$ rpki-client -vvf rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/4801BE3EF3CF11EF93538346C4F9AE02.roa File: 4801BE3EF3CF11EF93538346C4F9AE02.roa (raw, json) Hash identifier: r5071xQo7/PgibLwPNn05K7+0v7I1Jv+CGRNijITcBs= Subject key identifier: 04:DD:F1:CD:5C:2A:49:61:1F:63:C0:9D:D6:69:5C:57:93:ED:43:31 Certificate issuer: /CN=A912A5D4/serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Certificate serial: 04 Authority key identifier: 66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/4801BE3EF3CF11EF93538346C4F9AE02.roa Signing time: Tue 25 Feb 2025 23:21:46 +0000 ROA not before: Tue 25 Feb 2025 23:21:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 8075 IP address blocks: 143.188.160.0/23 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A5D4 Validity Not Before: Feb 25 23:21:46 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67be508a-54d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d4:2f:b4:2c:89:e2:95:42:72:3f:83:85:49: ea:fe:58:74:dd:27:55:44:17:62:6e:02:13:de:37: 8d:95:a6:0e:52:0e:62:40:9b:f5:40:b2:67:0b:6f: 61:c8:8c:b8:4f:82:8c:fe:34:a4:a8:dd:05:d0:19: c7:62:11:d9:21:f2:75:1b:25:db:fa:ab:e5:fa:e1: 94:08:7a:13:a6:cb:18:7f:d4:8d:95:2e:8e:38:f1: 23:58:e3:97:cc:2d:e8:db:e8:9c:c0:a0:c4:34:0a: f0:a1:9f:9c:a5:c4:7d:d7:a9:4c:15:39:0d:03:57: 0c:d4:38:43:b0:29:74:f8:1d:bd:48:dd:de:db:ec: 40:bb:f1:d8:86:3d:6b:62:02:e7:9a:0e:31:f4:00: af:fd:57:8b:55:1b:8e:69:38:45:c2:5b:66:23:0c: 74:f4:17:f3:f9:66:2f:73:ca:ee:4e:77:16:2e:fe: c2:93:2e:25:bb:20:be:6d:10:05:7f:c3:3e:8d:cd: a0:d9:38:2a:ea:10:72:16:d7:65:18:82:18:1b:d4: 90:9d:84:0c:bf:1b:d3:20:44:b6:15:d5:da:3f:19: 77:96:fb:1e:9f:e6:00:4d:f3:6e:59:a2:12:ca:51: 8b:28:b5:ba:ff:75:a4:63:63:ff:ed:66:bf:f6:d0: 1e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:DD:F1:CD:5C:2A:49:61:1F:63:C0:9D:D6:69:5C:57:93:ED:43:31 X509v3 Authority Key Identifier: keyid:66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/4801BE3EF3CF11EF93538346C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.188.160.0/23 Signature Algorithm: sha256WithRSAEncryption 72:97:5f:94:ac:c7:5b:17:da:8a:a3:8b:68:a5:fc:8c:81:33: d1:1e:ea:62:02:81:f7:30:e9:5e:8d:af:59:58:ef:13:5a:0f: 0d:3e:6a:2e:37:4f:0f:a2:97:b1:25:61:07:e1:44:08:7a:a2: 31:10:25:6a:22:7d:62:e8:bd:85:5d:08:3d:a4:c4:c1:81:6d: fd:14:4b:6f:e6:9c:cd:8c:2d:da:d7:6d:14:bc:ec:e1:7d:23: 88:f1:e9:9c:c9:ee:b4:c9:61:29:2b:42:70:65:70:ad:4e:fc: 05:15:78:f3:ac:84:bc:f9:73:4b:76:32:c3:69:e0:c3:e7:b0: 9f:27:7d:57:38:e2:83:e9:28:d6:63:d9:34:8c:1f:7c:49:93: 78:05:3b:8c:c8:8a:85:ec:9c:ab:ab:39:22:e3:06:48:63:ea: a4:a0:9b:44:bc:0a:b4:e4:72:75:07:06:82:bf:a3:c7:b7:02: b8:f0:28:41:bb:3e:00:f8:49:00:ba:99:ed:17:ec:fe:ac:13: 60:97:c4:58:fd:df:ef:71:2e:6c:2d:64:0f:a4:e7:bf:a9:a9: be:55:ec:15:f2:3b:85:ba:ac:ab:2d:e4:05:a7:8a:f1:3c:39: c8:80:6c:8d:17:fc:59:f6:e6:c4:5a:e2:f2:21:cd:16:af:1e: 08:c6:db:8f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTVENDExMC8GA1UEBRMoNjYxMzREQTFCRkVEQUMwQzkxOUQyNkIxRjdGOUUxNjhB RjlEMkI0RTAeFw0yNTAyMjUyMzIxNDZaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YmU1MDhhLTU0ZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCT1C+0LInilUJyP4OFSer+WHTdJ1VEF2JuAhPeN42Vpg5SDmJAm/VAsmcLb2HI jLhPgoz+NKSo3QXQGcdiEdkh8nUbJdv6q+X64ZQIehOmyxh/1I2VLo448SNY45fM Lejb6JzAoMQ0CvChn5ylxH3XqUwVOQ0DVwzUOEOwKXT4Hb1I3d7b7EC78diGPWti AueaDjH0AK/9V4tVG45pOEXCW2YjDHT0F/P5Zi9zyu5OdxYu/sKTLiW7IL5tEAV/ wz6NzaDZOCrqEHIW12UYghgb1JCdhAy/G9MgRLYV1do/GXeW+x6f5gBN825ZohLK UYsotbr/daRjY//tZr/20B7/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBN3xzVwq SWEfY8Cd1mlcV5PtQzEwHwYDVR0jBBgwFoAUZhNNob/trAyRnSax9/nhaK+dK04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBNUQ0LzY1MEI0REU4RjND RTExRUY5MTRFRjY0NEM0RjlBRTAyL1poTk5vYl90ckF5Um5TYXg5X25oYUstZEsw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWmhOTm9iX3RyQXlSblNheDlfbmhhSy1kSzA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTVENC82NTBCNERFOEYzQ0UxMUVGOTE0RUY2NDRDNEY5QUUwMi80ODAxQkUzRUYz Q0YxMUVGOTM1MzgzNDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAY+8oDANBgkqhkiG9w0BAQsFAAOCAQEAcpdflKzHWxfaiqOL aKX8jIEz0R7qYgKB9zDpXo2vWVjvE1oPDT5qLjdPD6KXsSVhB+FECHqiMRAlaiJ9 Yui9hV0IPaTEwYFt/RRLb+aczYwt2tdtFLzs4X0jiPHpnMnutMlhKStCcGVwrU78 BRV486yEvPlzS3Yyw2ngw+ewnyd9Vzjig+ko1mPZNIwffEmTeAU7jMiKheycq6s5 IuMGSGPqpKCbRLwKtORydQcGgr+jx7cCuPAoQbs+APhJALqZ7Rfs/qwTYJfEWP3f 73EubC1kD6Tnv6mpvlXsFfI7hbqsqy3kBaeK8Tw5yIBsjRf8WfbmxFri8iHNFq8e CMbbjw== -----END CERTIFICATE-----Generated at Fri Apr 4 16:58:19 2025 by rpki-client