$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa File: 36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa (raw, json) Hash identifier: kCdoRWjX7vh3I5Nidiix3CmYE03MKnq+oXPvSl8Xnds= Subject key identifier: 39:3F:6E:54:92:4D:96:F0:0E:57:4D:A3:2F:1D:B2:A7:D4:04:DC:D2 Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 0816 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa Signing time: Fri 04 Apr 2025 21:34:32 +0000 ROA not before: Fri 04 Apr 2025 21:34:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23713 IP address blocks: 202.41.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 4 21:34:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f05068-8094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e3:96:43:5e:6f:8c:40:2b:35:14:e1:1e:72: fb:c7:b6:de:a7:18:a5:cc:83:4c:b1:c3:11:4b:17: f7:5d:9f:c5:87:29:a0:83:76:f6:b7:c6:8d:4c:f4: 26:f0:d1:c7:97:2f:36:f7:43:4b:16:86:ae:70:1a: c6:e0:54:1f:24:c0:a2:dd:08:50:a9:a8:28:de:e3: b4:ec:33:3b:ad:47:7f:92:20:30:43:c9:d1:b6:bd: ce:67:42:03:c9:d3:90:0b:53:8a:e7:91:75:81:d3: 02:df:ed:72:40:88:b7:e4:b3:ab:73:1d:91:42:87: 76:ab:ef:76:7a:81:5e:28:e5:9d:34:b4:6d:98:69: 4a:e2:b8:d9:c4:d8:e0:4b:f6:56:43:a8:d1:ee:1c: 99:34:72:0e:60:32:2b:42:2f:f0:9f:13:fe:2e:7e: 4e:57:b7:ee:7a:b9:57:77:cb:5c:2c:5c:c3:d4:0e: 37:6f:e8:25:d4:7e:fc:32:e6:2d:77:ca:07:00:be: c1:ae:91:f6:69:dd:5e:b7:14:d9:a6:2d:3c:ab:66: 9d:6a:92:eb:64:94:9f:b7:f5:b5:2f:0b:0d:48:32: 18:89:e9:3a:45:db:e1:5a:2d:eb:ef:99:6c:ad:95: cd:26:da:ee:90:cb:57:38:83:2d:21:58:aa:df:02: 9a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3F:6E:54:92:4D:96:F0:0E:57:4D:A3:2F:1D:B2:A7:D4:04:DC:D2 X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/36CDE30CEC2411EA8B0DDA2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.145.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:ed:76:94:98:51:50:b2:26:af:a4:d3:7f:a1:de:9f:33:10: 4e:c3:b3:19:3c:f9:f8:60:d4:a3:1b:19:70:eb:56:c7:71:92: 9c:1f:ee:5e:3d:d2:1e:30:f2:d9:97:6a:d0:64:18:a0:e0:5d: ff:ac:96:fb:12:06:8e:4e:a4:69:58:0d:1d:f5:d6:a0:d5:13: 25:79:22:22:5d:80:07:e2:cf:7b:68:df:cb:06:af:65:5c:bd: 10:5d:a7:b8:42:1f:83:78:71:e5:65:11:e0:89:2c:2f:64:fc: ec:3d:03:59:3f:98:b8:30:2b:6c:35:8c:46:15:7c:38:1b:04: 0b:91:ce:08:8d:55:7e:12:2d:24:5b:6a:20:ad:76:99:53:b6: 19:18:f1:d3:54:cc:70:61:56:a5:fe:9f:5e:66:a5:88:d1:af: 98:e8:dd:94:62:9b:3c:d9:1d:d0:36:30:d8:0d:f6:a2:37:69: 14:29:f0:9b:99:f5:3d:c8:af:02:c5:7c:77:c0:37:bf:e8:52: 59:96:b8:b6:d0:1a:13:de:cd:a0:3d:9a:d1:24:9b:53:39:71: 10:c6:c2:f9:a5:4c:af:ba:80:0c:87:e1:03:9d:2c:ff:cf:de: b2:45:2d:ba:af:68:1f:3c:2b:11:06:90:e9:e3:eb:5c:64:0c: f2:e3:95:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjUwNDA0MjEzNDMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwNTA2OC04MDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeOWQ15vjEArNRThHnL7x7bepxilzINMscMRSxf3XZ/Fhymgg3b2t8aNTPQm 8NHHly8290NLFoaucBrG4FQfJMCi3QhQqago3uO07DM7rUd/kiAwQ8nRtr3OZ0ID ydOQC1OK55F1gdMC3+1yQIi35LOrcx2RQod2q+92eoFeKOWdNLRtmGlK4rjZxNjg S/ZWQ6jR7hyZNHIOYDIrQi/wnxP+Ln5OV7fuerlXd8tcLFzD1A43b+gl1H78MuYt d8oHAL7BrpH2ad1etxTZpi08q2adapLrZJSft/W1LwsNSDIYiek6RdvhWi3r75ls rZXNJtrukMtXOIMtIViq3wKatwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDk/blSS TZbwDldNoy8dsqfUBNzSMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvMzZDREUzMENF QzI0MTFFQThCMEREQTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKZEwDQYJKoZIhvcNAQELBQADggEBAH7tdpSYUVCyJq+k 03+h3p8zEE7Dsxk8+fhg1KMbGXDrVsdxkpwf7l490h4w8tmXatBkGKDgXf+slvsS Bo5OpGlYDR311qDVEyV5IiJdgAfiz3to38sGr2VcvRBdp7hCH4N4ceVlEeCJLC9k /Ow9A1k/mLgwK2w1jEYVfDgbBAuRzgiNVX4SLSRbaiCtdplTthkY8dNUzHBhVqX+ n15mpYjRr5jo3ZRimzzZHdA2MNgN9qI3aRQp8JuZ9T3IrwLFfHfAN7/oUlmWuLbQ GhPezaA9mtEkm1M5cRDGwvmlTK+6gAyH4QOdLP/P3rJFLbqvaB88KxEGkOnj61xk DPLjlSo= -----END CERTIFICATE-----Generated at Sat Apr 26 08:17:43 2025 by rpki-client