$ rpki-client -vvf rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa File: 0D0118A89A4C11EEB7AE8812C4F9AE02.roa (raw, json) Hash identifier: dKUIWl8erdDyFZKjf2ms5iCtc7nOGksh5tTJx3endFE= Subject key identifier: D4:DD:05:01:A2:5B:69:DD:6A:69:0E:91:28:97:B0:58:C4:4D:7F:09 Certificate issuer: /CN=A919A9C8/serialNumber=7838FFF971DBA42BCDD8D8F37455F0B2849B79D7 Certificate serial: D0 Authority key identifier: 78:38:FF:F9:71:DB:A4:2B:CD:D8:D8:F3:74:55:F0:B2:84:9B:79:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDj_-XHbpCvN2NjzdFXwsoSbedc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa Signing time: Mon 13 Jan 2025 04:08:22 +0000 ROA not before: Mon 13 Jan 2025 04:08:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152152 IP address blocks: 210.79.170.0/24 maxlen: 24 210.79.171.0/24 maxlen: 24 2001:df3:38c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/eDj_-XHbpCvN2NjzdFXwsoSbedc.crl rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/eDj_-XHbpCvN2NjzdFXwsoSbedc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDj_-XHbpCvN2NjzdFXwsoSbedc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A9C8, serialNumber=7838FFF971DBA42BCDD8D8F37455F0B2849B79D7 Validity Not Before: Jan 13 04:08:22 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=678491b6-9507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:1f:a8:33:f9:7b:7b:96:d1:45:c5:f4:f9: 84:93:84:2f:c9:fd:b8:d1:00:c7:52:61:eb:d7:f2: 2d:3d:f8:41:16:95:f0:33:c7:fa:62:8b:21:4b:47: 29:55:6a:9e:75:30:b2:5b:07:04:eb:56:54:09:9e: 33:18:66:eb:79:b4:60:f0:e0:b2:f7:00:4b:a1:d0: 06:db:57:1a:c5:66:96:61:e3:20:ef:ad:63:b8:5d: 21:e0:60:0d:bc:ac:5b:00:3e:c1:f6:2c:f7:bb:ba: 68:87:aa:25:94:19:f3:23:d7:b0:7b:d0:5e:74:6a: 93:84:ab:e4:c9:e0:d9:c7:3f:52:45:6f:94:60:8c: fa:a7:e1:38:f2:6f:0c:1d:8e:ef:40:e1:7a:a9:f4: fc:f5:ba:22:0f:9c:f4:d0:d2:27:e5:0b:7e:b0:58: ea:da:eb:73:bc:9f:fe:bb:95:71:f9:cc:5e:8f:9d: ac:fe:0e:ec:3d:b9:87:09:14:0e:63:10:ce:a8:56: f3:ab:28:93:69:19:74:5f:e5:36:2d:dd:c0:b8:bf: 59:aa:71:9d:ee:9b:83:21:92:2f:82:90:3e:9f:46: 5e:94:fe:fa:61:9d:13:84:35:6b:19:94:ab:a8:24: 5f:69:6a:fc:37:65:c7:c8:cb:2d:7f:77:f3:c6:61: 43:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DD:05:01:A2:5B:69:DD:6A:69:0E:91:28:97:B0:58:C4:4D:7F:09 X509v3 Authority Key Identifier: keyid:78:38:FF:F9:71:DB:A4:2B:CD:D8:D8:F3:74:55:F0:B2:84:9B:79:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/eDj_-XHbpCvN2NjzdFXwsoSbedc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDj_-XHbpCvN2NjzdFXwsoSbedc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.79.170.0/23 IPv6: 2001:df3:38c0::/48 Signature Algorithm: sha256WithRSAEncryption 82:63:ef:ce:0f:d9:f0:bc:ce:f0:2b:7e:db:cb:0c:8a:0c:c8: 1b:72:da:8c:f3:d1:0f:02:52:85:18:43:9d:56:35:61:55:77: 95:22:a9:e8:0b:83:69:a6:fe:16:01:c7:c3:d1:41:3d:74:b4: f0:99:fc:a6:0f:5e:45:d2:dd:c2:f0:f3:a3:ed:a9:58:77:cd: b8:4b:ee:36:d1:58:0a:da:62:3f:77:06:0a:2d:27:a0:33:f2: cf:87:12:cd:7e:4b:de:16:c8:75:f2:26:ed:79:a0:04:9d:40: 4a:73:d9:db:40:25:a9:3f:3e:72:f9:28:7f:9a:c8:f8:1d:8d: 6b:6a:34:9a:6a:d5:91:46:44:30:5b:c5:a0:d6:a3:d5:68:a2: 5e:4a:39:e9:8b:3a:b5:ba:ea:90:7f:14:f0:76:37:45:f0:03: d5:a0:ac:3a:94:25:34:ea:a6:84:73:c9:a9:11:29:ab:4a:48: 01:af:33:fe:30:4b:37:30:06:81:ab:73:51:58:52:73:44:89: fd:61:19:9a:61:83:4e:da:14:14:60:33:72:cb:e2:e7:83:28: 93:7f:75:fc:23:6c:78:e4:89:ba:d9:96:ad:0d:82:86:19:bc: 93:fd:d0:1d:f8:44:c4:25:e4:9d:cd:7a:0c:d9:63:28:ca:93: 67:c9:0c:48 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5QzgxMTAvBgNVBAUTKDc4MzhGRkY5NzFEQkE0MkJDREQ4RDhGMzc0NTVGMEIy ODQ5Qjc5RDcwHhcNMjUwMTEzMDQwODIyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg0OTFiNi05NTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuysfqDP5e3uW0UXF9PmEk4Qvyf240QDHUmHr1/ItPfhBFpXwM8f6YoshS0cp VWqedTCyWwcE61ZUCZ4zGGbrebRg8OCy9wBLodAG21caxWaWYeMg761juF0h4GAN vKxbAD7B9iz3u7poh6ollBnzI9ewe9BedGqThKvkyeDZxz9SRW+UYIz6p+E48m8M HY7vQOF6qfT89boiD5z00NIn5Qt+sFjq2utzvJ/+u5Vx+cxej52s/g7sPbmHCRQO YxDOqFbzqyiTaRl0X+U2Ld3AuL9ZqnGd7puDIZIvgpA+n0ZelP76YZ0ThDVrGZSr qCRfaWr8N2XHyMstf3fzxmFD7QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNTdBQGi W2ndamkOkSiXsFjETX8JMB8GA1UdIwQYMBaAFHg4//lx26QrzdjY83RV8LKEm3nX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTlDOC9EQkJCMDlGRTlB M0ExMUVFQTY3NTg5N0NDNEY5QUUwMi9lRGpfLVhIYnBDdk4yTmp6ZEZYd3NvU2Jl ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VEal8tWEhicEN2TjJOanpkRlh3c29TYmVkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE5QzgvREJCQjA5RkU5QTNBMTFFRUE2NzU4OTdDQzRGOUFFMDIvMEQwMTE4QTg5 QTRDMTFFRUI3QUU4ODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHST6owDwQCAAIwCQMHACABDfM4wDANBgkqhkiG9w0BAQsF AAOCAQEAgmPvzg/Z8LzO8Ct+28sMigzIG3LajPPRDwJShRhDnVY1YVV3lSKp6AuD aab+FgHHw9FBPXS08Jn8pg9eRdLdwvDzo+2pWHfNuEvuNtFYCtpiP3cGCi0noDPy z4cSzX5L3hbIdfIm7XmgBJ1ASnPZ20AlqT8+cvkof5rI+B2Na2o0mmrVkUZEMFvF oNaj1WiiXko56Ys6tbrqkH8U8HY3RfAD1aCsOpQlNOqmhHPJqREpq0pIAa8z/jBL NzAGgatzUVhSc0SJ/WEZmmGDTtoUFGAzcsvi54Mok391/CNseOSJutmWrQ2Chhm8 k/3QHfhExCXknc16DNljKMqTZ8kMSA== -----END CERTIFICATE-----Generated at Sat Apr 26 08:13:11 2025 by rpki-client