$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa File: A7B53200784E11E9AE591940C4F9AE02.roa (raw, json) Hash identifier: 04lfGGc3BNbFGhp2l0QHVx1Fset5cm8gW0lAn5CPync= Subject key identifier: 3C:22:B1:7F:CE:5D:FE:AF:4D:6A:48:94:5A:D0:EB:BF:18:E0:93:4E Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34C9 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:32 +0000 ROA not before: Fri 24 Jan 2025 16:02:32 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38158 IP address blocks: 121.100.0.0/21 maxlen: 21 121.100.0.0/24 maxlen: 24 2402:9800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13513 (0x34c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 24 16:02:32 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b997-8a42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2d:e9:ed:8b:c6:1b:42:0b:b8:4b:0c:06:b5: 0a:7e:cb:7d:42:08:c8:91:b5:cc:cf:39:bc:f2:47: 42:95:10:30:89:58:da:3a:3e:70:70:65:21:5d:33: f8:67:aa:6e:8b:0f:db:9d:9e:93:dd:7a:1d:08:e8: db:9f:9a:81:d0:80:5d:86:d2:d9:04:d5:b7:93:c2: e4:d1:f5:41:cc:5c:1b:45:72:8e:50:0b:da:6b:63: bb:a6:3b:af:7e:25:1c:08:a7:80:84:8d:a5:2e:d7: 0d:70:f7:e6:26:53:98:ce:bc:94:41:a3:ea:2f:64: d5:33:0a:cb:dd:40:b7:ce:d6:87:18:f8:86:59:2c: eb:62:b3:89:5b:cc:e3:3e:ab:f8:77:66:37:7a:5b: 87:1a:3d:be:de:f2:5d:37:ca:45:0b:59:34:22:fa: b6:2a:70:89:01:69:2f:1f:b6:62:ec:fd:1a:86:01: 4d:51:f9:e4:81:64:f4:86:7b:89:41:fa:19:36:b6: 50:e5:ee:42:a5:fe:a1:9e:0d:32:70:3b:f8:8f:d0: e7:2a:ad:c0:ed:c8:24:dd:d7:1c:27:28:2c:c5:1d: d7:3b:fe:b5:d8:11:4c:2c:63:33:96:02:92:7c:34: 3b:01:c0:99:45:d7:93:4d:9c:ba:cf:0c:dd:6a:8a: 1f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:22:B1:7F:CE:5D:FE:AF:4D:6A:48:94:5A:D0:EB:BF:18:E0:93:4E X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.100.0.0/21 IPv6: 2402:9800::/32 Signature Algorithm: sha256WithRSAEncryption 9a:f4:e0:dc:45:d1:98:c6:bf:ba:a2:a9:b9:79:be:8c:82:bd: a5:1f:58:69:08:5d:60:14:ad:49:2d:17:65:c4:cc:2b:57:77: e6:d7:eb:6a:7f:f7:d5:0a:e5:04:93:23:09:5f:20:1b:bc:e9: 34:2a:e3:9e:a8:49:af:18:5c:67:e7:b1:fe:bf:8d:a9:ae:53: bc:9c:48:21:29:ab:14:05:56:09:fe:b9:5e:4d:0b:eb:c0:df: 42:e8:da:68:7b:9d:01:6b:8f:93:b9:f7:c2:da:bd:8d:ae:11: 4e:c1:cb:db:ff:c2:4c:bc:71:89:3e:2a:21:ca:7b:54:89:d0: 1a:53:8c:25:26:d1:05:45:61:65:3f:43:41:6b:5e:32:15:06: 21:61:e3:90:9c:e8:e2:95:e7:6a:04:44:ec:b7:e5:7d:cb:68: 77:e9:47:31:f5:6b:b1:b9:ff:39:16:2d:eb:44:63:7e:2d:71: fe:89:1a:14:1c:51:64:1a:52:97:74:a3:12:64:88:6f:43:f2: 22:36:0d:23:4a:af:6c:0a:2f:07:21:09:ac:3c:8c:ad:31:fe: 9f:1f:2b:75:b8:0b:14:fe:74:5f:d8:59:56:80:15:70:d5:0d: 3f:cb:cd:b1:7c:29:52:47:b3:e3:ad:9a:e0:6e:79:77:01:0b: 61:96:f2:c6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjMyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjk5Ny04YTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAry3p7YvGG0ILuEsMBrUKfst9QgjIkbXMzzm88kdClRAwiVjaOj5wcGUhXTP4 Z6puiw/bnZ6T3XodCOjbn5qB0IBdhtLZBNW3k8Lk0fVBzFwbRXKOUAvaa2O7pjuv fiUcCKeAhI2lLtcNcPfmJlOYzryUQaPqL2TVMwrL3UC3ztaHGPiGWSzrYrOJW8zj Pqv4d2Y3eluHGj2+3vJdN8pFC1k0Ivq2KnCJAWkvH7Zi7P0ahgFNUfnkgWT0hnuJ QfoZNrZQ5e5Cpf6hng0ycDv4j9DnKq3A7cgk3dccJygsxR3XO/612BFMLGMzlgKS fDQ7AcCZRdeTTZy6zwzdaoofXwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDwisX/O Xf6vTWpIlFrQ678Y4JNOMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQTdCNTMyMDA3 ODRFMTFFOUFFNTkxOTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAN5ZAAwDQQCAAIwBwMFACQCmAAwDQYJKoZIhvcNAQELBQAD ggEBAJr04NxF0ZjGv7qiqbl5voyCvaUfWGkIXWAUrUktF2XEzCtXd+bX62p/99UK 5QSTIwlfIBu86TQq456oSa8YXGfnsf6/jamuU7ycSCEpqxQFVgn+uV5NC+vA30Lo 2mh7nQFrj5O598LavY2uEU7By9v/wky8cYk+KiHKe1SJ0BpTjCUm0QVFYWU/Q0Fr XjIVBiFh45Cc6OKV52oEROy35X3LaHfpRzH1a7G5/zkWLetEY34tcf6JGhQcUWQa Upd0oxJkiG9D8iI2DSNKr2wKLwchCaw8jK0x/p8fK3W4CxT+dF/YWVaAFXDVDT/L zbF8KVJHs+OtmuBueXcBC2GW8sY= -----END CERTIFICATE-----Generated at Mon Apr 7 20:20:42 2025 by rpki-client