$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa File: C8E115CEA6A711EA8A48CD2BC4F9AE02.roa (raw, json) Hash identifier: y6Utban/MDhZmVm58zbd+GMT3Mgg7LB6jXrEukFmHX0= Subject key identifier: B6:CE:5E:BF:A0:46:3E:DD:25:C1:C6:B1:E6:D0:33:3F:60:AD:FA:A4 Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 34B9 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa Signing time: Fri 24 Jan 2025 14:50:30 +0000 ROA not before: Fri 24 Jan 2025 14:50:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 132738 IP address blocks: 202.3.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:26:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A, serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 24 14:50:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6793a8b6-f48c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:59:8e:46:34:3a:f9:84:98:fb:a7:47:09:a0: 80:4a:88:fd:a4:e4:8c:04:4f:d7:ec:12:4d:a8:87: 77:64:6e:48:20:b7:75:57:d3:39:c3:f1:56:9e:96: a9:d2:9f:5a:c4:71:87:9c:49:eb:69:d4:1a:cd:4f: 09:dd:6f:8c:92:40:18:2a:a5:c2:bf:2b:3a:bc:fb: a7:8c:e8:2f:95:e0:d6:84:44:b5:e5:d8:18:50:a2: 14:49:31:91:fd:6d:70:f3:9f:5d:52:d0:89:05:1d: c8:8f:32:95:ad:5b:40:48:f9:2e:b6:31:a8:63:95: 21:0d:d7:6c:fd:21:a0:6d:95:cd:e0:15:fe:b1:96: 7f:6d:2e:67:43:6c:7d:ae:2d:24:a3:fa:5d:43:bb: 41:45:24:b6:ca:d4:8e:f7:58:3e:2d:13:d2:ee:e5: e8:cf:98:8f:83:1f:a5:a6:0d:e9:21:ab:78:eb:08: 50:ee:45:d9:e2:5e:36:8c:52:77:66:55:20:9f:e2: dc:bb:e2:39:87:9a:26:dd:bf:bc:d0:02:77:02:0c: 09:29:2b:20:38:13:a4:e0:b6:71:2d:9f:c3:4e:8b: 0e:fc:62:5e:37:a0:2a:8f:b3:78:1b:88:5a:34:df: b5:f4:e4:2c:a5:9e:09:39:aa:63:2d:2d:8d:21:1a: e6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:CE:5E:BF:A0:46:3E:DD:25:C1:C6:B1:E6:D0:33:3F:60:AD:FA:A4 X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.3.171.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:ed:37:54:d7:6e:c3:3c:98:d7:d0:34:cf:2a:2c:88:eb:ae: 9f:a2:7c:d3:a5:e5:29:79:44:70:dd:fa:99:89:96:1b:aa:a6: e0:be:c7:8d:42:d8:fc:de:79:81:ef:97:c1:dd:c6:5d:5a:8f: a0:af:50:ba:0c:b5:07:15:ed:ab:d8:0f:a0:c8:6f:1f:72:39: 3a:9e:38:72:b2:b3:59:56:5e:41:68:aa:ad:b6:4d:9f:77:b6: a4:5d:cf:7f:98:a4:7e:8b:8b:33:f8:9b:1c:23:7b:ac:2f:e7: 67:b2:e4:b4:37:58:66:0e:fe:fc:06:49:2e:8f:00:8a:e3:77: cd:5b:d8:27:c2:75:65:00:cd:dc:0c:7b:58:dc:3d:b1:c1:5f: fc:ab:21:b5:01:5f:b8:4a:d2:5c:7f:6e:f1:b9:9b:6f:79:84: c7:b1:d8:e3:94:d9:f3:b6:19:e3:c3:17:41:43:bb:2f:01:50: 08:d5:84:b9:64:9b:3a:c9:26:16:7c:98:83:11:42:d8:59:63: b2:e9:4a:b6:52:3d:ce:70:d8:cd:0f:a7:43:10:fd:a9:f4:af: b1:04:c1:4c:04:a4:b9:d6:32:f9:31:ce:77:72:22:be:c4:c9: 4d:04:ad:4d:41:03:cc:7b:3c:b9:6f:ac:8d:2b:52:04:e3:5b: a0:d7:4b:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjUwMTI0MTQ1MDMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYThiNi1mNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VmORjQ6+YSY+6dHCaCASoj9pOSMBE/X7BJNqId3ZG5IILd1V9M5w/FWnpap 0p9axHGHnEnradQazU8J3W+MkkAYKqXCvys6vPunjOgvleDWhES15dgYUKIUSTGR /W1w859dUtCJBR3IjzKVrVtASPkutjGoY5UhDdds/SGgbZXN4BX+sZZ/bS5nQ2x9 ri0ko/pdQ7tBRSS2ytSO91g+LRPS7uXoz5iPgx+lpg3pIat46whQ7kXZ4l42jFJ3 ZlUgn+Lcu+I5h5om3b+80AJ3AgwJKSsgOBOk4LZxLZ/DTosO/GJeN6Aqj7N4G4ha NN+19OQspZ4JOapjLS2NIRrmLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLbOXr+g Rj7dJcHGsebQMz9grfqkMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvQzhFMTE1Q0VB NkE3MTFFQThBNDhDRDJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKA6swDQYJKoZIhvcNAQELBQADggEBAIvtN1TXbsM8mNfQ NM8qLIjrrp+ifNOl5Sl5RHDd+pmJlhuqpuC+x41C2PzeeYHvl8Hdxl1aj6CvULoM tQcV7avYD6DIbx9yOTqeOHKys1lWXkFoqq22TZ93tqRdz3+YpH6LizP4mxwje6wv 52ey5LQ3WGYO/vwGSS6PAIrjd81b2CfCdWUAzdwMe1jcPbHBX/yrIbUBX7hK0lx/ bvG5m295hMex2OOU2fO2GePDF0FDuy8BUAjVhLlkmzrJJhZ8mIMRQthZY7LpSrZS Pc5w2M0Pp0MQ/an0r7EEwUwEpLnWMvkxzndyIr7EyU0ErU1BA8x7PLlvrI0rUgTj W6DXSww= -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:58 2025 by rpki-client