$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/9EF411301D8E11E2B18226ED08B02CD2/D1893F2435F111EBBFEA4039C4F9AE02.roa File: D1893F2435F111EBBFEA4039C4F9AE02.roa (raw, json) Hash identifier: Wlum4rUt06dEqqqFSJrG4cQIzgqXBCNSqh9t094PUIE= Subject key identifier: 2B:F5:3F:AB:9B:19:D3:36:80:67:CB:8D:7B:81:58:7E:80:E2:23:10 Certificate issuer: /CN=A9170304/serialNumber=AD270FDE99B1F1069DAB8EF7A576AA2C2AF2C6F0 Certificate serial: 347F Authority key identifier: AD:27:0F:DE:99:B1:F1:06:9D:AB:8E:F7:A5:76:AA:2C:2A:F2:C6:F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rScP3pmx8Qadq473pXaqLCryxvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/9EF411301D8E11E2B18226ED08B02CD2/D1893F2435F111EBBFEA4039C4F9AE02.roa Signing time: Tue 18 Mar 2025 15:00:51 +0000 ROA not before: Tue 18 Mar 2025 15:00:51 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 37978 IP address blocks: 147.41.0.0/17 maxlen: 17 147.41.128.0/17 maxlen: 17 147.41.240.0/20 maxlen: 20 147.109.0.0/16 maxlen: 16 147.109.124.0/24 maxlen: 24 147.109.192.0/21 maxlen: 21 147.109.208.0/21 maxlen: 21 147.109.216.0/21 maxlen: 21 192.26.232.0/24 maxlen: 24 192.107.101.0/24 maxlen: 24 192.190.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/9EF411301D8E11E2B18226ED08B02CD2/rScP3pmx8Qadq473pXaqLCryxvA.crl rsync://rpki.apnic.net/member_repository/A9170304/9EF411301D8E11E2B18226ED08B02CD2/rScP3pmx8Qadq473pXaqLCryxvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rScP3pmx8Qadq473pXaqLCryxvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13439 (0x347f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304 Validity Not Before: Mar 18 15:00:51 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d98aa2-bf1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1e:7b:0a:3c:cb:95:33:45:c9:75:68:30:bd: d4:c1:5f:20:d9:67:25:4e:93:93:d5:0d:d2:4f:34: 80:28:61:38:63:f8:95:f9:f3:36:5b:9d:03:e0:82: 8c:2b:b0:aa:f0:53:cd:30:99:34:8b:92:67:9d:29: 05:b7:f9:af:bb:f3:5c:a1:6e:51:85:14:46:85:a5: e9:ee:7e:ad:3e:5d:5d:a6:e6:1e:1b:cc:48:0e:aa: 57:83:07:4e:a1:01:b2:f5:9a:42:09:82:c9:55:0e: e7:7c:e3:de:41:78:0b:fe:8d:7f:72:e1:ac:4e:4b: fa:fe:37:58:ec:49:a7:26:73:26:f9:a2:75:5d:28: a4:02:a2:99:d3:df:39:49:0c:6a:18:f1:17:69:3b: 61:ff:5b:b2:60:b5:a3:5b:27:ac:76:35:f2:d5:4a: f6:d6:ba:40:f9:57:8f:7b:63:27:1a:fc:93:f1:ec: e4:2a:28:95:6f:c5:a2:de:61:b3:9e:62:5c:96:ec: e4:1e:95:b9:a3:9c:bd:c5:a2:1f:20:83:ce:1a:96: d4:d2:36:5f:5a:e4:bc:16:73:fc:7c:ee:48:25:d1: c4:9a:30:7e:1d:a2:e1:62:fb:3a:61:74:9d:5a:2a: 19:a7:a5:53:f9:8b:3c:04:fb:2d:df:97:2b:36:d6: 0f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F5:3F:AB:9B:19:D3:36:80:67:CB:8D:7B:81:58:7E:80:E2:23:10 X509v3 Authority Key Identifier: keyid:AD:27:0F:DE:99:B1:F1:06:9D:AB:8E:F7:A5:76:AA:2C:2A:F2:C6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/9EF411301D8E11E2B18226ED08B02CD2/rScP3pmx8Qadq473pXaqLCryxvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rScP3pmx8Qadq473pXaqLCryxvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/9EF411301D8E11E2B18226ED08B02CD2/D1893F2435F111EBBFEA4039C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.41.0.0/16 147.109.0.0/16 192.26.232.0/24 192.107.101.0/24 192.190.61.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:8d:2d:02:d2:cc:47:1d:67:23:a0:c4:91:e3:40:e3:12:55: 31:7b:52:5e:90:25:04:64:9e:42:e0:ff:45:61:db:ca:46:1d: 21:3d:c0:4e:bb:94:74:99:2a:ce:ae:94:1d:64:c2:aa:aa:f0: 0e:11:de:cb:46:3c:7f:62:32:60:14:71:20:f3:29:da:8d:68: 9e:71:46:90:6a:fa:52:9d:f0:3d:9f:59:27:84:1f:b5:ac:97: b1:96:de:c4:a9:d0:77:98:5f:58:30:0b:f6:eb:bc:24:7e:43: 65:d4:dd:76:f8:3e:4a:e8:1d:f7:24:28:cf:d2:a1:a1:7c:72: 10:35:f5:16:f5:55:11:fa:91:3c:48:1c:b7:e0:96:eb:1d:cd: f0:99:57:a5:86:fe:39:16:cf:2f:2d:d3:20:e0:d9:b3:b6:b5: aa:a9:f7:6a:bc:c1:cd:a1:7f:c0:0a:4e:ef:ae:6c:28:0d:c3: a6:b4:5b:97:3e:cd:a7:b3:8b:41:70:a1:e6:2b:f0:48:95:f8: ee:1f:7f:bc:a2:fe:56:62:69:5a:e4:a7:d0:a0:2f:cc:7e:5d: ec:a3:af:0f:e9:64:f9:ea:63:32:5b:e6:53:ed:c4:2e:36:3a: c8:fe:c0:52:1d:ff:18:9f:eb:e8:ba:a0:e6:1b:42:32:08:05: 04:20:ef:75 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICNH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKEFEMjcwRkRFOTlCMUYxMDY5REFCOEVGN0E1NzZBQTJD MkFGMkM2RjAwHhcNMjUwMzE4MTUwMDUxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5OGFhMi1iZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwR57CjzLlTNFyXVoML3UwV8g2WclTpOT1Q3STzSAKGE4Y/iV+fM2W50D4IKM K7Cq8FPNMJk0i5JnnSkFt/mvu/NcoW5RhRRGhaXp7n6tPl1dpuYeG8xIDqpXgwdO oQGy9ZpCCYLJVQ7nfOPeQXgL/o1/cuGsTkv6/jdY7EmnJnMm+aJ1XSikAqKZ0985 SQxqGPEXaTth/1uyYLWjWyesdjXy1Ur21rpA+VePe2MnGvyT8ezkKiiVb8Wi3mGz nmJcluzkHpW5o5y9xaIfIIPOGpbU0jZfWuS8FnP8fO5IJdHEmjB+HaLhYvs6YXSd WioZp6VT+Ys8BPst35crNtYP6wIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFCv1P6ub GdM2gGfLjXuBWH6A4iMQMB8GA1UdIwQYMBaAFK0nD96ZsfEGnauO96V2qiwq8sbw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC85RUY0MTEzMDFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9yU2NQM3BteDhRYWRxNDczcFhhcUxDcnl4 dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JTY1AzcG14OFFhZHE0NzNwWGFxTENyeXh2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzAzMDQvOUVGNDExMzAxRDhFMTFFMkIxODIyNkVEMDhCMDJDRDIvRDE4OTNGMjQz NUYxMTFFQkJGRUE0MDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwDAwCTKQMDAJNtAwQAwBroAwQAwGtlAwQAwL49MA0GCSqGSIb3 DQEBCwUAA4IBAQAqjS0C0sxHHWcjoMSR40DjElUxe1JekCUEZJ5C4P9FYdvKRh0h PcBOu5R0mSrOrpQdZMKqqvAOEd7LRjx/YjJgFHEg8ynajWiecUaQavpSnfA9n1kn hB+1rJexlt7EqdB3mF9YMAv267wkfkNl1N12+D5K6B33JCjP0qGhfHIQNfUW9VUR +pE8SBy34JbrHc3wmVelhv45Fs8vLdMg4NmztrWqqfdqvMHNoX/ACk7vrmwoDcOm tFuXPs2ns4tBcKHmK/BIlfjuH3+8ov5WYmla5KfQoC/Mfl3so68P6WT56mMyW+ZT 7cQuNjrI/sBSHf8Yn+vouqDmG0IyCAUEIO91 -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:34 2025 by rpki-client