427365C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:25 +0000 ROA not before: Tue 31 Dec 2024 15:53:25 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45959 IP address blocks: 202.80.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10642 (0x2992) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 31 15:53:25 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67741375-8f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f2:c2:c3:26:5d:3f:39:92:ae:88:b7:c0:c5: 9e:15:80:d1:8f:c9:c4:9c:34:0d:b6:ed:32:f9:7d: 3e:07:8f:55:36:e5:62:cb:3c:b3:f2:ad:2a:ee:28: 62:2f:b5:3a:47:80:3b:cc:76:a7:c6:28:3e:dd:78: ba:58:2e:01:13:4d:02:d0:ac:cd:17:56:41:88:c2: 5f:0a:aa:a4:2e:17:55:6c:d4:19:3b:cf:59:67:ec: cb:18:7f:58:8d:ee:70:0e:6b:1f:b8:e2:7d:c2:29: f0:fe:90:32:0b:df:8d:e7:ed:de:5b:7e:4b:c4:9c: 5e:90:27:a8:7c:2c:ad:bb:e9:c3:03:27:34:b8:d8: 08:1f:8c:b8:1b:de:ab:5b:0b:3d:69:15:d0:ac:6b: c2:28:01:33:70:68:d7:e4:38:d5:3e:6a:90:1e:16: 39:29:ed:1d:f6:98:01:5d:1f:80:77:5c:ee:d7:65: e8:71:83:5e:b9:be:8c:64:9b:3a:0f:4e:9f:b6:08: c7:54:65:54:f0:7c:4c:63:0b:5a:98:dd:f7:5f:02: d9:df:19:fd:51:d3:fd:cd:34:64:e3:11:e7:9c:a3: 8f:cf:5c:e8:59:04:1c:04:bf:f8:2d:44:4e:75:23: 80:2e:1c:c9:49:3f:52:22:6a:5d:79:e9:e3:76:46: 2d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:FD:45:AE:96:F2:12:EB:F5:EF:A6:A2:A6:76:94:71:8E:49:B1:9B X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/86DD2732D86011E9AA427365C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.80.246.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:32:c4:fe:00:68:fb:87:fa:91:6a:8a:66:57:18:1a:93:f8: 3e:20:7d:a0:7d:68:67:c1:d2:74:4b:e6:f0:65:1b:85:e0:1f: 3e:25:13:8a:29:89:e6:76:59:e9:e4:13:18:7d:0d:97:2c:9f: fc:ea:5e:13:fd:54:ac:f6:55:97:a1:5d:c8:44:0c:cc:69:72: 13:ca:be:a9:5b:f8:8e:20:b1:2f:e2:fe:11:2b:33:c1:c4:b2: f4:37:b8:aa:44:9c:d4:b5:96:f5:35:e7:e0:5f:6e:f9:c2:a1: a6:58:3b:1f:3e:c8:c0:dc:58:05:b2:73:e0:50:0e:37:ad:03: a8:88:36:95:fd:0e:dd:03:d7:dc:c5:89:8b:93:cb:22:e9:ef: 56:33:d8:19:6b:59:73:86:a5:94:6f:c5:bd:5d:f3:65:29:96: 1c:5f:94:5e:0c:03:ec:53:0e:0c:16:e3:44:c7:8d:a0:64:4c: a4:a6:e4:2e:07:89:78:85:3a:61:09:51:72:31:3f:8c:e5:fd: 35:a6:7e:68:f6:80:09:c7:44:cb:00:12:d0:59:36:ee:a7:b6: 8b:9d:2a:a2:c4:ce:82:9c:4f:37:83:b2:5b:a8:f6:7a:27:46: 13:7e:20:f3:aa:14:93:5e:23:ba:16:dd:87:0b:95:f6:1e:b9: 07:16:83:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzI1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM3NS04ZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfLCwyZdPzmSroi3wMWeFYDRj8nEnDQNtu0y+X0+B49VNuViyzyz8q0q7ihi L7U6R4A7zHanxig+3Xi6WC4BE00C0KzNF1ZBiMJfCqqkLhdVbNQZO89ZZ+zLGH9Y je5wDmsfuOJ9winw/pAyC9+N5+3eW35LxJxekCeofCytu+nDAyc0uNgIH4y4G96r Wws9aRXQrGvCKAEzcGjX5DjVPmqQHhY5Ke0d9pgBXR+Ad1zu12XocYNeub6MZJs6 D06ftgjHVGVU8HxMYwtamN33XwLZ3xn9UdP9zTRk4xHnnKOPz1zoWQQcBL/4LURO dSOALhzJST9SImpdeenjdkYtaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCX9Ra6W 8hLr9e+moqZ2lHGOSbGbMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvODZERDI3MzJE ODYwMTFFOUFBNDI3MzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKUPYwDQYJKoZIhvcNAQELBQADggEBAJwyxP4AaPuH+pFq imZXGBqT+D4gfaB9aGfB0nRL5vBlG4XgHz4lE4opieZ2WenkExh9DZcsn/zqXhP9 VKz2VZehXchEDMxpchPKvqlb+I4gsS/i/hErM8HEsvQ3uKpEnNS1lvU15+BfbvnC oaZYOx8+yMDcWAWyc+BQDjetA6iINpX9Dt0D19zFiYuTyyLp71Yz2BlrWXOGpZRv xb1d82UplhxflF4MA+xTDgwW40THjaBkTKSm5C4HiXiFOmEJUXIxP4zl/TWmfmj2 gAnHRMsAEtBZNu6ntoudKqLEzoKcTzeDsluo9nonRhN+IPOqFJNeI7oW3YcLlfYe uQcWg/A= -----END CERTIFICATE-----Generated at Sat Apr 26 17:14:01 2025 by rpki-client