$ rpki-client -vvf rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/9904EDFA857E11ECA6A4FB59C4F9AE02.roa File: 9904EDFA857E11ECA6A4FB59C4F9AE02.roa (raw, json) Hash identifier: uXNN93KPpMh1sC/GxXfk7rupN3sWo7udXfCSk3ZQb8M= Subject key identifier: 09:DE:6E:88:73:99:8E:8E:B5:29:2F:ED:97:F0:09:9C:55:99:52:F7 Certificate issuer: /CN=A9150080/serialNumber=C3C3B6A2ABCD715DE59A30B35DFC614905BFE643 Certificate serial: 03BB Authority key identifier: C3:C3:B6:A2:AB:CD:71:5D:E5:9A:30:B3:5D:FC:61:49:05:BF:E6:43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w8O2oqvNcV3lmjCzXfxhSQW_5kM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/9904EDFA857E11ECA6A4FB59C4F9AE02.roa Signing time: Sat 15 Mar 2025 00:15:59 +0000 ROA not before: Sat 15 Mar 2025 00:15:59 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141757 IP address blocks: 165.173.184.0/23 maxlen: 24 199.67.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.crl rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w8O2oqvNcV3lmjCzXfxhSQW_5kM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150080, serialNumber=C3C3B6A2ABCD715DE59A30B35DFC614905BFE643 Validity Not Before: Mar 15 00:15:59 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d4c6bf-f50e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:82:b9:64:58:c2:ea:d3:f3:d1:d8:53:ec:0c: 8d:8d:56:21:ed:74:bf:ee:3e:65:98:7a:be:0f:2f: a6:15:00:82:98:a1:53:fe:90:ba:7d:98:d3:73:88: 1e:1b:90:0d:95:f2:2b:87:02:f2:b3:33:d9:71:2f: 6b:43:71:16:21:bf:5d:d4:3e:a2:f2:19:64:21:0b: 96:84:30:a3:b7:4c:f5:08:1e:7a:b7:01:f5:3b:4f: c7:8c:b6:1f:6b:fa:16:0d:1e:89:5c:60:9c:43:00: 95:bd:3b:0e:af:de:99:38:52:e9:d7:24:ec:f1:78: 63:17:82:86:71:fd:73:62:cb:89:49:7a:b1:f3:4c: 34:87:3f:4f:18:c9:09:9f:e2:81:da:27:bb:ac:86: 86:4e:47:e2:8c:ec:29:fb:50:51:e7:2b:b5:21:c0: 3f:ef:e3:c9:78:25:73:1c:b5:93:36:26:82:4e:60: 16:68:3f:8b:c8:81:a2:4a:f8:dc:79:b1:38:ad:1d: 07:64:e6:e4:9e:c3:84:cc:c9:3c:88:0c:8d:44:cb: a5:40:26:ce:b2:05:d4:1f:e2:41:69:bc:26:f8:e6: ed:04:47:d8:bc:54:fe:c3:53:e1:71:ab:cf:ad:3e: 6b:de:32:b9:33:d2:9b:ca:5d:bd:c9:09:10:16:f1: a0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:DE:6E:88:73:99:8E:8E:B5:29:2F:ED:97:F0:09:9C:55:99:52:F7 X509v3 Authority Key Identifier: keyid:C3:C3:B6:A2:AB:CD:71:5D:E5:9A:30:B3:5D:FC:61:49:05:BF:E6:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w8O2oqvNcV3lmjCzXfxhSQW_5kM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/9904EDFA857E11ECA6A4FB59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.173.184.0/23 199.67.71.0/24 Signature Algorithm: sha256WithRSAEncryption 21:60:e9:74:43:aa:c5:ce:3d:3f:be:cc:c5:0b:7d:c6:ac:e2: 64:4e:65:cd:95:67:ed:63:fb:3f:c7:1c:7c:62:bd:e1:4a:9b: 56:4b:02:ba:fe:44:ba:01:0f:59:e1:e8:26:cc:76:90:61:cd: 47:53:44:56:21:c2:e8:9f:e6:d9:b5:8c:06:bf:0f:64:61:f9: 12:71:59:be:ae:99:67:16:dc:fd:fc:75:8d:1e:72:8e:58:ba: 6a:4a:ee:5f:05:9b:b6:e3:6e:08:74:ee:36:60:0c:48:fc:e7: ad:a5:f9:4a:b7:93:d6:f3:48:b9:1f:ee:e2:85:73:26:bd:3a: fe:72:7c:20:36:06:a3:41:0c:00:a3:35:5c:4e:98:07:36:6f: fd:fc:2e:54:7b:f9:b8:e1:bf:f3:63:47:f0:41:e7:e4:d2:ea: bd:41:7c:0c:35:7f:cc:da:6b:b2:56:e5:be:15:c1:4d:f8:fe: a5:4a:b1:85:3e:8b:6e:03:88:10:ad:ea:72:0e:ad:fc:b8:36: af:d6:05:c0:07:fb:c0:e7:d9:aa:87:cf:0d:8d:e3:10:13:ba: 64:22:15:fc:0f:0b:64:68:42:61:0b:a3:7c:21:a6:e0:28:16: 6b:7b:78:4c:95:4b:f1:7b:a7:06:04:09:c0:d8:06:e6:ed:5b: 2c:63:bc:bb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAwODAxMTAvBgNVBAUTKEMzQzNCNkEyQUJDRDcxNURFNTlBMzBCMzVERkM2MTQ5 MDVCRkU2NDMwHhcNMjUwMzE1MDAxNTU5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q0YzZiZi1mNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYK5ZFjC6tPz0dhT7AyNjVYh7XS/7j5lmHq+Dy+mFQCCmKFT/pC6fZjTc4ge G5ANlfIrhwLyszPZcS9rQ3EWIb9d1D6i8hlkIQuWhDCjt0z1CB56twH1O0/HjLYf a/oWDR6JXGCcQwCVvTsOr96ZOFLp1yTs8XhjF4KGcf1zYsuJSXqx80w0hz9PGMkJ n+KB2ie7rIaGTkfijOwp+1BR5yu1IcA/7+PJeCVzHLWTNiaCTmAWaD+LyIGiSvjc ebE4rR0HZObknsOEzMk8iAyNRMulQCbOsgXUH+JBabwm+ObtBEfYvFT+w1PhcavP rT5r3jK5M9Kbyl29yQkQFvGg6QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAnebohz mY6OtSkv7ZfwCZxVmVL3MB8GA1UdIwQYMBaAFMPDtqKrzXFd5Zows138YUkFv+ZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDA4MC8xODVBRThBMjg1 NzAxMUVDOTgyMEU4MzdDNEY5QUUwMi93OE8yb3F2TmNWM2xtakN6WGZ4aFNRV181 a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3c4TzJvcXZOY1YzbG1qQ3pYZnhoU1FXXzVrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTAwODAvMTg1QUU4QTI4NTcwMTFFQzk4MjBFODM3QzRGOUFFMDIvOTkwNEVERkE4 NTdFMTFFQ0E2QTRGQjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGlrbgDBADHQ0cwDQYJKoZIhvcNAQELBQADggEBACFg6XRD qsXOPT++zMULfcas4mROZc2VZ+1j+z/HHHxiveFKm1ZLArr+RLoBD1nh6CbMdpBh zUdTRFYhwuif5tm1jAa/D2Rh+RJxWb6umWcW3P38dY0eco5YumpK7l8Fm7bjbgh0 7jZgDEj8562l+Uq3k9bzSLkf7uKFcya9Ov5yfCA2BqNBDACjNVxOmAc2b/38LlR7 +bjhv/NjR/BB5+TS6r1BfAw1f8zaa7JW5b4VwU34/qVKsYU+i24DiBCt6nIOrfy4 Nq/WBcAH+8Dn2aqHzw2N4xATumQiFfwPC2RoQmELo3whpuAoFmt7eEyVS/F7pwYE CcDYBubtWyxjvLs= -----END CERTIFICATE-----Generated at Sat Apr 26 14:37:13 2025 by rpki-client