$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/CBA514345AD611F0B344B779C4F9AE02.roa File: CBA514345AD611F0B344B779C4F9AE02.roa (raw, json) Hash identifier: J8n4mPedZrA/XF+XvL0Z511Ein+0uaP3PjSJKtqS6XU= Subject key identifier: 50:DF:C4:BD:1D:39:00:8E:28:DB:49:3D:80:91:C1:9C:B7:36:34:11 Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0322 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/CBA514345AD611F0B344B779C4F9AE02.roa Signing time: Mon 07 Jul 2025 02:05:04 +0000 ROA not before: Mon 07 Jul 2025 02:05:04 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4768 IP address blocks: 167.179.196.0/24 maxlen: 24 167.179.197.0/24 maxlen: 24 167.179.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 802 (0x322) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Jul 7 02:05:04 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=686b2b4f-1346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b5:e6:2a:db:7a:46:6a:cb:5f:15:54:4d:7c: fe:00:f2:40:92:23:e4:c2:e3:53:f8:d6:44:89:8f: 4d:9a:1e:0c:9e:e7:f4:8a:de:25:0f:79:cb:47:76: 2f:24:f8:d7:3b:d1:cf:3c:c1:87:47:b6:13:ef:1b: 36:50:37:18:65:55:e3:a5:f6:ad:c0:51:c9:09:09: 20:45:97:fc:0e:da:47:3a:dc:44:eb:4c:18:d3:08: f4:2e:cb:a0:33:a7:20:4f:31:5a:92:04:ba:5e:5e: a0:01:22:b3:5f:ef:95:44:be:40:09:b1:fd:79:0c: d9:04:f9:19:ac:ea:3f:b5:1b:5a:29:21:76:0c:5b: 61:24:e0:fc:f1:3e:99:c4:a3:0d:e6:6d:96:0d:ca: 07:0b:9e:f3:a7:b6:33:2d:15:e1:f7:e2:7a:4f:b7: 63:61:17:62:83:63:d0:73:74:75:21:d9:5e:f7:27: 4e:5d:ef:5d:95:35:70:4f:61:35:6e:a8:ad:83:0c: 17:10:b6:cb:9b:fe:fa:94:45:81:7a:b6:7e:1b:8b: 24:de:c1:94:49:8b:13:95:58:cc:43:2b:dd:48:95: 6d:cc:ac:01:0e:cc:d1:58:fd:0e:0c:e1:e4:f8:86: f0:2b:d6:eb:92:09:f8:90:18:10:22:27:79:ee:4d: 57:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:DF:C4:BD:1D:39:00:8E:28:DB:49:3D:80:91:C1:9C:B7:36:34:11 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/CBA514345AD611F0B344B779C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.196.0/23 167.179.208.0/24 Signature Algorithm: sha256WithRSAEncryption 29:3e:b3:7e:2e:40:50:76:82:18:52:00:ef:ca:44:54:50:18: b9:ea:95:62:5c:15:b9:bd:54:c4:f6:3a:c7:e9:ff:f5:c2:67: 52:c5:dc:51:12:a0:a8:99:d5:51:85:4e:fe:20:08:17:67:ba: b8:33:00:44:1f:d2:51:b8:f3:0a:f4:2f:36:27:8a:8c:c6:fa: 47:42:ee:8a:96:5a:ad:f9:10:55:b6:d4:92:3c:81:74:21:a1: 51:32:0b:b7:dc:38:07:bd:f3:82:49:34:2a:05:2d:18:cc:08: 9c:b6:d4:72:65:ed:e7:1f:fe:64:09:94:7c:4e:f6:22:06:51: 18:28:e3:f9:94:8f:11:49:8b:8d:b3:72:d5:e6:3c:d2:72:19: 9a:0c:8a:be:77:eb:59:f3:32:a6:6d:8a:41:ed:18:b2:47:06: 05:de:66:6e:38:10:01:3b:87:3d:5c:3e:23:da:5f:3a:15:ff: 93:64:d6:ae:a0:1c:18:b6:ab:3a:89:60:a9:b9:53:d3:4b:94: 98:04:7c:c6:41:40:04:e4:d5:d1:d8:3e:52:f7:23:6c:54:d1: 3b:47:eb:3c:ab:46:66:13:1e:f3:28:6b:e2:6f:af:bb:25:87: fc:f5:78:e7:fd:9e:0e:c1:13:92:7c:d5:df:7a:40:e3:f7:ba: 08:09:95:b3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUwNzA3MDIwNTA0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZiMmI0Zi0xMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bXmKtt6RmrLXxVUTXz+APJAkiPkwuNT+NZEiY9Nmh4Mnuf0it4lD3nLR3Yv JPjXO9HPPMGHR7YT7xs2UDcYZVXjpfatwFHJCQkgRZf8DtpHOtxE60wY0wj0Lsug M6cgTzFakgS6Xl6gASKzX++VRL5ACbH9eQzZBPkZrOo/tRtaKSF2DFthJOD88T6Z xKMN5m2WDcoHC57zp7YzLRXh9+J6T7djYRdig2PQc3R1Idle9ydOXe9dlTVwT2E1 bqitgwwXELbLm/76lEWBerZ+G4sk3sGUSYsTlVjMQyvdSJVtzKwBDszRWP0ODOHk +IbwK9brkgn4kBgQIid57k1X+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFDfxL0d OQCOKNtJPYCRwZy3NjQRMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZCREIvNjU3RTBGMzRENjRCMTFFQ0FCMjBFMzZCQzRGOUFFMDIvQ0JBNTE0MzQ1 QUQ2MTFGMEIzNDRCNzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGns8QDBACns9AwDQYJKoZIhvcNAQELBQADggEBACk+s34u QFB2ghhSAO/KRFRQGLnqlWJcFbm9VMT2Osfp//XCZ1LF3FESoKiZ1VGFTv4gCBdn urgzAEQf0lG48wr0LzYniozG+kdC7oqWWq35EFW21JI8gXQhoVEyC7fcOAe984JJ NCoFLRjMCJy21HJl7ecf/mQJlHxO9iIGURgo4/mUjxFJi42zctXmPNJyGZoMir53 61nzMqZtikHtGLJHBgXeZm44EAE7hz1cPiPaXzoV/5Nk1q6gHBi2qzqJYKm5U9NL lJgEfMZBQATk1dHYPlL3I2xU0TtH6zyrRmYTHvMoa+Jvr7slh/z1eOf9ng7BE5J8 1d96QOP3uggJlbM= -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:13 2025 by rpki-client