$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa File: 3F2B28B4D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: UEXW7VTSccyYirRwQQmBzMgPHPSp1DErb08XvAAJztE= Subject key identifier: D3:93:95:2F:52:20:C7:21:A8:3B:08:C6:66:99:B1:09:70:07:9D:FC Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 25F8 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa Signing time: Thu 26 Sep 2024 15:52:54 +0000 ROA not before: Thu 26 Sep 2024 15:52:54 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 24241 IP address blocks: 202.57.108.0/24 maxlen: 24 202.57.117.0/24 maxlen: 24 202.57.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9720 (0x25f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 26 15:52:54 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f58356-2124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:31:16:12:d7:ed:5d:0e:fc:a5:e6:c8:72:b8: a7:88:5b:d0:b4:f0:cb:e6:f0:bf:8f:f1:5a:4d:d5: 5a:2b:1f:47:f8:2d:ca:3c:4f:df:0a:b0:93:06:83: 05:bf:78:66:99:b7:32:55:4a:a9:21:28:be:f8:27: 6f:75:74:97:47:99:63:4c:5d:b9:0f:91:bd:09:fa: 60:0b:4d:c8:53:7a:07:4a:2a:0c:32:4e:05:63:00: d3:26:f0:6c:19:41:6d:44:56:6e:94:0f:8f:04:dc: 9d:da:77:5c:96:49:a1:03:0c:7c:46:ec:fa:32:5d: 82:a9:8c:bb:2d:2c:f8:4e:de:02:4f:7f:82:39:62: 3f:6f:1b:8d:ff:2a:c1:2b:59:ec:88:0d:1d:1b:5d: 03:58:27:b9:f5:e9:a3:8c:2f:7c:74:2b:f3:b8:85: de:83:d0:cd:97:64:f4:f3:d2:56:e6:f3:6c:7a:8e: 35:51:f9:d7:a5:53:01:64:7a:fd:d2:b4:00:f6:50: f5:9a:9f:a1:be:38:d9:21:12:7c:45:d7:2e:40:76: 9b:eb:15:a1:a5:23:c1:c5:b0:03:2b:df:eb:b3:cb: e7:4e:86:25:23:c0:ef:9e:91:ad:75:32:d6:dc:df: cb:b6:5d:41:3d:0f:43:78:34:e0:88:bd:99:7b:a6: 99:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:93:95:2F:52:20:C7:21:A8:3B:08:C6:66:99:B1:09:70:07:9D:FC X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.57.108.0/24 202.57.117.0-202.57.118.255 Signature Algorithm: sha256WithRSAEncryption 98:32:7e:ad:df:d4:43:52:12:00:4b:3b:a4:3c:34:72:50:d3: 38:94:ca:ca:ee:1a:64:17:d9:a2:90:39:78:b3:bf:e5:f6:2a: 20:2f:05:8b:a4:54:ae:0f:9a:4a:4d:fa:14:30:fe:68:50:ee: 50:a0:57:e9:00:81:35:0a:af:4d:34:fa:9f:08:7c:b8:e1:fd: 88:6b:6d:38:55:0f:6a:4c:85:b2:4c:74:65:a4:7a:dc:c1:ca: 02:ed:3e:7a:61:ce:19:dc:0a:81:cb:20:bb:4b:4a:1b:7d:2d: cb:53:4d:f4:a2:7c:32:fa:a2:c3:70:7b:9e:2c:d0:d5:fa:0b: aa:1f:ff:27:66:ca:46:98:6e:17:e0:e2:59:b2:bb:61:b0:dc: 56:d4:c4:8f:b9:ed:6e:f3:60:56:48:72:2e:67:62:27:5c:06: f6:85:95:1e:15:e7:f8:a9:d5:d7:f0:5f:f0:c0:c1:84:90:c3: d9:2b:9e:a2:aa:34:49:56:35:9a:e1:81:02:ff:e8:66:ee:19: 51:04:b1:9a:61:30:77:59:ab:18:58:77:47:03:cd:2d:c1:8b: e4:bb:19:c7:dc:54:4c:58:3c:fe:4d:c8:c1:b5:8c:68:67:ac: 03:ca:86:27:9a:ee:b6:0e:f7:53:c6:b1:28:28:b8:9e:89:34: 9f:d2:57:97 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICJfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjQwOTI2MTU1MjU0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1ODM1Ni0yMTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzEWEtftXQ78pebIcriniFvQtPDL5vC/j/FaTdVaKx9H+C3KPE/fCrCTBoMF v3hmmbcyVUqpISi++CdvdXSXR5ljTF25D5G9CfpgC03IU3oHSioMMk4FYwDTJvBs GUFtRFZulA+PBNyd2ndclkmhAwx8Ruz6Ml2CqYy7LSz4Tt4CT3+COWI/bxuN/yrB K1nsiA0dG10DWCe59emjjC98dCvzuIXeg9DNl2T089JW5vNseo41UfnXpVMBZHr9 0rQA9lD1mp+hvjjZIRJ8RdcuQHab6xWhpSPBxbADK9/rs8vnToYlI8DvnpGtdTLW 3N/Ltl1BPQ9DeDTgiL2Ze6aZ8QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFNOTlS9S IMchqDsIxmaZsQlwB538MB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0YyQjI4QjRE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBADKOWwwDAMEAMo5dQMEAMo5djANBgkqhkiG9w0BAQsFAAOC AQEAmDJ+rd/UQ1ISAEs7pDw0clDTOJTKyu4aZBfZopA5eLO/5fYqIC8Fi6RUrg+a Sk36FDD+aFDuUKBX6QCBNQqvTTT6nwh8uOH9iGttOFUPakyFskx0ZaR63MHKAu0+ emHOGdwKgcsgu0tKG30ty1NN9KJ8Mvqiw3B7nizQ1foLqh//J2bKRphuF+DiWbK7 YbDcVtTEj7ntbvNgVkhyLmdiJ1wG9oWVHhXn+KnV1/Bf8MDBhJDD2Sueoqo0SVY1 muGBAv/oZu4ZUQSxmmEwd1mrGFh3RwPNLcGL5LsZx9xUTFg8/k3IwbWMaGesA8qG J5rutg73U8axKCi4nok0n9JXlw== -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:05 2025 by rpki-client