$ rpki-client -vvf rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/45A83CC809EE11EBAD92B66BC4F9AE02.roa File: 45A83CC809EE11EBAD92B66BC4F9AE02.roa (raw, json) Hash identifier: BMLck7ad8d48GKkf5hIYa+BMluvYHrRfqqVkHmYs2MI= Subject key identifier: 07:84:A2:6B:D2:23:50:4D:63:BF:35:6F:4E:91:EB:F0:8E:A9:AE:2A Certificate issuer: /CN=A9154B7E/serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Certificate serial: 0A8C Authority key identifier: EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/45A83CC809EE11EBAD92B66BC4F9AE02.roa Signing time: Wed 26 Mar 2025 19:29:59 +0000 ROA not before: Wed 26 Mar 2025 19:29:59 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18233 IP address blocks: 203.160.160.0/19 maxlen: 24 2400:8a81::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154B7E, serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Validity Not Before: Mar 26 19:29:59 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e455b7-0c42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ff:db:eb:f4:fd:41:15:a8:1f:3d:a1:56:ec: 2a:e0:09:b7:3d:e9:42:36:89:16:a0:9b:8f:7d:12: fa:d5:82:e6:be:56:38:22:08:13:eb:0a:37:2e:84: 11:21:10:9e:24:c8:87:a8:26:05:e6:ac:a1:21:30: de:80:68:30:d3:32:24:7d:4e:72:10:7b:5b:e1:42: d1:2a:43:ac:93:8d:91:8e:90:0b:5a:e4:aa:d1:2d: 05:54:64:d7:56:10:35:c5:fc:f6:16:31:c4:e7:85: 23:12:4f:2c:74:de:d8:c3:0d:02:79:7e:b4:c8:15: da:ce:f1:4a:98:9a:04:19:f9:ef:03:0a:d5:c4:63: 9b:90:71:67:02:9d:91:81:52:81:6a:17:74:ed:d3: 08:8f:a4:87:da:46:19:d5:c0:37:fc:89:0f:7d:46: fd:c5:13:8e:52:0b:1e:92:a6:b8:24:54:c9:76:18: e3:8e:c3:72:16:bf:27:c3:b8:fd:55:16:09:ed:fd: e2:df:b4:99:8e:4a:3f:1d:b9:71:e0:00:43:99:24: 3a:7c:04:36:72:ec:63:ee:6b:b0:27:eb:0d:9f:4c: 1d:d6:00:44:b4:7f:8b:92:ba:c6:62:72:21:27:fd: 25:51:2a:5c:7e:14:a0:79:46:1a:ce:f4:f3:89:39: 5f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:84:A2:6B:D2:23:50:4D:63:BF:35:6F:4E:91:EB:F0:8E:A9:AE:2A X509v3 Authority Key Identifier: keyid:EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/45A83CC809EE11EBAD92B66BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.160.160.0/19 IPv6: 2400:8a81::/32 Signature Algorithm: sha256WithRSAEncryption 56:fe:d4:7f:f0:11:17:73:58:32:c0:05:53:f7:e0:26:b5:ed: 28:cb:41:3e:47:49:ed:1c:81:74:ea:11:a5:cf:40:d2:39:7c: c2:1f:d1:95:a4:3c:8f:61:c5:88:76:b6:e8:57:bf:d5:3c:0a: 65:2f:99:1a:fc:2e:0e:31:ca:b9:6d:64:95:28:66:37:59:11: 98:0f:ee:eb:fd:a2:20:29:3e:3e:5d:d9:f2:1a:3a:92:33:53: d1:53:15:77:61:12:96:c9:fc:87:e9:23:b0:83:33:e5:17:77: 66:bf:27:0d:ff:1b:a9:f5:d9:ec:cd:86:6d:57:cf:cc:94:94: a7:8a:36:47:e4:5b:a0:3c:55:21:db:4e:69:f0:fb:a9:e2:39: d7:ae:d4:89:b3:79:5d:dd:97:0e:19:ec:8c:b5:42:e9:bd:c3: a7:c7:88:5e:fe:54:f1:e3:67:d0:68:76:92:f2:3a:fe:da:b1: bb:74:b6:6f:23:f0:9d:90:c3:0b:81:0c:a2:7a:1b:ea:c7:15: 41:43:e7:62:01:0a:da:3c:ab:4e:da:de:6d:15:ad:d1:f9:5a: 0b:6d:22:24:14:d4:0b:f1:e2:9a:1c:a4:32:63:cc:ee:5c:c8: be:b5:31:87:27:ce:88:32:fb:f4:ad:20:7c:b5:bd:e5:93:20: 8c:e3:9e:4f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRCN0UxMTAvBgNVBAUTKEVBRjE1MkJEMURENDcwRUY3M0E1MUQ0Qjk1MUQ0RkEw QUE0Q0NEOEUwHhcNMjUwMzI2MTkyOTU5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NTViNy0wYzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP/b6/T9QRWoHz2hVuwq4Am3PelCNokWoJuPfRL61YLmvlY4IggT6wo3LoQR IRCeJMiHqCYF5qyhITDegGgw0zIkfU5yEHtb4ULRKkOsk42RjpALWuSq0S0FVGTX VhA1xfz2FjHE54UjEk8sdN7Yww0CeX60yBXazvFKmJoEGfnvAwrVxGObkHFnAp2R gVKBahd07dMIj6SH2kYZ1cA3/IkPfUb9xROOUgsekqa4JFTJdhjjjsNyFr8nw7j9 VRYJ7f3i37SZjko/Hblx4ABDmSQ6fAQ2cuxj7muwJ+sNn0wd1gBEtH+LkrrGYnIh J/0lUSpcfhSgeUYazvTziTlfAQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAeEomvS I1BNY781b06R6/COqa4qMB8GA1UdIwQYMBaAFOrxUr0d1HDvc6UdS5UdT6CqTM2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEI3RS8zRjM1QzA4NDU5 MTUxMUVBQjNGMkExMkNDNEY5QUUwMi82dkZTdlIzVWNPOXpwUjFMbFIxUG9LcE16 WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ2RlN2UjNVY085enBSMUxsUjFQb0twTXpZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRCN0UvM0YzNUMwODQ1OTE1MTFFQUIzRjJBMTJDQzRGOUFFMDIvNDVBODNDQzgw OUVFMTFFQkFEOTJCNjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXLoKAwDQQCAAIwBwMFACQAioEwDQYJKoZIhvcNAQELBQAD ggEBAFb+1H/wERdzWDLABVP34Ca17SjLQT5HSe0cgXTqEaXPQNI5fMIf0ZWkPI9h xYh2tuhXv9U8CmUvmRr8Lg4xyrltZJUoZjdZEZgP7uv9oiApPj5d2fIaOpIzU9FT FXdhEpbJ/IfpI7CDM+UXd2a/Jw3/G6n12ezNhm1Xz8yUlKeKNkfkW6A8VSHbTmnw +6niOdeu1ImzeV3dlw4Z7Iy1Qum9w6fHiF7+VPHjZ9BodpLyOv7asbt0tm8j8J2Q wwuBDKJ6G+rHFUFD52IBCto8q07a3m0VrdH5WgttIiQU1Avx4pocpDJjzO5cyL61 MYcnzogy+/StIHy1veWTIIzjnk8= -----END CERTIFICATE-----Generated at Sun Apr 13 20:59:40 2025 by rpki-client