$ rpki-client -vvf rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/C098EF8E499811EFBB8C701EC4F9AE02.roa File: C098EF8E499811EFBB8C701EC4F9AE02.roa (raw, json) Hash identifier: fjb9xxIvXmy/Q4aA7zhlhVkljXVrUMNfVIOWbyyneP8= Subject key identifier: D9:FA:1D:0F:6F:65:31:F9:D5:7B:AF:5A:D9:26:E0:40:89:D7:FD:83 Certificate issuer: /CN=A9186513/serialNumber=B6CCB5E431E45019150C4F3721F4F80A6F2ED7DB Certificate serial: 06D9 Authority key identifier: B6:CC:B5:E4:31:E4:50:19:15:0C:4F:37:21:F4:F8:0A:6F:2E:D7:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsy15DHkUBkVDE83IfT4Cm8u19s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/C098EF8E499811EFBB8C701EC4F9AE02.roa Signing time: Thu 02 Jan 2025 21:51:17 +0000 ROA not before: Thu 02 Jan 2025 21:51:17 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 142270 IP address blocks: 203.76.253.0/24 maxlen: 24 203.76.254.0/24 maxlen: 24 203.76.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/tsy15DHkUBkVDE83IfT4Cm8u19s.crl rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/tsy15DHkUBkVDE83IfT4Cm8u19s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsy15DHkUBkVDE83IfT4Cm8u19s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186513 Validity Not Before: Jan 2 21:51:17 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67770a55-02a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:3d:f2:0a:03:be:56:5e:a4:41:a4:e9:a3: 06:80:2c:10:36:34:3b:18:e5:19:bc:a4:6c:69:81: fc:d8:47:6c:24:1e:71:d6:ea:da:98:8d:4f:28:cf: 18:7f:17:0f:39:9e:72:eb:de:30:4a:bc:55:23:e1: e4:9d:ab:7e:a3:0d:32:64:79:2a:bb:be:6a:92:d0: c3:66:8c:51:c6:f0:10:c4:6d:8c:b1:9c:d0:08:d8: d4:5f:97:84:0f:9c:4e:ae:61:6d:01:70:aa:5d:3d: 38:5e:44:01:48:25:d5:a6:47:fc:4a:2a:64:93:0f: df:73:83:ee:00:97:ec:f1:c5:13:ff:f6:48:9c:77: 2a:c3:51:48:b0:11:d3:a8:ee:3a:2f:97:56:6d:5e: 01:19:63:b7:34:16:65:57:e3:91:ab:09:33:66:dd: 9b:bf:9e:60:21:c1:71:06:c9:66:21:b2:87:2c:44: f4:32:65:e1:04:10:f5:cb:de:62:51:f1:66:b3:89: 9e:00:08:e9:43:96:fa:24:86:83:7f:7d:20:c4:8c: cc:f2:c4:a0:89:66:b7:16:44:74:8e:bc:07:a5:d0: 17:f5:12:c7:70:28:24:ad:5b:eb:67:9b:3e:24:2a: b9:56:c8:bd:79:e2:64:5f:55:ae:9b:c8:c9:13:a3: 37:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FA:1D:0F:6F:65:31:F9:D5:7B:AF:5A:D9:26:E0:40:89:D7:FD:83 X509v3 Authority Key Identifier: keyid:B6:CC:B5:E4:31:E4:50:19:15:0C:4F:37:21:F4:F8:0A:6F:2E:D7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/tsy15DHkUBkVDE83IfT4Cm8u19s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsy15DHkUBkVDE83IfT4Cm8u19s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/C098EF8E499811EFBB8C701EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.76.253.0-203.76.255.255 Signature Algorithm: sha256WithRSAEncryption 28:4c:67:7d:17:83:63:85:4c:f8:99:8a:61:75:9d:b9:9c:c7: 87:56:8c:de:46:97:ef:c4:b3:6e:90:61:53:b3:e7:ef:e2:db: 48:2d:c3:03:3c:25:d5:df:b2:38:d4:10:2a:c4:8d:e8:c4:7a: 1c:57:35:7c:e3:88:1f:2d:bc:86:d7:88:91:1e:90:0c:06:5f: 60:8f:68:37:79:8f:ff:a8:31:76:fb:c8:1b:8e:67:c0:2f:ca: e7:27:b7:ad:e0:6b:0b:e9:6a:52:9d:f9:8d:52:a0:c4:39:b1: c2:b5:2d:3b:ee:d2:b3:8e:f3:7a:7c:a1:95:56:d5:be:14:39: 05:39:c7:f9:c9:c7:dc:50:c7:1a:7f:6d:9e:4d:92:0d:5f:a3: d8:e7:a9:cc:e4:eb:75:95:67:95:0c:62:f5:93:70:ef:53:bd: 25:1c:2d:34:b9:7c:88:1c:48:31:d0:13:ed:6a:eb:77:a7:26: da:72:69:dc:86:a2:cc:ab:36:1a:af:b0:28:99:0e:a5:b1:d7: 8c:19:fc:62:4b:65:4b:37:4d:03:bb:db:41:5c:f6:d7:dd:f4: 49:10:35:b3:b7:95:d7:ae:d6:1e:bd:69:82:99:60:9a:17:2d: c5:92:84:95:0a:71:d2:1c:43:8e:95:b8:dc:4e:2f:40:95:c0: 9c:ae:b4:39 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY1MTMxMTAvBgNVBAUTKEI2Q0NCNUU0MzFFNDUwMTkxNTBDNEYzNzIxRjRGODBB NkYyRUQ3REIwHhcNMjUwMTAyMjE1MTE3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3MGE1NS0wMmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7Q98goDvlZepEGk6aMGgCwQNjQ7GOUZvKRsaYH82EdsJB5x1uramI1PKM8Y fxcPOZ5y694wSrxVI+Hknat+ow0yZHkqu75qktDDZoxRxvAQxG2MsZzQCNjUX5eE D5xOrmFtAXCqXT04XkQBSCXVpkf8Sipkkw/fc4PuAJfs8cUT//ZInHcqw1FIsBHT qO46L5dWbV4BGWO3NBZlV+ORqwkzZt2bv55gIcFxBslmIbKHLET0MmXhBBD1y95i UfFms4meAAjpQ5b6JIaDf30gxIzM8sSgiWa3FkR0jrwHpdAX9RLHcCgkrVvrZ5s+ JCq5Vsi9eeJkX1Wum8jJE6M3iwIDAQABo4ICnDCCApgwHQYDVR0OBBYEFNn6HQ9v ZTH51XuvWtkm4ECJ1/2DMB8GA1UdIwQYMBaAFLbMteQx5FAZFQxPNyH0+ApvLtfb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjUxMy9DMkJBNkJGMDQy MDExMUVCQUJGRDVFNjBDNEY5QUUwMi90c3kxNURIa1VCa1ZERTgzSWZUNENtOHUx OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzeTE1REhrVUJrVkRFODNJZlQ0Q204dTE5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY1MTMvQzJCQTZCRjA0MjAxMTFFQkFCRkQ1RTYwQzRGOUFFMDIvQzA5OEVGOEU0 OTk4MTFFRkJCOEM3MDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMEAMtM/QMDAMtMMA0GCSqGSIb3DQEBCwUAA4IBAQAoTGd9 F4NjhUz4mYphdZ25nMeHVozeRpfvxLNukGFTs+fv4ttILcMDPCXV37I41BAqxI3o xHocVzV844gfLbyG14iRHpAMBl9gj2g3eY//qDF2+8gbjmfAL8rnJ7et4GsL6WpS nfmNUqDEObHCtS077tKzjvN6fKGVVtW+FDkFOcf5ycfcUMcaf22eTZINX6PY56nM 5Ot1lWeVDGL1k3DvU70lHC00uXyIHEgx0BPtaut3pybacmnchqLMqzYar7AomQ6l sdeMGfxiS2VLN00Du9tBXPbX3fRJEDWzt5XXrtYevWmCmWCaFy3FkoSVCnHSHEOO lbjcTi9AlcCcrrQ5 -----END CERTIFICATE-----Generated at Fri Apr 4 23:45:23 2025 by rpki-client