$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/005D2F8E56B611EAA08F9B82C4F9AE02.roa File: 005D2F8E56B611EAA08F9B82C4F9AE02.roa (raw, json) Hash identifier: 660m80xTZki8ylh8j+pM5SznA/z6+3ERhy9Sd6ExGUY= Subject key identifier: 47:77:D0:AD:C0:25:25:AF:E5:BA:9F:68:34:35:80:4A:80:7E:BD:12 Certificate issuer: /CN=A914781A/serialNumber=59314703092845FCBD0BFBAEEF87D83FC66ED1D7 Certificate serial: 1341 Authority key identifier: 59:31:47:03:09:28:45:FC:BD:0B:FB:AE:EF:87:D8:3F:C6:6E:D1:D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/005D2F8E56B611EAA08F9B82C4F9AE02.roa Signing time: Tue 04 Mar 2025 15:30:48 +0000 ROA not before: Tue 04 Mar 2025 15:30:48 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136952 IP address blocks: 167.179.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.crl rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4929 (0x1341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914781A, serialNumber=59314703092845FCBD0BFBAEEF87D83FC66ED1D7 Validity Not Before: Mar 4 15:30:48 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c71ca7-c6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:55:10:7a:84:2e:ed:14:94:14:d1:d7:3d:88: 4d:77:0c:38:0c:36:f2:3c:90:6f:4e:4e:15:14:45: 67:5a:a2:25:e8:d4:d1:87:9c:bc:1c:60:b5:59:79: 16:76:b0:45:50:48:f3:30:5e:fe:e8:62:16:71:a2: d6:f8:5e:1d:43:9d:fb:55:8a:d8:3a:06:c5:53:36: 9b:20:3e:3d:b4:93:28:23:ac:13:76:de:81:e6:99: bb:7f:45:05:f9:04:54:39:bc:f1:ee:4c:7f:91:df: a0:e7:b0:43:90:c3:fb:6b:ed:0f:d0:2d:39:97:1e: cb:41:fa:ae:47:c4:0b:a6:e2:0a:f6:41:de:d2:78: d2:ef:db:d7:d1:c3:32:41:12:e1:6e:9b:74:2f:81: 3f:ff:82:c3:44:67:77:aa:ce:60:97:9e:8f:f6:d1: f5:59:75:78:3b:7a:03:f3:fb:67:6b:63:5f:34:e5: 57:3c:fd:89:f3:e6:f0:bb:3c:d8:e0:53:8d:b6:ae: c8:d3:c6:1c:8f:57:d9:8c:72:db:a9:0c:a4:2f:61: fb:4a:49:73:02:29:00:47:ea:62:c9:72:04:04:8e: 45:25:0b:a1:2c:74:c5:b2:6a:c0:f4:8d:1c:55:7b: 93:00:ef:72:91:b2:15:6c:f6:0d:40:d8:f9:48:c4: a7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:77:D0:AD:C0:25:25:AF:E5:BA:9F:68:34:35:80:4A:80:7E:BD:12 X509v3 Authority Key Identifier: keyid:59:31:47:03:09:28:45:FC:BD:0B:FB:AE:EF:87:D8:3F:C6:6E:D1:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/005D2F8E56B611EAA08F9B82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.224.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:b8:e3:2e:e6:02:6d:2e:03:8d:7b:83:a5:5a:a8:54:a3:5b: cf:54:63:15:0a:d7:08:0f:6a:cb:70:87:5c:ed:0e:e4:58:bb: 53:f5:f9:18:de:09:6f:7c:f8:15:f2:a0:4c:d2:b3:22:fb:e4: 96:91:0f:f4:ea:b6:d0:d1:e5:79:ec:21:8b:da:a9:1b:53:73: 9c:e8:5b:96:a9:8e:e6:fe:a3:fe:19:53:f6:35:29:b1:f1:85: 0b:1e:af:8b:f3:3e:f8:b6:73:cc:fc:c8:a4:9c:69:6e:4d:08: 94:6a:53:d8:ba:83:10:9c:d5:51:46:59:09:63:af:60:4a:6f: 20:ea:b8:ae:5a:79:c2:da:f5:73:69:ac:ff:9d:da:9f:d9:18: bc:94:2b:70:0a:e8:19:48:a0:7d:36:f4:79:4d:61:5f:f5:75: 99:85:9c:93:27:83:a5:52:29:17:c7:2e:01:2f:5d:a1:b2:d7: 56:14:03:72:b8:c6:1f:b2:cc:56:2c:0c:88:07:57:18:33:d3: 3e:29:84:e7:ad:c5:92:fd:b7:ed:1a:47:d3:b0:ee:1d:e9:37: 1d:a1:e0:3e:15:d2:f5:d4:4e:7a:c6:ab:d1:f6:6e:0d:d8:a5: 4d:b1:a9:ad:26:3f:57:8e:d8:82:7c:b7:da:19:aa:7b:0d:0b: 3e:dc:a6:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICE0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4MUExMTAvBgNVBAUTKDU5MzE0NzAzMDkyODQ1RkNCRDBCRkJBRUVGODdEODNG QzY2RUQxRDcwHhcNMjUwMzA0MTUzMDQ4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3MWNhNy1jNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FUQeoQu7RSUFNHXPYhNdww4DDbyPJBvTk4VFEVnWqIl6NTRh5y8HGC1WXkW drBFUEjzMF7+6GIWcaLW+F4dQ537VYrYOgbFUzabID49tJMoI6wTdt6B5pm7f0UF +QRUObzx7kx/kd+g57BDkMP7a+0P0C05lx7LQfquR8QLpuIK9kHe0njS79vX0cMy QRLhbpt0L4E//4LDRGd3qs5gl56P9tH1WXV4O3oD8/tna2NfNOVXPP2J8+bwuzzY 4FONtq7I08Ycj1fZjHLbqQykL2H7SklzAikAR+piyXIEBI5FJQuhLHTFsmrA9I0c VXuTAO9ykbIVbPYNQNj5SMSnowIDAQABo4IClTCCApEwHQYDVR0OBBYEFEd30K3A JSWv5bqfaDQ1gEqAfr0SMB8GA1UdIwQYMBaAFFkxRwMJKEX8vQv7ru+H2D/GbtHX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzgxQS80RUVDNUI3RUE2 QjQxMUU4QjQzQTE0NjdDNEY5QUUwMi9XVEZIQXdrb1JmeTlDX3V1NzRmWVA4WnUw ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dURkhBd2tvUmZ5OUNfdXU3NGZZUDhadTBkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc4MUEvNEVFQzVCN0VBNkI0MTFFOEI0M0ExNDY3QzRGOUFFMDIvMDA1RDJGOEU1 NkI2MTFFQUEwOEY5QjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACns+AwDQYJKoZIhvcNAQELBQADggEBAHq44y7mAm0uA417 g6VaqFSjW89UYxUK1wgPastwh1ztDuRYu1P1+RjeCW98+BXyoEzSsyL75JaRD/Tq ttDR5XnsIYvaqRtTc5zoW5apjub+o/4ZU/Y1KbHxhQser4vzPvi2c8z8yKScaW5N CJRqU9i6gxCc1VFGWQljr2BKbyDquK5aecLa9XNprP+d2p/ZGLyUK3AK6BlIoH02 9HlNYV/1dZmFnJMng6VSKRfHLgEvXaGy11YUA3K4xh+yzFYsDIgHVxgz0z4phOet xZL9t+0aR9Ow7h3pNx2h4D4V0vXUTnrGq9H2bg3YpU2xqa0mP1eO2IJ8t9oZqnsN Cz7cppQ= -----END CERTIFICATE-----Generated at Sat Apr 26 15:26:51 2025 by rpki-client