$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa File: 9580A702548211EFAADB996FC4F9AE02.roa (raw, json) Hash identifier: nFQQw/dyghkb1sXKy9uupZRqxzdAPtcnxFOFgRiXGi4= Subject key identifier: 27:31:B8:4F:C0:11:F8:C6:6C:AC:E4:09:83:40:F8:08:01:16:93:2E Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: E7 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa Signing time: Thu 17 Jul 2025 06:07:14 +0000 ROA not before: Thu 17 Jul 2025 06:07:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150436 IP address blocks: 45.78.192.0/18 maxlen: 24 69.5.0.0/19 maxlen: 24 207.166.160.0/19 maxlen: 24 216.19.0.0/18 maxlen: 24 216.230.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Jul 17 06:07:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68789311-807e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:87:2a:0e:27:4e:1b:9f:6f:61:44:b1:5b:56: 48:3b:30:22:22:4e:91:3b:3f:8f:8e:53:df:bb:d2: 16:02:f6:08:d6:58:c5:39:7b:54:23:de:20:88:15: 64:fe:24:95:59:0e:f5:2d:a6:73:e0:03:72:bf:58: 7a:d1:09:ce:f8:3f:da:65:c8:9d:d5:cd:17:c2:25: c7:7a:82:94:3b:b7:a4:f2:ea:78:7d:54:73:75:01: 43:69:cd:aa:f3:bb:5e:94:f6:0a:0b:1b:08:0c:02: 8a:74:37:8b:0b:8f:ff:09:9e:2e:78:ec:a6:38:0c: ba:12:f6:40:26:44:af:05:69:f2:66:40:34:c7:ce: 23:de:a4:88:52:cf:e2:04:b2:dc:44:72:0e:7b:02: 97:52:01:33:d9:59:3c:12:a5:e6:18:a8:98:d5:71: 3e:09:a3:a5:47:d3:bd:cb:e2:5c:03:c0:77:31:6e: 85:80:24:e6:da:6c:d4:54:91:de:d5:3e:fa:8a:48: 8c:a3:75:f8:20:20:cb:69:25:85:28:27:d1:f6:53: 15:e4:61:63:62:af:94:c4:7e:ea:cc:e3:e0:07:23: 41:2e:b7:ff:dc:ff:45:44:03:67:5c:63:6f:79:63: 14:c3:57:fd:b2:af:ef:68:4c:44:36:de:7c:02:04: 10:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:31:B8:4F:C0:11:F8:C6:6C:AC:E4:09:83:40:F8:08:01:16:93:2E X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.78.192.0/18 69.5.0.0/19 207.166.160.0/19 216.19.0.0/18 216.230.192.0/19 Signature Algorithm: sha256WithRSAEncryption 1d:d8:72:a5:fb:e0:bb:d4:e7:b5:33:f3:e8:3e:61:c4:97:ad: e2:c1:f2:ba:fd:88:af:0e:43:f1:bb:5b:58:76:1b:aa:5c:58: 8b:eb:9b:29:c6:69:ea:02:93:6a:c0:e2:c4:5a:a0:7c:8d:14: 3d:62:ca:5d:d3:f4:32:a8:91:b6:3d:15:38:f1:60:42:48:eb: 34:6d:bc:d6:c1:72:6f:82:cb:f0:e2:61:e9:4a:ce:d1:da:29: 46:1a:43:46:1d:08:c2:63:e0:a7:5d:7f:ef:b2:25:ea:0a:9c: b7:05:82:c3:4a:19:0b:1c:68:2b:41:aa:80:c2:55:93:23:d3: 80:c5:c9:7d:78:ff:b5:ef:a0:c9:6d:5b:e6:bf:32:1d:a0:42: 46:26:6e:37:c3:e2:f4:52:a9:b1:02:61:28:07:0b:ed:d4:b6: c0:40:22:77:82:b2:6e:3e:fa:ef:ac:1d:71:b4:1a:2b:a2:c1: 4b:b8:e2:45:07:30:c4:34:03:e8:bb:74:69:27:33:80:b6:5b: 07:a5:bb:ed:90:6c:98:df:fb:58:42:d0:cb:9e:16:d3:24:0f: 0c:7f:ca:8d:e8:17:b4:ec:de:d5:07:d0:45:88:42:91:fc:b3: 11:9f:70:5c:50:c7:e8:7c:3b:e8:d4:52:50:e0:ef:bc:29:7a: 50:0f:80:4b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNzE3MDYwNzE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc4OTMxMS04MDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IcqDidOG59vYUSxW1ZIOzAiIk6ROz+PjlPfu9IWAvYI1ljFOXtUI94giBVk /iSVWQ71LaZz4ANyv1h60QnO+D/aZcid1c0XwiXHeoKUO7ek8up4fVRzdQFDac2q 87telPYKCxsIDAKKdDeLC4//CZ4ueOymOAy6EvZAJkSvBWnyZkA0x84j3qSIUs/i BLLcRHIOewKXUgEz2Vk8EqXmGKiY1XE+CaOlR9O9y+JcA8B3MW6FgCTm2mzUVJHe 1T76ikiMo3X4ICDLaSWFKCfR9lMV5GFjYq+UxH7qzOPgByNBLrf/3P9FRANnXGNv eWMUw1f9sq/vaExENt58AgQQywIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFCcxuE/A EfjGbKzkCYNA+AgBFpMuMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvOEY5MDkxRDQzMkIwMTFFRkE0Q0JGOTZBQzRGOUFFMDIvOTU4MEE3MDI1 NDgyMTFFRkFBREI5OTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAYtTsADBAVFBQADBAXPpqADBAbYEwADBAXY5sAwDQYJKoZI hvcNAQELBQADggEBAB3YcqX74LvU57Uz8+g+YcSXreLB8rr9iK8OQ/G7W1h2G6pc WIvrmynGaeoCk2rA4sRaoHyNFD1iyl3T9DKokbY9FTjxYEJI6zRtvNbBcm+Cy/Di YelKztHaKUYaQ0YdCMJj4Kddf++yJeoKnLcFgsNKGQscaCtBqoDCVZMj04DFyX14 /7XvoMltW+a/Mh2gQkYmbjfD4vRSqbECYSgHC+3UtsBAIneCsm4++u+sHXG0Giui wUu44kUHMMQ0A+i7dGknM4C2Wwelu+2QbJjf+1hC0MueFtMkDwx/yo3oF7Ts3tUH 0EWIQpH8sxGfcFxQx+h8O+jUUlDg77wpelAPgEs= -----END CERTIFICATE-----Generated at Thu Jul 24 21:17:32 2025 by rpki-client