$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/53E3F02CF88511EFAF4C196EC4F9AE02.roa File: 53E3F02CF88511EFAF4C196EC4F9AE02.roa (raw, json) Hash identifier: wYWX73wDqg9YYxoFfUJfz2bbrCEn4lzzQ8CGOEGcvBA= Subject key identifier: C5:F0:32:6A:88:B7:60:B1:22:AB:A6:57:83:8B:10:A5:D1:94:09:69 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 02AD Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/53E3F02CF88511EFAF4C196EC4F9AE02.roa Signing time: Mon 03 Mar 2025 23:14:59 +0000 ROA not before: Mon 03 Mar 2025 23:14:59 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 152179 IP address blocks: 218.33.84.0/22 maxlen: 24 218.33.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18 Validity Not Before: Mar 3 23:14:59 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67c637f3-d061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ab:75:19:d1:38:23:07:d1:6f:90:30:88:01: ee:2e:ff:c9:7e:8a:09:68:02:d1:89:95:ed:c2:83: 1e:33:ab:7f:e8:2f:5d:56:62:eb:78:26:b8:50:fd: ff:3a:95:58:9f:8c:6f:23:a5:35:5f:fc:72:4f:63: 4e:58:b7:12:84:93:ef:30:7f:01:72:82:b0:4c:d3: cb:c6:03:bd:29:57:1f:92:55:de:e8:9e:07:b2:43: 4c:fd:1e:7f:88:67:1a:e0:b7:1b:98:78:48:42:c0: 0f:33:8e:0a:4b:11:3b:79:c1:81:14:2b:6d:56:d5: f4:b1:51:2f:24:81:68:71:02:f1:bb:91:a1:2a:5c: ce:fc:90:1c:0d:6b:fa:ff:08:f9:7a:53:ca:43:65: 81:f2:50:2b:ac:65:3c:f5:8b:ab:2e:2a:1e:a3:e6: 71:dd:ef:9a:64:9b:d7:b4:2f:02:6f:22:0f:19:c3: f2:09:12:e6:1d:78:4e:6d:6c:9d:ea:ca:2a:17:80: 9f:86:bb:7d:53:e2:ab:1f:d8:a4:c4:6b:34:60:d0: 8b:eb:5e:2d:16:19:b3:d0:17:3d:58:ab:d2:82:3e: bc:61:0c:f0:4a:dc:a9:7e:39:5d:36:4a:17:f9:6e: a1:2c:ba:e9:7d:b6:50:b3:a5:c2:15:bd:e9:fe:87: b1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F0:32:6A:88:B7:60:B1:22:AB:A6:57:83:8B:10:A5:D1:94:09:69 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/53E3F02CF88511EFAF4C196EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.33.84.0-218.33.91.255 Signature Algorithm: sha256WithRSAEncryption b2:e4:af:a8:03:5d:ed:0e:c7:37:fb:da:99:de:5d:46:8c:3f: ee:62:32:b6:35:49:ad:b1:40:3f:f9:e0:c0:50:88:7e:09:fa: be:8f:73:dd:fd:fb:56:55:e0:8f:b8:89:61:5a:42:0e:61:12: fb:d9:4c:64:eb:d0:f9:07:fa:6e:a1:f8:89:13:66:93:68:0d: 6e:d1:41:90:75:03:1f:d1:f5:6f:e8:a2:4b:25:62:0a:e1:57: 4b:4a:50:af:1e:32:3d:15:0c:7e:3c:60:ab:b2:5d:02:bb:f7: cb:a4:e4:8b:3a:18:9b:82:3f:83:8d:d2:a0:9d:a6:af:80:8b: 9c:25:7a:ed:cd:dc:b9:bc:b2:ff:8d:78:cc:75:ba:5c:9a:5f: eb:3d:0c:59:9b:a4:03:a5:85:da:03:25:00:91:51:49:5f:48: b6:60:f1:fe:20:b4:05:36:f8:89:75:3b:de:17:8d:a0:fc:39: 66:e8:08:07:ce:cb:72:98:2c:fa:51:f7:44:03:83:b5:4b:e7: c0:1a:a5:82:04:f3:3e:b4:58:f9:c5:4c:f3:21:d9:9c:03:8d: 67:6e:27:98:bb:2b:91:37:2f:87:37:1a:00:58:e5:b5:5a:08: 2b:06:2b:33:57:5e:13:6d:d0:04:dd:e6:3b:70:32:eb:4a:09: 26:be:93:2e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwMzAzMjMxNDU5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M2MzdmMy1kMDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlat1GdE4IwfRb5AwiAHuLv/JfooJaALRiZXtwoMeM6t/6C9dVmLreCa4UP3/ OpVYn4xvI6U1X/xyT2NOWLcShJPvMH8BcoKwTNPLxgO9KVcfklXe6J4HskNM/R5/ iGca4LcbmHhIQsAPM44KSxE7ecGBFCttVtX0sVEvJIFocQLxu5GhKlzO/JAcDWv6 /wj5elPKQ2WB8lArrGU89YurLioeo+Zx3e+aZJvXtC8CbyIPGcPyCRLmHXhObWyd 6soqF4Cfhrt9U+KrH9ikxGs0YNCL614tFhmz0Bc9WKvSgj68YQzwStypfjldNkoX +W6hLLrpfbZQs6XCFb3p/oexnwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFMXwMmqI t2CxIqumV4OLEKXRlAlpMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvNTNFM0YwMkNG ODg1MTFFRkFGNEMxOTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAtohVAMEAtohWDANBgkqhkiG9w0BAQsFAAOCAQEAsuSv qANd7Q7HN/vamd5dRow/7mIytjVJrbFAP/ngwFCIfgn6vo9z3f37VlXgj7iJYVpC DmES+9lMZOvQ+Qf6bqH4iRNmk2gNbtFBkHUDH9H1b+iiSyViCuFXS0pQrx4yPRUM fjxgq7JdArv3y6TkizoYm4I/g43SoJ2mr4CLnCV67c3cubyy/414zHW6XJpf6z0M WZukA6WF2gMlAJFRSV9ItmDx/iC0BTb4iXU73heNoPw5ZugIB87Lcpgs+lH3RAOD tUvnwBqlggTzPrRY+cVM8yHZnAONZ24nmLsrkTcvhzcaAFjltVoIKwYrM1deE23Q BN3mO3Ay60oJJr6TLg== -----END CERTIFICATE-----Generated at Sat Apr 5 11:36:04 2025 by rpki-client