$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/DE7018487BA711EF91F1C185C4F9AE02.roa File: DE7018487BA711EF91F1C185C4F9AE02.roa (raw, json) Hash identifier: K1bqkflk7X5C/+OtNrLecnHF0EnPW22Gae6n9sY4dac= Subject key identifier: A9:14:F8:8B:85:E0:2B:9C:4B:32:3D:C9:92:FA:82:31:A0:3A:F9:DC Certificate issuer: /CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Certificate serial: 075C Authority key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/DE7018487BA711EF91F1C185C4F9AE02.roa Signing time: Thu 28 Nov 2024 21:41:01 +0000 ROA not before: Thu 28 Nov 2024 21:41:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150803 IP address blocks: 43.225.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1884 (0x75c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F18, serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Validity Not Before: Nov 28 21:41:01 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6748e36d-8262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:04:b6:4a:8c:2d:4e:c5:17:d0:a9:22:c1:54: 8c:6c:2f:17:6d:07:6b:a3:f5:a7:bf:70:ff:0c:90: 65:ac:36:f8:0f:8b:e2:27:c0:80:a5:fa:84:f7:e9: 5a:24:30:81:64:d7:47:6c:6f:5e:0d:e5:12:47:e1: 93:ad:07:f4:d0:da:70:d5:df:eb:19:e9:e0:10:84: 7f:e2:90:37:4c:81:f3:9b:58:6d:37:e5:df:1d:04: 26:28:e0:3b:29:87:74:46:c5:1d:50:9d:00:92:c8: d3:3a:6d:a7:af:4b:66:a3:b5:c5:aa:5e:e5:b1:08: 5e:a7:79:1e:9f:6f:dc:cd:39:de:35:5d:20:24:48: 9f:d8:5b:a3:48:39:23:06:17:ce:a0:2d:25:97:90: 95:0e:41:9f:04:95:05:84:ae:6a:5b:37:d5:b3:01: 47:db:f6:b6:e7:dd:8f:37:b3:d3:aa:6a:43:19:c7: ed:e5:a9:1b:fd:ff:c7:e3:67:f4:37:f5:c2:3d:88: bc:c7:6e:8c:0d:14:a1:e0:7b:1f:75:aa:08:7a:22: ee:6e:fb:55:ef:fd:32:23:86:01:46:d9:b6:75:eb: 61:bb:ee:09:9b:d3:df:53:e4:15:5e:bb:0f:bb:97: 54:03:2b:e1:5a:f1:ea:73:d8:af:2e:2b:0d:d4:79: e7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:14:F8:8B:85:E0:2B:9C:4B:32:3D:C9:92:FA:82:31:A0:3A:F9:DC X509v3 Authority Key Identifier: keyid:3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/DE7018487BA711EF91F1C185C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.56.0/23 Signature Algorithm: sha256WithRSAEncryption 90:70:64:a1:87:7c:f5:2d:d3:47:a5:a1:f1:62:82:45:d5:2a: 8d:3d:7a:72:b5:b6:a2:42:4a:b6:0a:d3:e9:59:9a:02:0e:04: 94:ed:87:c0:53:2f:41:b3:e6:58:68:04:bd:1f:50:c4:9a:ab: 0e:d5:4e:d6:57:90:a9:ae:15:58:9b:6e:05:e5:5f:7c:aa:9b: 88:22:94:33:da:bc:f9:58:89:e3:e8:e6:40:f7:93:a1:6d:c0: 95:50:2e:08:04:84:0a:6c:27:23:bd:7f:3f:82:4f:16:d9:87: a1:4f:dd:d9:00:35:73:66:80:00:dc:1e:e2:39:92:e0:78:49: ff:7f:fa:6e:ca:00:3a:f3:50:9e:2c:9d:8d:ae:22:4d:f8:9f: 18:ae:c5:83:72:1b:98:01:f1:24:6a:a5:8e:66:5e:ae:e5:5a: b3:d9:33:24:83:fc:92:da:9b:42:b6:af:53:74:aa:48:38:55: 62:a7:08:1b:c5:ee:48:a9:a1:e8:33:5d:e2:6f:15:48:ba:08: 0e:20:da:85:6c:75:a5:03:72:75:a2:d7:67:63:f1:88:8a:38: 76:cb:c4:02:68:60:51:bf:51:34:b2:1d:0f:4b:1a:f0:9f:b4: 04:11:a8:37:de:f5:5d:2f:55:37:d3:b5:2f:a2:02:31:16:95: b0:73:19:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGMTgxMTAvBgNVBAUTKDNDOEIyQkRCQ0IxNTVFMkQyRkVDRDQ1RDA2MkZCMzY5 OUYwMzQzMjAwHhcNMjQxMTI4MjE0MTAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4ZTM2ZC04MjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wS2SowtTsUX0KkiwVSMbC8XbQdro/Wnv3D/DJBlrDb4D4viJ8CApfqE9+la JDCBZNdHbG9eDeUSR+GTrQf00Npw1d/rGengEIR/4pA3TIHzm1htN+XfHQQmKOA7 KYd0RsUdUJ0AksjTOm2nr0tmo7XFql7lsQhep3ken2/czTneNV0gJEif2FujSDkj BhfOoC0ll5CVDkGfBJUFhK5qWzfVswFH2/a2592PN7PTqmpDGcft5akb/f/H42f0 N/XCPYi8x26MDRSh4HsfdaoIeiLubvtV7/0yI4YBRtm2dethu+4Jm9PfU+QVXrsP u5dUAyvhWvHqc9ivLisN1HnnHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKkU+IuF 4CucSzI9yZL6gjGgOvncMB8GA1UdIwQYMBaAFDyLK9vLFV4tL+zUXQYvs2mfA0Mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUYxOC9BMzg0MjkxQzBB QTAxMUVCODczMzM4ODJDNEY5QUUwMi9QSXNyMjhzVlhpMHY3TlJkQmktemFaOERR eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BJc3IyOHNWWGkwdjdOUmRCaS16YVo4RFF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGMTgvQTM4NDI5MUMwQUEwMTFFQjg3MzMzODgyQzRGOUFFMDIvREU3MDE4NDg3 QkE3MTFFRjkxRjFDMTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr4TgwDQYJKoZIhvcNAQELBQADggEBAJBwZKGHfPUt00el ofFigkXVKo09enK1tqJCSrYK0+lZmgIOBJTth8BTL0Gz5lhoBL0fUMSaqw7VTtZX kKmuFVibbgXlX3yqm4gilDPavPlYiePo5kD3k6FtwJVQLggEhApsJyO9fz+CTxbZ h6FP3dkANXNmgADcHuI5kuB4Sf9/+m7KADrzUJ4snY2uIk34nxiuxYNyG5gB8SRq pY5mXq7lWrPZMySD/JLam0K2r1N0qkg4VWKnCBvF7kipoegzXeJvFUi6CA4g2oVs daUDcnWi12dj8YiKOHbLxAJoYFG/UTSyHQ9LGvCftAQRqDfe9V0vVTfTtS+iAjEW lbBzGcI= -----END CERTIFICATE-----Generated at Sat Apr 26 09:19:00 2025 by rpki-client