$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa File: C4245600E55A11ED98D38780C4F9AE02.roa (raw, json) Hash identifier: QJpUBqNgws3PM1RQ/YpxcOLuHjSbFEKESqjd/lkWkNM= Subject key identifier: 44:45:3B:59:4F:51:F6:A8:FB:7E:9E:0A:34:2D:FE:C5:DC:81:55:CD Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 0689 Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa Signing time: Fri 04 Jul 2025 23:03:39 +0000 ROA not before: Fri 04 Jul 2025 23:03:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17766 IP address blocks: 192.150.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: Jul 4 23:03:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68685dca-c7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:eb:86:51:a4:9a:41:9b:de:5a:06:a7:e5:e2: 93:9e:25:15:49:a8:ad:d3:d0:20:cf:26:ba:b9:c3: db:b6:4e:c8:95:a9:6b:dc:56:8f:62:9a:2b:f8:70: 5f:bc:ea:0d:d5:9f:bc:09:8e:d2:58:e7:cc:83:72: ec:c5:42:7f:10:ad:a2:a5:ea:7b:75:18:fd:10:9b: 7b:c6:f6:d2:08:bb:e8:db:93:1e:89:f3:dc:b2:04: 9e:f8:18:08:a6:ba:05:91:1c:a4:4e:85:80:c4:b9: 99:19:99:b3:e1:8b:f5:91:a1:5e:33:cd:f1:f2:d3: 88:bf:0e:66:71:c0:ec:91:0c:92:4d:80:2f:f9:ee: 26:b4:0d:ce:1f:13:ae:5b:f3:2e:69:2c:18:f9:79: 0e:0f:e7:e2:3d:ef:bd:26:74:11:b4:6a:0a:ae:e7: 22:6e:c9:b6:3a:d2:5b:6b:8a:16:4c:b6:41:b7:98: f5:e0:4b:e5:a5:ec:8b:36:00:56:88:03:53:4c:04: 35:46:7e:c7:ba:b2:cd:a5:f8:c8:cb:ba:75:5c:01: 17:56:8a:a6:91:4d:57:25:72:c6:c7:eb:5b:5c:02: b1:05:d0:31:a9:b0:b9:b2:d8:66:06:45:b8:61:69: e5:d4:1f:bc:bb:9a:d7:43:0d:4a:0a:f9:bc:e3:6b: 4c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:45:3B:59:4F:51:F6:A8:FB:7E:9E:0A:34:2D:FE:C5:DC:81:55:CD X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.150.129.0/24 Signature Algorithm: sha256WithRSAEncryption 52:5d:fd:8b:96:63:66:3c:50:dd:80:5a:2a:68:58:36:12:3f: a0:1a:62:11:d1:2d:34:62:a7:6a:60:3a:88:17:5b:0c:b1:cc: 1b:e4:67:4c:9f:74:58:ec:ad:20:1c:88:57:03:d9:d9:0e:48: 29:ad:37:cf:9a:7d:44:2b:eb:80:7c:68:4c:04:b1:10:de:87: 20:41:68:ae:9d:bf:06:2e:9d:cf:8d:b7:2b:e7:65:4e:86:79: 58:53:49:d3:61:5a:01:a3:19:26:5b:d2:3c:26:0c:2b:69:ab: a4:2c:cc:0a:44:92:15:e8:1d:ba:d3:d0:bd:14:b1:18:8b:de: 7e:1c:bd:33:22:47:30:a2:71:c9:59:fc:d9:ee:8d:46:d6:e5: cc:8e:a0:b1:95:67:29:19:72:90:33:09:49:b8:b6:d6:9b:53: e6:6c:9b:ec:19:6d:83:0e:fc:32:17:ee:cf:13:a8:e3:06:38: ef:2c:13:47:59:a3:6e:7c:cf:77:44:d5:93:a5:d4:38:3f:e6: 61:f4:60:9e:1d:ff:74:e0:33:9e:a0:76:99:96:38:64:6a:7b: bf:cc:f6:af:00:b9:1b:80:66:2c:f7:02:99:04:cc:4b:ff:13: 1f:28:bb:43:2a:66:62:67:5a:f0:bc:ed:c2:e4:11:43:bb:58: b6:f4:8c:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjUwNzA0MjMwMzM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4NWRjYS1jN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeuGUaSaQZveWgan5eKTniUVSait09Agzya6ucPbtk7Ilalr3FaPYpor+HBf vOoN1Z+8CY7SWOfMg3LsxUJ/EK2ipep7dRj9EJt7xvbSCLvo25MeifPcsgSe+BgI proFkRykToWAxLmZGZmz4Yv1kaFeM83x8tOIvw5mccDskQySTYAv+e4mtA3OHxOu W/MuaSwY+XkOD+fiPe+9JnQRtGoKrucibsm2OtJba4oWTLZBt5j14EvlpeyLNgBW iANTTAQ1Rn7HurLNpfjIy7p1XAEXVoqmkU1XJXLGx+tbXAKxBdAxqbC5sthmBkW4 YWnl1B+8u5rXQw1KCvm842tMEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFERFO1lP Ufao+36eCjQt/sXcgVXNMB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDRTYvMDNBMDE3ODQ3QkQwMTFFQjg1QTY2OTgwQzRGOUFFMDIvQzQyNDU2MDBF NTVBMTFFRDk4RDM4NzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAloEwDQYJKoZIhvcNAQELBQADggEBAFJd/YuWY2Y8UN2A WipoWDYSP6AaYhHRLTRip2pgOogXWwyxzBvkZ0yfdFjsrSAciFcD2dkOSCmtN8+a fUQr64B8aEwEsRDehyBBaK6dvwYunc+NtyvnZU6GeVhTSdNhWgGjGSZb0jwmDCtp q6QszApEkhXoHbrT0L0UsRiL3n4cvTMiRzCicclZ/NnujUbW5cyOoLGVZykZcpAz CUm4ttabU+Zsm+wZbYMO/DIX7s8TqOMGOO8sE0dZo258z3dE1ZOl1Dg/5mH0YJ4d /3TgM56gdpmWOGRqe7/M9q8AuRuAZiz3ApkEzEv/Ex8ou0MqZmJnWvC87cLkEUO7 WLb0jHM= -----END CERTIFICATE-----Generated at Sun Jul 20 11:36:16 2025 by rpki-client