$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/2D7A0C2A08D811EF8DFDE781C4F9AE02.roa File: 2D7A0C2A08D811EF8DFDE781C4F9AE02.roa (raw, json) Hash identifier: gdMasLbSqNJyfYRq8rjx2FDE2x25ny6/BOPxzTslPtc= Subject key identifier: 27:98:06:B6:3A:FF:3B:EC:A4:5A:73:76:11:BF:B8:A7:47:E1:22:56 Certificate issuer: /CN=A9179F22/serialNumber=063BAF3ED7B41071A90D9FAE410FF47888F0BEDF Certificate serial: F3 Authority key identifier: 06:3B:AF:3E:D7:B4:10:71:A9:0D:9F:AE:41:0F:F4:78:88:F0:BE:DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/2D7A0C2A08D811EF8DFDE781C4F9AE02.roa Signing time: Thu 27 Feb 2025 06:29:46 +0000 ROA not before: Thu 27 Feb 2025 06:29:46 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 16509 IP address blocks: 204.145.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.crl rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F22 Validity Not Before: Feb 27 06:29:46 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c0065a-67f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ff:58:10:7d:88:bf:14:fa:26:0a:1b:a5:b3: 5e:2b:73:be:22:ee:15:c3:21:a1:66:87:7f:5a:2e: b9:ba:3c:bc:fd:ce:b1:c7:02:35:56:97:ed:87:88: ca:31:f4:29:69:87:9e:e7:d0:4b:88:7d:c6:1e:40: 31:69:2d:86:66:00:1e:67:5d:44:2f:0e:c0:f5:1a: d5:8f:df:d1:84:c1:5f:90:c6:12:19:f3:59:e0:57: 3b:21:3f:fa:bc:42:09:81:db:68:7c:23:45:d9:e2: ac:cb:72:e5:91:ee:2c:44:0c:e3:e2:b3:c8:42:4b: 05:43:b3:e6:fd:0e:c3:d8:59:cf:85:3b:34:f9:f9: ba:d1:6d:37:0a:b9:85:56:28:9a:cb:2a:fb:91:73: 8f:da:7b:2a:3b:78:e1:5f:28:54:20:c9:a1:4f:9d: 46:4b:50:3b:ea:3e:42:f5:82:0b:84:f7:a4:7a:87: 1a:a1:bc:eb:de:da:c1:3e:03:b0:2e:a1:55:d9:f7: 91:00:8c:56:69:39:73:32:91:fe:09:5d:54:59:e9: 76:2b:53:4d:4c:78:e2:de:5d:bd:ed:ae:34:f0:04: 67:40:8f:c7:38:29:36:02:ee:0c:af:04:95:9f:32: cf:11:f2:8b:e0:fd:77:eb:a4:22:66:89:ef:b5:39: 1a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:98:06:B6:3A:FF:3B:EC:A4:5A:73:76:11:BF:B8:A7:47:E1:22:56 X509v3 Authority Key Identifier: keyid:06:3B:AF:3E:D7:B4:10:71:A9:0D:9F:AE:41:0F:F4:78:88:F0:BE:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BjuvPte0EHGpDZ-uQQ_0eIjwvt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F22/C6F55FA88F2F11EE9CBFD961C4F9AE02/2D7A0C2A08D811EF8DFDE781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.145.97.0/24 Signature Algorithm: sha256WithRSAEncryption a9:da:6f:db:5b:d8:dc:bc:aa:cb:2d:73:00:08:23:db:b2:5d: 55:76:90:c7:eb:bd:c1:b1:f2:d1:5b:73:47:ca:10:fd:64:20: eb:67:a4:6f:c7:71:03:91:11:be:5b:58:6a:6f:5d:43:84:ef: c5:49:6b:93:35:e2:3e:2e:ab:27:e4:3b:0f:fc:d7:91:3a:1c: bf:ad:9d:2b:b2:90:df:5d:37:46:50:e5:cf:3b:b4:d4:7c:06: 64:89:ab:6d:5d:ab:41:bb:72:53:ec:e7:cf:e7:3d:9e:b8:61: bd:32:f3:d2:ae:e7:c8:4e:fc:6d:f0:4e:c8:ef:72:82:f4:50: b4:f5:ca:bb:0b:81:bf:17:76:95:9b:6f:20:05:83:fb:b5:e9: 5d:5c:a1:db:a2:7a:55:51:b0:a7:5a:a8:27:75:31:68:cc:06: 12:84:9c:9b:a9:c2:b5:59:6e:c5:36:19:21:19:84:c4:a3:7c: 47:09:d4:3d:31:75:f5:38:81:39:9e:36:1a:ac:bf:be:d1:16: d2:4d:45:25:38:1a:4f:5f:6b:7a:76:e6:be:a9:25:ed:77:7d: a4:98:65:37:97:a9:2c:cc:84:17:b4:93:b8:b4:b7:4c:2b:de: ec:e4:91:8f:6b:5c:e5:87:9d:14:c7:3b:ea:b4:b1:05:9f:62: 04:92:05:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGMjIxMTAvBgNVBAUTKDA2M0JBRjNFRDdCNDEwNzFBOTBEOUZBRTQxMEZGNDc4 ODhGMEJFREYwHhcNMjUwMjI3MDYyOTQ2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MwMDY1YS02N2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP9YEH2IvxT6JgobpbNeK3O+Iu4VwyGhZod/Wi65ujy8/c6xxwI1Vpfth4jK MfQpaYee59BLiH3GHkAxaS2GZgAeZ11ELw7A9RrVj9/RhMFfkMYSGfNZ4Fc7IT/6 vEIJgdtofCNF2eKsy3Llke4sRAzj4rPIQksFQ7Pm/Q7D2FnPhTs0+fm60W03CrmF Viiayyr7kXOP2nsqO3jhXyhUIMmhT51GS1A76j5C9YILhPekeocaobzr3trBPgOw LqFV2feRAIxWaTlzMpH+CV1UWel2K1NNTHji3l297a408ARnQI/HOCk2Au4MrwSV nzLPEfKL4P1366QiZonvtTkaowIDAQABo4IClTCCApEwHQYDVR0OBBYEFCeYBrY6 /zvspFpzdhG/uKdH4SJWMB8GA1UdIwQYMBaAFAY7rz7XtBBxqQ2frkEP9HiI8L7f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUYyMi9DNkY1NUZBODhG MkYxMUVFOUNCRkQ5NjFDNEY5QUUwMi9CanV2UHRlMEVIR3BEWi11UVFfMGVJand2 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JqdXZQdGUwRUhHcERaLXVRUV8wZUlqd3Z0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlGMjIvQzZGNTVGQTg4RjJGMTFFRTlDQkZEOTYxQzRGOUFFMDIvMkQ3QTBDMkEw OEQ4MTFFRjhERkRFNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADMkWEwDQYJKoZIhvcNAQELBQADggEBAKnab9tb2Ny8qsst cwAII9uyXVV2kMfrvcGx8tFbc0fKEP1kIOtnpG/HcQOREb5bWGpvXUOE78VJa5M1 4j4uqyfkOw/815E6HL+tnSuykN9dN0ZQ5c87tNR8BmSJq21dq0G7clPs58/nPZ64 Yb0y89Ku58hO/G3wTsjvcoL0ULT1yrsLgb8XdpWbbyAFg/u16V1coduielVRsKda qCd1MWjMBhKEnJupwrVZbsU2GSEZhMSjfEcJ1D0xdfU4gTmeNhqsv77RFtJNRSU4 Gk9fa3p25r6pJe13faSYZTeXqSzMhBe0k7i0t0wr3uzkkY9rXOWHnRTHO+q0sQWf YgSSBYY= -----END CERTIFICATE-----Generated at Thu Mar 13 21:54:17 2025 by rpki-client