$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa File: 9580A702548211EFAADB996FC4F9AE02.roa (raw, json) Hash identifier: kSK29014IOAyTFM0toP6bnTMS2qsqnnHmN7R+iDPlF4= Subject key identifier: 0D:CD:FC:C9:70:2C:77:02:54:04:86:04:91:CD:66:2C:18:79:99:1F Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: CD Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa Signing time: Sat 31 May 2025 03:50:55 +0000 ROA not before: Sat 31 May 2025 03:50:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150436 IP address blocks: 45.78.192.0/18 maxlen: 24 69.5.0.0/19 maxlen: 24 207.166.160.0/19 maxlen: 24 216.230.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 02:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: May 31 03:50:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a7c9f-7145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d6:6d:d1:e2:ca:ae:55:43:12:c7:7d:56:96: ff:d1:1f:75:a6:ab:22:6b:ad:10:35:f2:66:48:4f: 58:2a:5e:bc:93:49:36:6b:c6:7b:3e:61:f4:bf:1b: 7b:b0:2d:a7:7b:01:e1:f4:5f:df:ab:e0:6f:8a:10: 60:ee:89:b7:42:69:5d:ed:00:34:87:aa:bf:1d:52: 3a:4f:da:1f:d9:f1:07:e2:96:6c:af:6d:d5:61:28: b8:e2:73:15:9d:10:16:4c:13:8c:8c:68:16:24:c0: 21:11:b2:a0:91:e4:e5:5b:04:2b:08:6d:32:eb:a3: 7b:fe:16:33:e0:2f:bf:78:72:c2:e7:5b:fe:b6:31: 86:5c:3a:2b:78:de:12:75:7a:0d:07:f1:2e:1a:0e: 39:4a:ff:a3:23:33:f9:5a:6f:57:d9:f9:b2:e6:8f: c7:16:b5:19:b6:92:29:b1:42:b1:73:c9:26:73:40: e4:11:50:9f:41:38:ef:bc:a7:d3:76:9e:d6:ae:6c: 52:97:ab:3d:75:38:f6:b3:17:08:c1:2e:22:d4:f9: b1:91:c9:db:7a:23:5f:b0:26:59:8c:6a:ff:53:22: d4:dd:f5:79:ad:c6:21:5d:94:65:12:17:fa:45:fb: 4b:c4:aa:9d:87:bd:12:0d:04:94:9a:97:e2:6c:3c: b3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CD:FC:C9:70:2C:77:02:54:04:86:04:91:CD:66:2C:18:79:99:1F X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.78.192.0/18 69.5.0.0/19 207.166.160.0/19 216.230.192.0/19 Signature Algorithm: sha256WithRSAEncryption 54:ca:53:c1:73:f8:22:83:83:70:bf:4c:12:59:a2:2c:d7:70: 93:6c:2a:7b:d6:f5:cd:20:b1:eb:00:b6:c6:01:a6:6c:90:4b: 31:0e:61:f1:04:ec:d0:20:6d:37:33:b2:0f:b7:8f:1c:b6:11: 3a:6f:99:4d:21:a2:49:74:2b:56:21:ef:04:1a:fb:da:83:f9: ba:a3:4d:19:4e:83:29:94:aa:9a:2b:5e:09:b7:b9:9f:42:78: ad:65:b0:7e:e3:a4:ce:0c:5c:ff:4a:74:19:e7:9b:a2:e0:0b: da:cc:81:0e:b4:5f:58:b9:0e:54:3f:aa:82:a2:78:11:e8:cd: a0:3d:78:22:30:d8:dd:d5:73:31:6a:44:5f:92:94:91:20:dc: 0e:93:dc:a5:78:8b:4f:1c:2b:f4:53:61:3b:e3:04:37:70:73: 4d:77:e9:21:3f:7c:cc:34:c4:aa:5d:34:46:ab:2e:28:e1:d3: 18:f1:52:a9:47:10:63:b3:0f:1a:4d:94:b6:8a:ff:a3:4c:60: c9:a2:e6:22:22:47:08:5b:fe:18:c8:b9:f4:17:9f:1f:d1:7e: 7d:f5:2b:c6:8c:9b:f1:0b:0a:b9:1f:aa:94:cb:96:c3:64:e4: ed:df:b6:0f:6c:10:0e:f7:ed:59:3f:5a:f3:87:13:87:e1:78: 4b:ed:db:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNTMxMDM1MDU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhN2M5Zi03MTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNZt0eLKrlVDEsd9Vpb/0R91pqsia60QNfJmSE9YKl68k0k2a8Z7PmH0vxt7 sC2newHh9F/fq+BvihBg7om3Qmld7QA0h6q/HVI6T9of2fEH4pZsr23VYSi44nMV nRAWTBOMjGgWJMAhEbKgkeTlWwQrCG0y66N7/hYz4C+/eHLC51v+tjGGXDoreN4S dXoNB/EuGg45Sv+jIzP5Wm9X2fmy5o/HFrUZtpIpsUKxc8kmc0DkEVCfQTjvvKfT dp7WrmxSl6s9dTj2sxcIwS4i1PmxkcnbeiNfsCZZjGr/UyLU3fV5rcYhXZRlEhf6 RftLxKqdh70SDQSUmpfibDyzewIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFA3N/Mlw LHcCVASGBJHNZiwYeZkfMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvOEY5MDkxRDQzMkIwMTFFRkE0Q0JGOTZBQzRGOUFFMDIvOTU4MEE3MDI1 NDgyMTFFRkFBREI5OTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAYtTsADBAVFBQADBAXPpqADBAXY5sAwDQYJKoZIhvcNAQEL BQADggEBAFTKU8Fz+CKDg3C/TBJZoizXcJNsKnvW9c0gsesAtsYBpmyQSzEOYfEE 7NAgbTczsg+3jxy2ETpvmU0hokl0K1Yh7wQa+9qD+bqjTRlOgymUqporXgm3uZ9C eK1lsH7jpM4MXP9KdBnnm6LgC9rMgQ60X1i5DlQ/qoKieBHozaA9eCIw2N3VczFq RF+SlJEg3A6T3KV4i08cK/RTYTvjBDdwc0136SE/fMw0xKpdNEarLijh0xjxUqlH EGOzDxpNlLaK/6NMYMmi5iIiRwhb/hjIufQXnx/Rfn31K8aMm/ELCrkfqpTLlsNk 5O3ftg9sEA737Vk/WvOHE4fheEvt218= -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:59 2025 by rpki-client