$ rpki-client -vvf rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/B95648BA062211F09E5D020EC4F9AE02.roa File: B95648BA062211F09E5D020EC4F9AE02.roa (raw, json) Hash identifier: v9BoKHPtS+6KDJpJ1s6FsD8QqUN0uxXtfO3LUF0PxsA= Subject key identifier: 72:A9:C5:E4:90:F0:64:D7:20:C0:23:7F:3C:DE:9F:FB:B5:73:D4:DD Certificate issuer: /CN=A919A9EE/serialNumber=C0B16039C46CDF0C88D9A74A82D9E459A3A8CAE6 Certificate serial: 0585 Authority key identifier: C0:B1:60:39:C4:6C:DF:0C:88:D9:A7:4A:82:D9:E4:59:A3:A8:CA:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/B95648BA062211F09E5D020EC4F9AE02.roa Signing time: Fri 21 Mar 2025 07:04:26 +0000 ROA not before: Fri 21 Mar 2025 07:04:26 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 4820 IP address blocks: 203.3.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.crl rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A9EE Validity Not Before: Mar 21 07:04:26 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67dd0f79-2a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:91:9d:64:a5:c8:70:de:6a:5b:79:80:f1:01: b9:64:b4:98:9b:df:49:67:0b:7f:8e:e9:84:23:29: 4a:74:3e:d7:a1:71:46:44:2d:87:44:69:87:33:f8: 5f:e1:76:93:5c:68:b5:ab:34:a6:99:94:d3:01:cb: bb:ee:ca:a1:83:a9:7a:e6:61:bc:bb:1a:9f:79:da: 13:38:ce:e8:49:bb:e0:e0:c2:5b:89:37:af:f1:5f: f7:99:d0:26:a1:17:86:e6:61:1e:4e:de:ca:2c:4e: 2e:c3:8a:36:59:4b:20:86:fd:bc:e9:65:dd:78:69: 21:f6:79:ec:91:e7:de:74:46:ac:19:45:e6:0d:df: 21:7f:5b:24:26:db:35:46:71:30:fe:de:50:71:33: 16:89:3d:0e:ba:2c:6a:22:f6:1e:f8:8d:23:3c:26: 25:56:ca:3d:07:c1:94:de:09:74:c2:04:bb:46:4c: 9f:c4:40:75:94:fd:79:56:a9:c0:ee:cd:bc:22:fb: e8:f9:b5:df:f8:bf:47:74:b7:39:34:eb:b9:04:66: 71:1d:69:7b:4b:ca:9e:bb:9b:e0:d7:25:06:ae:b9: 18:6e:cc:c7:07:29:f4:19:10:6f:63:11:d5:a7:51: d0:bd:e6:ac:51:e4:a2:6f:a7:5f:6d:b2:97:52:47: 1d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A9:C5:E4:90:F0:64:D7:20:C0:23:7F:3C:DE:9F:FB:B5:73:D4:DD X509v3 Authority Key Identifier: keyid:C0:B1:60:39:C4:6C:DF:0C:88:D9:A7:4A:82:D9:E4:59:A3:A8:CA:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/B95648BA062211F09E5D020EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.176.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:50:ff:0d:75:9c:d6:8c:2b:d3:09:d0:77:17:fb:27:a1:97: 07:83:87:5c:9e:45:51:52:ba:96:0c:fc:b0:9a:72:27:b5:97: 81:0f:68:1d:6c:3e:ed:1d:16:66:75:16:50:91:84:94:a9:62: 54:7c:a2:84:e8:06:23:65:2b:00:23:18:7a:b3:eb:e2:b3:b1: b9:95:52:89:80:bd:d7:b9:8e:60:4d:10:4b:4f:e0:96:31:d4: 4b:b5:1c:e1:c8:69:bd:63:f9:e6:86:c0:d1:d0:cc:10:f5:9c: cf:2f:c9:51:8e:56:7f:33:05:55:7f:59:5e:a4:ed:0a:63:17: fa:d2:5e:20:8d:ff:d4:0a:fe:3a:9a:51:5f:81:90:27:26:eb: 77:b7:e5:94:4a:91:21:62:09:bb:36:f6:91:dd:db:15:e9:73: 65:97:b6:7b:9b:e2:4f:8e:a4:11:96:71:f3:5f:1d:03:72:62: 80:3e:f0:b9:0b:7a:7c:e7:ea:87:19:be:37:40:28:21:39:b2: 14:b4:97:f2:c0:84:c5:68:08:8c:18:f1:73:e7:2d:c8:99:10: 3f:3b:5e:19:d5:2a:b3:a8:5f:64:b1:10:39:fe:5a:7e:7c:07: f9:02:97:b0:d3:6f:42:3f:5c:a0:82:03:72:86:3d:94:a4:e6: 17:27:44:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5RUUxMTAvBgNVBAUTKEMwQjE2MDM5QzQ2Q0RGMEM4OEQ5QTc0QTgyRDlFNDU5 QTNBOENBRTYwHhcNMjUwMzIxMDcwNDI2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RkMGY3OS0yYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pGdZKXIcN5qW3mA8QG5ZLSYm99JZwt/jumEIylKdD7XoXFGRC2HRGmHM/hf 4XaTXGi1qzSmmZTTAcu77sqhg6l65mG8uxqfedoTOM7oSbvg4MJbiTev8V/3mdAm oReG5mEeTt7KLE4uw4o2WUsghv286WXdeGkh9nnskefedEasGUXmDd8hf1skJts1 RnEw/t5QcTMWiT0OuixqIvYe+I0jPCYlVso9B8GU3gl0wgS7RkyfxEB1lP15VqnA 7s28Ivvo+bXf+L9HdLc5NOu5BGZxHWl7S8qeu5vg1yUGrrkYbszHByn0GRBvYxHV p1HQveasUeSib6dfbbKXUkcdwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHKpxeSQ 8GTXIMAjfzzen/u1c9TdMB8GA1UdIwQYMBaAFMCxYDnEbN8MiNmnSoLZ5FmjqMrm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTlFRS9BMDhCNkE1Q0Qz NkExMUVCODhCMUVCMzNDNEY5QUUwMi93TEZnT2NSczN3eUkyYWRLZ3Rua1dhT295 dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dMRmdPY1JzM3d5STJhZEtndG5rV2FPb3l1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE5RUUvQTA4QjZBNUNEMzZBMTFFQjg4QjFFQjMzQzRGOUFFMDIvQjk1NjQ4QkEw NjIyMTFGMDlFNUQwMjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLA7AwDQYJKoZIhvcNAQELBQADggEBAF9Q/w11nNaMK9MJ 0HcX+yehlweDh1yeRVFSupYM/LCacie1l4EPaB1sPu0dFmZ1FlCRhJSpYlR8ooTo BiNlKwAjGHqz6+KzsbmVUomAvde5jmBNEEtP4JYx1Eu1HOHIab1j+eaGwNHQzBD1 nM8vyVGOVn8zBVV/WV6k7QpjF/rSXiCN/9QK/jqaUV+BkCcm63e35ZRKkSFiCbs2 9pHd2xXpc2WXtnub4k+OpBGWcfNfHQNyYoA+8LkLenzn6ocZvjdAKCE5shS0l/LA hMVoCIwY8XPnLciZED87XhnVKrOoX2SxEDn+Wn58B/kCl7DTb0I/XKCCA3KGPZSk 5hcnRNY= -----END CERTIFICATE-----Generated at Wed Apr 9 20:15:32 2025 by rpki-client