$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B4B1A742BE4C11EEB1327A54C4F9AE02.roa File: B4B1A742BE4C11EEB1327A54C4F9AE02.roa (raw, json) Hash identifier: oyubRpGqXRPhXUbHGDMN11nyLcbaEyRpquXs/6vcD1s= Subject key identifier: 15:3E:84:6F:B5:A8:3F:73:4B:AD:90:69:43:AA:42:99:E1:E0:E2:7A Certificate issuer: /CN=A9132B4D/serialNumber=23F5D93A82E7D7840679B1C64DA37C37CFFE77EF Certificate serial: 0667 Authority key identifier: 23:F5:D9:3A:82:E7:D7:84:06:79:B1:C6:4D:A3:7C:37:CF:FE:77:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B4B1A742BE4C11EEB1327A54C4F9AE02.roa Signing time: Fri 30 May 2025 23:33:40 +0000 ROA not before: Fri 30 May 2025 23:33:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9231 IP address blocks: 58.82.192.0/19 maxlen: 24 58.82.224.0/19 maxlen: 24 103.15.84.0/22 maxlen: 24 161.81.0.0/16 maxlen: 24 182.239.72.0/21 maxlen: 24 182.239.80.0/20 maxlen: 24 182.239.104.0/21 maxlen: 24 182.239.112.0/20 maxlen: 24 203.142.97.0/24 maxlen: 24 203.142.98.0/24 maxlen: 24 203.142.99.0/24 maxlen: 24 203.142.127.0/24 maxlen: 24 223.122.0.0/18 maxlen: 24 223.122.64.0/18 maxlen: 24 223.122.128.0/17 maxlen: 24 2401:3000::/36 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.crl rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B4D, serialNumber=23F5D93A82E7D7840679B1C64DA37C37CFFE77EF Validity Not Before: May 30 23:33:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a4054-7c6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:49:4c:ec:05:1a:66:15:64:0f:89:53:d9:aa: af:9c:1c:3f:18:aa:48:56:bc:c4:77:ba:92:3c:88: 15:a0:19:a0:35:86:fc:cf:c8:46:f8:0c:93:c7:23: 24:3f:cb:9a:06:a3:05:19:6b:52:b9:c6:59:4e:d8: 09:ac:72:08:2e:0e:03:bd:c6:1d:34:eb:c9:cf:e9: 99:74:57:61:a5:72:1d:e5:62:75:5f:21:05:29:eb: 4d:77:eb:e9:66:8a:6b:85:eb:3b:86:b0:57:ab:fb: 3b:41:09:3c:b2:c7:88:36:ce:dc:47:d4:39:4b:1a: 1e:2f:32:33:c5:75:2a:02:cb:b0:58:2a:57:8a:cb: 5d:56:ad:eb:cf:ef:20:f9:e4:8c:fc:a4:3d:e0:ec: 63:06:76:f7:b5:ec:44:89:84:2f:09:47:4d:b8:a1: 9c:05:41:39:eb:ba:c3:51:70:e6:43:52:12:75:b3: b9:92:31:24:9f:5e:b5:43:d6:7c:5a:16:05:d3:78: 92:22:27:cc:8f:fe:eb:d5:82:84:c0:7e:cb:1b:a7: dc:28:11:51:06:2a:c9:fd:22:69:75:5f:c3:cc:c4: 2e:79:eb:06:f8:99:93:5a:14:04:47:4f:72:ce:3b: fe:ef:1f:4f:87:8a:f6:64:4f:b0:b4:72:51:2d:de: 2b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3E:84:6F:B5:A8:3F:73:4B:AD:90:69:43:AA:42:99:E1:E0:E2:7A X509v3 Authority Key Identifier: keyid:23:F5:D9:3A:82:E7:D7:84:06:79:B1:C6:4D:A3:7C:37:CF:FE:77:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B4B1A742BE4C11EEB1327A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.82.192.0/18 103.15.84.0/22 161.81.0.0/16 182.239.72.0-182.239.95.255 182.239.104.0-182.239.127.255 203.142.97.0-203.142.99.255 203.142.127.0/24 223.122.0.0/16 IPv6: 2401:3000::/36 Signature Algorithm: sha256WithRSAEncryption 5a:91:40:a1:80:01:84:22:53:15:92:b7:29:f4:ca:4a:b6:9b: ba:6c:6c:bd:9c:fb:36:2f:f7:1f:ac:dd:a4:40:e0:5f:66:6b: 19:f8:98:d2:c7:2c:0d:9c:b2:95:ab:a1:ea:71:51:2e:c0:ae: 7d:f7:7d:b4:78:3e:8e:98:80:59:74:33:bb:c5:82:9f:51:2d: e9:d7:54:a5:7a:65:82:aa:83:1c:c5:ad:be:f6:76:14:1e:13: ae:5d:cd:8f:e6:57:c0:95:5a:40:7a:07:be:96:c0:7d:7e:d8: d5:49:c6:da:4c:d7:6f:52:f5:08:f7:c5:66:b8:26:3e:4c:99: 50:57:3f:b4:70:fc:1f:d0:85:b4:01:4b:6d:f2:fa:57:47:95: 54:31:6f:a4:bd:f6:85:f5:11:60:fa:e5:cb:20:1a:7c:83:e8: d6:e6:04:85:7a:c0:dd:7d:ac:c5:7a:4a:c2:4f:95:9d:ab:2e: 8d:d5:a9:ba:33:3b:d4:f1:ba:96:25:02:c4:5d:81:04:50:9a: 31:04:b5:00:f6:e7:33:4c:c1:dd:13:53:52:d3:dd:64:cd:f2: 50:39:39:23:a8:e2:94:92:2c:c8:5a:0e:6b:eb:71:59:a4:09: b3:c9:6f:aa:13:b1:7c:74:23:ec:65:ca:4b:28:61:75:70:08: f1:a9:e5:78 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCNEQxMTAvBgNVBAUTKDIzRjVEOTNBODJFN0Q3ODQwNjc5QjFDNjREQTM3QzM3 Q0ZGRTc3RUYwHhcNMjUwNTMwMjMzMzQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhNDA1NC03YzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4klM7AUaZhVkD4lT2aqvnBw/GKpIVrzEd7qSPIgVoBmgNYb8z8hG+AyTxyMk P8uaBqMFGWtSucZZTtgJrHIILg4DvcYdNOvJz+mZdFdhpXId5WJ1XyEFKetNd+vp Zoprhes7hrBXq/s7QQk8sseINs7cR9Q5SxoeLzIzxXUqAsuwWCpXistdVq3rz+8g +eSM/KQ94OxjBnb3texEiYQvCUdNuKGcBUE567rDUXDmQ1ISdbO5kjEkn161Q9Z8 WhYF03iSIifMj/7r1YKEwH7LG6fcKBFRBirJ/SJpdV/DzMQueesG+JmTWhQER09y zjv+7x9Ph4r2ZE+wtHJRLd4rIQIDAQABo4IC5TCCAuEwHQYDVR0OBBYEFBU+hG+1 qD9zS62QaUOqQpnh4OJ6MB8GA1UdIwQYMBaAFCP12TqC59eEBnmxxk2jfDfP/nfv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkI0RC9DMTk5RTAwNkIy MDUxMUVCQUVBRTlGMTBDNEY5QUUwMi9JX1haT29MbjE0UUdlYkhHVGFOOE44Xy1k LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lfWFpPb0xuMTRRR2ViSEdUYU44TjhfLWQtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCNEQvQzE5OUUwMDZCMjA1MTFFQkFFQUU5RjEwQzRGOUFFMDIvQjRCMUE3NDJC RTRDMTFFRUIxMzI3QTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbwYIKwYBBQUHAQcBAf8E YDBeMEwEAgABMEYDBAY6UsADBAJnD1QDAwChUTAMAwQDtu9IAwQFtu9AMAwDBAO2 72gDBAe27wAwDAMEAMuOYQMEAsuOYAMEAMuOfwMDAN96MA4EAgACMAgDBgQkATAA ADANBgkqhkiG9w0BAQsFAAOCAQEAWpFAoYABhCJTFZK3KfTKSrabumxsvZz7Ni/3 H6zdpEDgX2ZrGfiY0scsDZyylauh6nFRLsCuffd9tHg+jpiAWXQzu8WCn1Et6ddU pXplgqqDHMWtvvZ2FB4Trl3Nj+ZXwJVaQHoHvpbAfX7Y1UnG2kzXb1L1CPfFZrgm PkyZUFc/tHD8H9CFtAFLbfL6V0eVVDFvpL32hfURYPrlyyAafIPo1uYEhXrA3X2s xXpKwk+VnasujdWpujM71PG6liUCxF2BBFCaMQS1APbnM0zB3RNTUtPdZM3yUDk5 I6jilJIsyFoOa+txWaQJs8lvqhOxfHQj7GXKSyhhdXAI8anleA== -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:57 2025 by rpki-client