$ rpki-client -vvf rpki.apnic.net/member_repository/A9166123/10BE9E22F48C11EDA8895453C4F9AE02/2F02BC96718D11EE97E3E022C4F9AE02.roa File: 2F02BC96718D11EE97E3E022C4F9AE02.roa (raw, json) Hash identifier: aL33iipoIJ8uom00lMgUJWhHvjr9mG3sVCYSyGN714A= Subject key identifier: 11:0A:82:7A:14:1D:AB:22:D6:79:31:61:B2:28:E2:AD:D0:79:E9:5E Certificate issuer: /CN=A9166123/serialNumber=3DE6781D675ECA79F2FE3D17AB243CB74B7B9622 Certificate serial: 014E Authority key identifier: 3D:E6:78:1D:67:5E:CA:79:F2:FE:3D:17:AB:24:3C:B7:4B:7B:96:22 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PeZ4HWdeynny_j0XqyQ8t0t7liI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166123/10BE9E22F48C11EDA8895453C4F9AE02/2F02BC96718D11EE97E3E022C4F9AE02.roa Signing time: Mon 03 Feb 2025 03:26:33 +0000 ROA not before: Mon 03 Feb 2025 03:26:33 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 19905 IP address blocks: 157.120.160.0/23 maxlen: 24 157.120.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166123/10BE9E22F48C11EDA8895453C4F9AE02/PeZ4HWdeynny_j0XqyQ8t0t7liI.crl rsync://rpki.apnic.net/member_repository/A9166123/10BE9E22F48C11EDA8895453C4F9AE02/PeZ4HWdeynny_j0XqyQ8t0t7liI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PeZ4HWdeynny_j0XqyQ8t0t7liI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 02:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166123 Validity Not Before: Feb 3 03:26:33 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a03769-c6b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8f:1a:ac:1c:ae:19:0c:49:b6:51:96:ee:34: 1a:1d:b7:1d:68:c5:d9:c7:29:7f:69:33:58:78:98: 24:ee:31:80:6b:68:fa:1d:67:04:42:be:36:88:db: f6:c5:19:42:e5:8c:97:54:0f:46:8c:dd:2b:60:44: d9:c4:82:ae:48:8c:34:2a:07:09:27:d6:4a:7c:ec: 1a:be:76:54:1f:a8:28:83:a3:cf:aa:60:39:16:57: 96:15:5a:3f:6b:ae:6e:af:97:7d:78:3d:d9:f8:64: a0:85:35:c9:76:c6:6f:77:e1:18:f8:26:10:03:42: e5:9c:57:c3:cb:b0:3b:c8:58:08:fa:38:36:a7:a9: 8c:33:67:6f:bd:ed:d7:89:f2:02:bc:9f:fe:43:68: 4a:28:39:12:a2:f5:a5:29:d4:ca:69:b1:00:d7:11: fd:fe:0b:a8:f3:c8:47:9a:d9:02:17:8f:30:26:c5: a7:00:fd:b6:e3:60:20:b8:83:8d:d1:81:38:c8:47: 65:9b:d4:29:c0:c5:bc:b6:e5:32:d6:aa:d0:50:78: 74:d7:11:81:7f:be:3d:3b:cd:87:6b:f5:3f:05:0f: 69:1b:5a:12:93:0b:ad:76:be:51:96:33:2f:ab:a1: 30:5a:9c:d8:9b:6f:d7:dc:e6:7a:d9:da:87:22:fd: 64:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0A:82:7A:14:1D:AB:22:D6:79:31:61:B2:28:E2:AD:D0:79:E9:5E X509v3 Authority Key Identifier: keyid:3D:E6:78:1D:67:5E:CA:79:F2:FE:3D:17:AB:24:3C:B7:4B:7B:96:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166123/10BE9E22F48C11EDA8895453C4F9AE02/PeZ4HWdeynny_j0XqyQ8t0t7liI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PeZ4HWdeynny_j0XqyQ8t0t7liI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166123/10BE9E22F48C11EDA8895453C4F9AE02/2F02BC96718D11EE97E3E022C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.120.160.0-157.120.162.255 Signature Algorithm: sha256WithRSAEncryption 11:2d:6d:cb:71:03:3f:77:37:98:64:73:a0:c2:d5:41:81:12: 77:82:a9:51:da:51:f4:8f:91:1e:ff:4e:8e:68:89:5b:d4:31: e0:87:39:e5:ba:9e:ca:59:d8:15:da:ea:ba:59:89:9c:21:c6: ca:75:97:a1:bb:14:f9:02:86:04:60:26:d7:11:1d:56:a0:a7: 8e:11:0b:c7:34:84:0d:47:4c:33:be:cb:ab:7c:e7:4c:bc:7f: 85:cd:5d:84:c8:87:bd:46:04:d4:d1:6f:7a:97:c7:6e:75:ce: 18:1e:ca:96:9d:47:72:fc:db:0f:73:5d:df:ea:19:31:70:7c: 46:56:39:ac:9a:05:17:39:b9:5e:81:14:7a:f3:3f:4a:7d:b6: 73:4f:04:99:d4:ce:17:6f:bc:68:8f:a0:9f:9c:b6:8d:c6:0b: 6d:47:71:1f:e6:b7:5a:1c:12:f8:85:ba:1b:10:50:71:b5:1b: 9b:00:be:42:68:a4:9f:3c:86:fa:7f:81:4b:5b:6b:a6:15:29: 04:e0:ff:b3:f2:fa:2f:74:20:50:a4:89:4c:eb:63:d9:84:0a: 39:ab:04:e0:ba:b3:51:bd:1b:cb:42:18:a5:32:30:d8:1e:e7: 86:74:bb:ed:af:10:e6:e8:0d:e8:d4:63:92:2c:24:29:71:64: 8d:ec:3b:df -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjYxMjMxMTAvBgNVBAUTKDNERTY3ODFENjc1RUNBNzlGMkZFM0QxN0FCMjQzQ0I3 NEI3Qjk2MjIwHhcNMjUwMjAzMDMyNjMzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EwMzc2OS1jNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyY8arByuGQxJtlGW7jQaHbcdaMXZxyl/aTNYeJgk7jGAa2j6HWcEQr42iNv2 xRlC5YyXVA9GjN0rYETZxIKuSIw0KgcJJ9ZKfOwavnZUH6gog6PPqmA5FleWFVo/ a65ur5d9eD3Z+GSghTXJdsZvd+EY+CYQA0LlnFfDy7A7yFgI+jg2p6mMM2dvve3X ifICvJ/+Q2hKKDkSovWlKdTKabEA1xH9/guo88hHmtkCF48wJsWnAP2242AguION 0YE4yEdlm9QpwMW8tuUy1qrQUHh01xGBf749O82Ha/U/BQ9pG1oSkwutdr5RljMv q6EwWpzYm2/X3OZ62dqHIv1kDQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBEKgnoU Hasi1nkxYbIo4q3QeeleMB8GA1UdIwQYMBaAFD3meB1nXsp58v49F6skPLdLe5Yi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjEyMy8xMEJFOUUyMkY0 OEMxMUVEQTg4OTU0NTNDNEY5QUUwMi9QZVo0SFdkZXlubnlfajBYcXlROHQwdDds aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BlWjRIV2RleW5ueV9qMFhxeVE4dDB0N2xpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjYxMjMvMTBCRTlFMjJGNDhDMTFFREE4ODk1NDUzQzRGOUFFMDIvMkYwMkJDOTY3 MThEMTFFRTk3RTNFMDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBZ14oAMEAJ14ojANBgkqhkiG9w0BAQsFAAOCAQEAES1t y3EDP3c3mGRzoMLVQYESd4KpUdpR9I+RHv9OjmiJW9Qx4Ic55bqeylnYFdrqulmJ nCHGynWXobsU+QKGBGAm1xEdVqCnjhELxzSEDUdMM77Lq3znTLx/hc1dhMiHvUYE 1NFvepfHbnXOGB7Klp1HcvzbD3Nd3+oZMXB8RlY5rJoFFzm5XoEUevM/Sn22c08E mdTOF2+8aI+gn5y2jcYLbUdxH+a3WhwS+IW6GxBQcbUbmwC+QmiknzyG+n+BS1tr phUpBOD/s/L6L3QgUKSJTOtj2YQKOasE4LqzUb0by0IYpTIw2B7nhnS77a8Q5ugN 6NRjkiwkKXFkjew73w== -----END CERTIFICATE-----Generated at Mon Apr 7 17:25:16 2025 by rpki-client