$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/C606792CD3C811EFA4C15D2FC4F9AE02.roa File: C606792CD3C811EFA4C15D2FC4F9AE02.roa (raw, json) Hash identifier: RhIG4rVv0sC6eQgj2JPpIA3cTSID02u0FgU4lPWL4Is= Subject key identifier: A9:8F:EA:BE:E7:B3:E4:A8:B0:AF:27:F8:E3:A7:73:F6:5D:4F:5A:35 Certificate issuer: /CN=A9169A9C/serialNumber=D520192A95AFC8D5F27374D9A34C4633CE7DAC44 Certificate serial: 0125 Authority key identifier: D5:20:19:2A:95:AF:C8:D5:F2:73:74:D9:A3:4C:46:33:CE:7D:AC:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/C606792CD3C811EFA4C15D2FC4F9AE02.roa Signing time: Thu 16 Jan 2025 05:16:54 +0000 ROA not before: Thu 16 Jan 2025 05:16:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 151633 IP address blocks: 45.249.226.0/24 maxlen: 29 2401:e560::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.crl rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C Validity Not Before: Jan 16 05:16:54 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67889646-0de6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:93:8c:1c:47:0c:e3:17:ef:36:a6:ec:3c:5a: 24:b4:e2:28:d8:f2:bb:d3:0f:c1:80:dc:14:d7:02: 56:53:1f:2c:57:0b:8f:26:bc:a5:12:5d:f4:61:43: 7f:1d:5a:df:47:72:e5:e2:22:26:89:1c:e8:34:93: 81:95:c1:df:8e:ab:21:07:29:b4:e7:58:d2:cb:40: 7e:72:4f:3b:16:88:bf:82:45:46:e6:a5:9d:aa:5c: 5a:a5:5a:9f:36:84:14:54:2a:1a:c3:4a:ec:f3:78: 76:64:8f:31:1e:ed:67:d2:b5:dc:c8:d2:55:cc:34: 17:d7:d2:4f:cb:be:5b:1d:1d:6e:90:ce:3f:f6:40: d4:2b:f6:23:cd:d4:c1:eb:de:2d:79:34:b2:97:d4: d2:2a:b6:ec:8d:98:27:7a:48:63:38:a7:c9:21:a7: cf:7c:74:ba:ef:52:df:87:8d:25:7d:1e:d6:2c:04: dd:21:50:f0:fe:cd:aa:84:04:a2:14:c2:48:e4:46: 9b:5f:8e:37:c7:4c:da:b7:9b:1a:61:42:8b:d8:3a: 12:5f:04:41:50:e3:00:ea:02:4f:72:c8:b0:4c:78: 1d:2a:29:84:eb:29:32:b3:c8:c5:1c:17:8c:1b:e9: b3:16:39:74:e8:21:f4:0f:ba:ae:bf:4d:97:a7:14: 73:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:8F:EA:BE:E7:B3:E4:A8:B0:AF:27:F8:E3:A7:73:F6:5D:4F:5A:35 X509v3 Authority Key Identifier: keyid:D5:20:19:2A:95:AF:C8:D5:F2:73:74:D9:A3:4C:46:33:CE:7D:AC:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/C606792CD3C811EFA4C15D2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.226.0/24 IPv6: 2401:e560::/32 Signature Algorithm: sha256WithRSAEncryption 13:99:fe:b5:c2:91:ef:bb:ba:25:cb:c2:f5:ac:b1:02:de:25: 4a:43:24:6f:2f:33:3c:a8:6f:67:5d:3d:6c:bc:26:6c:32:c9: 91:4c:5b:81:eb:58:ef:61:d7:62:3b:54:2f:bb:9d:f3:56:b7: 14:cb:ef:76:94:5b:b0:2e:c6:de:8f:e8:13:1b:71:c6:c6:f2: f7:ea:1e:8a:c4:09:38:5a:f2:56:de:38:2a:a8:58:fa:96:35: 4d:f2:e9:bc:c1:d0:ad:3a:01:af:51:d7:f6:3b:17:bb:a2:12: 58:0f:c7:0f:82:6a:9c:68:7b:33:20:bc:1d:67:d5:0b:b5:87: 7d:c4:bd:08:2d:ea:6f:4d:5c:f9:0e:13:1d:aa:1f:60:43:de: 3a:d3:03:65:50:a6:8a:63:e5:dd:bb:c1:e5:0d:da:d1:6a:7a: 2a:9a:6c:97:93:de:6d:5b:39:a4:f5:6e:50:2f:c8:ae:19:8b: 5d:b1:1a:3a:55:38:0e:6b:73:2b:d1:02:d2:71:e4:fc:83:de: 1c:42:ac:5b:dd:09:78:4d:ba:1a:57:e5:10:b3:51:ce:ea:1e: 02:fb:61:31:47:d2:fe:65:c1:c6:4a:0f:49:8a:3d:d6:a8:09: bd:6c:da:84:6e:70:13:52:07:c6:ee:65:f4:bc:fb:19:66:da: 0d:64:88:3c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEQ1MjAxOTJBOTVBRkM4RDVGMjczNzREOUEzNEM0NjMz Q0U3REFDNDQwHhcNMjUwMTE2MDUxNjU0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg4OTY0Ni0wZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpOMHEcM4xfvNqbsPFoktOIo2PK70w/BgNwU1wJWUx8sVwuPJrylEl30YUN/ HVrfR3Ll4iImiRzoNJOBlcHfjqshBym051jSy0B+ck87Foi/gkVG5qWdqlxapVqf NoQUVCoaw0rs83h2ZI8xHu1n0rXcyNJVzDQX19JPy75bHR1ukM4/9kDUK/YjzdTB 694teTSyl9TSKrbsjZgnekhjOKfJIafPfHS671Lfh40lfR7WLATdIVDw/s2qhASi FMJI5EabX443x0zat5saYUKL2DoSXwRBUOMA6gJPcsiwTHgdKimE6ykys8jFHBeM G+mzFjl06CH0D7quv02XpxRztQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKmP6r7n s+SosK8n+OOnc/ZdT1o1MB8GA1UdIwQYMBaAFNUgGSqVr8jV8nN02aNMRjPOfaxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy9DM0E4MDQwNDNG ODQxMUVFQjkwMEE5MEZDNEY5QUUwMi8xU0FaS3BXdnlOWHljM1RabzB4R004NTly RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTQVpLcFd2eU5YeWMzVFpvMHhHTTg1OXJFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlBOUMvQzNBODA0MDQzRjg0MTFFRUI5MDBBOTBGQzRGOUFFMDIvQzYwNjc5MkNE M0M4MTFFRkE0QzE1RDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAAt+eIwDQQCAAIwBwMFACQB5WAwDQYJKoZIhvcNAQELBQAD ggEBABOZ/rXCke+7uiXLwvWssQLeJUpDJG8vMzyob2ddPWy8JmwyyZFMW4HrWO9h 12I7VC+7nfNWtxTL73aUW7Auxt6P6BMbccbG8vfqHorECTha8lbeOCqoWPqWNU3y 6bzB0K06Aa9R1/Y7F7uiElgPxw+CapxoezMgvB1n1Qu1h33EvQgt6m9NXPkOEx2q H2BD3jrTA2VQpopj5d27weUN2tFqeiqabJeT3m1bOaT1blAvyK4Zi12xGjpVOA5r cyvRAtJx5PyD3hxCrFvdCXhNuhpX5RCzUc7qHgL7YTFH0v5lwcZKD0mKPdaoCb1s 2oRucBNSB8buZfS8+xlm2g1kiDw= -----END CERTIFICATE-----Generated at Sat Apr 5 01:40:39 2025 by rpki-client