$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/92A205F4191111F095164E59C4F9AE02.roa File: 92A205F4191111F095164E59C4F9AE02.roa (raw, json) Hash identifier: 3xwUQICiJWltnsaPPc+uKPTybyb67JmaTUlAe4OstQ4= Subject key identifier: 07:63:85:C5:EC:48:43:7A:36:E9:12:0E:65:C5:AD:79:E4:93:1D:C7 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D01 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/92A205F4191111F095164E59C4F9AE02.roa Signing time: Mon 14 Apr 2025 09:19:31 +0000 ROA not before: Mon 14 Apr 2025 09:19:31 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 205220 IP address blocks: 14.192.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3329 (0xd01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Apr 14 09:19:31 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67fcd323-98aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:54:94:8d:97:e9:70:79:45:c7:e9:7f:5c: 55:65:17:84:9a:07:3c:00:de:ac:31:9b:f1:76:7f: d0:7d:1b:e0:a8:33:7c:c7:fe:d6:fd:5b:c6:cb:d7: b6:a2:b9:7c:5d:0c:f8:17:d6:21:e8:9d:fe:5c:cc: 5a:ae:58:29:9f:bd:f1:67:82:e6:12:10:77:6c:9e: ab:39:3d:5b:6c:dd:a2:5c:21:aa:fb:71:dc:d5:a9: 64:4a:77:37:83:68:5b:a4:16:b3:b1:3a:02:42:cc: 0f:24:a8:3a:37:48:86:40:fd:a3:24:e0:a2:f4:8b: 5f:2c:2d:b2:06:8a:ba:36:28:3c:58:71:05:39:6d: d8:04:32:0a:24:30:bb:ac:08:d4:2b:92:ca:68:8c: 21:0b:53:73:4b:ad:53:8e:92:86:e3:f2:38:81:44: 3f:b8:fb:07:01:69:7e:5d:5d:41:6a:35:68:1b:34: 03:35:02:fe:26:30:4b:3d:33:e3:cc:0a:cb:e0:55: 1b:ab:fe:d3:c0:12:d5:08:d2:cd:fa:6c:8f:84:37: c4:1f:a2:25:65:23:63:e2:dc:56:3d:b0:66:5a:3e: 8c:2c:30:ad:1e:1e:df:63:6a:74:33:a3:62:cb:b5: 9c:27:4e:18:a9:44:79:40:76:3a:1c:25:ad:01:46: 5c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:63:85:C5:EC:48:43:7A:36:E9:12:0E:65:C5:AD:79:E4:93:1D:C7 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/92A205F4191111F095164E59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.154.0/24 Signature Algorithm: sha256WithRSAEncryption 35:cc:3b:35:11:dd:da:0b:89:06:a1:a2:12:ac:7b:ec:b5:22: 18:9b:a7:2a:76:80:92:73:b8:eb:c7:e7:81:53:a4:e3:92:55: 32:ff:4e:29:87:41:6e:7e:7e:d1:19:88:e7:0b:d3:78:31:d1: 67:5e:f7:b0:ce:b7:d0:05:5e:df:dd:d5:cc:06:1f:fc:62:68: f3:73:e1:66:74:1a:4e:c5:a1:af:36:64:a0:51:a7:79:6a:12: 33:25:e5:ba:e1:20:70:3a:1a:6c:76:3d:5b:63:8d:d4:e8:93: 1f:56:93:04:88:c8:d8:d5:3f:23:79:5d:dc:59:a0:2b:fd:a8: 84:e0:9b:1d:4e:cc:f8:85:b0:9c:7a:21:41:27:36:94:8c:d0: 2b:e7:08:12:e9:3a:33:a2:a0:7e:62:f5:40:03:74:31:d5:ca: 83:2c:31:e6:02:4b:87:8f:59:07:eb:11:a5:2b:f5:e9:4c:bc: 64:48:c2:28:cd:8c:05:74:fa:5b:93:59:b1:1c:c3:fd:84:be: 0b:fc:4a:e3:c2:4a:04:77:3a:b2:7d:27:7a:41:60:3d:dd:f6: 11:b2:c0:f9:fc:22:19:9f:c9:12:fe:96:42:0b:a2:9c:53:c4: d6:52:50:42:d3:d5:7a:63:f0:a6:87:cc:2d:ef:04:28:9c:53: 42:73:91:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNDE0MDkxOTMxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZjZDMyMy05OGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNZUlI2X6XB5Rcfpf1xVZReEmgc8AN6sMZvxdn/QfRvgqDN8x/7W/VvGy9e2 orl8XQz4F9Yh6J3+XMxarlgpn73xZ4LmEhB3bJ6rOT1bbN2iXCGq+3Hc1alkSnc3 g2hbpBazsToCQswPJKg6N0iGQP2jJOCi9ItfLC2yBoq6Nig8WHEFOW3YBDIKJDC7 rAjUK5LKaIwhC1NzS61TjpKG4/I4gUQ/uPsHAWl+XV1BajVoGzQDNQL+JjBLPTPj zArL4FUbq/7TwBLVCNLN+myPhDfEH6IlZSNj4txWPbBmWj6MLDCtHh7fY2p0M6Ni y7WcJ04YqUR5QHY6HCWtAUZclQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAdjhcXs SEN6NukSDmXFrXnkkx3HMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvOTJBMjA1RjQx OTExMTFGMDk1MTY0RTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAOwJowDQYJKoZIhvcNAQELBQADggEBADXMOzUR3doLiQah ohKse+y1Ihibpyp2gJJzuOvH54FTpOOSVTL/TimHQW5+ftEZiOcL03gx0Wde97DO t9AFXt/d1cwGH/xiaPNz4WZ0Gk7Foa82ZKBRp3lqEjMl5brhIHA6Gmx2PVtjjdTo kx9WkwSIyNjVPyN5XdxZoCv9qITgmx1OzPiFsJx6IUEnNpSM0CvnCBLpOjOioH5i 9UADdDHVyoMsMeYCS4ePWQfrEaUr9elMvGRIwijNjAV0+luTWbEcw/2Evgv8SuPC SgR3OrJ9J3pBYD3d9hGywPn8IhmfyRL+lkILopxTxNZSUELT1Xpj8KaHzC3vBCic U0JzkRU= -----END CERTIFICATE-----Generated at Sat Apr 26 08:14:20 2025 by rpki-client