$ rpki-client -vvf rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/E3AB124AB5C811EE8795EB6FC4F9AE02.roa File: E3AB124AB5C811EE8795EB6FC4F9AE02.roa (raw, json) Hash identifier: aM0ebxOeAp/0tw2kKItKBwN7ixtJh2EMTHdvNuXJzzw= Subject key identifier: 57:43:FA:6E:89:CF:BF:C2:40:4A:D5:42:49:BF:02:AE:72:47:B2:6D Certificate issuer: /CN=A9146D7A/serialNumber=0E9ACD807114B58F718A9C2B85952625E6DB2BD1 Certificate serial: BF Authority key identifier: 0E:9A:CD:80:71:14:B5:8F:71:8A:9C:2B:85:95:26:25:E6:DB:2B:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/E3AB124AB5C811EE8795EB6FC4F9AE02.roa Signing time: Thu 09 Jan 2025 04:19:47 +0000 ROA not before: Thu 09 Jan 2025 04:19:47 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 198651 IP address blocks: 202.47.180.0/23 maxlen: 23 2001:df3:67c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.crl rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:44:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146D7A Validity Not Before: Jan 9 04:19:47 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677f4e63-55f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:10:fe:95:a1:2d:9c:80:fe:4c:94:1f:ca:1c: 5c:13:89:74:8e:ae:62:46:3c:6c:fb:9d:24:7a:69: 17:4b:9f:14:ba:3a:49:7f:05:a6:a7:db:88:cf:22: a1:4d:b2:ab:d1:08:0e:1b:ba:84:99:58:46:23:52: 95:85:71:ba:36:3a:7f:b5:b8:bd:38:c4:00:b0:48: b8:21:85:c0:ee:b6:1c:3e:08:20:f5:83:ed:f3:8d: 71:32:85:9e:e4:d2:9b:9f:16:e4:87:2a:48:9a:f1: 65:ea:d0:7c:1a:65:e4:3e:65:9f:03:4a:48:a0:f4: 1c:2f:7d:85:85:9f:69:04:b6:eb:c2:2f:67:e9:03: 41:b8:c9:c7:b9:ba:d1:72:71:50:5a:a2:09:04:fc: 13:c1:cb:07:72:67:fb:ce:5b:55:cb:8e:4e:8a:3d: f1:bf:e0:c9:a0:f2:bc:26:8c:06:88:e6:5b:b1:24: f7:bb:ff:04:46:93:2c:e7:81:41:90:7b:58:bc:3e: db:4b:fe:2d:3b:b4:f0:01:45:68:ea:9e:8b:16:4a: 59:c4:62:55:0a:23:65:9f:71:75:ab:94:35:d4:64: fe:86:3f:c6:a0:05:18:76:6d:05:80:0a:36:63:f9: 72:2b:39:9c:77:0f:ea:56:8e:fd:d2:01:8c:aa:75: 50:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:43:FA:6E:89:CF:BF:C2:40:4A:D5:42:49:BF:02:AE:72:47:B2:6D X509v3 Authority Key Identifier: keyid:0E:9A:CD:80:71:14:B5:8F:71:8A:9C:2B:85:95:26:25:E6:DB:2B:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/E3AB124AB5C811EE8795EB6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.47.180.0/23 IPv6: 2001:df3:67c0::/48 Signature Algorithm: sha256WithRSAEncryption 85:18:00:69:4f:a0:b1:3e:45:08:62:cc:34:f1:19:a4:2e:c1: aa:71:17:ed:57:dd:f8:2e:80:b1:8f:50:e4:52:54:65:28:ed: 4e:80:b3:55:29:88:17:57:d8:83:74:1b:25:b0:ba:b6:75:f4: e6:4f:93:bc:b7:7b:96:9a:31:3e:f0:e5:07:2f:4f:f4:b9:85: e7:86:d2:2b:3b:ca:2d:da:e2:72:7e:f6:13:69:e2:c7:93:91: 4d:dd:66:99:d4:28:b7:f4:5b:4d:4a:6a:1b:61:ac:e5:9c:d9: dc:f5:e2:d6:9b:d6:32:b6:fb:6c:d6:2a:8e:e2:8e:fa:cd:e0: 9c:ba:f0:05:8d:b8:e8:5c:23:d8:db:e0:2c:8f:6a:fc:58:7f: ae:cc:3c:dd:12:d7:bf:c0:d9:42:ee:d1:00:30:fc:4a:93:79: 9e:f6:ab:9f:81:29:47:99:91:e1:47:6e:d8:2f:be:8d:3e:03: 01:17:82:0d:80:02:5b:d6:9d:0e:6a:e9:77:29:e2:fd:c2:e4: f8:28:3a:82:79:c9:22:96:90:2e:c9:e2:e5:37:b7:73:63:62: 8d:1d:5e:31:b6:19:90:ef:ad:38:04:2a:f4:9b:de:7d:0b:7a: 7a:69:77:e4:17:48:fb:42:e7:32:20:9b:60:17:40:a5:3c:c2: cf:e5:bc:d6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEN0ExMTAvBgNVBAUTKDBFOUFDRDgwNzExNEI1OEY3MThBOUMyQjg1OTUyNjI1 RTZEQjJCRDEwHhcNMjUwMTA5MDQxOTQ3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdmNGU2My01NWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRD+laEtnID+TJQfyhxcE4l0jq5iRjxs+50kemkXS58UujpJfwWmp9uIzyKh TbKr0QgOG7qEmVhGI1KVhXG6Njp/tbi9OMQAsEi4IYXA7rYcPggg9YPt841xMoWe 5NKbnxbkhypImvFl6tB8GmXkPmWfA0pIoPQcL32FhZ9pBLbrwi9n6QNBuMnHubrR cnFQWqIJBPwTwcsHcmf7zltVy45Oij3xv+DJoPK8JowGiOZbsST3u/8ERpMs54FB kHtYvD7bS/4tO7TwAUVo6p6LFkpZxGJVCiNln3F1q5Q11GT+hj/GoAUYdm0FgAo2 Y/lyKzmcdw/qVo790gGMqnVQAQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFdD+m6J z7/CQErVQkm/Aq5yR7JtMB8GA1UdIwQYMBaAFA6azYBxFLWPcYqcK4WVJiXm2yvR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkQ3QS85M0QyNEY0QUI1 QzgxMUVFQjRBMjRBNkZDNEY5QUUwMi9EcHJOZ0hFVXRZOXhpcHdyaFpVbUplYmJL OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rwck5nSEVVdFk5eGlwd3JoWlVtSmViYks5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZEN0EvOTNEMjRGNEFCNUM4MTFFRUI0QTI0QTZGQzRGOUFFMDIvRTNBQjEyNEFC NUM4MTFFRTg3OTVFQjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHKL7QwDwQCAAIwCQMHACABDfNnwDANBgkqhkiG9w0BAQsF AAOCAQEAhRgAaU+gsT5FCGLMNPEZpC7BqnEX7Vfd+C6AsY9Q5FJUZSjtToCzVSmI F1fYg3QbJbC6tnX05k+TvLd7lpoxPvDlBy9P9LmF54bSKzvKLdricn72E2nix5OR Td1mmdQot/RbTUpqG2Gs5ZzZ3PXi1pvWMrb7bNYqjuKO+s3gnLrwBY246Fwj2Nvg LI9q/Fh/rsw83RLXv8DZQu7RADD8SpN5nvarn4EpR5mR4Udu2C++jT4DAReCDYAC W9adDmrpdyni/cLk+Cg6gnnJIpaQLsni5Te3c2NijR1eMbYZkO+tOAQq9JvefQt6 eml35BdI+0LnMiCbYBdApTzCz+W81g== -----END CERTIFICATE-----Generated at Sat Apr 5 06:58:01 2025 by rpki-client