$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/427B2B004D9011EC868F7186C4F9AE02.roa File: 427B2B004D9011EC868F7186C4F9AE02.roa (raw, json) Hash identifier: E5HlYcC49Xvi6kpaq7+gL20czR33gGRvU+n3elbC34U= Subject key identifier: A7:7F:64:0B:A3:85:C6:33:0F:B0:0E:35:D0:2A:EF:C0:22:05:52:52 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0A1A Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/427B2B004D9011EC868F7186C4F9AE02.roa Signing time: Wed 26 Mar 2025 20:30:35 +0000 ROA not before: Wed 26 Mar 2025 20:30:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140570 IP address blocks: 203.168.224.0/23 maxlen: 24 203.168.226.0/23 maxlen: 24 203.168.228.0/22 maxlen: 24 203.168.232.0/23 maxlen: 24 203.168.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2586 (0xa1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Mar 26 20:30:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e463eb-6ef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:65:8d:81:ef:b1:03:10:e4:17:2a:0d:6c: ae:58:43:a1:b0:31:b9:eb:6b:44:20:9d:e7:b2:60: fe:7a:ea:c1:83:34:cc:8a:76:50:af:27:d7:83:22: 7a:1c:de:85:e3:1a:d5:d1:ec:8f:97:26:02:74:ba: de:2b:d7:98:63:8e:a8:46:98:df:37:f0:47:a7:d6: 08:da:0a:ad:0f:2b:65:2f:1e:26:f0:8e:16:40:2b: bb:f2:d7:9a:86:51:3e:b7:fd:9d:06:74:22:b6:4d: aa:62:c1:95:0d:d3:49:1c:6f:6b:0a:08:e0:ba:ef: f1:b5:58:33:92:81:ec:83:4a:36:f6:61:5f:62:64: 58:0b:26:51:a5:c5:f3:ad:76:68:aa:ca:9a:e0:48: a4:4a:b6:37:37:f8:41:4d:38:6b:65:73:ed:e9:59: a0:05:d1:86:ea:bb:f6:e3:43:bc:11:93:3e:26:06: fa:55:ff:b6:9e:e2:b9:34:b7:67:21:00:c2:b7:9d: 1a:9d:21:79:46:d7:0b:cb:5e:7c:2d:43:3e:4b:55: 06:09:c3:af:e7:1f:dd:27:53:b2:5f:12:08:be:de: 72:0e:29:db:8c:25:72:6a:79:45:3b:34:34:bc:83: bf:61:be:eb:9b:1c:50:48:b9:0b:86:43:7a:24:55: 71:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:7F:64:0B:A3:85:C6:33:0F:B0:0E:35:D0:2A:EF:C0:22:05:52:52 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/427B2B004D9011EC868F7186C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.168.224.0-203.168.235.255 Signature Algorithm: sha256WithRSAEncryption 47:fd:a7:8d:e7:24:b9:16:f2:37:1d:d2:12:f2:da:39:36:a2: 54:5d:78:e9:a8:8c:c4:b3:5f:4a:2a:94:87:8d:89:0c:76:66: 14:60:11:65:73:86:78:0d:31:56:c5:ed:d0:38:16:f1:51:8c: 55:14:ab:6d:2e:d0:a1:7c:f5:e8:10:28:65:47:5f:5b:71:56: ec:6b:c7:e3:ed:cf:d3:5b:b7:d2:b0:98:9f:84:c8:0f:4e:62: 72:7f:af:7b:a9:8b:42:0f:93:ea:5a:24:cc:dd:3a:df:a7:10: ef:e6:ea:22:c5:42:a7:99:a0:91:1c:c0:86:22:14:32:53:e4: 46:29:cf:7f:47:7a:14:ea:88:45:67:dc:98:26:20:37:81:d1: 9a:18:f8:cb:1d:23:34:de:55:b9:83:61:b3:7b:eb:87:57:fc: 9b:85:ce:9f:90:8f:a5:04:bf:c4:8b:59:28:58:f4:b4:3b:a8: 0d:01:9a:08:a8:c9:b0:c2:45:4e:fb:6b:d1:92:f1:81:69:7f: 88:3c:95:d3:d1:46:c8:22:2e:6a:63:5c:df:72:72:b0:6e:b3: 75:86:0c:f2:1e:ea:db:23:f2:b0:c5:c1:fe:79:10:68:57:3a: 3b:47:cb:fa:25:09:98:5e:7d:9a:f5:53:33:c4:2b:1e:0f:e3: f9:9b:59:39 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICChowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUwMzI2MjAzMDM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NjNlYi02ZWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA5ljYHvsQMQ5BcqDWyuWEOhsDG562tEIJ3nsmD+eurBgzTMinZQryfXgyJ6 HN6F4xrV0eyPlyYCdLreK9eYY46oRpjfN/BHp9YI2gqtDytlLx4m8I4WQCu78tea hlE+t/2dBnQitk2qYsGVDdNJHG9rCgjguu/xtVgzkoHsg0o29mFfYmRYCyZRpcXz rXZoqsqa4EikSrY3N/hBTThrZXPt6VmgBdGG6rv240O8EZM+Jgb6Vf+2nuK5NLdn IQDCt50anSF5RtcLy158LUM+S1UGCcOv5x/dJ1OyXxIIvt5yDinbjCVyanlFOzQ0 vIO/Yb7rmxxQSLkLhkN6JFVxzwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFKd/ZAuj hcYzD7AONdAq78AiBVJSMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvNDI3QjJCMDA0 RDkwMTFFQzg2OEY3MTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBcuo4AMEAsuo6DANBgkqhkiG9w0BAQsFAAOCAQEAR/2n jeckuRbyNx3SEvLaOTaiVF146aiMxLNfSiqUh42JDHZmFGARZXOGeA0xVsXt0DgW 8VGMVRSrbS7QoXz16BAoZUdfW3FW7GvH4+3P01u30rCYn4TID05icn+ve6mLQg+T 6lokzN0636cQ7+bqIsVCp5mgkRzAhiIUMlPkRinPf0d6FOqIRWfcmCYgN4HRmhj4 yx0jNN5VuYNhs3vrh1f8m4XOn5CPpQS/xItZKFj0tDuoDQGaCKjJsMJFTvtr0ZLx gWl/iDyV09FGyCIuamNc33JysG6zdYYM8h7q2yPysMXB/nkQaFc6O0fL+iUJmF59 mvVTM8QrHg/j+ZtZOQ== -----END CERTIFICATE-----Generated at Sat Apr 26 08:10:17 2025 by rpki-client