$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa File: 2D973430340E11EDB5E9BC42C4F9AE02.roa (raw, json) Hash identifier: KM7uZ8V4nYgH56XPrIsS0TU+lQ74o7PGoNp9plcuH2g= Subject key identifier: B0:32:6E:BE:09:66:85:C1:3F:73:1D:2F:92:31:32:DC:75:84:BC:3F Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0A1D Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa Signing time: Wed 26 Mar 2025 20:30:38 +0000 ROA not before: Wed 26 Mar 2025 20:30:38 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 54994 IP address blocks: 203.168.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2589 (0xa1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172 Validity Not Before: Mar 26 20:30:38 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e463ee-6006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ac:02:e9:7a:4b:9d:40:4d:2c:cb:11:3a:b5: af:ab:fc:8a:75:60:fe:42:63:06:c3:c3:bb:5f:e4: f0:01:06:ab:97:92:67:be:46:3c:35:a9:ea:5d:c4: 1c:3b:a7:74:a2:c1:3c:37:d7:e4:06:30:80:08:41: bb:ad:8b:ae:31:54:18:73:9c:c2:57:5b:92:3e:6f: 03:8e:bd:98:c4:b8:51:1b:26:6d:76:32:72:27:1c: 68:aa:c0:38:f3:db:ba:a2:ed:7e:9d:3e:02:60:38: c6:0c:4f:ec:27:39:5f:be:98:87:e7:44:cf:b4:be: 72:3f:70:ed:76:a7:82:9f:07:3d:d3:99:a2:bf:39: 25:cc:d2:fc:1b:00:c6:19:be:20:fc:ac:5b:21:c9: ff:0a:79:b6:4c:11:54:e2:37:63:fb:bf:b9:1d:62: 4c:82:3d:26:41:20:e4:8a:01:d4:77:87:cd:9b:37: 5b:b0:ad:f8:b2:ba:fa:d2:6a:75:d7:9f:1e:5f:57: fb:72:ff:f6:e6:69:da:18:05:66:22:58:e7:cb:57: fa:86:4a:e0:6a:23:ad:69:1e:ba:71:50:f7:25:d6: 38:0f:b9:e1:04:ce:05:7e:9c:7d:a7:20:4b:5a:5a: 2c:43:d8:3e:74:1b:22:ad:d2:e0:62:c9:1b:3f:d7: 0f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:32:6E:BE:09:66:85:C1:3F:73:1D:2F:92:31:32:DC:75:84:BC:3F X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.168.252.0/24 Signature Algorithm: sha256WithRSAEncryption 97:8f:66:14:f3:a6:e9:e5:13:f7:cc:af:1f:e7:28:67:be:f0: ca:99:e8:d5:28:c5:11:a9:bd:e4:94:c4:dd:2e:35:36:82:e2: 26:9d:dd:f3:3a:b0:57:48:78:d2:9b:d2:0e:f2:75:96:f9:ee: 39:20:a4:da:24:54:09:cc:c8:5d:45:69:17:58:c2:51:17:cb: 1f:3c:64:fe:e7:0c:4c:7a:d8:d3:c1:80:ea:8b:a1:6b:19:3f: 56:4b:c3:a3:3e:78:dc:3e:b1:b5:1f:48:a5:c8:fa:72:14:f2: 86:7c:9c:ed:4d:d0:c0:87:47:3b:99:41:f6:67:d0:47:be:11: 25:ce:c6:a7:d1:e9:be:dd:2e:ed:5e:d0:38:57:5a:ee:31:21: 01:4e:cc:2f:b4:c4:79:65:96:4b:7c:f7:85:a6:4d:3e:53:84: 3d:c8:b9:cc:71:77:22:ee:c7:fb:56:29:e0:4c:3a:4c:21:7b: 7a:c1:48:bc:b6:8c:51:cd:fd:c7:eb:30:58:ac:dc:25:3a:0e: 40:e2:d8:64:9d:f6:d7:e3:45:3f:2b:c6:3d:fc:e2:fe:04:22: 18:6c:90:e9:2e:5d:27:d9:71:f1:5b:a6:4e:82:d7:36:85:4f: ee:73:e8:db:a1:20:46:c6:3f:51:84:30:65:98:e6:c8:1d:83: 0c:29:de:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUwMzI2MjAzMDM4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NjNlZS02MDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6wC6XpLnUBNLMsROrWvq/yKdWD+QmMGw8O7X+TwAQarl5JnvkY8NanqXcQc O6d0osE8N9fkBjCACEG7rYuuMVQYc5zCV1uSPm8Djr2YxLhRGyZtdjJyJxxoqsA4 89u6ou1+nT4CYDjGDE/sJzlfvpiH50TPtL5yP3DtdqeCnwc905mivzklzNL8GwDG Gb4g/KxbIcn/Cnm2TBFU4jdj+7+5HWJMgj0mQSDkigHUd4fNmzdbsK34srr60mp1 158eX1f7cv/25mnaGAVmIljny1f6hkrgaiOtaR66cVD3JdY4D7nhBM4Ffpx9pyBL WlosQ9g+dBsirdLgYskbP9cPjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLAybr4J ZoXBP3MdL5IxMtx1hLw/MB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvMkQ5NzM0MzAz NDBFMTFFREI1RTlCQzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLqPwwDQYJKoZIhvcNAQELBQADggEBAJePZhTzpunlE/fM rx/nKGe+8MqZ6NUoxRGpveSUxN0uNTaC4iad3fM6sFdIeNKb0g7ydZb57jkgpNok VAnMyF1FaRdYwlEXyx88ZP7nDEx62NPBgOqLoWsZP1ZLw6M+eNw+sbUfSKXI+nIU 8oZ8nO1N0MCHRzuZQfZn0Ee+ESXOxqfR6b7dLu1e0DhXWu4xIQFOzC+0xHlllkt8 94WmTT5ThD3IucxxdyLux/tWKeBMOkwhe3rBSLy2jFHN/cfrMFis3CU6DkDi2GSd 9tfjRT8rxj384v4EIhhskOkuXSfZcfFbpk6C1zaFT+5z6NuhIEbGP1GEMGWY5sgd gwwp3nk= -----END CERTIFICATE-----Generated at Sat Apr 5 10:30:25 2025 by rpki-client