$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96D29A2220E011F086D75E5CC4F9AE02.roa File: 96D29A2220E011F086D75E5CC4F9AE02.roa (raw, json) Hash identifier: 0FOWU/128zkabpuP6eI/6fQrKWNdatB4AEVKWZRuiyw= Subject key identifier: E1:F1:BF:8E:5F:C5:B5:CF:02:8B:79:A9:C7:C1:00:CB:E2:61:5D:9B Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D38 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96D29A2220E011F086D75E5CC4F9AE02.roa Signing time: Tue 29 Apr 2025 06:01:51 +0000 ROA not before: Tue 29 Apr 2025 06:01:51 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 4766 IP address blocks: 14.192.133.0/24 maxlen: 24 14.192.145.0/24 maxlen: 24 111.92.131.0/24 maxlen: 24 111.92.133.0/24 maxlen: 24 111.92.134.0/24 maxlen: 24 111.92.139.0/24 maxlen: 24 111.92.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Apr 29 06:01:51 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68106b4f-68f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b7:4a:c6:47:ea:be:a9:04:2e:00:cb:4a:19: 61:b4:10:4c:ee:37:a9:d3:17:4c:7b:ef:5a:1d:2c: bf:f9:90:79:6b:75:6c:28:54:a8:46:4a:93:04:85: e6:a5:71:7d:d9:c5:d0:58:cc:17:c4:4a:61:3d:c3: 8b:31:12:b3:6e:39:d8:d3:66:b8:bf:f2:20:1c:27: d3:69:be:10:bb:20:57:e1:dc:71:0f:1e:ed:73:54: ca:22:80:0f:98:24:0a:58:75:a3:fc:4b:04:62:42: 08:bc:68:ca:d7:2d:bf:db:45:5d:cf:3e:1c:8d:11: d0:8b:09:3f:39:7d:f6:8a:60:fa:f7:79:02:2a:62: 55:02:5b:79:09:73:35:9b:61:24:be:a7:01:c2:13: b6:f0:a4:6f:21:33:76:5f:4b:a1:da:7f:02:e9:e8: f5:37:28:2b:e2:8d:69:02:60:30:c5:42:67:5d:41: 56:10:28:95:86:f0:be:79:19:43:80:89:e8:a4:65: 1e:83:df:6c:c4:55:9c:1d:eb:ad:f7:77:31:5a:d4: 80:ce:c0:15:07:7b:07:5b:06:ac:0d:49:0c:4a:ef: c6:4d:78:82:e2:5f:f8:63:89:c3:1e:2a:3a:96:61: 55:d3:24:f5:76:1a:56:c4:c5:1c:65:c0:e0:96:02: 60:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F1:BF:8E:5F:C5:B5:CF:02:8B:79:A9:C7:C1:00:CB:E2:61:5D:9B X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96D29A2220E011F086D75E5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.133.0/24 14.192.145.0/24 111.92.131.0/24 111.92.133.0-111.92.134.255 111.92.139.0/24 111.92.142.0/24 Signature Algorithm: sha256WithRSAEncryption a3:1f:1e:03:00:c6:8b:e8:ab:ad:7c:17:14:c2:5b:4f:c0:93: c5:26:40:bd:3d:e7:5e:51:0e:d9:9b:cb:a0:b0:ad:9d:b5:67: 6c:97:63:e1:64:a1:ac:b8:89:c6:ab:d5:d7:44:8c:48:4a:47: 31:48:35:07:43:e1:b1:a0:a5:29:73:44:67:8c:11:2d:a4:03: 61:e1:5e:c5:81:dd:e4:27:26:f1:a2:e6:ad:a6:5a:05:fe:0a: 82:fc:cd:23:fc:00:f2:ea:c0:1d:41:bb:61:95:36:6a:3d:b8: 0c:9a:14:e7:9c:c2:52:94:54:82:22:e6:80:27:13:24:68:9e: ff:57:13:7c:cd:6a:a0:5f:05:b2:b5:3f:11:ba:c5:d6:9c:21: 62:8a:f6:4d:17:ec:50:b9:b3:7d:41:68:c6:c2:31:c7:b6:e9: 41:47:dd:b4:5a:9b:26:21:34:a0:6d:05:7d:d9:33:b1:1c:89: 43:1b:78:bb:62:37:f7:6d:00:06:86:fc:57:6d:9f:63:f2:a0: 90:10:59:2f:1d:36:b6:4d:66:2a:b6:05:00:ae:76:2a:20:09: 5f:a4:d7:bc:b6:fb:c5:35:c6:68:15:0b:f9:fb:18:99:e4:15: 98:20:71:94:fa:1c:f7:8a:ec:b7:b2:4c:88:62:20:59:23:13: a2:1f:63:8e -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNDI5MDYwMTUxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNmI0Zi02OGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LdKxkfqvqkELgDLShlhtBBM7jep0xdMe+9aHSy/+ZB5a3VsKFSoRkqTBIXm pXF92cXQWMwXxEphPcOLMRKzbjnY02a4v/IgHCfTab4QuyBX4dxxDx7tc1TKIoAP mCQKWHWj/EsEYkIIvGjK1y2/20Vdzz4cjRHQiwk/OX32imD693kCKmJVAlt5CXM1 m2EkvqcBwhO28KRvITN2X0uh2n8C6ej1Nygr4o1pAmAwxUJnXUFWECiVhvC+eRlD gInopGUeg99sxFWcHeut93cxWtSAzsAVB3sHWwasDUkMSu/GTXiC4l/4Y4nDHio6 lmFV0yT1dhpWxMUcZcDglgJgCQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFOHxv45f xbXPAot5qcfBAMviYV2bMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvOTZEMjlBMjIy MEUwMTFGMDg2RDc1RTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAAOwIUDBAAOwJEDBABvXIMwDAMEAG9chQMEAG9chgMEAG9c iwMEAG9cjjANBgkqhkiG9w0BAQsFAAOCAQEAox8eAwDGi+irrXwXFMJbT8CTxSZA vT3nXlEO2ZvLoLCtnbVnbJdj4WShrLiJxqvV10SMSEpHMUg1B0PhsaClKXNEZ4wR LaQDYeFexYHd5Ccm8aLmraZaBf4KgvzNI/wA8urAHUG7YZU2aj24DJoU55zCUpRU giLmgCcTJGie/1cTfM1qoF8FsrU/EbrF1pwhYor2TRfsULmzfUFoxsIxx7bpQUfd tFqbJiE0oG0FfdkzsRyJQxt4u2I3920ABob8V22fY/KgkBBZLx02tk1mKrYFAK52 KiAJX6TXvLb7xTXGaBUL+fsYmeQVmCBxlPoc94rst7JMiGIgWSMToh9jjg== -----END CERTIFICATE-----Generated at Tue May 13 15:25:15 2025 by rpki-client