$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa File: C7ADA138F4C011EAA7B25986C4F9AE02.roa (raw, json) Hash identifier: G5UBtJsfZQZ4SV+yPTNK/ejUFIGmrip9sZG7FP0b4Cg= Subject key identifier: B8:90:17:D0:30:B1:FF:44:1E:58:56:7D:0F:3C:24:CF:4F:75:58:AD Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 07C8 Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa Signing time: Mon 31 Mar 2025 21:21:32 +0000 ROA not before: Mon 31 Mar 2025 21:21:32 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138527 IP address blocks: 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:19:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5 Validity Not Before: Mar 31 21:21:32 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb075c-ee35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:41:f6:4f:d6:8e:05:7d:08:f0:41:75:06: 08:ac:e2:2f:14:b0:36:41:53:9d:9a:3e:a2:bb:7c: 3d:68:d8:17:0c:1e:7c:c1:a1:7c:d7:34:15:bc:08: de:2a:32:c6:01:3d:da:2a:31:eb:dd:d8:58:11:0f: 15:f3:7f:16:86:e8:40:ec:25:3c:d8:99:ef:28:87: 37:2c:87:8d:2a:3e:9b:12:2c:43:15:28:5d:9b:b2: a6:e9:c1:e5:f2:61:43:2f:55:14:88:2d:65:5c:e2: 1c:6a:20:22:c6:86:a4:3f:fc:b3:66:28:1c:d9:a2: 18:4f:c5:d6:e3:1b:60:08:26:30:a0:8a:95:ef:d3: d1:07:ec:74:69:6c:dc:15:01:8a:1e:0a:58:77:31: d3:a8:8e:4f:be:92:49:b5:ca:c9:a0:bd:b6:9d:9a: fe:c9:cd:19:99:03:85:e5:94:c9:18:8f:09:cf:26: 7c:52:0a:58:de:25:c7:27:30:b5:29:ce:d9:dd:09: f3:2d:79:b1:4c:b8:d8:af:78:94:38:5f:d4:3c:39: 14:4c:ba:bc:50:fe:c0:da:bd:23:5f:8f:ed:62:3e: 35:f6:01:23:39:03:cf:e4:b8:67:84:32:5c:4f:12: 67:0a:7c:c1:78:b5:c2:14:aa:a0:61:c2:5a:e5:cb: 6f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:90:17:D0:30:B1:FF:44:1E:58:56:7D:0F:3C:24:CF:4F:75:58:AD X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.208.0/23 Signature Algorithm: sha256WithRSAEncryption 89:d5:93:be:d0:8b:86:ed:5f:8d:73:50:a1:22:16:e2:e5:0a: 2b:b7:f5:e8:9e:b3:57:72:ee:a3:ea:f0:33:16:bb:b6:0e:eb: 45:30:71:91:cf:23:53:9b:ca:ef:02:e2:ec:0f:3e:97:d0:e6: 92:94:95:25:1f:ef:3b:2d:aa:15:f1:27:d9:d0:a9:e8:c1:b1: da:1a:67:76:66:3c:c6:eb:d1:a4:46:b7:dd:dc:e0:6f:4c:08: 33:af:fd:31:6e:be:da:9c:98:f6:2e:15:ab:2f:b0:b0:70:14: cd:8a:fa:29:81:89:5d:75:23:24:6c:9f:a8:fb:d2:4f:d8:c6: 7b:50:b9:c0:a2:ec:51:bf:d2:e5:da:7d:93:1f:28:82:4a:71: 0d:b4:15:02:07:1c:17:60:fb:a6:57:12:96:5c:37:66:cf:e4: e3:97:3d:d7:62:f4:37:c2:5a:2d:60:81:86:06:f1:bf:1a:4e: 5c:eb:be:21:28:c5:b9:5c:36:fd:a8:6f:23:b2:28:1d:46:15: 0c:05:03:8a:ba:73:b9:80:96:82:ac:c4:ab:5e:d4:33:e0:b1: e8:41:1a:4d:08:3f:fa:a5:4a:fd:2b:45:53:7b:ed:7e:16:3c: 25:74:5a:3a:74:74:22:23:25:15:e0:11:97:9c:de:44:39:e5: 4f:f0:a2:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjUwMzMxMjEyMTMyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViMDc1Yy1lZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvFB9k/WjgV9CPBBdQYIrOIvFLA2QVOdmj6iu3w9aNgXDB58waF81zQVvAje KjLGAT3aKjHr3dhYEQ8V838WhuhA7CU82JnvKIc3LIeNKj6bEixDFShdm7Km6cHl 8mFDL1UUiC1lXOIcaiAixoakP/yzZigc2aIYT8XW4xtgCCYwoIqV79PRB+x0aWzc FQGKHgpYdzHTqI5PvpJJtcrJoL22nZr+yc0ZmQOF5ZTJGI8JzyZ8UgpY3iXHJzC1 Kc7Z3QnzLXmxTLjYr3iUOF/UPDkUTLq8UP7A2r0jX4/tYj419gEjOQPP5LhnhDJc TxJnCnzBeLXCFKqgYcJa5ctv8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLiQF9Aw sf9EHlhWfQ88JM9PdVitMB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvQzdBREExMzhG NEMwMTFFQUE3QjI1OTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF0zNAwDQYJKoZIhvcNAQELBQADggEBAInVk77Qi4btX41z UKEiFuLlCiu39eies1dy7qPq8DMWu7YO60UwcZHPI1Obyu8C4uwPPpfQ5pKUlSUf 7zstqhXxJ9nQqejBsdoaZ3ZmPMbr0aRGt93c4G9MCDOv/TFuvtqcmPYuFasvsLBw FM2K+imBiV11IyRsn6j70k/YxntQucCi7FG/0uXafZMfKIJKcQ20FQIHHBdg+6ZX EpZcN2bP5OOXPddi9DfCWi1ggYYG8b8aTlzrviEoxblcNv2obyOyKB1GFQwFA4q6 c7mAloKsxKte1DPgsehBGk0IP/qlSv0rRVN77X4WPCV0Wjp0dCIjJRXgEZec3kQ5 5U/worg= -----END CERTIFICATE-----Generated at Sat Apr 5 06:02:19 2025 by rpki-client