$ rpki-client -vvf rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/7F053D7E0A9611F0AA1BF786C4F9AE02.roa File: 7F053D7E0A9611F0AA1BF786C4F9AE02.roa (raw, json) Hash identifier: o0d52lCnr33Uh8iwtFl+nwRiBmZy5UFNqyfIv33Dtv4= Subject key identifier: CD:50:87:CD:31:AF:FA:4C:13:83:5C:1F:35:4B:87:0E:CB:16:33:5F Certificate issuer: /CN=A9110477/serialNumber=A9230AE990A0367AE59A0F21BFEEFECD95D74A81 Certificate serial: 1A Authority key identifier: A9:23:0A:E9:90:A0:36:7A:E5:9A:0F:21:BF:EE:FE:CD:95:D7:4A:81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/7F053D7E0A9611F0AA1BF786C4F9AE02.roa Signing time: Wed 26 Mar 2025 23:03:14 +0000 ROA not before: Wed 26 Mar 2025 23:03:14 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 8849 IP address blocks: 161.248.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.crl rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110477 Validity Not Before: Mar 26 23:03:14 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67e487b2-80f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:7d:20:3b:63:62:67:8f:fa:7e:e4:21:9c: 4b:bd:a7:d2:c6:b8:f3:1b:2a:59:04:9d:4f:ae:41: a7:e7:8f:2b:09:d1:cb:4c:e5:72:dc:88:28:68:05: b2:21:13:8b:1e:89:a5:21:71:a8:6d:a3:a5:e9:e8: b9:f1:a0:92:d6:ce:3d:b4:c2:b7:93:9a:7c:e6:20: c5:4a:7f:c7:4b:2a:ce:f3:9e:82:96:17:2e:c6:84: 39:6b:b7:58:b8:b7:fd:cb:22:7c:a6:35:e1:61:9c: 0b:2f:6a:dc:ea:27:85:3b:f2:61:2f:a8:ef:11:c9: d5:dc:8b:4e:55:c8:2d:46:99:8b:4e:0c:34:73:e5: 68:a8:61:28:b7:56:6b:a5:22:be:56:ea:2d:03:74: b8:50:69:3f:30:b0:cf:31:7e:18:93:1c:a6:2f:81: e2:a9:83:f0:42:83:f7:4f:0d:7f:73:a3:f8:4b:1c: 57:2f:80:d0:54:bf:5d:65:3f:9c:2a:5b:39:be:d7: cf:e9:b9:51:ba:46:31:d9:98:17:64:50:c5:54:d6: 6c:56:0b:0c:e8:3f:98:01:4d:95:d1:16:80:35:5e: df:92:42:1c:a6:d3:72:a9:fb:c4:0e:58:95:7f:08: c7:02:50:ca:26:cb:24:5b:c0:5d:92:e9:eb:fc:d2: 74:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:50:87:CD:31:AF:FA:4C:13:83:5C:1F:35:4B:87:0E:CB:16:33:5F X509v3 Authority Key Identifier: keyid:A9:23:0A:E9:90:A0:36:7A:E5:9A:0F:21:BF:EE:FE:CD:95:D7:4A:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qSMK6ZCgNnrlmg8hv-7-zZXXSoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110477/4D27D1CCE9E911EFB502A55FC4F9AE02/7F053D7E0A9611F0AA1BF786C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.36.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:86:c8:26:1a:74:3a:2c:c1:c5:8f:56:8c:05:b4:23:54:d5: 09:e7:d6:e3:ce:e5:c4:b5:16:89:68:cb:31:11:3b:d8:4b:ad: cb:18:f6:6e:92:55:d9:94:6c:1b:20:8b:be:1d:96:b1:e6:ca: a4:c3:ae:d3:c4:ad:5f:ed:d6:c3:84:d3:41:e8:49:9b:ee:9b: e7:27:b6:fc:5e:f4:df:da:22:33:27:77:2e:8c:d5:9b:d7:01: 9c:5c:a4:3a:24:50:66:00:6c:74:23:68:cb:42:98:e1:6b:0a: be:7d:ad:48:3e:6f:ba:10:1b:52:59:cb:80:36:b7:ba:02:c9: 70:88:6b:60:ce:17:13:36:ec:2e:bd:4b:fa:ef:f7:00:4f:53: d4:bc:8d:d5:64:35:a5:36:09:35:1d:2b:2e:8a:e4:f1:a9:28: 1e:c4:28:28:e0:42:cc:fb:e8:28:cf:7c:84:d6:9d:0b:84:7d: 21:64:8e:cd:b9:6e:2c:59:d6:81:b0:0d:8e:03:c6:60:d0:6d: 7c:96:2f:d5:94:13:c8:a8:eb:65:91:d6:bf:03:0f:d8:73:73: 07:23:dd:89:bb:c8:69:ad:5f:2b:e6:25:d9:c3:11:b6:cf:af: 30:f3:34:45:52:67:ff:25:e7:05:22:6f:6f:88:b4:ec:e8:16: 73:b1:9b:29 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDQ3NzExMC8GA1UEBRMoQTkyMzBBRTk5MEEwMzY3QUU1OUEwRjIxQkZFRUZFQ0Q5 NUQ3NEE4MTAeFw0yNTAzMjYyMzAzMTRaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTQ4N2IyLTgwZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB6H0gO2NiZ4/6fuQhnEu9p9LGuPMbKlkEnU+uQafnjysJ0ctM5XLciChoBbIh E4seiaUhcahto6Xp6LnxoJLWzj20wreTmnzmIMVKf8dLKs7znoKWFy7GhDlrt1i4 t/3LInymNeFhnAsvatzqJ4U78mEvqO8RydXci05VyC1GmYtODDRz5WioYSi3Vmul Ir5W6i0DdLhQaT8wsM8xfhiTHKYvgeKpg/BCg/dPDX9zo/hLHFcvgNBUv11lP5wq Wzm+18/puVG6RjHZmBdkUMVU1mxWCwzoP5gBTZXRFoA1Xt+SQhym03Kp+8QOWJV/ CMcCUMomyyRbwF2S6ev80nTrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzVCHzTGv +kwTg1wfNUuHDssWM18wHwYDVR0jBBgwFoAUqSMK6ZCgNnrlmg8hv+7+zZXXSoEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwNDc3LzREMjdEMUNDRTlF OTExRUZCNTAyQTU1RkM0RjlBRTAyL3FTTUs2WkNnTm5ybG1nOGh2LTctelpYWFNv RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcVNNSzZaQ2dObnJsbWc4aHYtNy16WlhYU29FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDQ3Ny80RDI3RDFDQ0U5RTkxMUVGQjUwMkE1NUZDNEY5QUUwMi83RjA1M0Q3RTBB OTYxMUYwQUExQkY3ODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH4JDANBgkqhkiG9w0BAQsFAAOCAQEAeobIJhp0OizBxY9W jAW0I1TVCefW487lxLUWiWjLMRE72Eutyxj2bpJV2ZRsGyCLvh2WsebKpMOu08St X+3Ww4TTQehJm+6b5ye2/F7039oiMyd3LozVm9cBnFykOiRQZgBsdCNoy0KY4WsK vn2tSD5vuhAbUlnLgDa3ugLJcIhrYM4XEzbsLr1L+u/3AE9T1LyN1WQ1pTYJNR0r Lork8akoHsQoKOBCzPvoKM98hNadC4R9IWSOzbluLFnWgbANjgPGYNBtfJYv1ZQT yKjrZZHWvwMP2HNzByPdibvIaa1fK+Yl2cMRts+vMPM0RVJn/yXnBSJvb4i07OgW c7GbKQ== -----END CERTIFICATE-----Generated at Sat Apr 5 22:16:28 2025 by rpki-client