$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/C3BB51160DAC11EFB00E6B16C4F9AE02.roa File: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (raw, json) Hash identifier: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY= Subject key identifier: 7F:83:A1:36:83:1C:3A:CD:D1:1D:20:AA:C4:B0:CD:9F:C6:FA:6D:30 Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0148 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/C3BB51160DAC11EFB00E6B16C4F9AE02.roa Signing time: Wed 19 Mar 2025 03:19:22 +0000 ROA not before: Wed 19 Mar 2025 03:19:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38079 IP address blocks: 192.122.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Mar 19 03:19:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67da37ba-ba28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:85:ff:b2:57:40:28:15:f7:e6:db:f8:d8:2f: 38:f3:ce:ba:aa:ed:28:76:ca:29:41:5b:b6:51:92: 75:26:a1:88:80:09:53:1e:58:47:0d:9d:1f:e7:48: 0d:fa:f4:82:ee:eb:ba:f6:d0:87:20:bd:b2:8e:31: 42:9b:bb:1a:a2:e4:01:10:18:b3:8d:6b:79:98:f0: 20:af:5d:30:93:89:6f:3e:99:01:9c:d0:a4:e8:e0: b8:83:de:95:26:97:e8:13:9b:76:7e:e6:69:14:00: e0:87:33:47:aa:29:7f:e1:90:74:bd:03:7e:5a:18: 78:42:9c:0d:d2:c5:0b:c6:79:88:bf:5a:83:f5:ab: 85:c5:c6:61:a8:c4:27:28:51:85:8a:2a:aa:32:b1: a0:96:30:05:88:f5:84:3b:06:3e:5c:e7:76:69:7b: ff:f4:3d:56:16:0c:d6:8b:b5:6e:ca:ea:bd:28:80: b5:95:b4:bf:54:48:98:a5:eb:48:13:83:69:08:57: 50:0f:e7:54:a9:e5:b8:a7:fb:26:56:b5:03:67:8e: 92:70:54:5c:7f:34:e0:17:75:19:ce:9c:e1:d9:fa: 54:27:a7:fa:c5:c3:bf:b4:57:c3:f4:81:9a:03:58: 23:b1:24:4e:70:c9:a5:30:e3:60:a8:01:33:3e:8c: ac:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:83:A1:36:83:1C:3A:CD:D1:1D:20:AA:C4:B0:CD:9F:C6:FA:6D:30 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/C3BB51160DAC11EFB00E6B16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.122.171.0/24 Signature Algorithm: sha256WithRSAEncryption 10:be:9b:fb:6f:63:93:83:48:51:ed:fa:2b:45:01:fd:67:f6: c1:4d:e2:90:82:a1:c5:4c:ea:9e:22:72:c7:81:9d:e5:5f:53: 2d:dd:ba:b8:2c:8b:85:2f:b0:1c:98:3a:2d:b9:50:3e:d9:a4: 1c:ad:66:f7:15:d3:bd:da:1c:be:c5:eb:9c:6c:5f:e4:4c:f5: 2a:82:8b:33:3a:f5:01:8b:bd:c2:17:a1:b6:27:be:b9:78:09: b4:e7:a7:c1:d2:b1:8f:59:94:8e:68:1f:4c:3e:cf:63:b0:c0: e3:d1:3a:26:0d:f7:2c:a3:32:8f:b7:20:a9:22:80:1b:9c:92: 1e:82:06:92:9d:ea:90:a6:a2:2d:9a:3c:93:42:f1:0b:66:8a: 7f:4d:d3:08:72:23:13:12:2f:5c:d7:75:4e:49:b6:e7:3f:54: 1e:e4:6d:5a:55:a5:16:04:de:fe:96:8a:34:cc:89:44:40:9f: 78:63:65:84:7e:9e:ef:9f:8f:d0:9a:fa:36:2d:32:2f:35:d1: b9:9f:31:07:60:bd:e7:7e:6b:61:0c:77:5f:82:91:43:5e:9c: 98:27:60:96:65:52:9a:8e:ac:dc:31:4b:41:ab:89:9e:99:b4: 88:38:81:a9:04:bf:a9:41:e1:a1:1b:09:2f:fd:be:9e:c9:5f: a4:fb:be:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUwMzE5MDMxOTIyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RhMzdiYS1iYTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IX/sldAKBX35tv42C848866qu0odsopQVu2UZJ1JqGIgAlTHlhHDZ0f50gN +vSC7uu69tCHIL2yjjFCm7saouQBEBizjWt5mPAgr10wk4lvPpkBnNCk6OC4g96V JpfoE5t2fuZpFADghzNHqil/4ZB0vQN+Whh4QpwN0sULxnmIv1qD9auFxcZhqMQn KFGFiiqqMrGgljAFiPWEOwY+XOd2aXv/9D1WFgzWi7Vuyuq9KIC1lbS/VEiYpetI E4NpCFdQD+dUqeW4p/smVrUDZ46ScFRcfzTgF3UZzpzh2fpUJ6f6xcO/tFfD9IGa A1gjsSROcMmlMONgqAEzPoyszQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH+DoTaD HDrN0R0gqsSwzZ/G+m0wMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBDNTMvREI2M0M5QTIxMTc2MTFFRTlDNTU5QTNFQzRGOUFFMDIvQzNCQjUxMTYw REFDMTFFRkIwMEU2QjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAeqswDQYJKoZIhvcNAQELBQADggEBABC+m/tvY5ODSFHt +itFAf1n9sFN4pCCocVM6p4icseBneVfUy3durgsi4UvsByYOi25UD7ZpBytZvcV 073aHL7F65xsX+RM9SqCizM69QGLvcIXobYnvrl4CbTnp8HSsY9ZlI5oH0w+z2Ow wOPROiYN9yyjMo+3IKkigBuckh6CBpKd6pCmoi2aPJNC8Qtmin9N0whyIxMSL1zX dU5Jtuc/VB7kbVpVpRYE3v6WijTMiURAn3hjZYR+nu+fj9Ca+jYtMi810bmfMQdg ved+a2EMd1+CkUNenJgnYJZlUpqOrNwxS0GriZ6ZtIg4gakEv6lB4aEbCS/9vp7J X6T7vko= -----END CERTIFICATE-----Generated at Tue Apr 22 00:45:27 2025 by rpki-client