$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa File: 23CDAE44F89B11EFA0888D74C4F9AE02.roa (raw, json) Hash identifier: htNAczAQr9cp+dQtuGGopn21sy0+/KYk5/WFNh6si70= Subject key identifier: 7D:18:9C:AB:18:39:4F:60:35:9A:A1:3C:07:33:B3:A2:25:47:67:D2 Certificate issuer: /CN=A9178EB0/serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Certificate serial: 0818 Authority key identifier: AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa Signing time: Mon 14 Apr 2025 07:06:26 +0000 ROA not before: Mon 14 Apr 2025 07:06:26 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 963 IP address blocks: 112.121.184.0/22 maxlen: 24 180.178.32.0/20 maxlen: 24 180.178.48.0/21 maxlen: 24 180.178.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 20:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2072 (0x818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EB0, serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Validity Not Before: Apr 14 07:06:26 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67fcb3f1-c296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:07:62:ec:04:2f:87:9f:91:0e:71:29:9f:09: 29:75:6d:38:c4:1d:9f:38:92:88:a6:b3:c0:14:80: f8:85:eb:2b:b0:5f:b3:e6:01:b6:3e:35:51:3c:74: b6:89:20:f1:a5:f2:24:44:d1:9e:92:a4:fa:26:1f: c7:e3:61:5f:66:95:0b:89:99:cd:2f:a1:75:73:f2: 3d:f6:28:c0:1f:24:4d:d7:cc:fa:6c:17:42:87:79: 00:70:27:89:b3:21:03:a0:b0:04:0b:3c:ec:63:cd: 1d:86:5c:7f:b7:fc:80:f0:0d:be:e3:b8:91:7c:4a: 8e:6f:61:2e:85:7e:83:76:b6:e2:2f:33:b6:90:cd: 3e:1b:46:e3:33:36:13:52:d3:7b:7a:62:98:6c:ea: f5:6d:ed:9e:5d:1d:7c:44:fd:9c:7b:7f:77:02:7b: 26:1e:bf:72:16:88:44:e7:f2:28:94:0e:7b:eb:fa: b2:ef:e9:44:f8:df:be:e7:e2:78:8d:8a:41:0e:f2: 13:62:a9:af:0c:b3:4b:64:75:6c:4b:92:bf:f4:b6: 29:2c:91:33:a8:2b:12:3b:f9:d6:0a:21:ff:81:9d: 4c:f9:f0:8f:86:98:59:19:fd:da:4f:0f:8d:32:ab: 21:c1:02:f0:76:88:ae:43:df:33:94:55:d8:c0:46: d5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:18:9C:AB:18:39:4F:60:35:9A:A1:3C:07:33:B3:A2:25:47:67:D2 X509v3 Authority Key Identifier: keyid:AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.121.184.0/22 180.178.32.0-180.178.59.255 Signature Algorithm: sha256WithRSAEncryption 7b:96:61:ec:30:f3:47:8e:59:63:4b:cd:78:9a:2c:d8:c3:d5: 2e:78:4a:f6:d2:2f:2c:45:54:f6:0a:34:43:b6:f8:82:21:2e: 89:e0:7e:a2:a2:48:ba:75:45:9f:e6:2f:01:0a:16:2b:aa:bb: 43:f4:f3:33:c9:50:67:c6:5f:4f:77:76:1d:ce:54:e8:28:d8: 73:68:94:7a:93:d3:6d:c0:ca:4d:dc:8a:75:f7:ed:4b:a7:80: 5c:bd:e0:a7:27:5f:f5:c8:67:8e:33:1a:1e:8f:12:9d:e7:1b: f3:4b:bc:f0:b9:5b:f3:ad:81:54:57:a9:f7:ba:d0:5e:70:e2: 55:c3:35:24:d9:c9:e5:ae:5a:bc:78:f6:3b:a0:5c:5b:22:30: fd:18:41:d1:ef:74:0b:13:d0:95:fb:1a:05:ad:3f:c3:1a:07: 2f:7d:16:30:b7:0c:20:88:05:df:68:77:29:6c:b3:a4:10:53: 1b:7e:4a:27:41:05:db:02:e8:f3:1c:5d:82:c4:69:e7:23:45: c9:62:28:60:5f:cb:96:29:1f:e2:61:3e:87:a7:0e:17:59:24: 02:48:93:f8:61:9e:05:db:10:cd:c8:12:ba:a1:51:a1:64:16: d2:6a:4d:5c:c3:ce:74:28:64:fa:47:43:f3:7b:5c:4b:f1:c9: fe:33:d1:5c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQjAxMTAvBgNVBAUTKEFBQTYyREI0N0YwMTJCMjZERDg2OThFMkNDMzVERThG Mjk0Mzc3NjEwHhcNMjUwNDE0MDcwNjI2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZjYjNmMS1jMjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQdi7AQvh5+RDnEpnwkpdW04xB2fOJKIprPAFID4hesrsF+z5gG2PjVRPHS2 iSDxpfIkRNGekqT6Jh/H42FfZpULiZnNL6F1c/I99ijAHyRN18z6bBdCh3kAcCeJ syEDoLAECzzsY80dhlx/t/yA8A2+47iRfEqOb2EuhX6DdrbiLzO2kM0+G0bjMzYT UtN7emKYbOr1be2eXR18RP2ce393AnsmHr9yFohE5/IolA576/qy7+lE+N++5+J4 jYpBDvITYqmvDLNLZHVsS5K/9LYpLJEzqCsSO/nWCiH/gZ1M+fCPhphZGf3aTw+N MqshwQLwdoiuQ98zlFXYwEbV+wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFH0YnKsY OU9gNZqhPAczs6IlR2fSMB8GA1UdIwQYMBaAFKqmLbR/ASsm3YaY4sw13o8pQ3dh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVCMC82NUQxREIyQ0RB RUExMUVBOTU4RUIzNUJDNEY5QUUwMi9xcVl0dEg4Qkt5YmRocGppekRYZWp5bERk MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FxWXR0SDhCS3liZGhwaml6RFhlanlsRGQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFQjAvNjVEMURCMkNEQUVBMTFFQTk1OEVCMzVCQzRGOUFFMDIvMjNDREFFNDRG ODlCMTFFRkEwODg4RDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAJwebgwDAMEBbSyIAMEArSyODANBgkqhkiG9w0BAQsFAAOC AQEAe5Zh7DDzR45ZY0vNeJos2MPVLnhK9tIvLEVU9go0Q7b4giEuieB+oqJIunVF n+YvAQoWK6q7Q/TzM8lQZ8ZfT3d2Hc5U6CjYc2iUepPTbcDKTdyKdfftS6eAXL3g pydf9chnjjMaHo8Snecb80u88Llb862BVFep97rQXnDiVcM1JNnJ5a5avHj2O6Bc WyIw/RhB0e90CxPQlfsaBa0/wxoHL30WMLcMIIgF32h3KWyzpBBTG35KJ0EF2wLo 8xxdgsRp5yNFyWIoYF/Llikf4mE+h6cOF1kkAkiT+GGeBdsQzcgSuqFRoWQW0mpN XMPOdChk+kdD83tcS/HJ/jPRXA== -----END CERTIFICATE-----Generated at Thu Apr 17 20:21:22 2025 by rpki-client