$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/971C7F142B3711F0BDDC4B6CC4F9AE02.roa File: 971C7F142B3711F0BDDC4B6CC4F9AE02.roa (raw, json) Hash identifier: Q8s+ua9os0/qPZz3BvJ88AjBjAfsCASOdv+NGC+k3nU= Subject key identifier: 60:E4:5A:76:F1:95:8E:5C:E9:8F:7B:1A:40:A1:19:CD:37:CE:97:56 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3572 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/971C7F142B3711F0BDDC4B6CC4F9AE02.roa Signing time: Wed 07 May 2025 11:37:01 +0000 ROA not before: Wed 07 May 2025 11:37:01 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45305 IP address blocks: 202.47.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13682 (0x3572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: May 7 11:37:01 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=681b45dc-a92a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b8:1c:eb:11:f5:6f:66:e7:fd:b6:2d:87:0d: 8b:71:59:7e:2d:c7:7d:b9:97:fa:7d:f3:e4:cd:50: 01:1b:f6:84:60:05:ef:81:42:e7:9d:cb:dc:39:c1: 68:62:cf:ef:2a:88:1b:0a:2a:e8:36:72:ac:0c:1f: 28:14:73:5a:ef:be:6c:d2:55:2f:27:6d:17:75:e2: 47:fa:0b:91:9c:56:25:b3:9a:3a:2d:df:ea:8d:af: d8:09:71:7f:4f:81:22:7c:cd:32:be:db:4d:61:ed: 71:4c:53:f0:bf:71:3d:53:b7:26:0d:61:ca:8d:b8: 01:52:b6:eb:3c:6b:08:dd:3d:ad:47:46:40:94:15: 26:6a:d8:32:e6:87:06:de:9c:84:b6:50:a2:27:a6: 55:30:a8:56:4b:85:15:7a:49:8e:cb:3b:29:6c:70: c2:4a:38:a0:a8:3f:19:ef:28:9e:3b:86:34:ce:14: af:39:ae:ab:c1:22:68:6a:3a:f4:91:81:a2:03:8d: 9f:b9:b7:de:f5:b9:a8:72:61:09:1f:36:db:d8:c3: f1:14:1d:f0:f2:71:92:20:5e:a9:69:49:be:d9:df: d6:05:6e:84:2b:7f:ef:bc:c4:16:41:70:73:d5:c2: 34:60:08:f8:b0:fd:ef:81:98:77:51:3e:68:92:95: 12:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E4:5A:76:F1:95:8E:5C:E9:8F:7B:1A:40:A1:19:CD:37:CE:97:56 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/971C7F142B3711F0BDDC4B6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/23 Signature Algorithm: sha256WithRSAEncryption 40:fa:a5:24:91:79:fc:c1:df:9e:8b:c1:25:3b:77:0e:36:5e: f8:a9:82:02:a4:65:8c:1b:ef:cb:66:0f:6f:4d:a3:ba:6f:0b: 25:d8:0d:8e:9f:b8:1c:e0:1c:38:b2:10:7f:7a:ee:e3:52:a9: 00:58:ad:c8:cd:b7:d0:90:d4:19:9e:45:be:8d:cb:73:5a:3d: 0e:d7:1f:82:ef:25:3e:ec:35:9c:e9:f3:53:9f:0c:72:42:d6: 51:83:b8:ae:b5:06:1e:5a:bb:d1:87:21:39:43:8c:4f:b8:d5: b7:33:3d:c1:4b:50:69:fc:b2:67:df:9e:06:86:80:40:db:0c: a6:d2:8d:83:fe:c1:25:0a:56:e3:75:ad:86:3d:2b:d0:99:7a: 4a:84:7a:a9:55:06:69:e3:89:43:a8:2c:14:8e:a8:6b:c5:e5: 54:c4:f6:5a:d6:e8:e3:d9:6e:29:89:1c:e9:07:44:f8:1a:b0: 23:c6:7e:80:db:3b:c6:6e:1b:3d:d7:30:72:23:28:00:ce:2a: 73:ac:42:08:90:4a:6a:e9:29:2c:fa:8c:24:78:3c:e6:06:71: 96:64:84:9d:73:16:b5:d8:0a:59:4d:77:6a:0e:e4:bd:4d:fa: 88:7a:d7:b5:43:57:1d:73:65:59:ce:46:92:d1:90:12:eb:84: a7:37:1a:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwNTA3MTEzNzAxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFiNDVkYy1hOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbgc6xH1b2bn/bYthw2LcVl+Lcd9uZf6ffPkzVABG/aEYAXvgULnncvcOcFo Ys/vKogbCiroNnKsDB8oFHNa775s0lUvJ20XdeJH+guRnFYls5o6Ld/qja/YCXF/ T4EifM0yvttNYe1xTFPwv3E9U7cmDWHKjbgBUrbrPGsI3T2tR0ZAlBUmatgy5ocG 3pyEtlCiJ6ZVMKhWS4UVekmOyzspbHDCSjigqD8Z7yieO4Y0zhSvOa6rwSJoajr0 kYGiA42fubfe9bmocmEJHzbb2MPxFB3w8nGSIF6paUm+2d/WBW6EK3/vvMQWQXBz 1cI0YAj4sP3vgZh3UT5okpUSqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGDkWnbx lY5c6Y97GkChGc03zpdWMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvOTcxQzdGMTQy QjM3MTFGMEJEREM0QjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKL7wwDQYJKoZIhvcNAQELBQADggEBAED6pSSRefzB356L wSU7dw42XvipggKkZYwb78tmD29No7pvCyXYDY6fuBzgHDiyEH967uNSqQBYrcjN t9CQ1BmeRb6Ny3NaPQ7XH4LvJT7sNZzp81OfDHJC1lGDuK61Bh5au9GHITlDjE+4 1bczPcFLUGn8smffngaGgEDbDKbSjYP+wSUKVuN1rYY9K9CZekqEeqlVBmnjiUOo LBSOqGvF5VTE9lrW6OPZbimJHOkHRPgasCPGfoDbO8ZuGz3XMHIjKADOKnOsQgiQ SmrpKSz6jCR4POYGcZZkhJ1zFrXYCllNd2oO5L1N+oh617VDVx1zZVnORpLRkBLr hKc3GmA= -----END CERTIFICATE-----Generated at Tue Jun 3 23:37:26 2025 by rpki-client