$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa File: 5A87E8B01A7E11EAB32DB717C4F9AE02.roa (raw, json) Hash identifier: TF4/nOrzyf5duBfEQYUwJ6zNvE5ah2P0TT9FhC7BegY= Subject key identifier: AB:01:DF:D8:F4:28:DC:AD:04:A8:40:8C:AA:09:6C:EF:27:AE:97:E3 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34C4 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:28 +0000 ROA not before: Fri 24 Jan 2025 16:02:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 24206 IP address blocks: 110.44.168.0/22 maxlen: 22 110.44.168.0/23 maxlen: 23 110.44.168.0/24 maxlen: 24 110.44.169.0/24 maxlen: 24 110.44.170.0/23 maxlen: 23 110.44.170.0/24 maxlen: 24 110.44.171.0/24 maxlen: 24 110.44.173.0/24 maxlen: 24 110.44.174.0/24 maxlen: 24 203.84.136.0/21 maxlen: 21 203.84.136.0/22 maxlen: 22 203.84.136.0/23 maxlen: 23 203.84.136.0/24 maxlen: 24 203.84.137.0/24 maxlen: 24 203.84.138.0/23 maxlen: 23 203.84.138.0/24 maxlen: 24 203.84.139.0/24 maxlen: 24 203.84.140.0/22 maxlen: 22 203.84.140.0/23 maxlen: 23 203.84.140.0/24 maxlen: 24 203.84.141.0/24 maxlen: 24 203.84.142.0/23 maxlen: 23 203.84.142.0/24 maxlen: 24 203.84.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13508 (0x34c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 24 16:02:28 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b994-89c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:7c:e6:01:cc:8b:2b:d8:9d:1b:d3:a1:90:06: c3:27:f3:5b:d1:a3:75:3f:1f:08:39:df:0f:b8:b8: c9:29:20:75:5c:d5:cb:02:cc:6a:3c:8b:5d:b9:5c: 97:70:70:09:16:5e:50:62:92:70:95:4a:68:91:6e: c2:ff:28:b2:2d:c6:16:16:18:10:d4:0e:a9:2d:6e: 28:98:e2:f8:e5:25:69:9b:a3:09:94:51:34:8d:d6: 89:82:3d:36:ee:19:b9:9e:81:f7:1a:13:00:b2:0c: 58:00:bb:e5:c6:fe:57:1c:e6:2b:aa:29:74:a8:51: d2:27:60:e9:6c:d1:44:23:6e:29:82:06:bb:ab:d2: cb:fc:5f:28:cb:5c:64:0a:26:c5:87:87:1d:1c:8b: 57:b1:3d:52:d9:b6:2c:8b:a1:f6:53:e0:d6:6a:c6: c7:5a:c1:14:de:9f:bd:3c:80:1d:18:52:2c:46:e6: 42:40:46:ef:f0:62:ea:60:ed:98:40:1d:b5:23:6b: 3b:3c:63:b8:2d:55:be:1c:22:9e:ed:5a:f3:ea:ae: 0a:87:26:0f:15:fa:99:1f:5d:0d:bd:81:89:82:fc: c0:41:c4:61:cf:0b:9d:fd:ac:a2:b9:60:80:3f:87: 4c:eb:a0:8d:7c:e5:b7:1b:45:a4:a4:f7:c6:41:4a: 23:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:01:DF:D8:F4:28:DC:AD:04:A8:40:8C:AA:09:6C:EF:27:AE:97:E3 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.44.168.0/22 110.44.173.0-110.44.174.255 203.84.136.0/21 Signature Algorithm: sha256WithRSAEncryption 64:79:bb:aa:b4:d7:9a:a8:06:14:db:31:7c:fa:46:41:e0:5e: 62:f1:cf:a1:f5:de:12:f2:7c:b8:a7:01:f9:53:63:8e:13:b2: 72:64:57:78:59:51:26:09:eb:c2:27:75:7c:c9:e0:02:72:cb: 87:37:e4:36:47:45:dd:5e:f6:b0:08:d3:72:59:e4:69:50:9d: d7:ec:ac:0d:b1:c5:e9:b6:28:c3:8d:84:d6:d1:55:b6:ab:55: 6a:1e:e7:c1:6d:66:c3:91:54:46:f3:f8:e5:fa:cd:78:9b:e3: 2b:c6:03:91:87:44:7d:ab:42:d3:c0:66:17:36:99:fc:95:07: 30:f1:67:57:c3:83:04:b1:a6:f7:35:50:86:93:d8:ee:9d:28: 5c:fa:ce:8f:ef:c2:02:47:9f:7a:2c:43:41:3a:dc:16:59:b0: 5d:cc:27:36:dc:b0:6e:03:e9:15:69:b1:46:7c:92:8a:92:8f: 61:9f:8f:fc:5f:58:22:06:b2:1c:64:b8:32:f8:04:11:a6:81: 81:3d:aa:82:fc:ed:13:d1:e9:37:3d:3a:0d:2b:a3:dc:c2:97: ba:31:27:4c:2a:7f:3d:d8:35:e1:e9:31:0b:cc:d7:59:7a:84: 48:d2:87:74:50:ba:1b:96:ab:a8:a3:95:3d:49:93:23:b6:d3: 7d:c8:a2:fe -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICNMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjI4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjk5NC04OWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/XzmAcyLK9idG9OhkAbDJ/Nb0aN1Px8IOd8PuLjJKSB1XNXLAsxqPItduVyX cHAJFl5QYpJwlUpokW7C/yiyLcYWFhgQ1A6pLW4omOL45SVpm6MJlFE0jdaJgj02 7hm5noH3GhMAsgxYALvlxv5XHOYrqil0qFHSJ2DpbNFEI24pgga7q9LL/F8oy1xk CibFh4cdHItXsT1S2bYsi6H2U+DWasbHWsEU3p+9PIAdGFIsRuZCQEbv8GLqYO2Y QB21I2s7PGO4LVW+HCKe7Vrz6q4KhyYPFfqZH10NvYGJgvzAQcRhzwud/ayiuWCA P4dM66CNfOW3G0WkpPfGQUojEQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFKsB39j0 KNytBKhAjKoJbO8nrpfjMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNUE4N0U4QjAx QTdFMTFFQUIzMkRCNzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAJuLKgwDAMEAG4srQMEAG4srgMEA8tUiDANBgkqhkiG9w0B AQsFAAOCAQEAZHm7qrTXmqgGFNsxfPpGQeBeYvHPofXeEvJ8uKcB+VNjjhOycmRX eFlRJgnrwid1fMngAnLLhzfkNkdF3V72sAjTclnkaVCd1+ysDbHF6bYow42E1tFV tqtVah7nwW1mw5FURvP45frNeJvjK8YDkYdEfatC08BmFzaZ/JUHMPFnV8ODBLGm 9zVQhpPY7p0oXPrOj+/CAkefeixDQTrcFlmwXcwnNtywbgPpFWmxRnySipKPYZ+P /F9YIgayHGS4MvgEEaaBgT2qgvztE9HpNz06DSuj3MKXujEnTCp/Pdg14ekxC8zX WXqESNKHdFC6G5arqKOVPUmTI7bTfcii/g== -----END CERTIFICATE-----Generated at Mon Apr 7 19:17:06 2025 by rpki-client