$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C6A9394ADEA211ED88586378C4F9AE02.roa File: C6A9394ADEA211ED88586378C4F9AE02.roa (raw, json) Hash identifier: XeOwCDJC/7tDXVlR92gvvBxO2ZkUMPl9GnCUEv+guSA= Subject key identifier: B1:1C:45:FD:07:45:0F:F0:98:E0:A5:58:13:05:BF:C4:C7:EA:B6:2E Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 34BB Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C6A9394ADEA211ED88586378C4F9AE02.roa Signing time: Fri 24 Jan 2025 14:50:32 +0000 ROA not before: Fri 24 Jan 2025 14:50:32 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 32787 IP address blocks: 202.153.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13499 (0x34bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A Validity Not Before: Jan 24 14:50:32 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6793a8b8-090d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8c:ca:a6:c3:3b:a6:81:f1:4e:34:09:81:0d: b6:69:42:90:bd:4c:84:49:01:5e:c8:10:50:5e:54: ff:19:4f:32:de:35:61:f7:72:0d:04:51:8f:49:af: 3f:9b:45:f0:5a:fe:15:30:24:a0:21:ce:60:09:f4: 07:49:cd:c4:c6:f8:15:45:01:b9:dd:ed:df:2c:a4: a1:46:38:2e:0d:fb:c3:56:5a:d0:29:e7:19:6a:ec: 16:82:4a:10:c3:83:06:1e:1d:aa:da:6b:9c:c9:1d: 5b:e8:f0:84:7e:44:0b:86:69:4e:3c:c6:9b:96:f8: 90:74:ff:2f:b6:3f:e1:8a:87:26:09:aa:54:52:08: c8:2f:f2:07:3d:58:88:e8:99:4c:c7:10:2c:4c:4a: 61:c8:19:5a:b8:5e:0e:1a:73:9f:11:2a:b2:82:9e: 8b:05:77:9c:41:68:4b:67:a5:17:cd:af:26:66:8f: 98:ae:a1:3d:f5:8e:14:12:56:e7:95:d9:05:ca:22: ee:4b:17:d5:7f:57:18:6a:9e:34:69:1b:cd:09:8b: 24:19:86:a4:f2:ad:80:7d:e9:7a:41:7e:a7:a5:81: 3f:06:b9:5c:28:54:60:78:b0:d5:28:cf:2d:bf:5c: a9:fe:51:6b:9a:16:05:43:97:81:4f:05:33:2d:da: 72:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1C:45:FD:07:45:0F:F0:98:E0:A5:58:13:05:BF:C4:C7:EA:B6:2E X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C6A9394ADEA211ED88586378C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.153.190.0/24 Signature Algorithm: sha256WithRSAEncryption 00:41:a3:e8:44:63:50:a6:87:9e:03:57:73:2c:b2:3c:18:eb: e6:29:47:23:7c:c0:a0:f1:4c:06:db:69:56:9c:59:68:f4:12: 67:f9:36:f6:97:dc:3d:fa:e7:4a:00:44:fb:1c:12:59:7e:9e: 63:96:4d:07:63:c0:5b:ab:a5:08:c1:ad:12:a9:83:79:06:85: f1:21:63:54:b5:05:cf:0c:97:c9:3f:dc:bf:4b:f4:4f:e6:d7: dc:a1:75:ea:01:48:13:60:ef:23:8a:4f:3c:1c:33:92:7c:d9: 2b:52:30:fd:87:60:47:94:49:5f:45:5a:5f:59:f1:49:20:29: b8:dd:a3:04:2a:62:7b:d3:b7:e4:dd:b1:8b:13:b4:88:fa:37: a9:b2:10:ee:5c:f1:a2:e6:bb:77:91:be:e3:19:cc:2c:0f:1b: e6:d8:09:d8:48:cf:64:09:8e:59:0b:e4:aa:d2:b0:f1:3a:2d: 17:26:9e:00:77:ae:e3:26:91:bf:8a:9d:e5:6e:9b:28:2f:ad: de:c7:c6:18:6f:9c:41:85:a7:90:a4:23:ce:4b:3e:33:3b:71: 62:72:65:d6:29:05:6c:ed:d4:bc:b7:67:73:d5:9f:18:ac:71: 10:64:b4:5c:e5:c0:b9:4b:20:7a:d2:db:86:30:2b:c9:3d:1c: 08:e2:f5:27 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjUwMTI0MTQ1MDMyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYThiOC0wOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IzKpsM7poHxTjQJgQ22aUKQvUyESQFeyBBQXlT/GU8y3jVh93INBFGPSa8/ m0XwWv4VMCSgIc5gCfQHSc3ExvgVRQG53e3fLKShRjguDfvDVlrQKecZauwWgkoQ w4MGHh2q2mucyR1b6PCEfkQLhmlOPMablviQdP8vtj/hiocmCapUUgjIL/IHPViI 6JlMxxAsTEphyBlauF4OGnOfESqygp6LBXecQWhLZ6UXza8mZo+YrqE99Y4UElbn ldkFyiLuSxfVf1cYap40aRvNCYskGYak8q2Afel6QX6npYE/BrlcKFRgeLDVKM8t v1yp/lFrmhYFQ5eBTwUzLdpyYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLEcRf0H RQ/wmOClWBMFv8TH6rYuMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvQzZBOTM5NEFE RUEyMTFFRDg4NTg2Mzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKmb4wDQYJKoZIhvcNAQELBQADggEBAABBo+hEY1Cmh54D V3MssjwY6+YpRyN8wKDxTAbbaVacWWj0Emf5NvaX3D3650oARPscEll+nmOWTQdj wFurpQjBrRKpg3kGhfEhY1S1Bc8Ml8k/3L9L9E/m19yhdeoBSBNg7yOKTzwcM5J8 2StSMP2HYEeUSV9FWl9Z8UkgKbjdowQqYnvTt+TdsYsTtIj6N6myEO5c8aLmu3eR vuMZzCwPG+bYCdhIz2QJjlkL5KrSsPE6LRcmngB3ruMmkb+KneVumygvrd7Hxhhv nEGFp5CkI85LPjM7cWJyZdYpBWzt1Ly3Z3PVnxiscRBktFzlwLlLIHrS24YwK8k9 HAji9Sc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:06:06 2025 by rpki-client