$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/CC2CFF76161F11F097D3DF59C4F9AE02.roa File: CC2CFF76161F11F097D3DF59C4F9AE02.roa (raw, json) Hash identifier: kRO7k4BulRhHisoR6+EUfbpDnd1NcNjfEli/hLZ+UXQ= Subject key identifier: 73:69:9F:1A:87:8A:33:87:45:55:43:5A:F8:E7:33:C1:0B:73:11:A6 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0CF8 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/CC2CFF76161F11F097D3DF59C4F9AE02.roa Signing time: Thu 10 Apr 2025 15:23:47 +0000 ROA not before: Thu 10 Apr 2025 15:23:47 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 208485 IP address blocks: 14.192.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3320 (0xcf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Apr 10 15:23:47 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67f7e283-6087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d3:22:f9:07:39:14:84:d4:8e:4f:3e:10:84: ba:ee:6c:4f:0e:20:8e:7e:e4:ac:2e:af:a1:de:f7: 59:21:c2:49:8d:59:b3:30:f7:f2:4b:f9:98:15:96: 23:b1:93:19:2c:62:f9:c2:51:a6:c3:4a:49:4b:1f: a5:c6:7b:93:dc:bd:39:af:88:a3:f7:04:2f:83:0c: 5c:6e:80:0f:fe:7f:b4:d3:d6:8e:40:a1:a1:a1:6d: b2:8a:6b:22:ad:f6:37:20:68:ad:b6:72:5f:d9:d2: bc:3f:5b:74:0d:4b:0e:a5:ec:0c:aa:5a:a3:5a:93: d9:93:78:8e:50:63:42:ae:21:da:eb:b8:5b:6a:6b: 84:90:26:18:ff:fc:f2:73:99:48:a8:ac:65:7f:cd: 72:ef:7a:15:dd:f4:ee:53:1b:3a:04:c4:23:b4:59: f2:39:98:9e:9b:bd:a6:bb:81:55:41:31:87:ef:f6: bb:c6:52:c7:10:2d:a7:84:a7:0a:ea:a0:2b:ce:ac: a5:ba:22:8f:ea:1d:0f:f4:00:84:3f:8a:73:ef:05: 75:c8:66:76:5c:bb:9e:0b:22:90:1b:62:a7:71:c7: 31:fe:65:69:8d:1f:2f:e1:df:1d:75:f7:ec:05:9d: 2d:8c:ea:df:fe:92:86:87:5b:19:ae:7e:c3:3d:a0: b0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:69:9F:1A:87:8A:33:87:45:55:43:5A:F8:E7:33:C1:0B:73:11:A6 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/CC2CFF76161F11F097D3DF59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.138.0/24 Signature Algorithm: sha256WithRSAEncryption 44:06:0e:f3:e2:83:a2:a6:5c:59:d1:c8:c7:88:96:3d:6d:7d: 3e:be:94:23:7f:a7:50:41:ea:ec:ac:2e:07:fc:a6:a4:7a:58: e1:d6:48:e4:6c:65:48:54:17:10:6d:af:53:61:f8:d1:c4:7a: b1:b7:cb:04:51:40:d2:1c:84:eb:01:30:c5:40:ea:34:2a:7d: 67:47:7d:55:11:a1:f8:46:c2:c2:48:62:e9:ac:ec:dd:9a:73: 51:ad:a0:21:38:55:17:63:74:60:84:89:ba:98:9f:af:5f:37: ac:c2:3b:f8:de:fd:b8:49:c7:86:9a:fa:00:0b:ea:53:3a:01: 66:44:51:ba:18:db:86:18:a1:0f:d8:4a:90:2f:81:7e:82:63: 7d:eb:a5:c2:21:6b:17:32:53:ea:1c:23:6b:1d:37:10:8d:4a: f3:8f:29:bd:0f:d6:12:60:9d:72:2e:ce:db:31:b7:69:11:8e: 69:73:af:4e:7b:46:b8:18:a0:e3:f7:13:75:87:15:11:8a:f5: 5b:87:2f:d7:65:49:cc:96:70:03:60:06:f5:76:ea:2d:bb:d7: 80:fd:fe:ac:36:0b:27:db:b8:f4:bd:64:6d:08:ba:db:43:8e: 00:b1:c7:ae:ae:b7:5c:bb:0b:91:a9:c5:ad:ac:6f:d7:3f:47: 47:dc:a4:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNDEwMTUyMzQ3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3ZTI4My02MDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtMi+Qc5FITUjk8+EIS67mxPDiCOfuSsLq+h3vdZIcJJjVmzMPfyS/mYFZYj sZMZLGL5wlGmw0pJSx+lxnuT3L05r4ij9wQvgwxcboAP/n+009aOQKGhoW2yimsi rfY3IGittnJf2dK8P1t0DUsOpewMqlqjWpPZk3iOUGNCriHa67hbamuEkCYY//zy c5lIqKxlf81y73oV3fTuUxs6BMQjtFnyOZiem72mu4FVQTGH7/a7xlLHEC2nhKcK 6qArzqyluiKP6h0P9ACEP4pz7wV1yGZ2XLueCyKQG2Kncccx/mVpjR8v4d8ddffs BZ0tjOrf/pKGh1sZrn7DPaCwYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHNpnxqH ijOHRVVDWvjnM8ELcxGmMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvQ0MyQ0ZGNzYx NjFGMTFGMDk3RDNERjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAOwIowDQYJKoZIhvcNAQELBQADggEBAEQGDvPig6KmXFnR yMeIlj1tfT6+lCN/p1BB6uysLgf8pqR6WOHWSORsZUhUFxBtr1Nh+NHEerG3ywRR QNIchOsBMMVA6jQqfWdHfVURofhGwsJIYums7N2ac1GtoCE4VRdjdGCEibqYn69f N6zCO/je/bhJx4aa+gAL6lM6AWZEUboY24YYoQ/YSpAvgX6CY33rpcIhaxcyU+oc I2sdNxCNSvOPKb0P1hJgnXIuztsxt2kRjmlzr057RrgYoOP3E3WHFRGK9VuHL9dl ScyWcANgBvV26i2714D9/qw2CyfbuPS9ZG0IuttDjgCxx66ut1y7C5Gpxa2sb9c/ R0fcpPk= -----END CERTIFICATE-----Generated at Sat Apr 26 08:04:00 2025 by rpki-client