$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa File: 8CD1AEC62E9511E9896EFA1DC4F9AE02.roa (raw, json) Hash identifier: nCG2ItoYRYsNw2ltluT/NhcDchTRJwPgu00JBArVHNU= Subject key identifier: C3:6A:6F:C0:C8:67:FE:86:BD:95:36:63:D7:89:A9:FF:9B:C9:89:EF Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 102C Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa Signing time: Tue 30 Apr 2024 18:26:29 +0000 ROA not before: Tue 30 Apr 2024 18:26:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132716 IP address blocks: 202.78.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4140 (0x102c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Apr 30 18:26:29 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663137d5-3453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:67:af:a3:d8:b3:99:b0:ca:80:f1:f0:ec:30: 93:c1:a2:f0:9b:9a:04:6d:26:9e:02:2d:0f:71:d3: 47:3c:14:6d:39:a1:b5:df:92:30:10:7e:32:72:53: 80:9c:e4:8e:22:38:08:a4:8c:45:16:e3:b7:6b:b0: 92:5f:f8:87:29:aa:ce:81:61:36:ba:db:17:73:56: 7a:42:e0:d5:76:67:4e:89:82:f7:57:5e:a7:7a:f2: 03:6a:6d:f6:eb:2c:69:7b:5c:15:2b:0d:c0:bc:26: cb:e1:3f:20:e1:52:24:05:73:c0:13:94:ec:7f:f9: 2b:0d:b7:1c:d0:68:b6:ab:23:87:2c:da:0d:24:94: 1c:7c:27:c9:99:b3:ce:f2:52:de:a6:db:b9:08:69: 77:be:6e:62:89:40:67:26:6e:b9:fa:93:7c:a9:b6: 4f:3c:fe:54:6b:bd:9e:f5:fd:ff:45:e6:d5:d3:ae: 26:e0:40:9d:e4:d3:d7:7b:0d:4b:cf:43:74:c3:71: f6:10:16:c8:61:14:db:48:dd:09:12:2f:16:65:65: 7d:8d:3a:ae:4e:4e:37:13:36:ae:50:3d:87:6d:38: 39:42:f3:b4:bc:8e:be:05:a2:83:65:52:19:05:0a: 6a:5c:ef:7b:86:20:69:b9:41:d4:bf:b6:fe:da:52: 46:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:6A:6F:C0:C8:67:FE:86:BD:95:36:63:D7:89:A9:FF:9B:C9:89:EF X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.78.79.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:12:2a:39:e5:6f:60:10:64:6f:01:bd:91:cb:88:35:98:0c: 78:88:6b:3a:a1:0d:ea:2c:48:4b:db:cb:76:9c:2f:53:84:35: 1f:49:a5:06:93:fc:5e:2d:ec:0f:03:a5:37:8c:08:c1:f9:f2: c9:ed:2b:64:71:46:dc:c4:5e:07:34:0a:9e:aa:07:6c:7e:9a: b7:20:ee:32:cc:5f:fb:3d:14:73:3f:34:cc:6e:f6:e6:bd:48: 0d:0c:41:50:ad:be:0f:4d:07:42:91:ba:23:cf:9b:45:ee:7a: 7a:da:b6:01:1e:f0:80:1d:73:16:3f:78:96:fe:0d:b8:fb:73: 78:68:5c:5c:97:18:c2:a1:0a:37:92:77:24:ba:59:9f:7f:0b: a6:2b:47:ea:3a:bc:bc:07:c4:e3:0b:9e:3e:4d:8c:b6:6f:20: 06:70:03:c3:a4:64:ce:62:21:b2:ef:71:89:d5:4f:1e:43:d1: e5:46:f6:c2:94:60:ac:f6:2c:ac:7e:d2:74:da:a7:69:5e:46: 74:6b:28:59:a3:b9:de:d1:3f:8d:e6:04:39:5c:78:47:b8:68: 3e:55:a3:4a:e9:2c:f5:55:d8:72:62:85:be:49:85:2d:82:ec: ce:30:88:a9:80:8e:e6:b2:12:38:5f:83:1c:59:8c:a8:2a:90: bf:b8:99:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICECwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjQwNDMwMTgyNjI5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzdkNS0zNDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmevo9izmbDKgPHw7DCTwaLwm5oEbSaeAi0PcdNHPBRtOaG135IwEH4yclOA nOSOIjgIpIxFFuO3a7CSX/iHKarOgWE2utsXc1Z6QuDVdmdOiYL3V16nevIDam32 6yxpe1wVKw3AvCbL4T8g4VIkBXPAE5Tsf/krDbcc0Gi2qyOHLNoNJJQcfCfJmbPO 8lLeptu5CGl3vm5iiUBnJm65+pN8qbZPPP5Ua72e9f3/RebV064m4ECd5NPXew1L z0N0w3H2EBbIYRTbSN0JEi8WZWV9jTquTk43EzauUD2HbTg5QvO0vI6+BaKDZVIZ BQpqXO97hiBpuUHUv7b+2lJGDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMNqb8DI Z/6GvZU2Y9eJqf+byYnvMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvOENEMUFFQzYy RTk1MTFFOTg5NkVGQTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKTk8wDQYJKoZIhvcNAQELBQADggEBAF0SKjnlb2AQZG8B vZHLiDWYDHiIazqhDeosSEvby3acL1OENR9JpQaT/F4t7A8DpTeMCMH58sntK2Rx RtzEXgc0Cp6qB2x+mrcg7jLMX/s9FHM/NMxu9ua9SA0MQVCtvg9NB0KRuiPPm0Xu enratgEe8IAdcxY/eJb+Dbj7c3hoXFyXGMKhCjeSdyS6WZ9/C6YrR+o6vLwHxOML nj5NjLZvIAZwA8OkZM5iIbLvcYnVTx5D0eVG9sKUYKz2LKx+0nTap2leRnRrKFmj ud7RP43mBDlceEe4aD5Vo0rpLPVV2HJihb5JhS2C7M4wiKmAjuayEjhfgxxZjKgq kL+4md8= -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:37 2025 by rpki-client