$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa File: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (raw, json) Hash identifier: BR0iac6RCibng8iXx5EGv9yUT7uect2xiyJYOcbA9Hs= Subject key identifier: E7:C9:78:C0:4E:91:DC:A8:99:C2:29:E6:6A:5E:72:FD:4B:D3:12:25 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: 16 Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa Signing time: Mon 31 Mar 2025 07:02:43 +0000 ROA not before: Mon 31 Mar 2025 07:02:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4764 IP address blocks: 203.6.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: Mar 31 07:02:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ea3e13-bbec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:de:d8:64:0f:c0:59:de:37:b3:85:30:5d:1b: 34:53:a4:21:21:a0:b4:57:6f:17:73:42:b1:ad:4e: 04:c2:fd:6e:a5:3e:e9:78:b6:32:f5:4b:a3:bc:b9: 44:10:84:73:fc:83:20:78:aa:82:e4:b6:83:47:02: 7f:64:e2:fc:3e:70:10:a7:09:96:e6:6b:6d:94:9f: a7:f1:fa:87:3a:12:32:b2:c7:24:11:40:d4:c3:e1: 81:96:87:81:88:14:09:e3:f1:8c:7b:0a:77:9c:7d: 39:82:2b:05:8a:c6:60:db:48:5d:7d:dd:79:ad:5e: 9b:bf:f6:ff:e2:c5:4b:f5:4e:64:db:be:90:d9:32: 7e:b3:75:69:36:a2:25:88:bf:44:f3:d3:63:8c:78: c3:dc:a1:92:82:6c:ec:72:de:89:4b:e9:7d:70:7f: ba:7b:9a:fc:6f:0b:51:01:38:bc:0c:26:91:15:80: 2c:5f:6e:5d:f3:b1:54:d4:fd:e8:ab:54:7f:0c:6a: dc:e5:c8:2b:5e:ea:f4:52:b7:80:1a:e0:56:97:85: 2e:d2:59:6b:49:eb:b2:fb:a2:2b:19:12:be:ad:5f: 74:1c:8d:73:28:af:33:67:5f:42:05:5e:87:c7:5b: 7c:10:36:9a:27:57:27:50:11:16:dc:54:68:28:7f: d1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C9:78:C0:4E:91:DC:A8:99:C2:29:E6:6A:5E:72:FD:4B:D3:12:25 X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.6.241.0/24 Signature Algorithm: sha256WithRSAEncryption 11:8a:52:99:df:6f:1f:00:3b:56:d6:ea:26:0f:da:ef:69:c3: 4a:dd:37:73:13:be:61:25:9c:27:10:76:7a:23:87:95:a3:e1: 03:f3:c3:70:9b:33:ea:9b:81:2a:41:1a:f6:99:fc:ed:dd:1d: 35:93:d7:a7:57:49:ed:2f:d9:b9:04:7e:fa:e9:2f:c2:27:8b: e1:64:4f:a0:ef:2b:5e:e9:43:8d:6d:2f:fd:1a:fc:e3:8c:ef: 11:39:43:f2:f6:5e:92:55:f0:8c:f0:6d:c5:f7:1a:a2:2b:b3: 11:01:62:52:89:e0:16:a5:c5:a3:41:ea:09:81:e9:ec:61:18: 4a:77:6f:c1:c2:f1:87:50:0f:d2:f3:4e:c2:d5:23:72:a2:52: 67:9c:a5:4f:7a:50:fd:3e:5b:29:14:54:00:c4:97:50:3b:ad: 62:9f:56:e9:ee:17:c6:b6:49:fc:14:d6:aa:d3:66:5f:59:3b: bb:7d:e5:4d:9a:81:89:f8:1e:36:74:0e:30:0e:a6:c7:1e:16: 44:08:9c:40:03:f2:55:fc:1f:79:ad:f0:20:6d:83:6e:b2:40: 80:63:f1:6e:79:fe:02:5f:57:50:8a:ca:d6:8b:f1:81:a0:0b: 58:fc:6f:56:77:8e:df:91:4c:03:c5:c4:73:47:2b:25:d0:fd: 67:57:1d:c8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTQ3NzExMC8GA1UEBRMoNzI0MUU4RjAzOEI5RjI1MkZCNjFDQTQxQjZBNEZDMTY3 Qjc3NTUyNjAeFw0yNTAzMzEwNzAyNDNaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWEzZTEzLWJiZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw3thkD8BZ3jezhTBdGzRTpCEhoLRXbxdzQrGtTgTC/W6lPul4tjL1S6O8uUQQ hHP8gyB4qoLktoNHAn9k4vw+cBCnCZbma22Un6fx+oc6EjKyxyQRQNTD4YGWh4GI FAnj8Yx7CnecfTmCKwWKxmDbSF193XmtXpu/9v/ixUv1TmTbvpDZMn6zdWk2oiWI v0Tz02OMeMPcoZKCbOxy3olL6X1wf7p7mvxvC1EBOLwMJpEVgCxfbl3zsVTU/eir VH8MatzlyCte6vRSt4Aa4FaXhS7SWWtJ67L7oisZEr6tX3QcjXMorzNnX0IFXofH W3wQNponVydQERbcVGgof9EPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU58l4wE6R 3KiZwinmal5y/UvTEiUwHwYDVR0jBBgwFoAUckHo8Di58lL7YcpBtqT8Fnt3VSYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNDc3LzZCNzAzNUY4RjNG QzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2tIbzhEaTU4bEw3WWNwQnRxVDhGbnQzVlNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTQ3Ny82QjcwMzVGOEYzRkMxMUVGOTlENTM3MzBDNEY5QUUwMi9DQUI3M0UzQUYz RkMxMUVGODNCNEREMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsG8TANBgkqhkiG9w0BAQsFAAOCAQEAEYpSmd9vHwA7Vtbq Jg/a72nDSt03cxO+YSWcJxB2eiOHlaPhA/PDcJsz6puBKkEa9pn87d0dNZPXp1dJ 7S/ZuQR++ukvwieL4WRPoO8rXulDjW0v/Rr844zvETlD8vZeklXwjPBtxfcaoiuz EQFiUongFqXFo0HqCYHp7GEYSndvwcLxh1AP0vNOwtUjcqJSZ5ylT3pQ/T5bKRRU AMSXUDutYp9W6e4XxrZJ/BTWqtNmX1k7u33lTZqBifgeNnQOMA6mxx4WRAicQAPy Vfwfea3wIG2DbrJAgGPxbnn+Al9XUIrK1ovxgaALWPxvVneO35FMA8XEc0crJdD9 Z1cdyA== -----END CERTIFICATE-----Generated at Sat Apr 26 05:54:14 2025 by rpki-client