$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/D47B21C24FFE11EAA0E4ED42C4F9AE02.roa File: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (raw, json) Hash identifier: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI= Subject key identifier: 3A:55:C2:F5:7D:72:9A:E7:84:1A:25:05:7B:11:D0:B2:A3:83:1D:72 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0C72 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/D47B21C24FFE11EAA0E4ED42C4F9AE02.roa Signing time: Wed 12 Feb 2025 19:27:06 +0000 ROA not before: Wed 12 Feb 2025 19:27:06 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 24373 IP address blocks: 45.119.4.0/23 maxlen: 23 45.119.4.0/24 maxlen: 24 103.133.93.0/24 maxlen: 24 203.34.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3186 (0xc72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5 Validity Not Before: Feb 12 19:27:06 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67acf60a-f20e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6f:cb:d7:93:94:6f:1d:8c:2a:14:96:bc:42: 52:b3:d5:db:ed:6f:8a:08:07:cc:69:20:dc:77:15: 1d:27:52:bc:71:36:73:86:d3:b7:f6:54:54:3c:4b: f9:c9:b0:ef:90:ca:a2:fc:3c:42:77:c1:07:7b:ef: 3e:01:b9:88:fe:37:72:c9:3c:50:5e:d5:ff:f3:d1: a6:a7:20:a6:3f:76:59:84:21:f3:82:5e:6a:b0:e8: dc:f4:89:a7:6b:d1:57:1c:81:29:cc:c2:7d:64:56: 1d:91:cc:78:bf:c0:fd:a9:b9:32:da:88:f0:5d:b0: a8:d8:05:44:13:67:08:4e:1d:32:20:ce:5e:08:ac: be:26:4e:59:52:5b:9a:1c:91:12:d9:9f:71:dc:a1: 6f:42:00:6b:4b:d2:cf:63:9d:22:44:46:74:78:92: 7a:80:d6:de:8a:91:2b:0d:71:7a:f4:ae:ef:f2:7a: f1:11:1c:cc:09:8c:57:c6:cf:98:c6:aa:25:25:1b: ad:b3:1a:83:d4:bb:c5:e4:41:27:6c:93:a6:23:44: 0b:e2:1f:96:8e:d4:65:4a:1c:f0:13:39:a2:3f:81: 4b:48:06:3c:1c:ff:d0:a0:23:43:b3:dd:44:bb:bc: 56:04:ce:0d:6c:13:67:a7:79:00:93:3d:e5:52:5e: a6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:55:C2:F5:7D:72:9A:E7:84:1A:25:05:7B:11:D0:B2:A3:83:1D:72 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/D47B21C24FFE11EAA0E4ED42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.4.0/23 103.133.93.0/24 203.34.110.0/24 Signature Algorithm: sha256WithRSAEncryption 67:0d:59:ca:52:33:56:b7:e9:d4:f0:6c:9b:51:2e:cc:13:76: e0:24:48:f3:18:4a:e4:49:9b:f9:e7:fd:c3:8d:09:05:92:05: 6b:23:9d:7f:71:30:65:76:fd:56:e9:2b:d6:a8:cd:34:88:ec: cb:8a:d8:ca:ea:f3:24:3e:05:99:71:48:f6:d6:bb:92:63:59: 51:20:0b:cc:99:f3:94:ab:23:9b:91:46:bf:cd:06:72:c3:68: 29:c5:09:e0:17:e6:75:b8:f3:44:f0:19:28:43:fe:5a:9d:e0: af:5f:d1:20:67:70:70:4d:5c:f9:12:c4:c3:01:62:32:20:62: 49:5b:84:29:fb:3b:73:71:5e:01:54:6e:fd:9f:38:4a:7a:ca: d6:b7:10:28:50:75:69:2f:1c:31:f5:c9:e9:4b:46:5d:3e:b0: b9:db:1a:f1:26:16:56:2f:ef:51:66:01:3e:0d:79:5e:88:a9: 24:a8:71:b0:ad:03:70:2e:5c:7b:ff:ed:5f:53:38:0a:1d:25: 1b:23:86:25:a3:57:c7:bf:b5:19:e9:ce:ed:b3:0f:4d:64:ca: 63:9c:f5:74:be:f2:84:5b:ec:68:de:67:ac:36:96:dc:55:0e: a7:34:86:f0:30:60:61:6c:e3:bf:5e:a0:a8:1a:c2:19:1b:a7: 8d:4c:c4:1f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUwMjEyMTkyNzA2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZjYwYS1mMjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsm/L15OUbx2MKhSWvEJSs9Xb7W+KCAfMaSDcdxUdJ1K8cTZzhtO39lRUPEv5 ybDvkMqi/DxCd8EHe+8+AbmI/jdyyTxQXtX/89GmpyCmP3ZZhCHzgl5qsOjc9Imn a9FXHIEpzMJ9ZFYdkcx4v8D9qbky2ojwXbCo2AVEE2cITh0yIM5eCKy+Jk5ZUlua HJES2Z9x3KFvQgBrS9LPY50iREZ0eJJ6gNbeipErDXF69K7v8nrxERzMCYxXxs+Y xqolJRutsxqD1LvF5EEnbJOmI0QL4h+WjtRlShzwEzmiP4FLSAY8HP/QoCNDs91E u7xWBM4NbBNnp3kAkz3lUl6mOwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDpVwvV9 cprnhBolBXsR0LKjgx1yMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvRDQ3QjIxQzI0 RkZFMTFFQUEwRTRFRDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEtdwQDBABnhV0DBADLIm4wDQYJKoZIhvcNAQELBQADggEB AGcNWcpSM1a36dTwbJtRLswTduAkSPMYSuRJm/nn/cONCQWSBWsjnX9xMGV2/Vbp K9aozTSI7MuK2Mrq8yQ+BZlxSPbWu5JjWVEgC8yZ85SrI5uRRr/NBnLDaCnFCeAX 5nW480TwGShD/lqd4K9f0SBncHBNXPkSxMMBYjIgYklbhCn7O3NxXgFUbv2fOEp6 yta3EChQdWkvHDH1yelLRl0+sLnbGvEmFlYv71FmAT4NeV6IqSSocbCtA3AuXHv/ 7V9TOAodJRsjhiWjV8e/tRnpzu2zD01kymOc9XS+8oRb7GjeZ6w2ltxVDqc0hvAw YGFs479eoKgawhkbp41MxB8= -----END CERTIFICATE-----Generated at Sat Apr 5 08:22:04 2025 by rpki-client