$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/7D164B822A2811F0819D8C13C4F9AE02.roa File: 7D164B822A2811F0819D8C13C4F9AE02.roa (raw, json) Hash identifier: mDNZv224II9doQ1iNCGuKTRk+eFwgECKzo+AWal5Fq0= Subject key identifier: 13:7D:64:BC:CF:15:FE:4F:CB:6C:4A:C0:3E:56:A8:DF:5A:99:75:B9 Certificate issuer: /CN=A9165DB1/serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Certificate serial: 0269 Authority key identifier: 86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/7D164B822A2811F0819D8C13C4F9AE02.roa Signing time: Tue 06 May 2025 03:16:23 +0000 ROA not before: Tue 06 May 2025 03:16:23 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 203.4.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165DB1, serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Validity Not Before: May 6 03:16:23 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=68197f07-90da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a1:1b:99:e8:ac:97:86:ed:8c:b7:73:63:26: f5:5d:d3:6a:f3:90:63:fc:b9:95:f3:6f:4f:11:22: 07:ab:ac:ef:1d:1a:d1:4f:99:c8:d8:d8:b6:cf:d4: 57:56:e5:33:a0:64:32:6c:3e:17:18:c9:7c:98:b1: 18:99:97:97:c4:59:dc:73:51:0f:d3:5d:5a:10:36: f7:0c:23:bf:74:3e:e9:10:51:aa:88:13:0b:53:26: d6:64:0e:c5:35:4d:59:1c:7c:69:b0:b8:9c:3b:8d: ff:44:62:02:0e:3b:46:fa:50:2e:99:c2:8e:f9:92: d8:5d:44:79:55:18:a4:2a:56:f8:b5:72:e7:98:ff: 2b:71:f8:8a:c0:39:01:c4:1b:54:75:96:e7:08:e5: f8:5c:6b:13:89:84:17:bd:c8:61:a5:f2:29:a7:84: 9a:3b:57:a7:10:a8:b4:20:16:be:dd:e3:ee:ea:d9: f7:f5:79:3c:9a:3e:41:27:f6:62:3a:bd:8d:f7:36: 1e:9f:e3:92:bd:8f:17:b7:55:1d:5c:1c:44:f2:7d: 54:33:07:18:40:98:83:c4:11:fc:a3:5e:69:fc:bd: 41:30:80:8f:ec:5c:ff:64:16:79:04:36:5a:ac:4e: 58:1e:96:a0:69:2a:5c:fa:14:13:89:24:72:40:37: 25:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7D:64:BC:CF:15:FE:4F:CB:6C:4A:C0:3E:56:A8:DF:5A:99:75:B9 X509v3 Authority Key Identifier: keyid:86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/7D164B822A2811F0819D8C13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.146.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:3b:57:b6:98:da:4a:81:fd:94:05:a5:7f:d9:44:f6:56:ab: c4:e7:15:1c:13:4e:b0:a5:1a:58:43:11:8e:36:00:42:bf:7f: 20:64:63:f3:ec:2b:08:1c:e2:3c:39:3e:77:59:aa:c2:6a:3a: 0a:b5:25:01:1e:9e:b2:5e:ac:74:bd:3a:07:6b:4e:78:8c:84: 76:a7:7a:20:81:a8:f8:fb:ad:65:4e:0c:3f:01:13:9b:3b:4e: 56:37:4e:48:49:ee:41:5c:32:42:72:42:d1:d6:f4:a2:b4:54: b5:d0:c6:b6:2f:f0:cb:9a:24:e4:01:c0:ba:85:c9:cd:5a:c0: cc:dc:a4:25:d6:2a:40:14:17:3b:f9:5d:c1:d7:41:e1:6e:bc: 73:eb:13:0f:35:a6:c8:ff:04:98:d8:53:de:97:91:50:e4:fb: 50:3c:d9:e4:03:d1:8e:2a:95:5d:2e:ff:7f:50:fe:34:f6:cb: 10:af:38:77:eb:38:96:cf:d1:b9:c5:c2:ac:fc:5c:01:7a:7a: 04:19:5f:67:4a:06:34:db:cb:3b:1b:34:64:14:32:dd:cf:4b: 73:aa:6f:22:0d:de:b5:66:78:31:dd:03:12:6c:a5:cd:0e:81: 68:7b:a7:c2:51:bd:8e:f4:9e:ea:af:84:85:5a:2d:c3:82:ab: d1:ea:3a:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVEQjExMTAvBgNVBAUTKDg2ODZDOTJCODdERDVERDJFRTJBQkI0MEVDNzNGMTc4 RjYwNDVBMzQwHhcNMjUwNTA2MDMxNjIzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE5N2YwNy05MGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqEbmeisl4btjLdzYyb1XdNq85Bj/LmV829PESIHq6zvHRrRT5nI2Ni2z9RX VuUzoGQybD4XGMl8mLEYmZeXxFncc1EP011aEDb3DCO/dD7pEFGqiBMLUybWZA7F NU1ZHHxpsLicO43/RGICDjtG+lAumcKO+ZLYXUR5VRikKlb4tXLnmP8rcfiKwDkB xBtUdZbnCOX4XGsTiYQXvchhpfIpp4SaO1enEKi0IBa+3ePu6tn39Xk8mj5BJ/Zi Or2N9zYen+OSvY8Xt1UdXBxE8n1UMwcYQJiDxBH8o15p/L1BMICP7Fz/ZBZ5BDZa rE5YHpagaSpc+hQTiSRyQDclcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBN9ZLzP Ff5Py2xKwD5WqN9amXW5MB8GA1UdIwQYMBaAFIaGySuH3V3S7iq7QOxz8Xj2BFo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NURCMS81QTQ5NkY4ODBF MTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhkTHVLcnRBN0hQeGVQWUVX alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvYkpLNGZkWGRMdUtydEE3SFB4ZVBZRVdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVEQjEvNUE0OTZGODgwRTE3MTFFRDhFM0JEOTE1QzRGOUFFMDIvN0QxNjRCODIy QTI4MTFGMDgxOUQ4QzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLBJIwDQYJKoZIhvcNAQELBQADggEBAIo7V7aY2kqB/ZQF pX/ZRPZWq8TnFRwTTrClGlhDEY42AEK/fyBkY/PsKwgc4jw5PndZqsJqOgq1JQEe nrJerHS9OgdrTniMhHaneiCBqPj7rWVODD8BE5s7TlY3TkhJ7kFcMkJyQtHW9KK0 VLXQxrYv8MuaJOQBwLqFyc1awMzcpCXWKkAUFzv5XcHXQeFuvHPrEw81psj/BJjY U96XkVDk+1A82eQD0Y4qlV0u/39Q/jT2yxCvOHfrOJbP0bnFwqz8XAF6egQZX2dK BjTbyzsbNGQUMt3PS3OqbyIN3rVmeDHdAxJspc0OgWh7p8JRvY70nuqvhIVaLcOC q9HqOqg= -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:23 2025 by rpki-client