$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa File: 1AC9199AD3CB11EF84052053C4F9AE02.roa (raw, json) Hash identifier: vFaGBlF9+Zjf3Awaf+ms/PRalIKraIH0omeBdNCwy5s= Subject key identifier: 05:E4:0C:8A:78:A5:24:DF:63:D9:C1:88:C5:57:F8:35:AD:14:8A:88 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 2264 Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa Signing time: Thu 16 Jan 2025 05:37:55 +0000 ROA not before: Thu 16 Jan 2025 05:37:55 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141177 IP address blocks: 43.250.48.0/22 maxlen: 24 45.64.114.0/23 maxlen: 23 45.64.114.0/24 maxlen: 24 45.64.115.0/24 maxlen: 24 2404:7c00:2::/48 maxlen: 48 2404:7c00:10::/44 maxlen: 44 2404:7c00:20::/44 maxlen: 44 2404:7c00:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 15:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8804 (0x2264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333 Validity Not Before: Jan 16 05:37:55 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67889b33-290a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cd:d8:37:ff:3a:b3:ff:4d:92:d4:26:c2:63: 8f:e1:cd:7a:bb:ab:58:45:52:8f:95:8d:8e:23:70: 01:c6:18:52:13:aa:4d:56:45:48:14:b3:1e:27:1d: b5:0a:4d:c3:cb:72:07:bb:ba:2b:5d:42:1f:6f:0c: 3e:12:1e:23:b7:42:6a:27:fd:f0:90:58:e6:52:aa: 9c:d0:d7:f6:9b:41:ad:d3:e9:33:23:3a:dd:66:64: b4:7a:c0:66:c3:0b:d8:32:d0:c8:ca:31:44:b6:9b: 86:5f:b9:54:e9:a4:a7:66:ca:60:07:e1:f0:56:2c: 7b:15:2e:3a:41:f3:3e:ff:ea:dd:89:55:fb:3b:ea: 60:e9:4b:79:9c:da:c2:1d:61:56:ff:85:d7:07:70: 3b:c4:8e:ce:b8:fe:45:68:82:07:ae:5e:a9:78:32: 4f:93:53:3e:96:eb:42:38:f2:17:11:91:69:c4:73: 6b:c9:e5:ca:46:0a:9a:1c:3a:8b:8f:f8:64:f2:6f: 48:a9:15:c9:6a:ce:a5:46:31:1b:6a:cc:57:ed:4d: 88:20:72:72:b5:bd:7a:df:73:49:33:e2:5d:54:0b: 26:b4:7c:d3:ba:47:e8:1a:fe:69:e7:60:26:9f:d6: 16:4b:94:90:3a:70:9b:55:d7:1b:4e:f9:c9:05:fb: d2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E4:0C:8A:78:A5:24:DF:63:D9:C1:88:C5:57:F8:35:AD:14:8A:88 X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.48.0/22 45.64.114.0/23 IPv6: 2404:7c00:2::/48 2404:7c00:10::-2404:7c00:2f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c7:2e:cd:1c:11:0e:d2:dd:a0:2b:3e:33:61:11:08:ed:9d:18: ef:3b:1f:42:de:20:22:43:5f:e9:44:40:0c:05:97:b0:92:7c: 6c:34:55:0d:00:b9:b0:0d:df:69:b1:ec:be:d7:06:d5:d3:e1: 7c:13:a0:3c:11:7f:96:bd:9e:84:eb:ce:4d:90:29:65:fb:42: 46:73:34:b1:bf:61:5b:f7:15:4a:b4:8c:61:8d:12:e5:e1:fb: e5:29:78:e5:7a:f2:60:5f:ab:db:cd:3e:04:94:38:51:13:8e: 6b:9e:c8:5a:14:7b:55:f7:c1:e9:43:f7:5c:73:7a:e0:89:63: 56:7f:bd:d1:60:12:6d:c0:95:f9:d3:bb:3c:57:3a:e1:d4:6b: 2e:2d:f6:30:a1:41:f9:06:02:6b:33:f1:6a:c8:ca:0f:53:2d: 5e:6e:aa:7a:75:36:1c:d4:a0:80:f7:46:37:26:11:15:69:64: c2:aa:8e:9a:bc:c4:d7:46:38:a2:54:1c:bc:bf:e2:60:40:84: 8c:09:c2:e5:98:3f:80:ae:f8:bf:65:c3:f6:e8:16:72:87:f1: 2a:7d:2b:4d:5b:9e:0a:47:39:4e:fa:1e:42:2e:ef:86:c7:0d: 8b:6a:cd:3e:66:07:61:b6:59:d7:8e:51:14:33:61:b1:9b:94: 04:da:aa:06 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICImQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjUwMTE2MDUzNzU1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg4OWIzMy0yOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs83YN/86s/9NktQmwmOP4c16u6tYRVKPlY2OI3ABxhhSE6pNVkVIFLMeJx21 Ck3Dy3IHu7orXUIfbww+Eh4jt0JqJ/3wkFjmUqqc0Nf2m0Gt0+kzIzrdZmS0esBm wwvYMtDIyjFEtpuGX7lU6aSnZspgB+HwVix7FS46QfM+/+rdiVX7O+pg6Ut5nNrC HWFW/4XXB3A7xI7OuP5FaIIHrl6peDJPk1M+lutCOPIXEZFpxHNryeXKRgqaHDqL j/hk8m9IqRXJas6lRjEbasxX7U2IIHJytb1633NJM+JdVAsmtHzTukfoGv5p52Am n9YWS5SQOnCbVdcbTvnJBfvSEQIDAQABo4ICwDCCArwwHQYDVR0OBBYEFAXkDIp4 pSTfY9nBiMVX+DWtFIqIMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkzMzMvMDY1REEzQkFCODQ0MTFFNUI1MzU3QjJGQzRGOUFFMDIvMUFDOTE5OUFE M0NCMTFFRjg0MDUyMDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MBIEAgABMAwDBAIr+jADBAEtQHIwIwQCAAIwHQMHACQEfAAAAjASAwcEJAR8 AAAQAwcEJAR8AAAgMA0GCSqGSIb3DQEBCwUAA4IBAQDHLs0cEQ7S3aArPjNhEQjt nRjvOx9C3iAiQ1/pREAMBZewknxsNFUNALmwDd9psey+1wbV0+F8E6A8EX+WvZ6E 685NkCll+0JGczSxv2Fb9xVKtIxhjRLl4fvlKXjlevJgX6vbzT4ElDhRE45rnsha FHtV98HpQ/dcc3rgiWNWf73RYBJtwJX507s8Vzrh1GsuLfYwoUH5BgJrM/FqyMoP Uy1ebqp6dTYc1KCA90Y3JhEVaWTCqo6avMTXRjiiVBy8v+JgQISMCcLlmD+Arvi/ ZcP26BZyh/EqfStNW54KRzlO+h5CLu+Gxw2Las0+ZgdhtlnXjlEUM2Gxm5QE2qoG -----END CERTIFICATE-----Generated at Thu Mar 13 06:31:33 2025 by rpki-client