$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa File: 9580A702548211EFAADB996FC4F9AE02.roa (raw, json) Hash identifier: mhGYiG0WeDb47Y1flcMHTXRygvaWwxscynwAYyWQgq4= Subject key identifier: F5:8A:AF:30:08:C9:E3:E2:58:1F:36:2D:1A:B6:2C:92:AE:6D:99:D2 Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 9A Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa Signing time: Mon 03 Mar 2025 07:39:31 +0000 ROA not before: Mon 03 Mar 2025 07:39:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 150436 IP address blocks: 45.78.192.0/18 maxlen: 24 69.5.0.0/19 maxlen: 24 207.166.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 22:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Mar 3 07:39:30 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67c55cb2-b5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f6:a3:ec:a4:f0:81:ba:10:39:4e:20:41:72: bc:f1:d0:69:c8:47:cf:b2:b6:60:2d:25:71:2c:7e: 6a:ae:23:d4:1a:bc:61:08:dd:ba:74:57:02:46:a3: c3:e0:65:60:54:3a:dc:7d:54:76:3d:8d:a9:89:6c: e8:a2:07:1c:51:9c:25:47:a3:7d:47:98:d1:1f:d9: 58:c1:40:8d:a2:08:cd:b0:86:4c:0e:a1:49:9e:d4: 79:45:de:be:48:e5:66:e0:ef:a9:87:90:49:97:f6: 7f:d2:18:10:a3:41:07:11:cc:47:28:e3:e7:54:84: 52:af:a0:40:e5:c7:81:0e:4b:26:18:84:e5:41:54: 68:4f:3f:76:38:73:2a:65:e9:27:2d:21:65:f2:bd: a8:e3:ce:1a:25:b8:e4:6a:f4:17:a6:18:cd:2b:e0: a7:42:31:cd:c2:bc:4d:7d:1f:29:cf:c3:eb:e5:86: 45:4c:d8:5c:70:9d:c5:c9:59:dc:1b:68:46:8b:bc: 87:f4:8c:2b:3d:4c:12:9f:43:f0:8a:69:a8:42:ae: 47:fe:47:42:c8:90:d9:c2:ec:7c:bd:21:d9:ce:74: 61:5d:1d:bb:23:14:12:97:6c:76:de:b3:14:1b:77: bf:0c:61:ff:44:f3:30:f7:83:88:ff:99:b5:be:9a: f2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:8A:AF:30:08:C9:E3:E2:58:1F:36:2D:1A:B6:2C:92:AE:6D:99:D2 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.78.192.0/18 69.5.0.0/19 207.166.160.0/19 Signature Algorithm: sha256WithRSAEncryption 80:07:a9:4d:d5:c5:c7:20:b9:77:da:e9:24:da:eb:d0:44:6d: 26:2a:65:d0:06:4d:89:10:e5:41:01:0a:d2:85:79:de:69:90: 78:25:9f:b1:7e:45:8d:e3:d1:49:9e:22:5b:64:db:f1:f4:8b: 59:ef:45:54:1a:35:d7:bf:81:fd:d4:38:e2:db:7a:e8:56:6d: ab:87:6b:46:6c:12:13:66:07:a6:4f:87:df:07:86:f0:5d:a7: 6f:19:96:0a:b2:bb:04:b0:24:a6:21:71:71:0c:7f:30:ae:dc: f7:69:b2:b9:a5:97:f4:3f:0f:a2:e6:21:10:db:fb:53:0c:27: 59:23:ae:bb:01:db:01:1b:19:75:75:36:54:68:72:82:05:2d: 45:25:3d:b6:fd:56:40:8b:f6:28:b4:78:f0:c9:00:4e:00:03: 2b:6f:5d:91:e4:1c:f8:0c:76:01:e0:2a:59:0c:db:1b:f9:3e: ef:58:ee:93:06:e6:53:ab:1a:36:4b:41:5a:7e:e5:b8:7c:8e: 67:dd:f4:d9:ca:ce:6e:89:1b:bc:42:1d:36:3a:d4:79:dc:b3: b9:53:15:da:af:4e:c6:c4:1e:f7:20:09:45:52:cd:7b:2e:fa: ef:18:0a:9a:dd:dc:3c:88:18:b4:81:78:42:6a:1a:fb:8f:e3: fe:04:27:1a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwMzAzMDczOTMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1NWNiMi1iNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/aj7KTwgboQOU4gQXK88dBpyEfPsrZgLSVxLH5qriPUGrxhCN26dFcCRqPD 4GVgVDrcfVR2PY2piWzoogccUZwlR6N9R5jRH9lYwUCNogjNsIZMDqFJntR5Rd6+ SOVm4O+ph5BJl/Z/0hgQo0EHEcxHKOPnVIRSr6BA5ceBDksmGITlQVRoTz92OHMq ZeknLSFl8r2o484aJbjkavQXphjNK+CnQjHNwrxNfR8pz8Pr5YZFTNhccJ3FyVnc G2hGi7yH9IwrPUwSn0PwimmoQq5H/kdCyJDZwux8vSHZznRhXR27IxQSl2x23rMU G3e/DGH/RPMw94OI/5m1vprydwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPWKrzAI yePiWB82LRq2LJKubZnSMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvOEY5MDkxRDQzMkIwMTFFRkE0Q0JGOTZBQzRGOUFFMDIvOTU4MEE3MDI1 NDgyMTFFRkFBREI5OTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAYtTsADBAVFBQADBAXPpqAwDQYJKoZIhvcNAQELBQADggEB AIAHqU3VxccguXfa6STa69BEbSYqZdAGTYkQ5UEBCtKFed5pkHgln7F+RY3j0Ume Iltk2/H0i1nvRVQaNde/gf3UOOLbeuhWbauHa0ZsEhNmB6ZPh98HhvBdp28Zlgqy uwSwJKYhcXEMfzCu3Pdpsrmll/Q/D6LmIRDb+1MMJ1kjrrsB2wEbGXV1NlRocoIF LUUlPbb9VkCL9ii0ePDJAE4AAytvXZHkHPgMdgHgKlkM2xv5Pu9Y7pMG5lOrGjZL QVp+5bh8jmfd9NnKzm6JG7xCHTY61Hncs7lTFdqvTsbEHvcgCUVSzXsu+u8YCprd 3DyIGLSBeEJqGvuP4/4EJxo= -----END CERTIFICATE-----Generated at Tue Apr 15 05:39:28 2025 by rpki-client