$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D931AD927E0F11EE97A4761DC4F9AE02.roa File: D931AD927E0F11EE97A4761DC4F9AE02.roa (raw, json) Hash identifier: 6fvtI9e9N6u9RrN1YOUrj1fxPuHxvPhgch1yKfydxFo= Subject key identifier: E2:C0:89:CC:F5:8F:3E:B4:A5:00:06:0A:14:C3:D8:E7:F2:38:9E:DD Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E73 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D931AD927E0F11EE97A4761DC4F9AE02.roa Signing time: Fri 06 Dec 2024 07:19:22 +0000 ROA not before: Fri 06 Dec 2024 07:19:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151397 IP address blocks: 203.86.116.0/24 maxlen: 24 240e:983:2010::/48 maxlen: 48 240e:983:2020::/48 maxlen: 48 240e:983:2030::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7795 (0x1e73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Dec 6 07:19:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6752a579-5f68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b8:a6:d0:95:53:37:34:db:a6:20:1f:ed:42: 5e:a9:35:e2:38:06:7e:15:8d:15:e5:0f:a9:33:1b: ac:eb:90:9b:4d:f1:ef:ab:b3:e3:36:86:46:f2:43: 29:40:dd:5a:e2:38:16:a4:0d:b9:a6:9f:0a:45:a2: 92:0f:4f:cb:ea:f3:ad:b3:3f:fd:02:3d:54:75:5a: 8a:eb:6f:e2:f0:19:7d:d2:aa:e7:f7:87:d9:a4:97: d3:6a:8d:92:8a:69:4b:05:e1:6c:8d:21:dd:ca:42: 4d:52:c9:fb:4e:2b:d4:62:e9:69:b0:dd:b8:2d:48: 39:98:79:33:0e:73:01:16:4f:14:51:12:8a:45:08: c6:fd:f6:4f:7e:91:ab:ad:b7:ff:2a:28:06:e9:19: 99:19:25:0a:c4:05:5b:8d:ae:a1:1d:54:ce:f4:95: 53:5d:57:aa:0a:4d:0f:d4:a1:0a:d3:54:c9:1e:67: 98:4a:81:7d:9e:ef:79:04:9b:37:ef:57:1b:aa:63: 1d:ba:b4:71:39:fd:41:f6:35:c1:af:ea:03:c5:ee: 0d:d7:28:29:8e:d8:6f:01:96:16:75:4e:38:46:f1: 03:dd:8e:80:29:38:f6:ee:e4:23:ce:1a:d5:be:b1: 63:56:25:13:7e:3c:56:71:0f:90:84:b5:83:3f:30: c3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C0:89:CC:F5:8F:3E:B4:A5:00:06:0A:14:C3:D8:E7:F2:38:9E:DD X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D931AD927E0F11EE97A4761DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.86.116.0/24 IPv6: 240e:983:2010::/48 240e:983:2020::/48 240e:983:2030::/48 Signature Algorithm: sha256WithRSAEncryption b3:15:3b:aa:63:fb:fb:50:27:3c:2c:c6:bf:94:f6:48:c0:09: 72:77:bc:d4:e8:16:6a:6f:b4:ea:6d:a8:18:bd:a6:32:5e:88: 72:ef:9f:c2:7d:31:42:e7:a1:fa:1d:f4:72:8d:92:86:46:dc: 41:05:2c:16:b2:c0:0d:b0:62:10:65:75:26:0c:1a:84:1f:cb: b4:6b:c9:22:6b:34:07:d2:30:e7:79:ac:32:26:99:b5:9b:ca: 92:0e:e0:d8:b8:61:cb:4a:56:80:c4:2b:eb:cf:2a:18:38:bc: 13:19:3e:8b:e9:52:77:25:db:43:f2:af:89:a4:2c:3f:ec:37: 84:b9:45:6f:0a:7e:6e:07:9d:49:8f:8c:10:c2:76:99:dc:f7: cf:f3:1d:33:5f:c2:d0:cc:9a:54:c4:9a:5e:9b:f1:b8:0f:9f: 36:a7:ca:e4:3b:85:7d:4d:f7:4f:38:db:40:d6:ef:0f:12:04: 91:3e:32:32:99:e9:2a:5f:b6:8f:85:60:ec:1b:8f:ac:ff:ef: 82:24:df:93:62:3a:d0:9b:a6:9a:99:dd:be:2f:ea:67:e7:35: 98:a2:7b:13:33:cf:73:73:b8:c5:2f:82:95:e8:db:3d:4c:2b: e6:2f:43:cd:f8:15:fd:fc:8a:1f:61:ec:a9:40:0e:7a:8f:8f: e7:4f:fa:5b -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICHnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQxMjA2MDcxOTIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUyYTU3OS01ZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLim0JVTNzTbpiAf7UJeqTXiOAZ+FY0V5Q+pMxus65CbTfHvq7PjNoZG8kMp QN1a4jgWpA25pp8KRaKSD0/L6vOtsz/9Aj1UdVqK62/i8Bl90qrn94fZpJfTao2S imlLBeFsjSHdykJNUsn7TivUYulpsN24LUg5mHkzDnMBFk8UURKKRQjG/fZPfpGr rbf/KigG6RmZGSUKxAVbja6hHVTO9JVTXVeqCk0P1KEK01TJHmeYSoF9nu95BJs3 71cbqmMdurRxOf1B9jXBr+oDxe4N1ygpjthvAZYWdU44RvED3Y6AKTj27uQjzhrV vrFjViUTfjxWcQ+QhLWDPzDDkwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFOLAicz1 jz60pQAGChTD2OfyOJ7dMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDkzMUFEOTI3 RTBGMTFFRTk3QTQ3NjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMAwEAgABMAYDBADLVnQwIQQCAAIwGwMHACQOCYMgEAMHACQOCYMgIAMHACQO CYMgMDANBgkqhkiG9w0BAQsFAAOCAQEAsxU7qmP7+1AnPCzGv5T2SMAJcne81OgW am+06m2oGL2mMl6Icu+fwn0xQueh+h30co2ShkbcQQUsFrLADbBiEGV1JgwahB/L tGvJIms0B9Iw53msMiaZtZvKkg7g2Lhhy0pWgMQr688qGDi8Exk+i+lSdyXbQ/Kv iaQsP+w3hLlFbwp+bgedSY+MEMJ2mdz3z/MdM1/C0MyaVMSaXpvxuA+fNqfK5DuF fU33TzjbQNbvDxIEkT4yMpnpKl+2j4Vg7BuPrP/vgiTfk2I60Jummpndvi/qZ+c1 mKJ7EzPPc3O4xS+ClejbPUwr5i9DzfgV/fyKH2HsqUAOeo+P50/6Ww== -----END CERTIFICATE-----Generated at Sat Apr 26 07:52:43 2025 by rpki-client