$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/A3744A28149A11EDB9CF2F70C4F9AE02.roa File: A3744A28149A11EDB9CF2F70C4F9AE02.roa (raw, json) Hash identifier: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY= Subject key identifier: 75:FD:52:3B:45:4C:AF:B1:00:D9:0C:25:DC:6E:0A:E0:4A:3C:3C:D6 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 0776 Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/A3744A28149A11EDB9CF2F70C4F9AE02.roa Signing time: Wed 14 May 2025 16:05:39 +0000 ROA not before: Wed 14 May 2025 16:05:39 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132819 IP address blocks: 185.251.172.0/24 maxlen: 24 185.251.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 16:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1910 (0x776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: May 14 16:05:39 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6824bf52-093f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bb:af:39:2c:12:97:e8:11:8a:51:95:3b:cc: 58:8f:c0:e1:a2:50:bc:5c:e8:91:b6:1a:17:bb:92: 3f:d0:ed:0a:96:0c:aa:73:7d:10:6d:06:c4:14:83: bb:71:0a:01:1d:16:03:f0:78:f2:27:02:3f:93:43: 23:35:fb:47:2c:c3:31:63:8b:0e:65:0b:89:8e:83: a1:5e:fe:09:45:ec:e6:50:ad:c3:0f:e3:63:8e:db: 73:34:e8:91:98:0d:b7:80:21:a3:51:ec:81:c0:ce: b1:46:f1:0e:7f:66:89:f4:81:bc:98:f4:0c:27:8b: 63:dc:34:87:38:85:1e:cb:56:3c:1c:91:4b:d7:ba: c7:2a:56:27:da:72:38:b0:79:01:cb:db:27:81:81: 47:8f:e3:1c:c7:51:31:ab:78:9e:9f:d1:80:8c:d8: 7e:78:5c:c9:a2:d2:62:92:51:e0:a6:3f:cb:22:75: b5:60:30:c8:64:59:ca:7b:81:f6:20:3c:ac:77:69: 77:70:03:01:51:23:31:b0:cd:34:73:ae:ef:35:13: 17:76:16:3b:1e:52:5f:f6:e2:de:8e:a5:24:0f:48: 33:2d:3f:db:ad:66:65:34:ea:55:00:97:0d:68:2a: e8:07:7d:34:81:68:08:8f:51:92:9b:6e:22:e1:15: 1f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:FD:52:3B:45:4C:AF:B1:00:D9:0C:25:DC:6E:0A:E0:4A:3C:3C:D6 X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/A3744A28149A11EDB9CF2F70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.251.172.0/23 Signature Algorithm: sha256WithRSAEncryption a1:52:53:cc:3c:10:3b:45:36:09:e9:45:4f:5d:1c:a4:a6:db: e8:5e:db:a2:79:e9:5d:47:5d:17:17:2f:e5:9c:00:bd:7f:ac: 3e:61:e0:7d:dd:83:cb:e3:eb:ae:8f:7d:49:f2:03:f2:3d:65: 74:bc:65:35:60:ce:23:45:29:00:99:52:29:b2:25:20:f3:93: ca:4f:a5:b7:96:4d:42:5f:7b:8d:97:5f:c9:05:29:a7:2a:50: ae:db:86:c9:06:44:32:81:a7:63:9b:a6:eb:f9:c1:33:b2:45: 0d:0b:83:51:b5:be:d5:d8:26:e4:22:45:81:58:82:2f:34:3f: 58:87:d8:d8:fc:22:80:17:0f:61:2f:90:55:5d:61:76:3c:af: e4:ed:ab:fd:82:de:83:96:45:d0:95:e3:f7:ff:c7:8d:ef:58: ee:d6:a0:fe:33:9d:3a:55:ce:06:63:89:54:b5:10:d9:3d:0e: 8a:b2:3b:c0:5b:99:ae:69:ad:7e:9a:f0:74:13:f5:cf:3c:a3: 4d:0e:74:16:f0:16:27:f0:7b:49:f0:63:1a:3c:61:d9:3e:ae: 4a:5d:19:e0:9a:9c:42:fc:10:57:06:99:f5:c4:bf:c6:3e:ad: ab:04:49:17:d0:bc:86:10:c8:88:50:b7:15:9c:b5:93:2a:2d: 56:72:b7:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUwNTE0MTYwNTM5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0YmY1Mi0wOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7uvOSwSl+gRilGVO8xYj8DholC8XOiRthoXu5I/0O0Klgyqc30QbQbEFIO7 cQoBHRYD8HjyJwI/k0MjNftHLMMxY4sOZQuJjoOhXv4JRezmUK3DD+NjjttzNOiR mA23gCGjUeyBwM6xRvEOf2aJ9IG8mPQMJ4tj3DSHOIUey1Y8HJFL17rHKlYn2nI4 sHkBy9sngYFHj+Mcx1Exq3ien9GAjNh+eFzJotJiklHgpj/LInW1YDDIZFnKe4H2 IDysd2l3cAMBUSMxsM00c67vNRMXdhY7HlJf9uLejqUkD0gzLT/brWZlNOpVAJcN aCroB300gWgIj1GSm24i4RUfoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHX9UjtF TK+xANkMJdxuCuBKPDzWMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNCRkYvMEUyRUY1MzQxQTZBMTFFQjlGRDJEMzYzQzRGOUFFMDIvQTM3NDRBMjgx NDlBMTFFREI5Q0YyRjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAG5+6wwDQYJKoZIhvcNAQELBQADggEBAKFSU8w8EDtFNgnp RU9dHKSm2+he26J56V1HXRcXL+WcAL1/rD5h4H3dg8vj666PfUnyA/I9ZXS8ZTVg ziNFKQCZUimyJSDzk8pPpbeWTUJfe42XX8kFKacqUK7bhskGRDKBp2Obpuv5wTOy RQ0Lg1G1vtXYJuQiRYFYgi80P1iH2Nj8IoAXD2EvkFVdYXY8r+Ttq/2C3oOWRdCV 4/f/x43vWO7WoP4znTpVzgZjiVS1ENk9DoqyO8Bbma5prX6a8HQT9c88o00OdBbw Fifwe0nwYxo8Ydk+rkpdGeCanEL8EFcGmfXEv8Y+rasESRfQvIYQyIhQtxWctZMq LVZyt1I= -----END CERTIFICATE-----Generated at Thu Jun 5 18:37:54 2025 by rpki-client