$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa File: 53B6182C213611EAB9F02B49C4F9AE02.roa (raw, json) Hash identifier: RvdTnjVHgMOyaT2D6NI7RBOs0ab70zz7muos4KwEa2g= Subject key identifier: 6B:EB:C8:C5:61:FD:29:BC:EE:CC:1B:1C:8F:7A:08:EA:00:D1:A6:8E Certificate issuer: /CN=A9185CF3/serialNumber=A7A2674E8484603920779A352C55804E55365014 Certificate serial: 0B6E Authority key identifier: A7:A2:67:4E:84:84:60:39:20:77:9A:35:2C:55:80:4E:55:36:50:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa Signing time: Wed 08 Jan 2025 01:57:01 +0000 ROA not before: Wed 08 Jan 2025 01:57:01 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58983 IP address blocks: 45.119.160.0/22 maxlen: 22 45.119.160.0/23 maxlen: 23 45.119.160.0/24 maxlen: 24 45.119.161.0/24 maxlen: 24 45.119.162.0/23 maxlen: 23 45.119.162.0/24 maxlen: 24 45.119.163.0/24 maxlen: 24 103.240.176.0/22 maxlen: 22 103.240.176.0/23 maxlen: 23 103.240.176.0/24 maxlen: 24 103.240.177.0/24 maxlen: 24 103.240.178.0/23 maxlen: 23 103.240.178.0/24 maxlen: 24 103.240.179.0/24 maxlen: 24 2400:5880::/32 maxlen: 32 2400:5880::/33 maxlen: 33 2400:5880:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.crl rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 18:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2926 (0xb6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CF3 Validity Not Before: Jan 8 01:57:01 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=677ddb6d-857b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:60:44:74:88:a5:36:32:c5:38:e6:96:73:c1: 2e:15:dd:c4:83:0e:70:56:10:d2:1c:ba:8a:24:69: db:da:48:b7:99:19:89:b8:4e:60:73:03:13:a6:fc: b9:7d:c8:d6:6e:81:e7:bc:d1:b1:e4:49:ee:d0:0a: 2d:d2:16:95:3d:71:f5:be:50:32:07:40:b4:0f:54: d6:58:4f:84:2f:9c:fd:ff:fd:f3:ce:98:1c:27:a1: 73:13:ca:37:07:ab:8d:bc:07:c2:0a:bd:8e:b9:c8: b0:d5:4a:8c:48:2f:78:79:26:d6:8a:8a:0c:e1:48: c8:5c:13:0a:9d:07:c7:88:40:b1:92:6d:de:dd:7f: 46:6b:29:f2:ca:88:4b:1f:99:22:a4:37:f7:74:e6: 5e:fe:40:17:20:71:67:60:94:fc:cb:d9:c3:ab:e2: 2a:bc:32:f4:3b:06:91:d0:08:3b:76:0c:0a:9c:4f: 1c:3d:7a:b4:2a:eb:87:ff:86:52:a5:43:c9:d1:21: a8:ed:cf:ab:90:dd:6e:ee:d2:b8:00:9a:f7:24:07: 38:74:2f:14:07:a3:e7:2b:00:54:10:87:bf:f1:70: 78:e0:a5:44:59:3a:b1:e3:1a:a0:00:41:91:1e:9b: d7:7b:c6:9c:20:da:29:09:ec:8e:2b:dd:2f:11:0b: c7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EB:C8:C5:61:FD:29:BC:EE:CC:1B:1C:8F:7A:08:EA:00:D1:A6:8E X509v3 Authority Key Identifier: keyid:A7:A2:67:4E:84:84:60:39:20:77:9A:35:2C:55:80:4E:55:36:50:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.160.0/22 103.240.176.0/22 IPv6: 2400:5880::/32 Signature Algorithm: sha256WithRSAEncryption 43:40:04:aa:96:b2:ef:05:de:83:e4:1f:fb:77:83:0b:49:15: ca:24:ae:59:b8:94:f6:98:3e:87:9c:69:13:cd:5d:b3:09:3c: dc:ad:41:ac:34:3b:3c:11:50:4e:18:c1:55:f9:9a:d3:78:12: 0c:bc:c4:db:0e:d8:c7:58:83:cf:74:b6:40:44:f8:77:4c:9b: 17:81:d5:ea:d0:ae:21:59:3c:8b:fe:53:8c:b7:17:ee:ab:2a: 7d:0b:bd:78:d5:1e:a7:fd:87:0d:69:5a:4a:19:36:d1:14:db: e0:6a:49:b8:97:02:2c:87:3f:1b:73:4e:06:3d:50:e6:c6:bd: 32:94:ec:96:66:59:52:bb:d9:34:63:96:51:24:99:59:18:a4: 2e:5d:7f:b9:50:db:d0:fa:cd:6a:7f:ca:34:0d:8e:17:5e:d9: 66:00:5e:cb:f9:93:63:8f:f3:9c:fc:07:10:72:f8:6c:27:62: 3f:a7:8d:08:11:24:e9:6b:04:ea:78:df:87:64:ce:6d:ac:0b: 53:35:f0:5f:da:0d:ea:7a:3a:68:08:30:97:c4:8c:fe:da:38: e2:57:e5:c7:ff:99:ff:c4:1f:38:9d:7c:18:ad:47:bb:72:21: 1d:00:1c:ab:c3:d8:a8:13:e8:b2:17:1d:f9:f2:0b:2f:1d:32: 16:5e:06:77 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRjMxMTAvBgNVBAUTKEE3QTI2NzRFODQ4NDYwMzkyMDc3OUEzNTJDNTU4MDRF NTUzNjUwMTQwHhcNMjUwMTA4MDE1NzAxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdkZGI2ZC04NTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWBEdIilNjLFOOaWc8EuFd3Egw5wVhDSHLqKJGnb2ki3mRmJuE5gcwMTpvy5 fcjWboHnvNGx5Enu0Aot0haVPXH1vlAyB0C0D1TWWE+EL5z9//3zzpgcJ6FzE8o3 B6uNvAfCCr2Ouciw1UqMSC94eSbWiooM4UjIXBMKnQfHiECxkm3e3X9GaynyyohL H5kipDf3dOZe/kAXIHFnYJT8y9nDq+IqvDL0OwaR0Ag7dgwKnE8cPXq0KuuH/4ZS pUPJ0SGo7c+rkN1u7tK4AJr3JAc4dC8UB6PnKwBUEIe/8XB44KVEWTqx4xqgAEGR HpvXe8acINopCeyOK90vEQvHiQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGvryMVh /Sm87swbHI96COoA0aaOMB8GA1UdIwQYMBaAFKeiZ06EhGA5IHeaNSxVgE5VNlAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNGMy80QkRENTE4RTIx MzUxMUVBQkU0ODg3NDdDNEY5QUUwMi9wNkpuVG9TRVlEa2dkNW8xTEZXQVRsVTJV QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A2Sm5Ub1NFWURrZ2Q1bzFMRldBVGxVMlVCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVDRjMvNEJERDUxOEUyMTM1MTFFQUJFNDg4NzQ3QzRGOUFFMDIvNTNCNjE4MkMy MTM2MTFFQUI5RjAyQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItd6ADBAJn8LAwDQQCAAIwBwMFACQAWIAwDQYJKoZIhvcN AQELBQADggEBAENABKqWsu8F3oPkH/t3gwtJFcokrlm4lPaYPoecaRPNXbMJPNyt Qaw0OzwRUE4YwVX5mtN4Egy8xNsO2MdYg890tkBE+HdMmxeB1erQriFZPIv+U4y3 F+6rKn0LvXjVHqf9hw1pWkoZNtEU2+BqSbiXAiyHPxtzTgY9UObGvTKU7JZmWVK7 2TRjllEkmVkYpC5df7lQ29D6zWp/yjQNjhde2WYAXsv5k2OP85z8BxBy+GwnYj+n jQgRJOlrBOp434dkzm2sC1M18F/aDep6OmgIMJfEjP7aOOJX5cf/mf/EHzidfBit R7tyIR0AHKvD2KgT6LIXHfnyCy8dMhZeBnc= -----END CERTIFICATE-----Generated at Fri Apr 11 15:51:27 2025 by rpki-client