$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa File: 9DDCAB1AC9EC11EE9644540FC4F9AE02.roa (raw, json) Hash identifier: u6J6SPSNjElCImZDre2hX9rdBiRV9plYfnlpPbtxhQc= Subject key identifier: 22:A1:A4:5B:07:3F:DA:C9:7E:86:0D:06:C3:FF:17:CC:80:12:5C:5C Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: CB Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa Signing time: Mon 03 Mar 2025 07:29:24 +0000 ROA not before: Mon 03 Mar 2025 07:29:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17461 IP address blocks: 143.119.160.0/24 maxlen: 24 143.119.161.0/24 maxlen: 24 143.119.162.0/24 maxlen: 24 143.119.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9 Validity Not Before: Mar 3 07:29:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c55a54-39de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2b:08:ea:50:0a:0e:8c:76:87:f5:22:2a:c1: b0:be:9a:b4:82:64:2a:db:93:11:ad:e3:77:66:54: 2e:4a:4d:e6:a1:80:ed:60:39:3c:4c:2c:19:64:24: 78:68:90:23:92:e2:75:38:bd:f6:f9:4c:a8:c9:3c: 21:09:9c:83:e2:0c:cc:8f:57:6a:e5:1a:2b:cd:79: c9:39:31:2f:66:2c:86:85:45:de:c9:e1:40:3c:da: f1:4d:98:ec:41:42:24:af:38:77:83:dd:09:d3:1d: 9d:4d:e0:5a:5d:a6:0d:04:fe:78:7b:85:a0:32:02: 63:a6:a9:2f:e1:ff:c8:af:5a:64:22:90:31:62:9f: bf:72:94:6e:c5:10:7b:85:3d:97:52:3f:61:ad:c7: a9:2b:b2:e0:22:38:19:d9:55:3e:c9:b6:84:a6:ed: 09:fb:3a:ff:da:fd:0a:aa:59:cf:d9:24:71:c7:6d: e7:70:cd:39:e2:d0:0a:36:82:62:01:f5:1d:82:de: 88:fc:a5:cf:af:1e:c3:6e:49:9a:fd:ad:03:f1:6c: 67:65:42:6c:ae:c2:74:c6:d0:e3:86:a0:1a:da:18: 92:e3:60:1f:26:10:a7:13:16:23:3d:f7:c5:fa:54: f4:40:cb:d3:49:c2:c2:dc:98:37:81:16:5a:5b:22: 4a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A1:A4:5B:07:3F:DA:C9:7E:86:0D:06:C3:FF:17:CC:80:12:5C:5C X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9DDCAB1AC9EC11EE9644540FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.119.160.0/22 Signature Algorithm: sha256WithRSAEncryption b6:08:ae:1b:53:58:90:e1:1d:27:22:c9:15:c7:61:30:04:65: 69:be:4b:24:37:0d:ab:ec:76:9b:c3:8b:c9:c1:f7:e1:7e:89: 5c:e5:a8:5f:32:de:cd:d6:99:be:a5:30:11:14:1f:d7:5c:7b: 6d:45:59:9e:73:00:62:c3:cb:78:a1:07:8a:c7:21:3d:01:ad: a5:52:cd:7e:93:23:d8:18:a0:a3:05:dd:e6:7e:29:d9:63:43: 4e:b0:23:ae:63:d1:c7:28:9e:aa:47:5b:a9:ff:2f:fc:05:d4: 76:96:8e:cf:18:18:10:bf:e8:ad:4a:b8:f0:be:35:6e:b7:92: 9a:6e:9c:69:f4:96:c0:a4:d7:d6:ff:ab:1c:e9:b0:85:4b:e2: 11:d0:37:5a:62:a9:8d:33:49:e1:10:3a:95:7e:2d:71:9c:2c: ad:ec:a0:cf:be:b6:7c:f0:d9:a6:e1:73:39:97:41:5b:a7:43: ae:ed:fe:67:b1:93:77:43:00:5b:c0:60:f4:bd:bf:d8:96:bf: 6e:ff:dd:0c:d5:24:05:53:1f:dc:41:30:f4:b2:02:f4:f6:62: 73:3b:21:f2:1c:eb:9e:3e:24:ee:b0:35:97:a9:91:5d:a1:3b: 32:ee:3e:76:b2:e2:00:b6:3c:86:ce:49:9f:64:1a:ae:b8:f9: 79:f3:ca:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKEVDNjc4REUwRDdCQ0Y4MzlEOTk4QTBGQ0U1QzlFQjc1 RkZDODY3M0QwHhcNMjUwMzAzMDcyOTI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1NWE1NC0zOWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArisI6lAKDox2h/UiKsGwvpq0gmQq25MRreN3ZlQuSk3moYDtYDk8TCwZZCR4 aJAjkuJ1OL32+UyoyTwhCZyD4gzMj1dq5RorzXnJOTEvZiyGhUXeyeFAPNrxTZjs QUIkrzh3g90J0x2dTeBaXaYNBP54e4WgMgJjpqkv4f/Ir1pkIpAxYp+/cpRuxRB7 hT2XUj9hrcepK7LgIjgZ2VU+ybaEpu0J+zr/2v0KqlnP2SRxx23ncM054tAKNoJi AfUdgt6I/KXPrx7Dbkma/a0D8WxnZUJsrsJ0xtDjhqAa2hiS42AfJhCnExYjPffF +lT0QMvTScLC3Jg3gRZaWyJKEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCKhpFsH P9rJfoYNBsP/F8yAElxcMB8GA1UdIwQYMBaAFOxnjeDXvPg52Zig/OXJ63X/yGc9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS83RTJGMTI2OEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1EblptS0Q4NWNucmRmX0la ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1QzkvN0UyRjEyNjhDOUVCMTFFRThCODU3QjBDQzRGOUFFMDIvOUREQ0FCMUFD OUVDMTFFRTk2NDQ1NDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKPd6AwDQYJKoZIhvcNAQELBQADggEBALYIrhtTWJDhHSci yRXHYTAEZWm+SyQ3DavsdpvDi8nB9+F+iVzlqF8y3s3Wmb6lMBEUH9dce21FWZ5z AGLDy3ihB4rHIT0BraVSzX6TI9gYoKMF3eZ+KdljQ06wI65j0cconqpHW6n/L/wF 1HaWjs8YGBC/6K1KuPC+NW63kppunGn0lsCk19b/qxzpsIVL4hHQN1piqY0zSeEQ OpV+LXGcLK3soM++tnzw2abhczmXQVunQ67t/mexk3dDAFvAYPS9v9iWv27/3QzV JAVTH9xBMPSyAvT2YnM7IfIc654+JO6wNZepkV2hOzLuPnay4gC2PIbOSZ9kGq64 +Xnzyow= -----END CERTIFICATE-----Generated at Fri Apr 11 02:44:22 2025 by rpki-client