$ rpki-client -vvf rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/ACDC884E1C1511EF93C5F728C4F9AE02.roa File: ACDC884E1C1511EF93C5F728C4F9AE02.roa (raw, json) Hash identifier: thDNYeVNXoV/Cx4Him9K7gBe071N+a3q0Oy01hD4n04= Subject key identifier: BF:31:98:3D:12:A1:76:84:B9:B2:74:9A:1D:E9:B1:68:0B:30:2B:1C Certificate issuer: /CN=A913E32A/serialNumber=C1C46FC4A71969E58504A734D4904A7BD2FF0543 Certificate serial: 254F Authority key identifier: C1:C4:6F:C4:A7:19:69:E5:85:04:A7:34:D4:90:4A:7B:D2:FF:05:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/ACDC884E1C1511EF93C5F728C4F9AE02.roa Signing time: Thu 30 May 2024 16:38:47 +0000 ROA not before: Thu 30 May 2024 16:38:47 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 23966 IP address blocks: 203.124.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.crl rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9551 (0x254f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E32A, serialNumber=C1C46FC4A71969E58504A734D4904A7BD2FF0543 Validity Not Before: May 30 16:38:47 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658ab97-6bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:11:2c:c1:59:22:1a:ef:f5:d9:57:24:eb:e3: 81:7f:1f:9b:c3:02:e8:b1:7d:d7:7c:07:4b:f0:e0: 50:15:84:58:6f:e8:07:e3:45:3c:df:0f:20:b9:1f: 0d:9f:7f:f7:00:3b:f5:81:91:8d:22:c7:a5:d4:80: bf:3f:e7:6b:85:e3:83:3f:26:6e:ef:37:42:8a:e0: 50:b9:6d:0c:ac:1b:16:88:93:59:bc:2d:2d:4c:92: 3c:d6:da:88:c2:72:ee:64:dc:66:6b:c7:a0:9a:dc: 71:23:ea:ca:56:76:79:22:b3:96:a2:70:a1:ca:b3: 2a:9e:c9:c6:02:43:e7:ee:e4:e8:ae:d4:6e:36:89: a2:d4:51:dc:f4:35:6b:a2:7f:c8:59:e5:55:f7:77: 6d:f5:65:40:b3:d9:a0:f8:2f:66:bc:d9:1c:a5:a7: d7:bb:60:de:6d:76:b3:db:92:75:b7:0e:10:50:86: 34:c0:46:26:a4:99:d3:53:9e:74:aa:f0:0b:d2:76: 30:cb:be:b4:02:14:0c:10:14:35:95:12:87:8d:f4: 0c:52:a1:66:d9:f4:ca:c8:74:15:d1:fc:0b:40:c8: 81:f0:82:ee:75:b4:5d:7b:5b:e9:53:2b:33:16:ce: 3a:ff:45:9e:03:05:62:64:b2:45:31:8f:ea:0a:bc: 5e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:31:98:3D:12:A1:76:84:B9:B2:74:9A:1D:E9:B1:68:0B:30:2B:1C X509v3 Authority Key Identifier: keyid:C1:C4:6F:C4:A7:19:69:E5:85:04:A7:34:D4:90:4A:7B:D2:FF:05:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/ACDC884E1C1511EF93C5F728C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.124.34.0/24 Signature Algorithm: sha256WithRSAEncryption 06:68:38:c3:16:eb:95:80:87:b2:81:dc:ac:29:6e:e7:fa:1b: 63:a0:31:f6:bf:6e:f8:6c:7b:c1:a6:c7:58:cc:de:8d:dc:00: ca:c4:a9:83:2e:e7:24:a8:30:20:eb:56:9d:da:cc:b5:cc:bd: 4b:de:d1:48:3d:47:3c:d1:8d:71:86:7e:6d:76:a9:90:57:61: a8:f5:d3:34:69:a9:e1:73:e7:88:78:aa:9f:75:96:75:dd:fd: 94:cc:f8:fc:14:22:6c:ea:f6:9d:f6:8b:44:6e:f3:5d:2c:10: 17:86:80:0c:46:15:8c:fd:f6:a0:06:4b:32:2b:6b:34:d1:7c: 74:d5:d8:75:44:2f:d2:6e:e6:d3:39:e8:4c:b9:ac:62:2f:67: 1c:b1:10:33:b2:a4:c3:3d:76:24:ce:07:75:cf:73:5a:5b:50: 34:4e:fc:52:e6:98:88:24:34:57:df:37:7c:3f:2a:5d:fa:06: c9:0d:b4:e9:73:8e:e9:58:9e:ff:1d:dd:a9:f2:2c:d8:15:56: 90:ab:96:87:8d:33:4f:18:71:94:fb:af:cf:5c:af:4c:54:10: 07:99:95:77:07:b9:4e:17:34:95:6f:e4:31:8f:18:e0:c2:61: 3b:54:c7:f1:32:6e:11:8a:e9:43:a7:3d:32:3c:b8:e3:39:85: 71:20:b6:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UzMkExMTAvBgNVBAUTKEMxQzQ2RkM0QTcxOTY5RTU4NTA0QTczNEQ0OTA0QTdC RDJGRjA1NDMwHhcNMjQwNTMwMTYzODQ3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YWI5Ny02YmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxEswVkiGu/12Vck6+OBfx+bwwLosX3XfAdL8OBQFYRYb+gH40U83w8guR8N n3/3ADv1gZGNIsel1IC/P+drheODPyZu7zdCiuBQuW0MrBsWiJNZvC0tTJI81tqI wnLuZNxma8egmtxxI+rKVnZ5IrOWonChyrMqnsnGAkPn7uTortRuNomi1FHc9DVr on/IWeVV93dt9WVAs9mg+C9mvNkcpafXu2DebXaz25J1tw4QUIY0wEYmpJnTU550 qvAL0nYwy760AhQMEBQ1lRKHjfQMUqFm2fTKyHQV0fwLQMiB8ILudbRde1vpUysz Fs46/0WeAwViZLJFMY/qCrxekQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL8xmD0S oXaEubJ0mh3psWgLMCscMB8GA1UdIwQYMBaAFMHEb8SnGWnlhQSnNNSQSnvS/wVD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTMyQS8xQjRGOUY5NkZB RDMxMUU0OTZDNkU4MENDNEY5QUUwMi93Y1J2eEtjWmFlV0ZCS2MwMUpCS2U5TF9C VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3djUnZ4S2NaYWVXRkJLYzAxSkJLZTlMX0JVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UzMkEvMUI0RjlGOTZGQUQzMTFFNDk2QzZFODBDQzRGOUFFMDIvQUNEQzg4NEUx QzE1MTFFRjkzQzVGNzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLfCIwDQYJKoZIhvcNAQELBQADggEBAAZoOMMW65WAh7KB 3Kwpbuf6G2OgMfa/bvhse8Gmx1jM3o3cAMrEqYMu5ySoMCDrVp3azLXMvUve0Ug9 RzzRjXGGfm12qZBXYaj10zRpqeFz54h4qp91lnXd/ZTM+PwUImzq9p32i0Ru810s EBeGgAxGFYz99qAGSzIrazTRfHTV2HVEL9Ju5tM56Ey5rGIvZxyxEDOypMM9diTO B3XPc1pbUDRO/FLmmIgkNFffN3w/Kl36BskNtOlzjulYnv8d3anyLNgVVpCrloeN M08YcZT7r89cr0xUEAeZlXcHuU4XNJVv5DGPGODCYTtUx/EybhGK6UOnPTI8uOM5 hXEgtl0= -----END CERTIFICATE-----Generated at Sat Apr 26 05:58:32 2025 by rpki-client