$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa File: CBAED530FE6A11ECAB640344C4F9AE02.roa (raw, json) Hash identifier: 8EmwRqTTi0D6Jqb1QQoQFecB/Y41qpXK3rVqh44z4W0= Subject key identifier: A4:10:B5:BD:36:F8:1E:CF:73:9D:78:C3:8B:EC:1F:0D:24:76:12:41 Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 1053 Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa Signing time: Fri 16 May 2025 17:51:21 +0000 ROA not before: Fri 16 May 2025 17:51:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139341 IP address blocks: 162.14.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4179 (0x1053) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974, serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: May 16 17:51:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68277b19-b184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:63:d7:75:49:af:af:5e:ec:08:25:c9:22:9f: 0b:a5:48:c0:59:cf:ea:4d:60:50:0b:ff:84:45:8d: 8e:6f:3e:82:90:2d:16:ad:57:67:0f:06:cd:c3:34: a0:aa:66:54:24:ad:8f:0c:a2:ca:7d:ef:18:25:d4: 37:f7:1e:91:6c:bf:85:1c:fb:a1:10:d4:b8:4a:da: 4f:2c:26:f1:9e:0a:6c:ac:a8:27:df:7f:a3:e7:b0: 93:c4:3f:3d:5b:6f:55:53:bf:23:ab:3c:43:24:7c: 31:c1:66:23:32:9c:09:80:e2:71:b1:dc:61:ac:76: cb:50:28:74:f2:f5:43:f6:df:0d:87:ce:62:30:27: da:3d:bc:1a:76:c5:61:44:b6:c1:62:80:03:e0:75: f1:3f:07:45:ae:1f:f6:68:9c:63:57:fd:b8:62:1e: dd:89:6a:8e:8a:65:1c:9e:6d:09:52:50:93:f1:a9: 76:5b:d7:fc:41:45:bb:ec:44:4d:ae:16:2d:14:1b: 70:2c:b4:53:0f:6b:12:ca:bb:52:86:bd:eb:03:0c: c8:50:9f:b9:d7:74:90:3e:1c:73:51:86:a8:b6:b1: af:5f:93:16:1c:52:eb:1d:e4:29:a6:89:a4:74:ab: 92:37:68:19:1b:d6:41:91:4d:ce:f7:21:6d:57:bb: 14:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:10:B5:BD:36:F8:1E:CF:73:9D:78:C3:8B:EC:1F:0D:24:76:12:41 X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 162.14.40.0/21 Signature Algorithm: sha256WithRSAEncryption 06:97:33:0c:f6:2f:66:7b:28:2f:f1:b4:7c:67:a5:7e:24:7f: 67:e8:6b:51:c3:da:a8:5f:9a:fb:f0:55:f2:67:ad:d8:8b:18: 8f:a4:8b:2f:01:cd:d7:80:ff:27:5d:d6:8b:39:35:27:c5:5e: c2:6d:cb:73:20:ff:82:e5:96:a1:24:2a:58:13:bc:60:bd:01: 10:34:87:f1:8a:55:9e:4b:54:d4:58:e7:6d:7f:9f:be:86:39: 02:4a:d2:45:73:f8:9b:d4:68:bb:25:1e:e3:7b:44:78:63:ac: 53:e2:fe:68:d3:c9:0d:82:07:4a:77:42:27:c9:af:8c:8f:b3: 73:cf:a2:5f:12:b9:64:98:9b:e2:df:77:45:89:52:a8:83:41: 7c:8c:5c:4f:72:bc:cd:b6:f2:a1:9a:6c:ec:68:8e:51:68:1b: 18:b9:e7:14:ad:ea:4b:55:1e:98:b3:cb:0a:3e:d4:c4:35:42: e5:fb:39:ca:60:63:87:f9:0d:21:41:29:9f:74:46:cf:ca:cc: db:b4:57:d8:e3:64:93:5e:31:ea:34:2b:6a:e8:d5:86:2f:80: 24:7d:a4:0a:9a:aa:c8:43:bf:ac:87:93:07:1a:26:86:d6:8e: 2c:e8:12:bc:1c:0a:77:8e:6a:1a:1d:bd:f9:b9:4e:e0:d2:e3: 27:5e:7e:ec -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjUwNTE2MTc1MTIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3N2IxOS1iMTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mPXdUmvr17sCCXJIp8LpUjAWc/qTWBQC/+ERY2Obz6CkC0WrVdnDwbNwzSg qmZUJK2PDKLKfe8YJdQ39x6RbL+FHPuhENS4StpPLCbxngpsrKgn33+j57CTxD89 W29VU78jqzxDJHwxwWYjMpwJgOJxsdxhrHbLUCh08vVD9t8Nh85iMCfaPbwadsVh RLbBYoAD4HXxPwdFrh/2aJxjV/24Yh7diWqOimUcnm0JUlCT8al2W9f8QUW77ERN rhYtFBtwLLRTD2sSyrtShr3rAwzIUJ+513SQPhxzUYaotrGvX5MWHFLrHeQppomk dKuSN2gZG9ZBkU3O9yFtV7sU9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKQQtb02 +B7Pc514w4vsHw0kdhJBMB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA5NzQvRTEwNUIzQkEzQTQ5MTFFOTk0MEYyRDE2QzRGOUFFMDIvQ0JBRUQ1MzBG RTZBMTFFQ0FCNjQwMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOiDigwDQYJKoZIhvcNAQELBQADggEBAAaXMwz2L2Z7KC/x tHxnpX4kf2foa1HD2qhfmvvwVfJnrdiLGI+kiy8BzdeA/ydd1os5NSfFXsJty3Mg /4LllqEkKlgTvGC9ARA0h/GKVZ5LVNRY521/n76GOQJK0kVz+JvUaLslHuN7RHhj rFPi/mjTyQ2CB0p3QifJr4yPs3PPol8SuWSYm+Lfd0WJUqiDQXyMXE9yvM228qGa bOxojlFoGxi55xSt6ktVHpizywo+1MQ1QuX7OcpgY4f5DSFBKZ90Rs/KzNu0V9jj ZJNeMeo0K2ro1YYvgCR9pAqaqshDv6yHkwcaJobWjizoErwcCneOahodvfm5TuDS 4ydefuw= -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:45 2025 by rpki-client