$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa File: 3ED152FE82A411EE87690C58C4F9AE02.roa (raw, json) Hash identifier: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms= Subject key identifier: C8:CD:D7:B1:8C:3A:4F:CB:5F:3C:C1:0E:CE:C5:5F:88:4D:51:0E:9F Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: C8 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa Signing time: Thu 05 Dec 2024 04:19:32 +0000 ROA not before: Thu 05 Dec 2024 04:19:32 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 152097 IP address blocks: 203.99.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Dec 5 04:19:32 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675129d4-f360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1c:ef:8c:c8:d7:dd:72:41:91:59:3b:81:57: 68:cd:ea:7a:6b:a3:f2:0f:10:b0:20:74:e5:63:5b: ca:90:54:9e:cc:d1:a0:b4:29:20:60:ab:28:66:8c: fc:14:df:32:b2:21:e0:97:62:3b:24:57:63:0f:b2: 3a:1e:17:c7:95:5a:3d:35:29:5d:76:a1:38:f3:38: 25:4a:4a:ac:0d:68:3f:63:ea:39:7f:4d:a1:4f:00: 28:be:66:9f:ee:e2:36:92:32:2d:fb:44:1f:26:e2: 81:ab:24:9c:69:39:88:bd:5a:39:4a:b8:e8:e8:bd: 71:c0:13:ab:ea:d5:9b:45:ba:69:d8:61:92:31:d3: d3:89:f1:a3:4b:61:9f:77:7d:f1:22:02:df:1e:1a: e2:92:a6:03:0f:6f:71:8e:ba:b8:c9:a3:79:b3:dc: bb:36:50:5d:9b:a0:71:28:9e:94:1d:64:36:00:fa: f8:96:6f:6d:8b:f1:c1:5e:bb:b2:9a:23:49:94:1d: 54:a7:dd:17:1d:af:a5:24:a4:2e:ae:75:f0:8e:c5: cf:9a:52:d0:63:47:70:16:34:e0:b8:7d:8b:c2:e6: c7:90:e9:3e:28:3e:d0:d9:46:01:6a:50:0c:32:14: b3:95:7f:5b:30:97:bb:8a:2d:21:0c:8d:d5:14:73: 28:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CD:D7:B1:8C:3A:4F:CB:5F:3C:C1:0E:CE:C5:5F:88:4D:51:0E:9F X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.150.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:b1:18:ab:a8:f9:32:f7:14:7b:0f:49:a2:e9:5f:82:02:39: 6f:91:c5:10:60:f8:09:a5:0d:94:8d:d3:30:f6:df:92:3a:f2: e1:a3:95:eb:be:81:35:6c:7f:6c:19:c1:ad:9f:83:92:5a:6d: e5:40:6a:69:8b:a6:98:5c:cf:07:41:7a:c0:77:7c:10:3f:d8: 64:35:12:53:0a:1c:50:5b:ea:1d:cd:37:5e:e5:72:55:0b:be: 42:7b:3f:ba:35:4b:e2:5b:e0:70:34:05:7e:72:aa:e0:3c:eb: cb:a5:ba:27:bf:c5:f1:4c:56:2a:e6:68:6f:f5:2e:16:d9:ab: f8:6f:52:06:cd:ba:58:ed:2e:46:b9:02:bd:29:56:8d:f6:6d: c6:34:e5:9a:fd:b0:b9:30:6c:87:58:ab:36:9e:c2:6f:2c:15: b5:ce:7a:33:8d:40:2f:c2:35:f7:7f:33:9b:9a:49:b6:5a:01: 93:72:0c:2b:6f:74:8f:9a:c4:65:62:34:d1:54:20:54:63:24: 2d:95:6c:ed:c3:44:bf:b0:a6:58:b6:41:2b:67:04:20:0c:1b: 06:f3:8a:52:52:fe:10:75:b0:87:26:46:5a:52:cc:bc:9a:3a: 78:c1:8a:0d:8b:f8:bd:92:81:c8:2d:bc:d1:ad:26:50:e3:b2: 36:45:aa:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjQxMjA1MDQxOTMyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUxMjlkNC1mMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRzvjMjX3XJBkVk7gVdozep6a6PyDxCwIHTlY1vKkFSezNGgtCkgYKsoZoz8 FN8ysiHgl2I7JFdjD7I6HhfHlVo9NSlddqE48zglSkqsDWg/Y+o5f02hTwAovmaf 7uI2kjIt+0QfJuKBqyScaTmIvVo5Srjo6L1xwBOr6tWbRbpp2GGSMdPTifGjS2Gf d33xIgLfHhrikqYDD29xjrq4yaN5s9y7NlBdm6BxKJ6UHWQ2APr4lm9ti/HBXruy miNJlB1Up90XHa+lJKQurnXwjsXPmlLQY0dwFjTguH2LwubHkOk+KD7Q2UYBalAM MhSzlX9bMJe7ii0hDI3VFHMohwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMjN17GM Ok/LXzzBDs7FX4hNUQ6fMB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjI3QjEvOEZBRjJCREU4MkEzMTFFRUFDNjlGNDU2QzRGOUFFMDIvM0VEMTUyRkU4 MkE0MTFFRTg3NjkwQzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLY5YwDQYJKoZIhvcNAQELBQADggEBAD+xGKuo+TL3FHsP SaLpX4ICOW+RxRBg+AmlDZSN0zD235I68uGjleu+gTVsf2wZwa2fg5JabeVAammL pphczwdBesB3fBA/2GQ1ElMKHFBb6h3NN17lclULvkJ7P7o1S+Jb4HA0BX5yquA8 68uluie/xfFMVirmaG/1LhbZq/hvUgbNuljtLka5Ar0pVo32bcY05Zr9sLkwbIdY qzaewm8sFbXOejONQC/CNfd/M5uaSbZaAZNyDCtvdI+axGViNNFUIFRjJC2VbO3D RL+wpli2QStnBCAMGwbzilJS/hB1sIcmRlpSzLyaOnjBig2L+L2SgcgtvNGtJlDj sjZFqpg= -----END CERTIFICATE-----Generated at Sat Apr 26 15:08:53 2025 by rpki-client