$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/2DAB7B74BE4211EE970F4140C4F9AE02.roa File: 2DAB7B74BE4211EE970F4140C4F9AE02.roa (raw, json) Hash identifier: 9uv33qCd79bYBodXMfJmbwWFz6eg4sXVPhBBvtjp6jc= Subject key identifier: 6E:55:72:56:A1:BA:3A:18:31:06:41:B8:7F:C1:CE:E3:80:C6:56:74 Certificate issuer: /CN=A9172BD3/serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Certificate serial: B6 Authority key identifier: 4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/2DAB7B74BE4211EE970F4140C4F9AE02.roa Signing time: Mon 09 Dec 2024 00:31:37 +0000 ROA not before: Mon 09 Dec 2024 00:31:37 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45442 IP address blocks: 164.75.64.0/20 maxlen: 20 164.75.96.0/20 maxlen: 20 164.75.112.0/20 maxlen: 20 164.75.128.0/24 maxlen: 24 164.75.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3 Validity Not Before: Dec 9 00:31:37 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67563a69-4439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e9:e7:b8:fe:c8:2c:07:fd:05:bf:2d:3f:42: de:e3:2e:fd:26:cf:65:c7:8c:8e:c2:8c:47:b3:c8: f7:ee:ec:b1:e1:ec:4c:8a:0e:a0:08:b0:7f:b6:e0: 38:3e:2f:96:f5:f8:cd:4a:64:a0:b8:87:07:6b:1c: 70:26:41:9a:32:82:08:0f:99:7f:c6:18:ba:ff:8f: a7:0b:74:8d:7f:59:7a:43:3d:01:e8:b1:5e:9a:ec: 12:08:11:5e:ea:d6:7f:e2:01:a5:c3:95:1d:ff:e7: 41:29:68:64:f7:76:c2:6a:59:86:bc:d9:ed:c6:95: 3c:3f:a2:70:1b:99:9c:43:2f:3a:19:6b:6b:87:48: ba:7d:af:db:2a:a8:58:96:0a:e3:0d:40:f8:7f:d6: c5:ed:c2:c5:d1:53:c2:7e:85:2a:d0:9f:5b:c3:ce: 7a:d5:a9:6a:6f:2a:4a:a9:0a:74:6f:2c:2b:a5:85: 7d:12:a0:e4:fd:29:20:a3:3f:b9:8c:09:76:f9:6a: b7:02:5c:d9:90:6f:b0:8f:79:47:96:ac:78:f9:e8: 58:00:44:ff:79:17:ec:28:31:4e:e9:7e:19:7f:80: ca:00:fc:04:0e:3f:82:b6:9a:f8:31:83:89:58:02: 9d:00:bc:70:f7:1c:87:e9:21:30:74:09:63:e1:f8: 02:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:55:72:56:A1:BA:3A:18:31:06:41:B8:7F:C1:CE:E3:80:C6:56:74 X509v3 Authority Key Identifier: keyid:4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/2DAB7B74BE4211EE970F4140C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.75.64.0/20 164.75.96.0-164.75.128.255 164.75.143.0/24 Signature Algorithm: sha256WithRSAEncryption 57:8c:da:5e:ec:26:cd:1b:80:d3:03:bb:09:9d:43:b3:cf:55: ce:17:9f:71:d7:c3:6d:14:40:1e:c6:09:e2:1c:ff:fb:50:46: fb:66:09:03:09:ba:f7:26:fc:86:33:f9:75:6f:af:d3:aa:7c: 53:eb:6c:1c:47:2b:d9:44:cb:98:d5:72:e0:51:f7:5c:cd:81: b9:b0:6c:83:e6:f0:da:52:b5:ac:31:12:78:ef:bd:f9:9f:58: 96:b8:d5:50:42:7b:2f:fc:46:5a:54:d0:e2:e7:4b:19:9e:77: d4:a2:5a:3a:d0:8c:7a:3d:50:7e:17:a3:52:2b:53:ca:aa:a6: bb:64:8c:7d:24:77:f0:28:26:70:13:d7:1a:97:fe:db:c0:dc: 2c:7a:da:0b:9b:ca:15:d5:3e:c9:6f:8b:be:19:10:bb:2b:c3: d3:72:1c:6d:83:05:47:6f:1a:ee:de:1a:2c:3c:d7:8e:46:c8: c9:3f:b0:99:10:a3:0a:ec:8d:81:8a:1d:74:d8:fe:59:1c:f5: b1:67:5f:ac:f8:d5:d4:27:2a:54:85:a2:f7:82:3c:01:23:ce: ad:2b:bf:57:ad:09:90:6f:e5:b3:c0:5f:da:7c:fa:03:bc:e0: 10:72:13:f7:46:6f:56:18:54:20:1b:de:3f:15:04:3c:f3:c6: 9f:e5:ea:d0 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCRDMxMTAvBgNVBAUTKDRCRTUwNjhCMzdCMTYzMjUzMEZGNTIyMzg2RTdCN0ZC MDE4OEU5RUEwHhcNMjQxMjA5MDAzMTM3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU2M2E2OS00NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwunnuP7ILAf9Bb8tP0Le4y79Js9lx4yOwoxHs8j37uyx4exMig6gCLB/tuA4 Pi+W9fjNSmSguIcHaxxwJkGaMoIID5l/xhi6/4+nC3SNf1l6Qz0B6LFemuwSCBFe 6tZ/4gGlw5Ud/+dBKWhk93bCalmGvNntxpU8P6JwG5mcQy86GWtrh0i6fa/bKqhY lgrjDUD4f9bF7cLF0VPCfoUq0J9bw8561alqbypKqQp0bywrpYV9EqDk/Skgoz+5 jAl2+Wq3AlzZkG+wj3lHlqx4+ehYAET/eRfsKDFO6X4Zf4DKAPwEDj+Ctpr4MYOJ WAKdALxw9xyH6SEwdAlj4fgCGQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFG5Vclah ujoYMQZBuH/BzuOAxlZ0MB8GA1UdIwQYMBaAFEvlBos3sWMlMP9SI4bnt/sBiOnq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkJEMy9FODBGMTM3Q0I5 OTIxMUVFQUI5RjFEMTlDNEY5QUUwMi9TLVVHaXpleFl5VXdfMUlqaHVlMy13R0k2 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1MtVUdpemV4WXlVd18xSWpodWUzLXdHSTZlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJCRDMvRTgwRjEzN0NCOTkyMTFFRUFCOUYxRDE5QzRGOUFFMDIvMkRBQjdCNzRC RTQyMTFFRTk3MEY0MTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBASkS0AwDAMEBaRLYAMEAKRLgAMEAKRLjzANBgkqhkiG9w0B AQsFAAOCAQEAV4zaXuwmzRuA0wO7CZ1Ds89VzhefcdfDbRRAHsYJ4hz/+1BG+2YJ Awm69yb8hjP5dW+v06p8U+tsHEcr2UTLmNVy4FH3XM2BubBsg+bw2lK1rDESeO+9 +Z9YlrjVUEJ7L/xGWlTQ4udLGZ531KJaOtCMej1QfhejUitTyqqmu2SMfSR38Cgm cBPXGpf+28DcLHraC5vKFdU+yW+LvhkQuyvD03IcbYMFR28a7t4aLDzXjkbIyT+w mRCjCuyNgYoddNj+WRz1sWdfrPjV1CcqVIWi94I8ASPOrSu/V60JkG/ls8Bf2nz6 A7zgEHIT90ZvVhhUIBvePxUEPPPGn+Xq0A== -----END CERTIFICATE-----Generated at Sat Apr 5 08:09:26 2025 by rpki-client