$ rpki-client -vvf rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/873C98E0DE5911ED826BDB39C4F9AE02.roa File: 873C98E0DE5911ED826BDB39C4F9AE02.roa (raw, json) Hash identifier: 499SL3b2qo6tqtvUtTvrd1ycmIPTXzG0Kk7YhvDP3Mk= Subject key identifier: 2A:05:69:25:84:89:1A:F9:69:9B:A3:96:4A:53:95:82:53:AC:7A:EE Certificate issuer: /CN=A9155AE4/serialNumber=3CF91608226819C3E9DA84D1195B5326F9249FBD Certificate serial: 028E Authority key identifier: 3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/873C98E0DE5911ED826BDB39C4F9AE02.roa Signing time: Sat 01 Mar 2025 03:55:10 +0000 ROA not before: Sat 01 Mar 2025 03:55:10 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.201.18.0/24 maxlen: 24 203.201.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 01:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155AE4 Validity Not Before: Mar 1 03:55:10 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c2851e-9225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f4:a3:cc:a9:7c:0a:01:6a:79:90:db:aa:50: c6:2b:b1:3a:25:66:54:63:a0:1c:ba:ab:15:3c:d8: a4:e7:0c:d1:12:ca:e4:66:d4:2f:75:1c:7e:bc:fd: 0e:ef:85:d4:90:39:c2:5d:9e:cf:10:21:35:b7:d7: 3a:67:27:5a:00:4d:29:11:38:b2:a8:04:1b:44:9c: df:f4:ab:3a:a6:47:a5:4b:81:f7:48:29:01:fd:c3: c2:ed:03:fe:2d:0c:82:54:b1:86:1b:54:86:6e:0f: d5:4e:28:1d:ad:8f:01:97:40:7e:ab:f5:66:51:72: 38:f6:cb:f7:8a:af:8e:0a:a4:38:68:fe:5b:b8:31: c0:ab:2a:d9:4f:e8:e8:4a:9e:d9:67:da:dc:40:60: 63:0a:28:d9:8a:c7:c4:f1:5f:b6:d2:78:8a:5b:65: 62:89:74:69:67:10:2d:42:f6:aa:c4:67:bc:d8:c9: e6:a0:d5:f0:77:dd:3c:d7:fa:7f:d7:88:ae:ca:ca: 8a:56:04:fd:56:b4:86:dd:a1:c2:26:1e:94:5a:67: e7:5d:2a:c5:bc:39:9c:23:f3:ef:fe:2e:ff:79:19: da:02:f5:d6:ea:12:f4:95:c8:25:12:c9:49:3f:48: e7:f8:ea:2a:fd:a8:21:67:fe:e9:23:31:4b:f7:5b: 89:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:05:69:25:84:89:1A:F9:69:9B:A3:96:4A:53:95:82:53:AC:7A:EE X509v3 Authority Key Identifier: keyid:3C:F9:16:08:22:68:19:C3:E9:DA:84:D1:19:5B:53:26:F9:24:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/PPkWCCJoGcPp2oTRGVtTJvkkn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PPkWCCJoGcPp2oTRGVtTJvkkn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155AE4/E5D6D0AC065311ED827BEF54C4F9AE02/873C98E0DE5911ED826BDB39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.201.18.0/24 203.201.30.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:ad:eb:c5:42:e6:02:49:ba:4d:bd:6d:4f:85:3e:17:5d:e6: f9:a1:9a:7e:fd:96:be:f8:8d:3d:ec:fb:f2:7d:a5:ee:5d:0e: 63:0a:bf:75:26:d0:56:8c:f1:e1:b1:6b:cf:99:58:d2:ef:60: d5:1f:4a:25:a7:0a:b3:aa:a3:28:dc:9c:f9:74:7b:9a:b3:c9: 59:c3:0a:59:98:da:7e:a9:a2:bd:1f:b4:f5:17:35:4c:39:a7: 33:1a:18:14:42:cd:3d:69:99:7f:c0:69:80:b6:47:c2:e8:63: 6b:b4:94:2a:99:51:d1:11:60:27:f0:78:85:8c:0d:47:5b:81: ae:97:93:4a:c2:25:e5:32:6e:36:e2:6b:81:f1:98:3f:c1:90: b3:a9:b1:d4:50:9f:4a:1b:dd:a6:55:5f:81:a5:47:e9:39:54: 08:6d:c2:18:93:d1:c3:04:ee:45:83:e7:99:fe:b8:5f:91:97: 29:fa:a6:8a:1f:26:31:aa:dd:62:14:4e:0f:e5:13:61:20:1c: 56:78:34:6c:13:c7:f5:55:29:8f:6f:4f:42:47:47:16:21:08: e5:5d:67:63:05:d1:ea:df:70:53:6a:71:68:10:96:c9:4b:27: e4:7e:13:a7:3a:9b:34:4f:83:e1:af:63:ab:82:47:25:35:c0: 37:4c:97:37 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVBRTQxMTAvBgNVBAUTKDNDRjkxNjA4MjI2ODE5QzNFOURBODREMTE5NUI1MzI2 RjkyNDlGQkQwHhcNMjUwMzAxMDM1NTEwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyODUxZS05MjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPSjzKl8CgFqeZDbqlDGK7E6JWZUY6AcuqsVPNik5wzREsrkZtQvdRx+vP0O 74XUkDnCXZ7PECE1t9c6ZydaAE0pETiyqAQbRJzf9Ks6pkelS4H3SCkB/cPC7QP+ LQyCVLGGG1SGbg/VTigdrY8Bl0B+q/VmUXI49sv3iq+OCqQ4aP5buDHAqyrZT+jo Sp7ZZ9rcQGBjCijZisfE8V+20niKW2ViiXRpZxAtQvaqxGe82MnmoNXwd9081/p/ 14iuysqKVgT9VrSG3aHCJh6UWmfnXSrFvDmcI/Pv/i7/eRnaAvXW6hL0lcglEslJ P0jn+Ooq/aghZ/7pIzFL91uJUQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCoFaSWE iRr5aZujlkpTlYJTrHruMB8GA1UdIwQYMBaAFDz5FggiaBnD6dqE0RlbUyb5JJ+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUFFNC9FNUQ2RDBBQzA2 NTMxMUVEODI3QkVGNTRDNEY5QUUwMi9QUGtXQ0NKb0djUHAyb1RSR1Z0VEp2a2tu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQa1dDQ0pvR2NQcDJvVFJHVnRUSnZra243MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTVBRTQvRTVENkQwQUMwNjUzMTFFRDgyN0JFRjU0QzRGOUFFMDIvODczQzk4RTBE RTU5MTFFRDgyNkJEQjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLyRIDBADLyR4wDQYJKoZIhvcNAQELBQADggEBAI+t68VC 5gJJuk29bU+FPhdd5vmhmn79lr74jT3s+/J9pe5dDmMKv3Um0FaM8eGxa8+ZWNLv YNUfSiWnCrOqoyjcnPl0e5qzyVnDClmY2n6por0ftPUXNUw5pzMaGBRCzT1pmX/A aYC2R8LoY2u0lCqZUdERYCfweIWMDUdbga6Xk0rCJeUybjbia4HxmD/BkLOpsdRQ n0ob3aZVX4GlR+k5VAhtwhiT0cME7kWD55n+uF+Rlyn6poofJjGq3WIUTg/lE2Eg HFZ4NGwTx/VVKY9vT0JHRxYhCOVdZ2MF0erfcFNqcWgQlslLJ+R+E6c6mzRPg+Gv Y6uCRyU1wDdMlzc= -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:22 2025 by rpki-client