$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/E8112D9AD95A11EF815C7470C4F9AE02.roa File: E8112D9AD95A11EF815C7470C4F9AE02.roa (raw, json) Hash identifier: mG5mPJ9TzgmR6vCAw7pVeBBypwUd04LX9QtyyGLebqw= Subject key identifier: 81:B6:2A:73:98:96:4B:8F:E8:56:90:63:3F:A9:C9:7E:07:52:AF:0B Certificate issuer: /CN=A9174EC5/serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Certificate serial: 02 Authority key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/E8112D9AD95A11EF815C7470C4F9AE02.roa Signing time: Thu 23 Jan 2025 07:23:14 +0000 ROA not before: Thu 23 Jan 2025 07:23:14 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 147040 IP address blocks: 163.47.26.0/24 maxlen: 24 163.47.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EC5 Validity Not Before: Jan 23 07:23:14 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6791ee61-4af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b5:0d:27:28:b2:6b:8b:5b:69:19:9b:02:72: e3:f3:99:30:0e:c9:c0:7a:e5:46:15:ef:91:a3:cc: 8b:bc:bc:07:52:77:28:b6:d8:4d:e8:be:ef:1f:a7: 56:86:01:75:ae:63:8a:ff:fa:d4:b9:23:bb:96:83: fb:d0:4a:5b:0c:65:86:d3:c5:f4:c2:8a:79:b1:25: b3:a1:e8:ad:69:00:48:b8:3c:e9:04:24:e2:2c:4f: 2d:ab:e0:4b:de:6c:73:ea:b9:e0:f6:bb:a3:8f:f5: 16:47:79:0f:77:e7:d6:ba:26:30:66:c6:67:9b:3f: 1e:79:93:66:1a:7a:8c:4b:aa:57:0d:b1:08:d9:45: 1f:73:2b:bb:4e:3f:c4:e9:8a:4b:5f:31:0c:d0:1e: 17:17:12:7d:9d:3e:85:4b:99:47:f5:f0:1b:8d:cf: 3f:9e:d1:89:14:db:5f:32:98:04:01:9b:c6:6e:20: f0:8b:b1:bc:5b:3e:b4:ea:14:79:0d:d2:b0:20:48: 2f:a2:73:ee:72:cf:84:c3:7b:f4:f5:ae:2e:44:6f: 5a:f9:c1:d5:8e:b1:c0:85:f9:e5:f9:83:99:03:6d: 87:ac:40:51:50:64:e1:28:36:b5:25:1e:ec:7f:83: 92:40:9c:ad:75:25:2f:5c:ce:42:c4:f1:1d:67:eb: f1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B6:2A:73:98:96:4B:8F:E8:56:90:63:3F:A9:C9:7E:07:52:AF:0B X509v3 Authority Key Identifier: keyid:3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/E8112D9AD95A11EF815C7470C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.47.26.0/23 Signature Algorithm: sha256WithRSAEncryption 28:d0:29:1e:71:d7:12:3d:b4:cc:15:1e:d3:fd:7a:b8:d3:e5: ca:27:01:f5:c7:f0:d9:9b:87:eb:df:a1:01:cd:c3:5f:57:bc: d2:7e:9b:b9:96:b6:b6:8b:18:ce:82:fd:7e:50:1c:ab:62:1f: d4:72:d5:87:d0:d6:82:e7:55:3c:ad:75:33:fe:a6:f8:3a:21: 69:6c:63:30:4f:02:d4:c5:29:68:44:22:71:b8:39:e2:0b:5a: f5:5d:d1:6a:fb:ba:03:93:26:52:78:8c:cf:e9:aa:b7:25:56: 54:13:05:79:88:ec:af:38:56:bb:97:f5:f3:af:d2:fc:35:17: 64:1a:7f:51:8c:28:69:01:d1:a1:95:ab:39:c9:b6:b1:5f:2e: 41:60:3e:f6:bb:1a:54:23:b5:97:a6:9d:c6:88:50:88:cb:9d: 31:35:20:92:23:45:1d:1e:41:59:28:b7:3f:45:ec:c7:57:b4: e4:61:f8:1c:2e:04:3c:44:ee:c3:a6:6b:5a:f3:49:d8:0d:73: c9:28:e9:bf:73:82:95:a6:a4:85:53:d9:0f:49:1d:02:1d:0a: 78:4a:8a:f7:5c:29:f6:3b:db:07:a3:b3:5e:1e:63:57:65:39: 70:74:ce:ba:cc:e5:a8:0b:c3:76:c8:15:d2:3b:b6:06:17:c0: 95:5a:fa:84 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEVDNTExMC8GA1UEBRMoM0E1RTEwMjlFNjVDNjM2ODEyMzJEQjY3RDgwNTNERDJG Njk0RTYxRjAeFw0yNTAxMjMwNzIzMTRaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTFlZTYxLTRhZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvtQ0nKLJri1tpGZsCcuPzmTAOycB65UYV75GjzIu8vAdSdyi22E3ovu8fp1aG AXWuY4r/+tS5I7uWg/vQSlsMZYbTxfTCinmxJbOh6K1pAEi4POkEJOIsTy2r4Eve bHPqueD2u6OP9RZHeQ9359a6JjBmxmebPx55k2YaeoxLqlcNsQjZRR9zK7tOP8Tp iktfMQzQHhcXEn2dPoVLmUf18BuNzz+e0YkU218ymAQBm8ZuIPCLsbxbPrTqFHkN 0rAgSC+ic+5yz4TDe/T1ri5Eb1r5wdWOscCF+eX5g5kDbYesQFFQZOEoNrUlHux/ g5JAnK11JS9czkLE8R1n6/HZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgbYqc5iW S4/oVpBjP6nJfgdSrwswHwYDVR0jBBgwFoAUOl4QKeZcY2gSMttn2AU90vaU5h8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0RUM1LzgyMzM1QTIwRDk1 QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJnU010dG4yQVU5MHZhVTVo OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2w0UUtlWmNZMmdTTXR0bjJBVTkwdmFVNWg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVDNS84MjMzNUEyMEQ5NUExMUVGQTAyRkI0NkZDNEY5QUUwMi9FODExMkQ5QUQ5 NUExMUVGODE1Qzc0NzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaMvGjANBgkqhkiG9w0BAQsFAAOCAQEAKNApHnHXEj20zBUe 0/16uNPlyicB9cfw2ZuH69+hAc3DX1e80n6buZa2tosYzoL9flAcq2If1HLVh9DW gudVPK11M/6m+DohaWxjME8C1MUpaEQicbg54gta9V3Ravu6A5MmUniMz+mqtyVW VBMFeYjsrzhWu5f186/S/DUXZBp/UYwoaQHRoZWrOcm2sV8uQWA+9rsaVCO1l6ad xohQiMudMTUgkiNFHR5BWSi3P0Xsx1e05GH4HC4EPETuw6ZrWvNJ2A1zySjpv3OC laakhVPZD0kdAh0KeEqK91wp9jvbB6OzXh5jV2U5cHTOuszlqAvDdsgV0ju2BhfA lVr6hA== -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:33 2025 by rpki-client