$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/C58950F4CC3A11EF80AC530BC4F9AE02.roa File: C58950F4CC3A11EF80AC530BC4F9AE02.roa (raw, json) Hash identifier: eORqf3Oz2AeqEvrYAYLcmW4DWddEbC2alvo0muIChbk= Subject key identifier: A0:D9:34:23:26:8E:16:F4:FD:C7:65:FC:A3:64:65:CB:C6:71:F7:E3 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0227 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/C58950F4CC3A11EF80AC530BC4F9AE02.roa Signing time: Mon 06 Jan 2025 14:30:27 +0000 ROA not before: Mon 06 Jan 2025 14:30:27 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 214654 IP address blocks: 202.155.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18 Validity Not Before: Jan 6 14:30:27 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=677be902-869a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bf:7c:99:4f:8f:39:6a:f2:25:5f:42:95:a2: 42:b1:de:75:e4:34:5e:a8:24:7f:3c:a1:e9:bb:cd: 88:fe:40:79:f6:e9:b0:38:74:c3:b8:80:0d:02:0f: 0d:3f:e6:57:bf:41:f9:32:e5:ca:d9:0c:cf:94:d4: cb:54:81:df:cc:00:bc:4e:49:ed:2f:84:38:a0:8d: 68:57:de:24:fd:47:84:f7:b0:22:aa:56:23:78:b6: 42:68:c5:09:fd:16:0c:3c:b3:29:b4:7b:1e:9f:d5: d7:12:33:34:03:fb:8f:3f:72:4e:1b:97:20:92:5b: c9:02:16:69:d7:75:df:15:9f:94:36:ac:be:e1:b5: bc:03:17:ed:f3:c0:ae:92:14:78:4b:d9:d5:21:11: 66:2c:5d:89:cd:84:7e:f5:d5:c4:0f:bf:a4:98:59: 2f:90:a0:4a:5c:79:e8:9a:42:19:19:91:e8:70:3c: 86:2a:92:2a:ee:92:e2:d0:39:a7:90:69:55:d8:b8: f9:05:ed:01:d5:c0:90:4d:0d:bb:98:cb:4e:6d:07: 3d:4b:42:31:2e:49:cc:53:a4:db:b1:b0:aa:c8:c5: 0b:de:f6:67:36:ec:ff:c2:98:fa:b8:8e:42:17:d8: 79:ef:19:6b:89:ff:c3:5e:f8:0f:c4:a2:c6:2a:a6: 8e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D9:34:23:26:8E:16:F4:FD:C7:65:FC:A3:64:65:CB:C6:71:F7:E3 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/C58950F4CC3A11EF80AC530BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.144.0/21 Signature Algorithm: sha256WithRSAEncryption a4:7d:96:32:fa:55:b4:93:d1:c6:0f:11:15:4c:13:2d:84:98: 32:fc:98:e8:4b:11:20:8c:bb:00:a7:fc:46:f5:8d:db:b7:dd: 38:36:01:d4:90:30:1c:5a:24:13:f2:48:da:99:39:a0:a0:ce: 7f:4f:d9:04:ca:76:48:8b:ed:d6:d5:9d:30:41:0e:37:e1:ce: d2:37:40:cd:ce:3c:78:2c:80:09:ab:2d:94:67:de:f9:b5:b7: ac:60:16:bb:81:d3:e8:c8:c1:23:fc:45:fc:3c:fc:8c:a4:f1: 63:cc:b6:13:4a:ea:b9:db:23:cd:6b:58:4e:88:e1:a6:8d:d9: b1:1e:1b:ae:67:cf:58:58:78:5d:95:05:71:b4:80:95:ed:5f: 51:76:06:1d:26:08:6f:72:9e:34:5f:cc:4e:dc:7c:a6:3c:96: 9b:ea:16:e8:f2:02:7d:6a:f5:53:ed:44:05:4c:3d:de:de:31: cb:5c:c3:1d:c2:0a:92:af:3a:d1:c6:8e:67:57:41:db:41:b5: ad:29:82:b8:de:5f:f6:e7:2a:02:55:9c:55:ef:21:06:2d:74: 0d:4f:71:b4:ef:1b:58:9e:97:38:02:88:58:13:cf:be:e6:a9: d0:03:3a:d7:11:38:ca:4c:a9:9a:49:5d:07:a9:94:b0:8e:6f: cb:d8:03:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwMTA2MTQzMDI3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdiZTkwMi04NjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt798mU+POWryJV9ClaJCsd515DReqCR/PKHpu82I/kB59umwOHTDuIANAg8N P+ZXv0H5MuXK2QzPlNTLVIHfzAC8TkntL4Q4oI1oV94k/UeE97AiqlYjeLZCaMUJ /RYMPLMptHsen9XXEjM0A/uPP3JOG5cgklvJAhZp13XfFZ+UNqy+4bW8Axft88Cu khR4S9nVIRFmLF2JzYR+9dXED7+kmFkvkKBKXHnomkIZGZHocDyGKpIq7pLi0Dmn kGlV2Lj5Be0B1cCQTQ27mMtObQc9S0IxLknMU6TbsbCqyMUL3vZnNuz/wpj6uI5C F9h57xlrif/DXvgPxKLGKqaOuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKDZNCMm jhb0/cdl/KNkZcvGcffjMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvQzU4OTUwRjRD QzNBMTFFRjgwQUM1MzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKm5AwDQYJKoZIhvcNAQELBQADggEBAKR9ljL6VbST0cYP ERVMEy2EmDL8mOhLESCMuwCn/Eb1jdu33Tg2AdSQMBxaJBPySNqZOaCgzn9P2QTK dkiL7dbVnTBBDjfhztI3QM3OPHgsgAmrLZRn3vm1t6xgFruB0+jIwSP8Rfw8/Iyk 8WPMthNK6rnbI81rWE6I4aaN2bEeG65nz1hYeF2VBXG0gJXtX1F2Bh0mCG9ynjRf zE7cfKY8lpvqFujyAn1q9VPtRAVMPd7eMctcwx3CCpKvOtHGjmdXQdtBta0pgrje X/bnKgJVnFXvIQYtdA1PcbTvG1ielzgCiFgTz77mqdADOtcROMpMqZpJXQeplLCO b8vYA3Q= -----END CERTIFICATE-----Generated at Sat Apr 5 16:12:21 2025 by rpki-client