$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/D672BC9638E411EF8BF0C15EC4F9AE02.roa File: D672BC9638E411EF8BF0C15EC4F9AE02.roa (raw, json) Hash identifier: BbrjGfo0UoZCcLf+k7hQstWYPdgNNbc+IXBk8J2BWwE= Subject key identifier: A6:C3:A9:8C:67:34:DC:93:E5:22:97:6D:BF:6D:14:1E:11:08:B7:89 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: 83 Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/D672BC9638E411EF8BF0C15EC4F9AE02.roa Signing time: Mon 03 Mar 2025 08:29:34 +0000 ROA not before: Mon 03 Mar 2025 08:29:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4764 IP address blocks: 192.135.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424 Validity Not Before: Mar 3 08:29:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c5686d-44db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fb:28:b7:b9:c0:ec:10:66:bf:55:d5:b5:cb: e2:4a:d3:e3:1b:56:8f:21:b1:b6:02:eb:96:8e:ed: ac:16:17:79:1c:04:ee:f7:f9:d4:d3:87:f1:33:f4: 8a:e6:06:76:54:8a:7d:ee:64:af:5c:cf:0e:77:47: 4e:51:c8:8c:9a:23:7e:86:51:ea:bc:0b:10:3b:8c: 83:b8:a5:08:3d:0a:07:85:4b:a2:df:bb:23:d1:08: a1:2d:bb:15:5d:c5:b5:47:30:e1:e2:fb:82:3e:20: 8f:2e:a8:7a:56:66:d5:92:55:83:70:b6:be:e1:f8: 29:9c:64:43:2f:b1:a1:8f:16:f8:b1:74:90:e7:0c: 8f:dc:3a:e2:44:50:08:bc:e1:b8:07:2e:d6:d1:1a: 6e:0b:12:fe:86:18:89:b3:2e:d2:1f:27:ec:8f:17: 52:9f:74:e8:56:4a:fc:49:38:33:12:1f:fc:b7:5c: 72:34:73:9b:bc:f9:6a:b8:e7:a4:96:c4:d8:13:8d: 69:85:be:50:5a:7e:bf:be:6e:c9:38:9a:ea:0d:3e: 9a:27:df:e7:1f:d0:07:f6:76:e5:ab:ff:1a:dd:51: 2a:c0:01:f7:98:bb:12:cc:0c:ad:4b:7e:2a:e3:91: 8e:c9:1c:9a:5d:29:8a:b9:80:2e:b4:aa:06:e0:19: a7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C3:A9:8C:67:34:DC:93:E5:22:97:6D:BF:6D:14:1E:11:08:B7:89 X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/D672BC9638E411EF8BF0C15EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.135.208.0/24 Signature Algorithm: sha256WithRSAEncryption 15:77:75:6d:30:db:0a:2c:40:07:8e:37:a8:6b:d7:21:b2:72: 59:4b:fe:c4:48:e6:14:d2:8b:bf:c3:22:07:ac:9e:90:2a:cc: a9:77:22:fb:1d:3d:5a:9d:17:d9:8a:8a:13:39:0d:44:ce:b1: 91:e2:a4:91:24:61:99:72:e7:8b:9c:ea:01:1e:88:e3:83:a7: 50:d0:6e:12:57:1b:e8:b9:81:c2:86:59:7a:70:3f:94:a5:05: 05:38:d3:a7:01:16:dd:a0:02:12:dc:9c:75:d5:e4:12:2d:95: 18:c0:0d:a6:f2:57:c1:dd:3b:a0:af:19:18:73:d7:87:98:67: 65:5e:d1:a7:9d:88:ba:27:4f:2f:00:18:c0:51:9c:ee:58:4c: d3:b5:57:a4:e5:aa:e8:82:9d:af:22:2d:a8:89:b8:85:e2:55: 4e:8c:7f:b7:e1:0e:f6:67:42:93:e6:15:cb:7a:1b:7b:b7:68: d4:2c:a3:ac:46:47:f3:93:10:a8:ca:c1:b1:42:d9:26:73:30: 14:1e:ae:4a:29:25:4e:42:62:e4:15:29:f7:8f:05:6c:fa:56: ba:f1:94:8d:a9:04:50:c2:cd:65:48:93:bc:38:4a:9e:bb:81: ac:e8:e0:af:36:eb:d9:79:6d:55:8e:70:bb:45:74:6c:df:50: dc:9e:d0:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0MjQxMTAvBgNVBAUTKDc0QTExNjY5QzQzRTUzQjBGMjFENEI0MTNGOTJEOUVB OTEzMTU1MDMwHhcNMjUwMzAzMDgyOTM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1Njg2ZC00NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/sot7nA7BBmv1XVtcviStPjG1aPIbG2AuuWju2sFhd5HATu9/nU04fxM/SK 5gZ2VIp97mSvXM8Od0dOUciMmiN+hlHqvAsQO4yDuKUIPQoHhUui37sj0QihLbsV XcW1RzDh4vuCPiCPLqh6VmbVklWDcLa+4fgpnGRDL7Ghjxb4sXSQ5wyP3DriRFAI vOG4By7W0RpuCxL+hhiJsy7SHyfsjxdSn3ToVkr8STgzEh/8t1xyNHObvPlquOek lsTYE41phb5QWn6/vm7JOJrqDT6aJ9/nH9AH9nblq/8a3VEqwAH3mLsSzAytS34q 45GOyRyaXSmKuYAutKoG4BmnZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKbDqYxn NNyT5SKXbb9tFB4RCLeJMB8GA1UdIwQYMBaAFHShFmnEPlOw8h1LQT+S2eqRMVUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQyNC83OTNFQTZEQTM4 RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3RHlIVXRCUDVMWjZwRXhW UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzg0MjQvNzkzRUE2REEzOEUzMTFFRjkxNEIyRjMzQzRGOUFFMDIvRDY3MkJDOTYz OEU0MTFFRjhCRjBDMTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAh9AwDQYJKoZIhvcNAQELBQADggEBABV3dW0w2wosQAeO N6hr1yGycllL/sRI5hTSi7/DIgesnpAqzKl3IvsdPVqdF9mKihM5DUTOsZHipJEk YZly54uc6gEeiOODp1DQbhJXG+i5gcKGWXpwP5SlBQU406cBFt2gAhLcnHXV5BIt lRjADabyV8HdO6CvGRhz14eYZ2Ve0aediLonTy8AGMBRnO5YTNO1V6TlquiCna8i LaiJuIXiVU6Mf7fhDvZnQpPmFct6G3u3aNQso6xGR/OTEKjKwbFC2SZzMBQerkop JU5CYuQVKfePBWz6VrrxlI2pBFDCzWVIk7w4Sp67gazo4K8269l5bVWOcLtFdGzf UNye0BM= -----END CERTIFICATE-----Generated at Sat Apr 5 12:53:54 2025 by rpki-client