$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/5047D510C02411EC93BB8865C4F9AE02.roa File: 5047D510C02411EC93BB8865C4F9AE02.roa (raw, json) Hash identifier: PVGHL8sNl+GypqCV9Nbt0KEieAW3mlbAftZL/WUZxsk= Subject key identifier: 41:0E:91:85:45:8A:A0:CC:A6:80:98:7C:DD:E3:83:A9:91:CD:22:0E Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 19C4 Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/5047D510C02411EC93BB8865C4F9AE02.roa Signing time: Sat 12 Apr 2025 16:25:01 +0000 ROA not before: Sat 12 Apr 2025 16:25:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58421 IP address blocks: 202.22.16.0/21 maxlen: 21 202.22.24.0/22 maxlen: 22 202.22.28.0/23 maxlen: 23 202.22.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6596 (0x19c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: Apr 12 16:25:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fa93dd-b8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:84:f7:e1:e6:1f:fe:4f:de:0b:6a:4e:66:93: ed:d0:0a:ff:f3:93:bc:1b:99:08:56:50:08:1c:9a: 8e:5c:e3:ed:1c:82:bd:c3:d1:7f:85:65:d1:26:68: ec:69:c4:25:eb:61:44:d5:bd:f9:c1:07:ab:6f:f1: 1a:34:4e:d8:e7:f3:d2:21:92:dd:8d:bd:c2:95:24: 00:0f:6d:c6:00:9f:99:53:76:10:0f:59:94:bc:7f: ff:27:17:d3:cf:bd:47:22:89:9d:f3:5b:3c:da:a7: d6:ec:0b:25:51:dd:3f:54:a7:06:8c:a8:8f:1c:22: 01:fe:af:06:93:20:81:cd:79:e9:02:4a:17:b9:0d: 58:6d:b6:30:1a:81:7d:d4:3a:d6:9a:b6:1e:f4:a8: 6e:b3:ed:4e:8d:f3:a7:74:d9:66:95:18:b9:89:21: b7:b0:3b:f1:46:f2:f6:db:3d:20:a0:1f:c3:f6:dd: cd:97:69:d8:c1:db:fb:a9:e3:03:e0:ab:49:06:45: 8b:38:c7:ba:a1:83:a7:5f:02:b5:6a:8e:8e:48:43: 2c:1d:cd:78:db:cb:6c:cf:5c:dc:15:49:32:32:08: c5:d4:b2:15:0b:63:c9:1a:cc:5e:51:9b:db:f9:0d: d4:98:42:8a:31:d1:ec:cb:1d:3a:71:a4:1f:3c:4d: e5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:0E:91:85:45:8A:A0:CC:A6:80:98:7C:DD:E3:83:A9:91:CD:22:0E X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/5047D510C02411EC93BB8865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.22.16.0-202.22.30.255 Signature Algorithm: sha256WithRSAEncryption 50:3f:2d:be:46:64:3f:ef:ad:81:68:da:36:63:1f:41:be:6b: 61:fd:84:ad:a9:c9:aa:85:1f:3b:88:0b:89:2f:c2:0b:e9:b6: 97:39:1a:94:3b:1d:c9:f9:2c:b0:f9:ae:d6:00:9b:7c:b5:90: 70:dd:28:50:9e:4f:ef:f8:0e:77:c5:00:9d:73:07:d7:39:35: 0e:00:18:41:55:76:c5:1e:5e:ad:ef:f3:91:9c:7a:7f:b3:8d: 73:ef:ed:8d:69:ff:6e:1e:a6:15:af:05:3a:be:9b:62:d8:f9: 0e:13:6e:6d:fd:b0:17:42:b9:d5:42:1d:be:6d:5c:c3:6d:df: 29:a2:08:18:33:72:02:a6:ef:2c:b3:e2:e4:14:1b:92:d4:79: ab:f4:5d:7d:61:d0:68:ca:9d:bb:78:55:01:bd:fa:21:06:7c: e6:8d:be:81:e3:17:9b:40:a9:34:2a:7f:fa:36:0c:b5:49:10: b8:bc:39:a7:91:d3:bc:f6:9c:2e:d9:80:7e:dc:77:ab:67:cc: 28:66:58:25:74:fb:26:9b:b4:f1:7c:e4:14:75:61:35:1b:96: aa:d9:78:36:66:d0:62:c5:51:17:1d:d7:ec:c1:54:a6:45:55: 1c:76:c2:b7:7c:5e:b7:68:fc:c3:ce:87:a0:02:c0:00:b1:a5: 3c:e3:16:80 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICGcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjUwNDEyMTYyNTAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhOTNkZC1iOGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIT34eYf/k/eC2pOZpPt0Ar/85O8G5kIVlAIHJqOXOPtHIK9w9F/hWXRJmjs acQl62FE1b35wQerb/EaNE7Y5/PSIZLdjb3ClSQAD23GAJ+ZU3YQD1mUvH//JxfT z71HIomd81s82qfW7AslUd0/VKcGjKiPHCIB/q8GkyCBzXnpAkoXuQ1YbbYwGoF9 1DrWmrYe9Khus+1OjfOndNlmlRi5iSG3sDvxRvL22z0goB/D9t3Nl2nYwdv7qeMD 4KtJBkWLOMe6oYOnXwK1ao6OSEMsHc1428tsz1zcFUkyMgjF1LIVC2PJGsxeUZvb +Q3UmEKKMdHsyx06caQfPE3l5wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFEEOkYVF iqDMpoCYfN3jg6mRzSIOMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvNTA0N0Q1MTBD MDI0MTFFQzkzQkI4ODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBMoWEAMEAMoWHjANBgkqhkiG9w0BAQsFAAOCAQEAUD8t vkZkP++tgWjaNmMfQb5rYf2EranJqoUfO4gLiS/CC+m2lzkalDsdyfkssPmu1gCb fLWQcN0oUJ5P7/gOd8UAnXMH1zk1DgAYQVV2xR5ere/zkZx6f7ONc+/tjWn/bh6m Fa8FOr6bYtj5DhNubf2wF0K51UIdvm1cw23fKaIIGDNyAqbvLLPi5BQbktR5q/Rd fWHQaMqdu3hVAb36IQZ85o2+geMXm0CpNCp/+jYMtUkQuLw5p5HTvPacLtmAftx3 q2fMKGZYJXT7Jpu08XzkFHVhNRuWqtl4NmbQYsVRFx3X7MFUpkVVHHbCt3xet2j8 w86HoALAALGlPOMWgA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:28 2025 by rpki-client