$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa File: D6373CB80CD211EFB50E0B5EC4F9AE02.roa (raw, json) Hash identifier: VJ44WLNQk6fthSf4IfFQ/fDdSEbGp2lfMGV/+APm5xk= Subject key identifier: 17:67:60:DB:BC:31:ED:A5:21:5B:DC:5C:DE:66:0C:22:BA:45:92:01 Certificate issuer: /CN=A9146B76/serialNumber=CA15C5908D072DD821714EC67E1175E3AA9112E6 Certificate serial: 078F Authority key identifier: CA:15:C5:90:8D:07:2D:D8:21:71:4E:C6:7E:11:75:E3:AA:91:12:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa Signing time: Mon 28 Apr 2025 22:01:31 +0000 ROA not before: Mon 28 Apr 2025 22:01:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55720 IP address blocks: 45.116.176.0/24 maxlen: 24 45.116.177.0/24 maxlen: 24 45.116.179.0/24 maxlen: 24 103.228.52.0/24 maxlen: 24 103.228.53.0/24 maxlen: 24 103.228.54.0/24 maxlen: 24 103.228.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.crl rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 21:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1935 (0x78f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B76, serialNumber=CA15C5908D072DD821714EC67E1175E3AA9112E6 Validity Not Before: Apr 28 22:01:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680ffabb-acbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:d4:93:c8:94:76:d8:a3:a1:eb:45:e1:a5: 0a:66:8e:7d:7c:a7:93:9e:8c:33:f1:83:7f:c5:9d: 7b:54:cb:77:e0:3d:72:42:69:15:65:70:53:ec:da: f4:fb:e1:f1:d1:d6:74:46:30:41:e9:89:be:bf:d0: 2f:13:31:07:39:cc:7b:22:a4:8c:8b:ba:9d:23:38: a3:e2:20:ac:98:a1:9a:31:82:b3:83:a6:5c:b2:8c: 5e:35:09:bc:d3:eb:0a:45:89:90:1c:1a:81:55:62: 35:ca:24:8d:ab:cb:73:9c:d4:c6:95:0e:c2:69:1a: d2:50:a7:2d:36:23:d2:b6:10:d0:06:7e:3a:49:fd: 3a:2f:0b:46:19:e8:cd:10:c1:a9:4a:9e:66:ca:87: 16:2e:8a:c1:a1:9f:0a:d1:5b:5e:45:ac:53:d7:0a: ba:7b:ff:41:53:65:72:6d:9a:45:2c:24:73:bc:bd: 9a:50:68:6d:d4:cc:31:8b:88:54:51:12:a2:40:a2: d2:1a:95:43:98:55:5e:91:1a:c9:5e:34:9f:25:d0: 52:b4:c5:3d:0d:a2:ef:07:70:66:db:d2:7c:2f:1f: bd:49:a9:fe:68:38:38:3e:94:22:69:72:17:0e:dd: 4c:f8:91:fd:73:b1:f0:81:9a:84:03:13:4a:e7:15: 58:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:67:60:DB:BC:31:ED:A5:21:5B:DC:5C:DE:66:0C:22:BA:45:92:01 X509v3 Authority Key Identifier: keyid:CA:15:C5:90:8D:07:2D:D8:21:71:4E:C6:7E:11:75:E3:AA:91:12:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.176.0/23 45.116.179.0/24 103.228.52.0/22 Signature Algorithm: sha256WithRSAEncryption 79:ce:e0:57:36:9c:ef:86:69:dd:a3:aa:9d:9a:11:87:ce:88: 05:ff:09:2e:4b:43:6f:ca:96:87:71:9b:72:2a:67:80:50:71: cd:ba:3e:61:0a:ac:34:c9:17:7b:1b:d5:ed:89:b6:2a:5d:1c: 13:2e:9c:f5:c1:bf:ff:19:bf:3c:50:62:ed:dc:e5:d2:f8:bf: 7e:ee:9f:76:0a:80:20:84:a4:cb:0d:45:5a:f5:e3:f8:89:07: 81:8e:e2:b4:9d:82:46:88:e0:05:7f:c2:07:c3:c7:07:f1:2e: 0f:54:99:11:8d:84:12:4e:32:ef:df:61:49:a6:3a:5d:66:03: 75:09:41:42:2e:2d:d4:50:12:af:ef:47:3a:99:e2:48:af:ca: c1:51:18:37:89:0e:43:66:c2:ee:9e:fe:9c:89:dc:ac:ae:f5: 6d:2f:fe:44:5b:89:61:e8:1f:32:bc:93:96:08:c7:5f:7b:48: 8c:fd:49:8f:7e:94:e4:08:3a:90:0b:1c:d4:dd:eb:6d:d5:bc: b8:3d:ff:10:50:46:75:63:ec:06:83:7d:e7:54:3a:b0:f2:0a: 39:c3:0f:61:51:51:b9:f9:c6:ce:d4:1b:88:2f:fc:33:60:55: 9c:f9:46:5b:38:3c:c7:5e:89:f4:8f:6f:61:46:b3:a9:7b:7b: 9d:8c:ab:da -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCNzYxMTAvBgNVBAUTKENBMTVDNTkwOEQwNzJERDgyMTcxNEVDNjdFMTE3NUUz QUE5MTEyRTYwHhcNMjUwNDI4MjIwMTMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmZmFiYi1hY2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAPUk8iUdtijoetF4aUKZo59fKeTnowz8YN/xZ17VMt34D1yQmkVZXBT7Nr0 ++Hx0dZ0RjBB6Ym+v9AvEzEHOcx7IqSMi7qdIzij4iCsmKGaMYKzg6ZcsoxeNQm8 0+sKRYmQHBqBVWI1yiSNq8tznNTGlQ7CaRrSUKctNiPSthDQBn46Sf06LwtGGejN EMGpSp5myocWLorBoZ8K0VteRaxT1wq6e/9BU2VybZpFLCRzvL2aUGht1Mwxi4hU URKiQKLSGpVDmFVekRrJXjSfJdBStMU9DaLvB3Bm29J8Lx+9San+aDg4PpQiaXIX Dt1M+JH9c7HwgZqEAxNK5xVYfQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBdnYNu8 Me2lIVvcXN5mDCK6RZIBMB8GA1UdIwQYMBaAFMoVxZCNBy3YIXFOxn4RdeOqkRLm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkI3Ni82Q0EzMzY5QzA5 RDYxMUVCQjNDM0M2ODVDNEY5QUUwMi95aFhGa0kwSExkZ2hjVTdHZmhGMTQ2cVJF dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3loWEZrSTBITGRnaGNVN0dmaEYxNDZxUkV1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCNzYvNkNBMzM2OUMwOUQ2MTFFQkIzQzNDNjg1QzRGOUFFMDIvRDYzNzNDQjgw Q0QyMTFFRkI1MEUwQjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEtdLADBAAtdLMDBAJn5DQwDQYJKoZIhvcNAQELBQADggEB AHnO4Fc2nO+Gad2jqp2aEYfOiAX/CS5LQ2/Klodxm3IqZ4BQcc26PmEKrDTJF3sb 1e2JtipdHBMunPXBv/8ZvzxQYu3c5dL4v37un3YKgCCEpMsNRVr14/iJB4GO4rSd gkaI4AV/wgfDxwfxLg9UmRGNhBJOMu/fYUmmOl1mA3UJQUIuLdRQEq/vRzqZ4kiv ysFRGDeJDkNmwu6e/pyJ3Kyu9W0v/kRbiWHoHzK8k5YIx197SIz9SY9+lOQIOpAL HNTd623VvLg9/xBQRnVj7AaDfedUOrDyCjnDD2FRUbn5xs7UG4gv/DNgVZz5Rls4 PMdeifSPb2FGs6l7e52Mq9o= -----END CERTIFICATE-----Generated at Mon May 5 18:47:45 2025 by rpki-client