$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/5D81654A561E11E7A4FFF329C4F9AE02.roa File: 5D81654A561E11E7A4FFF329C4F9AE02.roa (raw, json) Hash identifier: lNgj4TvSe3KKVyyrTSvIWXZ/d+PVLLALfHGvhjBEEiE= Subject key identifier: 8D:64:E2:4D:0F:B7:B0:68:E6:B1:25:CE:18:76:71:ED:2F:9E:06:4F Certificate issuer: /CN=A9174880/serialNumber=4F2FD3F00B58F134A9A8E3E7DDA8D8D20AC03527 Certificate serial: 34C8 Authority key identifier: 4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/5D81654A561E11E7A4FFF329C4F9AE02.roa Signing time: Thu 30 Jan 2025 14:30:24 +0000 ROA not before: Thu 30 Jan 2025 14:30:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 23755 IP address blocks: 202.7.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.crl rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:16:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13512 (0x34c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880 Validity Not Before: Jan 30 14:30:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679b8d00-39d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:54:bc:42:be:e5:21:4d:fa:30:64:46:a7:78: e7:38:fc:54:a8:f4:a6:b3:8c:d1:67:2d:c6:ea:b3: b5:e6:01:44:aa:de:d1:16:fe:bf:28:16:40:7b:d4: 7d:72:d9:37:26:67:aa:94:1c:41:67:2b:42:5d:16: 19:c0:fc:8e:14:42:bd:7e:e7:a8:b1:07:53:e5:35: 68:68:1c:cf:c3:83:6b:56:83:c2:38:59:c6:c1:cc: af:a5:a6:e2:1c:5a:07:f9:cb:fb:e7:fa:55:d9:a2: 5b:05:ea:53:ed:89:85:3b:a8:2f:77:64:4c:15:84: e3:9b:e4:49:51:b8:89:d8:e0:c9:83:11:df:cf:1d: 53:68:4d:01:5d:af:89:90:7c:27:d1:a8:84:d4:6c: 09:9b:05:a3:24:48:c7:c6:b3:d1:8f:b4:6b:61:e2: bb:74:5c:1b:a4:48:31:e5:e7:05:31:af:02:01:ce: 1a:48:fa:a2:f2:28:19:22:37:57:3b:12:ca:3b:32: 74:da:98:31:12:a6:63:2b:36:7d:49:10:8c:ff:ff: f4:e7:b2:ad:44:f5:48:bb:67:15:b9:ec:fd:b4:54: d7:71:f1:01:96:4f:40:7f:e4:69:2c:a4:ba:06:69: d4:e4:0f:4d:d2:76:83:e1:33:3e:f6:2d:e0:08:df: 22:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:64:E2:4D:0F:B7:B0:68:E6:B1:25:CE:18:76:71:ED:2F:9E:06:4F X509v3 Authority Key Identifier: keyid:4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/5D81654A561E11E7A4FFF329C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.7.4.0/22 Signature Algorithm: sha256WithRSAEncryption 22:35:18:40:dc:ab:0e:70:06:9d:7b:2c:1d:50:4f:e4:31:59: c7:85:96:93:58:94:3f:6a:03:1e:82:e5:11:a1:5a:0d:2b:0c: 03:4a:ef:17:d8:4c:da:94:94:4f:56:00:00:95:3b:27:10:70: c8:14:88:cd:7c:3d:72:02:95:ef:8f:72:07:b9:a3:f8:39:e4: 73:67:7d:1b:3b:34:2f:6a:1d:9d:3f:c2:65:3f:48:c3:aa:66: e5:1b:b9:fe:3b:98:e1:b9:a0:e5:c2:6b:f1:a7:6e:65:11:6f: 0f:c6:6f:16:6c:07:24:d6:4d:97:d3:74:83:b4:d5:05:2c:5d: b0:f8:63:5e:21:82:a7:e9:9a:66:21:06:aa:f6:6f:09:34:a6: c1:6d:7a:ef:4c:83:d5:81:8d:01:cd:08:52:62:64:47:58:58: 77:c5:a7:9c:92:c4:0e:f2:8b:08:96:5a:da:4d:87:28:58:e2: f7:74:7d:ff:5f:f3:d8:f9:8f:9f:71:d5:22:dc:d9:ef:50:87: a1:9c:db:c3:ca:a2:84:0f:bf:82:f1:ad:cd:d8:51:d8:99:93: f1:7d:13:20:65:3b:6f:61:c0:44:01:0e:87:51:d8:02:3c:70: 80:dd:21:17:6e:1f:82:78:98:b0:1b:b2:b9:a3:0e:2e:0b:33: 27:b4:19:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKDRGMkZEM0YwMEI1OEYxMzRBOUE4RTNFN0REQThEOEQy MEFDMDM1MjcwHhcNMjUwMTMwMTQzMDI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliOGQwMC0zOWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1S8Qr7lIU36MGRGp3jnOPxUqPSms4zRZy3G6rO15gFEqt7RFv6/KBZAe9R9 ctk3JmeqlBxBZytCXRYZwPyOFEK9fueosQdT5TVoaBzPw4NrVoPCOFnGwcyvpabi HFoH+cv75/pV2aJbBepT7YmFO6gvd2RMFYTjm+RJUbiJ2ODJgxHfzx1TaE0BXa+J kHwn0aiE1GwJmwWjJEjHxrPRj7RrYeK7dFwbpEgx5ecFMa8CAc4aSPqi8igZIjdX OxLKOzJ02pgxEqZjKzZ9SRCM///057KtRPVIu2cVuez9tFTXcfEBlk9Af+RpLKS6 BmnU5A9N0naD4TM+9i3gCN8ipwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI1k4k0P t7Bo5rElzhh2ce0vngZPMB8GA1UdIwQYMBaAFE8v0/ALWPE0qajj592o2NIKwDUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC82OUYwNEJBODFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi9UeV9UOEF0WThUU3BxT1BuM2FqWTBnckFO U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R5X1Q4QXRZOFRTcHFPUG4zYWpZMGdyQU5TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ4ODAvNjlGMDRCQTgxRDZBMTFFMkJCNzAxNEE4MDhCMDJDRDIvNUQ4MTY1NEE1 NjFFMTFFN0E0RkZGMzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKBwQwDQYJKoZIhvcNAQELBQADggEBACI1GEDcqw5wBp17 LB1QT+QxWceFlpNYlD9qAx6C5RGhWg0rDANK7xfYTNqUlE9WAACVOycQcMgUiM18 PXICle+Pcge5o/g55HNnfRs7NC9qHZ0/wmU/SMOqZuUbuf47mOG5oOXCa/GnbmUR bw/GbxZsByTWTZfTdIO01QUsXbD4Y14hgqfpmmYhBqr2bwk0psFteu9Mg9WBjQHN CFJiZEdYWHfFp5ySxA7yiwiWWtpNhyhY4vd0ff9f89j5j59x1SLc2e9Qh6Gc28PK ooQPv4Lxrc3YUdiZk/F9EyBlO29hwEQBDodR2AI8cIDdIRduH4J4mLAbsrmjDi4L Mye0Ge0= -----END CERTIFICATE-----Generated at Sat Apr 5 07:18:43 2025 by rpki-client