$ rpki-client -vvf rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/C7C081641C2411F0AAC7CA1EC4F9AE02.roa File: C7C081641C2411F0AAC7CA1EC4F9AE02.roa (raw, json) Hash identifier: XydeZPWKtG1etOuPzQDEhVL2WYamD3gJgaFCyMqQRnA= Subject key identifier: E6:EC:F7:A7:01:FE:54:57:79:2A:3B:BF:F2:DD:22:59:E6:E0:13:54 Certificate issuer: /CN=A9140D69/serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35 Certificate serial: 02AD Authority key identifier: 10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/C7C081641C2411F0AAC7CA1EC4F9AE02.roa Signing time: Fri 18 Apr 2025 07:14:35 +0000 ROA not before: Fri 18 Apr 2025 07:14:35 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 21859 IP address blocks: 163.53.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.crl rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140D69, serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35 Validity Not Before: Apr 18 07:14:35 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6801fbda-1265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:82:4a:fc:3e:ed:b7:43:c7:8b:d7:3c:48:bb: 9b:de:75:8b:b3:55:fc:ee:42:12:ad:09:d9:f7:64: d0:51:ee:93:f3:5d:b9:99:29:37:7f:6b:aa:0f:3f: 8e:99:86:11:8c:d7:7e:11:c4:ee:cd:25:f1:3d:d1: 01:86:f1:e6:36:b4:29:0a:47:f6:b0:13:7c:9a:f9: f6:61:6f:2e:ad:d6:53:40:65:fd:59:df:ab:8e:96: 02:b0:17:81:25:75:87:14:70:00:d9:ab:da:69:8c: c5:b4:f3:52:c1:16:4d:31:ef:92:f6:70:6b:76:bf: 00:7f:ee:ff:ff:5a:d8:3e:5c:21:aa:f7:d2:7f:be: 65:ed:f1:65:5d:7a:84:01:92:cf:18:5c:21:fc:46: 05:10:80:0d:43:f6:41:1a:12:9e:33:44:11:05:8e: dc:e1:74:24:c0:b2:f1:e1:09:43:de:29:25:61:7e: 32:68:c0:28:58:d1:6b:ed:94:f7:85:b0:2a:d5:18: 5d:d2:b5:3c:2f:d5:84:6d:5a:72:33:b5:7f:a6:37: 4a:eb:e6:68:a9:2e:b0:f0:88:fc:11:3e:a3:db:42: cf:c0:39:93:c5:b1:a4:f8:77:a0:e3:41:9d:e8:5f: 8f:d1:1d:c2:f8:16:5c:93:90:d5:6e:07:93:7a:d2: ad:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:EC:F7:A7:01:FE:54:57:79:2A:3B:BF:F2:DD:22:59:E6:E0:13:54 X509v3 Authority Key Identifier: keyid:10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/C7C081641C2411F0AAC7CA1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.53.245.0/24 Signature Algorithm: sha256WithRSAEncryption 88:8b:3c:5a:5d:d6:79:60:de:31:7a:3b:e9:9e:23:bd:d4:9a: 95:2d:6c:f8:fc:84:89:5a:bf:da:99:7d:e1:ab:68:72:05:e8: 1f:cf:5d:ac:b4:0b:7e:7d:79:ad:fa:a6:0a:a4:3e:79:f8:36: de:4f:e2:d7:dd:4e:bd:4f:42:64:2b:f9:95:68:27:27:e2:26: 3c:20:cf:4a:ca:91:c4:1d:03:b6:1d:09:c6:9b:c9:f7:f8:b0: 58:6d:c5:24:b8:11:83:f6:4c:d0:05:21:f5:95:f0:34:e5:af: e1:42:37:5d:8c:01:93:29:b4:15:8f:8e:89:76:b8:3d:cf:ac: b7:70:4a:61:07:9f:21:60:28:5d:f8:88:47:16:49:5a:3b:43: bc:05:3e:ed:05:02:eb:2a:7b:fe:62:ae:6a:1b:f0:0f:b6:7a: fd:41:4d:fc:ed:55:14:32:f0:a2:f5:cc:ef:f7:25:ad:77:f6: 76:76:27:f1:28:f4:27:2f:98:d8:e2:f5:a1:a4:2c:5a:74:c6: 4e:f2:12:4f:16:11:39:68:12:e7:2a:23:16:7c:20:d1:5b:f9: e4:ef:e5:cd:77:d3:47:15:52:f5:09:8d:6a:0b:78:c4:14:40: e2:0a:b3:50:3a:42:3c:03:d1:42:02:10:57:22:b6:48:73:4a: 2c:97:4a:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBENjkxMTAvBgNVBAUTKDEwM0ZBOEJERkZGQjlGMDU1NzA3MkM0NzMzMkI4MUE5 RTgwRUREMzUwHhcNMjUwNDE4MDcxNDM1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAxZmJkYS0xMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYJK/D7tt0PHi9c8SLub3nWLs1X87kISrQnZ92TQUe6T8125mSk3f2uqDz+O mYYRjNd+EcTuzSXxPdEBhvHmNrQpCkf2sBN8mvn2YW8urdZTQGX9Wd+rjpYCsBeB JXWHFHAA2avaaYzFtPNSwRZNMe+S9nBrdr8Af+7//1rYPlwhqvfSf75l7fFlXXqE AZLPGFwh/EYFEIANQ/ZBGhKeM0QRBY7c4XQkwLLx4QlD3iklYX4yaMAoWNFr7ZT3 hbAq1Rhd0rU8L9WEbVpyM7V/pjdK6+ZoqS6w8Ij8ET6j20LPwDmTxbGk+Heg40Gd 6F+P0R3C+BZck5DVbgeTetKttwIDAQABo4IClTCCApEwHQYDVR0OBBYEFObs96cB /lRXeSo7v/LdIlnm4BNUMB8GA1UdIwQYMBaAFBA/qL3/+58FVwcsRzMrganoDt01 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEQ2OS8wRTE3N0Q1QTA1 OEMxMUVEQURENjYwMTFDNEY5QUUwMi9FRC1vdmZfN253VlhCeXhITXl1QnFlZ08z VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VELW92Zl83bndWWEJ5eEhNeXVCcWVnTzNUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBENjkvMEUxNzdENUEwNThDMTFFREFERDY2MDExQzRGOUFFMDIvQzdDMDgxNjQx QzI0MTFGMEFBQzdDQTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACjNfUwDQYJKoZIhvcNAQELBQADggEBAIiLPFpd1nlg3jF6 O+meI73UmpUtbPj8hIlav9qZfeGraHIF6B/PXay0C359ea36pgqkPnn4Nt5P4tfd Tr1PQmQr+ZVoJyfiJjwgz0rKkcQdA7YdCcabyff4sFhtxSS4EYP2TNAFIfWV8DTl r+FCN12MAZMptBWPjol2uD3PrLdwSmEHnyFgKF34iEcWSVo7Q7wFPu0FAusqe/5i rmob8A+2ev1BTfztVRQy8KL1zO/3Ja139nZ2J/Eo9CcvmNji9aGkLFp0xk7yEk8W ETloEucqIxZ8INFb+eTv5c1300cVUvUJjWoLeMQUQOIKs1A6QjwD0UICEFcitkhz SiyXSsE= -----END CERTIFICATE-----Generated at Sat Apr 26 08:13:10 2025 by rpki-client