$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/A8051CC4508011EF81053074C4F9AE02.roa File: A8051CC4508011EF81053074C4F9AE02.roa (raw, json) Hash identifier: cDS5FdTBOYoVAs3WZmJDzExZ2RFGAHrfOHhqQyrBupo= Subject key identifier: 29:97:59:E4:BC:45:FF:65:6A:D9:55:7F:82:22:54:AF:54:AC:60:C3 Certificate issuer: /CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Certificate serial: 4E Authority key identifier: 21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/A8051CC4508011EF81053074C4F9AE02.roa Signing time: Tue 03 Dec 2024 05:40:36 +0000 ROA not before: Tue 03 Dec 2024 05:40:36 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132087 IP address blocks: 203.29.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2E2, serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Validity Not Before: Dec 3 05:40:36 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e99d4-b0c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f7:8d:78:f7:0f:af:3f:b4:e8:08:52:d5:d8: 7b:d9:02:34:f1:61:06:02:ce:0d:5a:6e:92:97:fb: bf:ac:f9:03:b9:2a:78:dc:b7:0b:86:1d:31:ab:ba: 2f:ab:51:2c:47:65:52:88:78:57:68:55:70:e4:37: f8:c2:5a:96:79:a4:f5:8f:6c:0d:51:86:7c:ef:9a: 31:e1:ad:f4:2c:00:12:f0:77:ec:6b:43:12:f3:df: 95:b4:4e:25:00:92:c2:51:c4:93:30:e0:56:cc:84: bf:a1:73:21:51:e5:85:29:d9:10:9a:8a:65:1c:78: 5d:ba:fe:1d:82:9d:5c:6c:87:30:b2:13:27:15:d9: d9:a7:13:cd:c6:42:86:fe:4a:ae:39:1a:ba:bc:58: 5f:e9:ec:28:c3:bb:7e:f0:1a:9b:5b:17:17:a3:03: ef:b0:9a:47:c7:94:9d:b2:59:29:38:84:f0:7f:e7: ab:ff:64:86:af:ef:7c:50:cd:d7:d9:85:a7:d7:fa: 59:4a:00:91:bf:1d:24:27:20:c0:f4:43:4a:58:c1: 61:2f:55:7a:1e:c7:e4:fc:82:4b:79:ba:60:af:01: 84:d8:ff:e4:4d:86:d0:34:04:61:e6:33:9b:2e:9a: 0c:4d:3e:05:76:d4:3a:f2:c9:85:76:21:5a:57:4f: c1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:97:59:E4:BC:45:FF:65:6A:D9:55:7F:82:22:54:AF:54:AC:60:C3 X509v3 Authority Key Identifier: keyid:21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/A8051CC4508011EF81053074C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.29.68.0/24 Signature Algorithm: sha256WithRSAEncryption 56:bc:32:f4:bc:83:00:5b:fa:45:7f:fc:e4:ed:39:6c:22:2e: b8:d4:3e:93:95:18:fa:5c:b0:5a:44:b1:f5:ee:75:2e:0c:ff: 93:9f:c9:16:93:d7:a7:25:dc:9a:17:d8:40:81:ac:8b:ae:34: d5:9d:eb:2c:80:b2:9e:33:2c:37:25:43:90:e0:50:de:98:14: 0e:5b:a1:64:7e:71:03:cd:e0:ba:7a:a3:3c:1c:c0:14:f1:f4: 76:68:ca:a2:5e:96:ad:ee:4a:da:89:92:d5:fb:df:d9:b4:f2: 62:59:81:bc:52:73:7d:46:5b:a7:86:3b:7f:f5:d9:6c:23:e2: 07:99:f0:14:6a:72:37:ee:b5:c9:e0:d5:66:e6:14:f8:14:0c: 5e:f3:06:27:e5:61:37:c4:79:13:11:a3:f3:54:6d:e8:57:df: 49:40:eb:df:f5:ce:b4:cc:c4:ce:ff:83:c6:3e:de:51:e8:e6: 2e:2c:ae:aa:f7:74:f0:31:10:84:49:ec:0f:a9:c2:9a:6f:21: a1:d9:0e:36:98:50:c5:0d:95:0f:e5:f6:bb:c1:b6:be:ce:11: 55:34:f9:81:49:f1:12:cd:79:ed:1e:fe:81:8d:cf:60:3c:8b: 3a:07:e9:27:2a:74:11:6d:10:f2:d7:78:30:d6:4f:f5:0c:a7: c1:05:bf:18 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RjJFMjExMC8GA1UEBRMoMjEyNjFCODk3NDk4OTNDM0IzMTg0MUI5NkZFM0ZCNjMy MzAzMkYxODAeFw0yNDEyMDMwNTQwMzZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGU5OWQ0LWIwYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCT94149w+vP7ToCFLV2HvZAjTxYQYCzg1abpKX+7+s+QO5KnjctwuGHTGrui+r USxHZVKIeFdoVXDkN/jCWpZ5pPWPbA1RhnzvmjHhrfQsABLwd+xrQxLz35W0TiUA ksJRxJMw4FbMhL+hcyFR5YUp2RCaimUceF26/h2CnVxshzCyEycV2dmnE83GQob+ Sq45Grq8WF/p7CjDu37wGptbFxejA++wmkfHlJ2yWSk4hPB/56v/ZIav73xQzdfZ hafX+llKAJG/HSQnIMD0Q0pYwWEvVXoex+T8gkt5umCvAYTY/+RNhtA0BGHmM5su mgxNPgV21DryyYV2IVpXT8E9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKZdZ5LxF /2Vq2VV/giJUr1SsYMMwHwYDVR0jBBgwFoAUISYbiXSYk8OzGEG5b+P7YyMDLxgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGMkUyL0M1QjZCOTM2NDQw NDExRUZCOUE2MkMwREM0RjlBRTAyL0lTWWJpWFNZazhPekdFRzViLVA3WXlNREx4 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVNZYmlYU1lrOE96R0VHNWItUDdZeU1ETHhnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjJFMi9DNUI2QjkzNjQ0MDQxMUVGQjlBNjJDMERDNEY5QUUwMi9BODA1MUNDNDUw ODAxMUVGODEwNTMwNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsdRDANBgkqhkiG9w0BAQsFAAOCAQEAVrwy9LyDAFv6RX/8 5O05bCIuuNQ+k5UY+lywWkSx9e51Lgz/k5/JFpPXpyXcmhfYQIGsi6401Z3rLICy njMsNyVDkOBQ3pgUDluhZH5xA83gunqjPBzAFPH0dmjKol6Wre5K2omS1fvf2bTy YlmBvFJzfUZbp4Y7f/XZbCPiB5nwFGpyN+61yeDVZuYU+BQMXvMGJ+VhN8R5ExGj 81Rt6FffSUDr3/XOtMzEzv+Dxj7eUejmLiyuqvd08DEQhEnsD6nCmm8hodkONphQ xQ2VD+X2u8G2vs4RVTT5gUnxEs157R7+gY3PYDyLOgfpJyp0EW0Q8td4MNZP9Qyn wQW/GA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:20 2025 by rpki-client