$ rpki-client -vvf rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/B95187FC2FB811EBBF9A864BC4F9AE02.roa File: B95187FC2FB811EBBF9A864BC4F9AE02.roa (raw, json) Hash identifier: 7LNQOsT6W5YF7PbwLpdxc+PNq2qTTKmlTXDNMzrKzkc= Subject key identifier: 7C:E8:0C:1F:0C:20:21:16:14:40:81:6E:55:E1:5F:DC:20:64:30:CE Certificate issuer: /CN=A9186E8A/serialNumber=BDD5E9A76F1AC4C8E51797ECE99E3DCEECEE7493 Certificate serial: 0782 Authority key identifier: BD:D5:E9:A7:6F:1A:C4:C8:E5:17:97:EC:E9:9E:3D:CE:EC:EE:74:93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/B95187FC2FB811EBBF9A864BC4F9AE02.roa Signing time: Thu 10 Apr 2025 22:02:37 +0000 ROA not before: Thu 10 Apr 2025 22:02:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 21859 IP address blocks: 152.32.230.0/24 maxlen: 24 152.32.232.0/24 maxlen: 24 165.154.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.crl rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186E8A Validity Not Before: Apr 10 22:02:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f83ffd-8b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:36:63:de:28:09:8f:46:f3:6d:ad:d3:57:2a: fa:a2:54:e2:e6:2f:62:7f:7e:68:97:44:b8:81:c6: 81:be:7d:4f:3d:88:cd:85:c8:77:40:11:ef:b5:60: 2c:c1:64:4b:9c:5f:fe:bd:c4:91:d8:75:7c:33:6a: 93:89:f4:b8:52:82:57:87:4f:3b:7f:fb:eb:7e:90: c7:37:15:a7:27:fe:5e:de:29:92:18:8b:9c:04:b6: 98:ef:40:f2:c4:80:ce:3a:f2:c1:58:af:25:43:b9: 67:e8:c6:55:5e:20:76:bb:df:13:ed:00:50:97:b9: cc:a7:5f:41:2a:d2:ec:6b:9f:81:d3:cf:33:9d:09: b1:e9:7b:21:88:70:1a:23:b8:99:3b:9b:64:47:48: 40:43:b8:5b:08:af:6d:e7:83:53:78:57:5f:30:7c: 76:08:0d:05:d0:e0:da:4a:1d:9f:4a:e5:cb:e0:dd: b0:5c:86:1c:59:9b:7e:39:61:95:e7:ec:11:c3:df: f0:2b:af:4c:ae:94:67:2a:ee:50:28:68:30:c0:8b: 5a:4c:f1:88:d7:38:fe:68:54:64:c4:8d:8c:a9:03: b6:7c:69:38:94:c6:9b:79:8e:fe:30:f3:f4:8b:c2: a0:ef:e1:fe:56:3a:00:ef:36:6f:1e:82:fd:b5:55: 90:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E8:0C:1F:0C:20:21:16:14:40:81:6E:55:E1:5F:DC:20:64:30:CE X509v3 Authority Key Identifier: keyid:BD:D5:E9:A7:6F:1A:C4:C8:E5:17:97:EC:E9:9E:3D:CE:EC:EE:74:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/vdXpp28axMjlF5fs6Z49zuzudJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vdXpp28axMjlF5fs6Z49zuzudJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3148DC9E2DFF11EB868A9135C4F9AE02/B95187FC2FB811EBBF9A864BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.32.230.0/24 152.32.232.0/24 165.154.125.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:3e:4f:21:c3:0d:db:c8:40:9c:3d:60:6b:a0:dd:64:0e:71: ee:2a:d4:c7:7d:6f:fd:c0:df:2b:33:eb:82:00:f5:25:34:ed: 9f:3f:e5:64:ed:eb:06:9e:46:3f:a3:51:36:c6:1a:81:0c:6e: 7c:33:28:0c:ae:fe:a2:95:03:a0:e4:be:fa:e8:3a:5f:3b:f3: 63:d6:50:4e:eb:2d:ee:91:21:5a:3a:73:83:c8:12:01:83:74: af:cd:e2:c8:e1:94:8a:f6:d2:d5:af:96:ca:7f:3d:48:15:64: 11:3f:9d:55:c2:c0:b3:2c:cc:00:52:33:ad:08:26:82:21:9a: 39:4f:d0:d1:89:01:e5:81:61:78:98:8e:4b:04:26:97:52:05: e2:c4:c2:7a:0f:81:de:05:42:bf:f4:e4:cc:c7:15:36:f1:f7: f4:03:0c:ec:32:a9:f2:a0:f5:2b:95:99:fd:30:47:1e:28:37: fe:71:30:45:dc:71:23:51:23:b3:34:6c:8a:df:ce:b3:db:5b: fd:11:5f:8c:81:0d:57:58:fb:78:37:75:7b:e1:53:b3:61:86: fa:51:52:57:43:a5:bb:6d:89:0e:18:15:71:74:3a:30:1d:65: c2:5c:3a:32:5d:5b:8e:c0:e4:88:92:b9:ff:8e:12:54:9b:9f: 4b:3d:9f:9e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZFOEExMTAvBgNVBAUTKEJERDVFOUE3NkYxQUM0QzhFNTE3OTdFQ0U5OUUzRENF RUNFRTc0OTMwHhcNMjUwNDEwMjIwMjM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4M2ZmZC04YjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjZj3igJj0bzba3TVyr6olTi5i9if35ol0S4gcaBvn1PPYjNhch3QBHvtWAs wWRLnF/+vcSR2HV8M2qTifS4UoJXh087f/vrfpDHNxWnJ/5e3imSGIucBLaY70Dy xIDOOvLBWK8lQ7ln6MZVXiB2u98T7QBQl7nMp19BKtLsa5+B088znQmx6XshiHAa I7iZO5tkR0hAQ7hbCK9t54NTeFdfMHx2CA0F0ODaSh2fSuXL4N2wXIYcWZt+OWGV 5+wRw9/wK69MrpRnKu5QKGgwwItaTPGI1zj+aFRkxI2MqQO2fGk4lMabeY7+MPP0 i8Kg7+H+VjoA7zZvHoL9tVWQ/QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHzoDB8M ICEWFECBblXhX9wgZDDOMB8GA1UdIwQYMBaAFL3V6advGsTI5ReX7OmePc7s7nST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkU4QS8zMTQ4REM5RTJE RkYxMUVCODY4QTkxMzVDNEY5QUUwMi92ZFhwcDI4YXhNamxGNWZzNlo0OXp1enVk Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZkWHBwMjhheE1qbEY1ZnM2WjQ5enV6dWRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZFOEEvMzE0OERDOUUyREZGMTFFQjg2OEE5MTM1QzRGOUFFMDIvQjk1MTg3RkMy RkI4MTFFQkJGOUE4NjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBACYIOYDBACYIOgDBAClmn0wDQYJKoZIhvcNAQELBQADggEB ACo+TyHDDdvIQJw9YGug3WQOce4q1Md9b/3A3ysz64IA9SU07Z8/5WTt6waeRj+j UTbGGoEMbnwzKAyu/qKVA6DkvvroOl8782PWUE7rLe6RIVo6c4PIEgGDdK/N4sjh lIr20tWvlsp/PUgVZBE/nVXCwLMszABSM60IJoIhmjlP0NGJAeWBYXiYjksEJpdS BeLEwnoPgd4FQr/05MzHFTbx9/QDDOwyqfKg9SuVmf0wRx4oN/5xMEXccSNRI7M0 bIrfzrPbW/0RX4yBDVdY+3g3dXvhU7NhhvpRUldDpbttiQ4YFXF0OjAdZcJcOjJd W47A5IiSuf+OElSbn0s9n54= -----END CERTIFICATE-----Generated at Sat Apr 12 09:08:15 2025 by rpki-client