$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa File: 71DBA2E6D28811EAB7D79A47C4F9AE02.roa (raw, json) Hash identifier: t7bI+leFxXguniwnyNd214UolzyAinJGbujLaZqsEZ4= Subject key identifier: D7:37:BA:C6:F2:93:03:85:B5:63:52:4E:4C:36:DE:D9:18:CD:E5:7E Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 081F Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa Signing time: Wed 16 Apr 2025 21:00:48 +0000 ROA not before: Wed 16 Apr 2025 21:00:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 24038 IP address blocks: 202.68.208.0/24 maxlen: 24 202.68.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2079 (0x81f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Apr 16 21:00:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68001a80-6e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:04:1c:f1:a2:d8:59:6b:48:7d:3c:d5:b0:08: 29:85:bd:f0:b0:a1:fb:52:22:dc:9d:9d:3b:e9:80: 33:f4:a6:b2:da:54:80:ce:83:50:6e:3d:3b:98:06: 7b:e7:9b:52:95:2f:6c:33:4a:3b:e2:a6:ce:cb:6d: 1b:e1:02:40:11:8d:71:3e:1c:53:ba:3e:e4:61:b3: ee:98:07:05:03:a8:20:3e:07:05:d5:ed:12:33:f2: 28:97:fc:94:b7:42:d3:04:73:95:19:65:17:7e:9c: 6e:9c:4d:71:7e:c1:36:8d:be:a9:a0:6a:4f:09:b6: 39:0a:7b:55:e4:38:5b:96:3b:39:9b:c7:46:72:cb: 8c:30:82:8f:c0:e4:08:00:14:6f:90:06:03:8b:f7: 26:1c:8f:80:5a:f4:d2:3e:f9:2a:ec:43:68:11:2e: 68:a8:a4:69:cc:3d:d7:e6:3f:25:d1:23:96:d0:1c: de:2b:fd:6b:8b:70:16:b1:b2:b3:81:d8:c3:51:84: d0:59:a3:31:7a:68:33:4c:0c:77:2e:c8:b4:05:b6: 43:98:6e:79:47:8c:2d:24:2e:d6:40:ff:4f:01:50: 41:df:23:87:49:d1:ab:46:ab:36:39:31:fe:49:06: 0e:d5:a4:39:fb:44:22:fe:d4:a6:93:ae:55:1d:64: 9d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:37:BA:C6:F2:93:03:85:B5:63:52:4E:4C:36:DE:D9:18:CD:E5:7E X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.68.208.0/24 202.68.221.0/24 Signature Algorithm: sha256WithRSAEncryption c1:ff:87:f2:a2:4d:9e:e9:b8:29:5a:f3:66:dd:d5:24:1c:aa: a2:2f:62:9f:50:64:ed:d4:1b:59:81:92:48:c3:fa:a5:77:c5: ce:85:ef:34:c4:62:c5:ad:5d:7b:4c:40:c3:ea:f8:bb:22:ef: a6:d8:b1:c2:4f:13:d3:3a:cc:6f:0d:4c:01:5f:ea:b8:8c:8b: 0b:3b:52:f4:20:25:fd:00:5d:a3:28:50:c3:fe:77:49:84:b9: a2:ef:a2:22:b9:28:b2:7a:46:78:43:c8:b3:cd:15:44:dc:1b: f6:85:95:ee:ba:d1:73:fc:4f:24:6d:e4:e8:dc:e4:37:0e:3a: 65:32:10:79:23:eb:9c:8b:09:64:25:81:d9:7b:ec:0d:42:20: a2:d3:ae:ff:67:92:dc:69:50:2e:f9:b8:04:bd:b7:98:a5:ee: 67:8c:65:70:74:6d:f0:2a:96:40:86:a4:5c:c3:ac:c8:88:da: 6f:1a:2d:ef:fb:b5:0f:cb:36:2e:5e:79:9d:50:ba:e2:89:fb: 7f:8b:17:36:f8:d4:c9:65:57:88:25:f6:f2:a5:74:9a:ae:14: 31:78:b7:a5:c8:e7:e7:54:d7:67:8b:b2:65:be:a5:2b:42:b6: 83:6a:ba:a3:2c:ae:02:d3:13:c1:ac:07:81:30:8c:84:0b:f0: 77:ec:00:46 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjUwNDE2MjEwMDQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwMWE4MC02ZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QQc8aLYWWtIfTzVsAgphb3wsKH7UiLcnZ076YAz9Kay2lSAzoNQbj07mAZ7 55tSlS9sM0o74qbOy20b4QJAEY1xPhxTuj7kYbPumAcFA6ggPgcF1e0SM/Iol/yU t0LTBHOVGWUXfpxunE1xfsE2jb6poGpPCbY5CntV5Dhbljs5m8dGcsuMMIKPwOQI ABRvkAYDi/cmHI+AWvTSPvkq7ENoES5oqKRpzD3X5j8l0SOW0BzeK/1ri3AWsbKz gdjDUYTQWaMxemgzTAx3Lsi0BbZDmG55R4wtJC7WQP9PAVBB3yOHSdGrRqs2OTH+ SQYO1aQ5+0Qi/tSmk65VHWSdoQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNc3usby kwOFtWNSTkw23tkYzeV+MB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQzRTgvM0YxRjBEREFEMjg3MTFFQTlFNzNFNjQ2QzRGOUFFMDIvNzFEQkEyRTZE Mjg4MTFFQUI3RDc5QTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKRNADBADKRN0wDQYJKoZIhvcNAQELBQADggEBAMH/h/Ki TZ7puCla82bd1SQcqqIvYp9QZO3UG1mBkkjD+qV3xc6F7zTEYsWtXXtMQMPq+Lsi 76bYscJPE9M6zG8NTAFf6riMiws7UvQgJf0AXaMoUMP+d0mEuaLvoiK5KLJ6RnhD yLPNFUTcG/aFle660XP8TyRt5Ojc5DcOOmUyEHkj65yLCWQlgdl77A1CIKLTrv9n ktxpUC75uAS9t5il7meMZXB0bfAqlkCGpFzDrMiI2m8aLe/7tQ/LNi5eeZ1QuuKJ +3+LFzb41MllV4gl9vKldJquFDF4t6XI5+dU12eLsmW+pStCtoNquqMsrgLTE8Gs B4EwjIQL8HfsAEY= -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:46 2025 by rpki-client