$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/C8BD376C3ADF11EC85EB255FC4F9AE02.roa File: C8BD376C3ADF11EC85EB255FC4F9AE02.roa (raw, json) Hash identifier: wZOUAFh3yH4xpJik8Ps1Fk72+HENAnV8sf4x6n94egk= Subject key identifier: A8:17:6A:77:21:91:0D:BE:09:EB:28:29:FA:74:19:7E:42:7C:C4:DB Certificate issuer: /CN=A91E27B9/serialNumber=BADB699FA02A9572E6EF49F4F91A1FE0A73C2C8D Certificate serial: 07B8 Authority key identifier: BA:DB:69:9F:A0:2A:95:72:E6:EF:49:F4:F9:1A:1F:E0:A7:3C:2C:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uttpn6AqlXLm70n0-Rof4Kc8LI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/C8BD376C3ADF11EC85EB255FC4F9AE02.roa Signing time: Fri 20 Dec 2024 20:59:11 +0000 ROA not before: Fri 20 Dec 2024 20:59:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 24321 IP address blocks: 202.73.8.0/22 maxlen: 22 202.87.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/uttpn6AqlXLm70n0-Rof4Kc8LI0.crl rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/uttpn6AqlXLm70n0-Rof4Kc8LI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uttpn6AqlXLm70n0-Rof4Kc8LI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27B9, serialNumber=BADB699FA02A9572E6EF49F4F91A1FE0A73C2C8D Validity Not Before: Dec 20 20:59:11 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6765da9f-7ee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8f:2d:1e:72:b9:c2:3b:16:f3:5d:0d:f9:47: 18:af:90:03:59:4a:31:8b:02:ce:05:c5:57:c0:d8: f7:3a:33:d8:f9:76:5c:11:10:32:b3:31:32:b7:47: 16:c8:87:7a:90:08:3a:05:60:13:83:ce:8f:21:38: b8:d5:0d:08:f1:d5:ed:67:d7:ca:32:05:d5:f4:b0: af:01:74:22:8d:92:af:27:95:16:e2:e5:69:02:3b: ab:52:f4:cb:df:f5:fa:76:50:ec:97:c0:47:72:e0: 11:de:51:3a:80:2a:a7:1e:3d:65:aa:c9:3a:8b:83: f3:a8:9e:18:f3:0d:4e:58:c8:68:63:f2:21:f8:cc: d6:20:c5:7a:fb:7c:aa:e9:e1:cd:6d:74:02:88:d7: fe:59:60:50:15:b8:22:74:5a:5f:00:bc:1b:b2:77: 4a:bc:cc:43:e6:5d:f6:5a:a5:33:de:4a:03:54:a4: ae:cc:e2:9f:9f:30:27:ee:2f:ba:29:6c:5d:7a:51: da:34:47:6b:da:15:6d:be:db:bc:2b:c2:9c:ce:1d: 5e:b7:cf:3c:2b:6c:e8:c0:11:71:9c:a0:83:12:c0: 2e:b7:4d:58:11:44:94:0d:b4:46:76:91:81:8b:68: f2:a8:73:74:11:ec:30:be:36:f0:c6:3e:ca:ad:3e: 0c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:17:6A:77:21:91:0D:BE:09:EB:28:29:FA:74:19:7E:42:7C:C4:DB X509v3 Authority Key Identifier: keyid:BA:DB:69:9F:A0:2A:95:72:E6:EF:49:F4:F9:1A:1F:E0:A7:3C:2C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/uttpn6AqlXLm70n0-Rof4Kc8LI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uttpn6AqlXLm70n0-Rof4Kc8LI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27B9/84BA7482F0CE11EA891B2C76C4F9AE02/C8BD376C3ADF11EC85EB255FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.73.8.0/22 202.87.216.0/22 Signature Algorithm: sha256WithRSAEncryption b2:ea:02:e4:f7:09:a9:84:13:d3:65:98:fc:f8:8f:81:f8:74: 86:cb:bd:3e:d1:50:2e:71:34:2c:9d:47:19:9e:2f:6f:7e:12: eb:c9:20:4c:12:d0:f2:0b:56:49:65:ba:dc:50:53:3c:9a:00: b8:6c:c3:7a:47:3a:f8:a6:95:84:18:ad:a3:9c:21:6b:ee:61: 95:ae:3b:b1:11:f4:5e:34:45:81:93:d2:d9:5c:6d:e6:49:fd: 84:61:53:ea:81:85:26:7d:7e:7d:1d:24:15:86:99:36:6e:e3: dd:d3:bf:25:30:c7:d0:7c:b9:32:83:89:0a:c0:db:37:42:18: 13:ce:9f:44:97:2f:51:a8:db:c9:5c:2c:15:93:d3:d2:b7:d9: 53:44:7f:bf:40:cf:e0:e6:6d:bf:3d:de:be:71:6c:34:b3:dc: da:0c:44:76:26:38:0b:af:a5:8c:34:76:93:21:03:84:52:95: f0:12:d7:d3:a1:f3:d2:8e:1a:28:1d:1d:1e:4f:14:41:73:6a: 57:6c:91:4b:aa:df:e6:af:f0:e8:58:91:b9:60:8e:09:a3:f3: 52:fd:c0:9d:77:b0:69:45:a8:25:47:de:ce:b4:a3:2e:2a:7e: e6:ad:86:25:cf:8d:38:60:f9:9f:12:4c:05:d5:26:e0:8c:67: 80:d5:09:54 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3QjkxMTAvBgNVBAUTKEJBREI2OTlGQTAyQTk1NzJFNkVGNDlGNEY5MUExRkUw QTczQzJDOEQwHhcNMjQxMjIwMjA1OTExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY1ZGE5Zi03ZWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu48tHnK5wjsW810N+UcYr5ADWUoxiwLOBcVXwNj3OjPY+XZcERAyszEyt0cW yId6kAg6BWATg86PITi41Q0I8dXtZ9fKMgXV9LCvAXQijZKvJ5UW4uVpAjurUvTL 3/X6dlDsl8BHcuAR3lE6gCqnHj1lqsk6i4PzqJ4Y8w1OWMhoY/Ih+MzWIMV6+3yq 6eHNbXQCiNf+WWBQFbgidFpfALwbsndKvMxD5l32WqUz3koDVKSuzOKfnzAn7i+6 KWxdelHaNEdr2hVtvtu8K8Kczh1et888K2zowBFxnKCDEsAut01YEUSUDbRGdpGB i2jyqHN0Eewwvjbwxj7KrT4MRQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKgXanch kQ2+CesoKfp0GX5CfMTbMB8GA1UdIwQYMBaAFLrbaZ+gKpVy5u9J9PkaH+CnPCyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdCOS84NEJBNzQ4MkYw Q0UxMUVBODkxQjJDNzZDNEY5QUUwMi91dHRwbjZBcWxYTG03MG4wLVJvZjRLYzhM STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0dHBuNkFxbFhMbTcwbjAtUm9mNEtjOExJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI3QjkvODRCQTc0ODJGMENFMTFFQTg5MUIyQzc2QzRGOUFFMDIvQzhCRDM3NkMz QURGMTFFQzg1RUIyNTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALKSQgDBALKV9gwDQYJKoZIhvcNAQELBQADggEBALLqAuT3 CamEE9NlmPz4j4H4dIbLvT7RUC5xNCydRxmeL29+EuvJIEwS0PILVkllutxQUzya ALhsw3pHOvimlYQYraOcIWvuYZWuO7ER9F40RYGT0tlcbeZJ/YRhU+qBhSZ9fn0d JBWGmTZu493TvyUwx9B8uTKDiQrA2zdCGBPOn0SXL1Go28lcLBWT09K32VNEf79A z+Dmbb893r5xbDSz3NoMRHYmOAuvpYw0dpMhA4RSlfAS19Oh89KOGigdHR5PFEFz aldskUuq3+av8OhYkblgjgmj81L9wJ13sGlFqCVH3s60oy4qfuathiXPjThg+Z8S TAXVJuCMZ4DVCVQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:03:10 2025 by rpki-client