$ rpki-client -vvf rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa File: 165CEF66E60911EB950D930DC4F9AE02.roa (raw, json) Hash identifier: GQiRmYNBeSXKrpj5tl9WCP7+ZUXAlVJOpyyBRx0JAi4= Subject key identifier: 07:DA:C8:68:AA:F1:B4:BB:B7:A9:24:C3:64:89:E2:88:62:2C:44:5F Certificate issuer: /CN=A915A300/serialNumber=E1564FDA5CED5CAE694153097ED1942551209223 Certificate serial: 3581 Authority key identifier: E1:56:4F:DA:5C:ED:5C:AE:69:41:53:09:7E:D1:94:25:51:20:92:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa Signing time: Tue 22 Apr 2025 14:40:35 +0000 ROA not before: Tue 22 Apr 2025 14:40:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 211.29.93.0/24 maxlen: 24 211.29.132.0/24 maxlen: 24 211.29.133.0/24 maxlen: 24 211.29.152.0/24 maxlen: 24 211.31.132.0/24 maxlen: 24 211.31.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.crl rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13697 (0x3581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A300, serialNumber=E1564FDA5CED5CAE694153097ED1942551209223 Validity Not Before: Apr 22 14:40:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6807aa62-a930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8d:8c:5e:6b:5a:27:3e:5d:85:c0:d6:a1:e7: ed:79:15:18:61:53:4f:7b:8a:f6:43:06:53:e7:07: a4:63:05:92:3b:8d:b0:ae:86:a4:ce:e2:00:72:86: c3:cf:12:e0:ed:41:94:cf:24:2b:ae:44:2b:db:19: ab:25:39:6e:3d:19:9c:15:d0:29:66:b2:f4:8c:af: f6:3f:9e:20:ce:a3:b9:e0:d4:f2:d8:06:23:f6:9a: 99:3c:ea:99:17:df:03:55:03:67:76:2d:a7:b2:06: b4:15:75:3c:67:85:c1:4f:ec:3e:1a:28:c4:00:ac: ac:8c:6a:a3:6a:93:35:2e:7e:52:03:a1:1b:dd:83: 8f:18:16:78:4b:88:d1:4e:71:ed:c0:3c:74:7c:4c: 71:2b:09:63:fa:ba:4d:d5:5a:8c:46:61:72:4d:fc: 86:6d:aa:b3:95:8f:0a:73:0b:c6:94:38:1f:9b:3b: d4:46:f4:0b:13:89:d8:91:a9:0e:f4:43:57:02:76: 28:38:7e:34:85:cc:50:39:21:27:0b:25:00:54:69: e6:38:73:69:ae:de:c0:3f:4e:ac:39:1a:1b:6e:cd: 2b:57:b7:d3:25:4b:80:27:46:6a:de:f2:89:2f:c9: 13:fe:aa:ce:21:dc:b9:54:82:cb:61:e8:a5:c4:6e: b4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:DA:C8:68:AA:F1:B4:BB:B7:A9:24:C3:64:89:E2:88:62:2C:44:5F X509v3 Authority Key Identifier: keyid:E1:56:4F:DA:5C:ED:5C:AE:69:41:53:09:7E:D1:94:25:51:20:92:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.29.93.0/24 211.29.132.0/23 211.29.152.0/24 211.31.132.0/24 211.31.138.0/24 Signature Algorithm: sha256WithRSAEncryption bf:31:8b:40:4f:a0:bf:7e:3e:05:50:d0:d0:a4:94:c9:10:60: bb:bf:76:08:0f:e5:af:57:ee:73:55:30:9a:2f:af:22:81:b2: 11:2e:0d:d1:45:75:a2:fe:cb:85:c9:60:95:2e:4e:31:61:0c: 73:dd:bf:c2:f5:36:a6:6c:2e:b2:44:10:95:6c:33:e9:34:c9: 0b:fa:04:66:b2:7c:bf:87:e8:12:8b:d6:b1:09:d2:e0:6f:2b: 3c:eb:05:ae:6d:b4:58:87:ae:2d:ef:cc:6c:65:c2:50:1b:0a: 2c:b2:d0:9c:0f:c1:87:bd:13:13:19:a1:4c:1e:aa:9a:39:cf: a2:4e:16:05:2c:7d:1a:2a:02:03:ab:5f:92:d9:44:1c:d4:85: 52:fd:9d:2e:4d:af:e3:fe:12:f1:c8:47:49:27:cc:fc:a5:c0: f6:7c:8d:34:91:31:de:43:6e:69:c3:2e:08:e5:e2:ec:11:9c: 29:22:1b:2e:fd:bd:e0:0b:59:31:25:f2:c7:9c:47:e2:4d:34: 94:f5:4a:9a:44:06:5e:6f:ec:dc:3b:76:df:74:e1:14:d3:c7: b6:24:b8:6f:6a:75:e7:5e:b8:98:19:e2:6f:5c:2d:7a:17:4a: bd:6b:68:7e:68:07:18:31:cf:2d:44:64:af:84:ce:87:ac:48: 4c:b1:a4:1b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICNYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEzMDAxMTAvBgNVBAUTKEUxNTY0RkRBNUNFRDVDQUU2OTQxNTMwOTdFRDE5NDI1 NTEyMDkyMjMwHhcNMjUwNDIyMTQ0MDM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3YWE2Mi1hOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsY2MXmtaJz5dhcDWoefteRUYYVNPe4r2QwZT5wekYwWSO42wroakzuIAcobD zxLg7UGUzyQrrkQr2xmrJTluPRmcFdApZrL0jK/2P54gzqO54NTy2AYj9pqZPOqZ F98DVQNndi2nsga0FXU8Z4XBT+w+GijEAKysjGqjapM1Ln5SA6Eb3YOPGBZ4S4jR TnHtwDx0fExxKwlj+rpN1VqMRmFyTfyGbaqzlY8KcwvGlDgfmzvURvQLE4nYkakO 9ENXAnYoOH40hcxQOSEnCyUAVGnmOHNprt7AP06sORobbs0rV7fTJUuAJ0Zq3vKJ L8kT/qrOIdy5VILLYeilxG607QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFAfayGiq 8bS7t6kkw2SJ4ohiLERfMB8GA1UdIwQYMBaAFOFWT9pc7VyuaUFTCX7RlCVRIJIj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTMwMC9DRDIwMzdFMjFE ODgxMUUyOEExMUEwRTEwOEIwMkNEMi80VlpQMmx6dFhLNXBRVk1KZnRHVUpWRWdr aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWWlAybHp0WEs1cFFWTUpmdEdVSlZFZ2tpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEzMDAvQ0QyMDM3RTIxRDg4MTFFMjhBMTFBMEUxMDhCMDJDRDIvMTY1Q0VGNjZF NjA5MTFFQjk1MEQ5MzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBADTHV0DBAHTHYQDBADTHZgDBADTH4QDBADTH4owDQYJKoZI hvcNAQELBQADggEBAL8xi0BPoL9+PgVQ0NCklMkQYLu/dggP5a9X7nNVMJovryKB shEuDdFFdaL+y4XJYJUuTjFhDHPdv8L1NqZsLrJEEJVsM+k0yQv6BGayfL+H6BKL 1rEJ0uBvKzzrBa5ttFiHri3vzGxlwlAbCiyy0JwPwYe9ExMZoUweqpo5z6JOFgUs fRoqAgOrX5LZRBzUhVL9nS5Nr+P+EvHIR0knzPylwPZ8jTSRMd5DbmnDLgjl4uwR nCkiGy79veALWTEl8secR+JNNJT1SppEBl5v7Nw7dt904RTTx7YkuG9qdedeuJgZ 4m9cLXoXSr1raH5oBxgxzy1EZK+EzoesSEyxpBs= -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:03 2025 by rpki-client