$ rpki-client -vvf rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/5EFDD3C4641511EF92F73520C4F9AE02.roa File: 5EFDD3C4641511EF92F73520C4F9AE02.roa (raw, json) Hash identifier: D1MytX8PFSoPgxFDgyjmvW8kj3dmc3d5kXRVH2UDjTo= Subject key identifier: 2C:61:85:B5:7B:D3:56:7D:5E:72:F3:31:08:21:C6:DC:CB:8D:73:13 Certificate issuer: /CN=A9165739/serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942 Certificate serial: 0929 Authority key identifier: 0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/5EFDD3C4641511EF92F73520C4F9AE02.roa Signing time: Wed 02 Apr 2025 20:50:55 +0000 ROA not before: Wed 02 Apr 2025 20:50:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38818 IP address blocks: 49.0.128.0/19 maxlen: 19 49.0.168.0/21 maxlen: 21 49.0.176.0/22 maxlen: 22 203.34.37.0/24 maxlen: 24 203.174.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2345 (0x929) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165739, serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942 Validity Not Before: Apr 2 20:50:55 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67eda32f-2e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f7:6f:f8:5f:b2:42:d5:fe:9d:5f:09:c9:aa: d3:1f:f8:09:ec:b2:12:62:a4:ba:e8:a0:b2:11:01: d3:3f:7f:90:4a:db:e1:8b:34:bf:14:3a:d3:7b:52: 3b:f2:0b:bf:95:4a:c9:32:63:df:77:69:4f:54:ff: 6d:de:77:58:0b:c5:ee:e6:ac:20:c5:c2:73:1b:0e: 15:3c:09:db:81:7f:f0:03:ba:17:85:60:62:93:70: 93:ed:36:35:55:30:37:e1:d5:d5:72:40:77:38:92: 98:cf:69:2e:63:c2:41:22:d1:83:7a:98:ff:60:ab: bb:ad:9a:ef:f6:32:13:11:8d:a1:3f:42:b6:ad:e7: 56:20:b8:42:39:5c:0a:25:c3:81:63:f2:a8:9e:c8: b7:54:2e:90:e0:77:c2:a7:2c:bc:2f:75:3e:74:aa: 9e:9b:31:da:01:92:79:1e:60:9c:d4:14:10:dc:ed: 25:7d:2a:9f:bb:8f:82:e0:9c:7b:22:30:ae:d9:0c: 02:d3:07:00:c2:74:34:90:97:d2:72:1f:f8:eb:1a: 4b:73:48:49:14:58:f5:bc:8e:1d:da:91:d7:7e:21: 0c:f1:e4:27:ff:4d:12:86:18:03:14:81:61:22:87: f4:1f:b8:46:72:2f:11:99:d2:a1:13:69:6f:64:f9: 83:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:61:85:B5:7B:D3:56:7D:5E:72:F3:31:08:21:C6:DC:CB:8D:73:13 X509v3 Authority Key Identifier: keyid:0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/5EFDD3C4641511EF92F73520C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.0.128.0/19 49.0.168.0-49.0.179.255 203.34.37.0/24 203.174.26.0/24 Signature Algorithm: sha256WithRSAEncryption 60:58:db:88:7c:f3:f0:07:b4:ef:5a:4c:a2:1d:2b:b6:4e:4e: 3f:3a:4e:79:37:6a:a2:99:5c:57:59:55:52:d5:58:af:db:77: 09:44:f6:db:ef:0f:1e:57:95:69:e8:9f:4a:45:31:68:89:1f: d2:cc:dc:04:e5:a0:8a:be:8f:b7:6a:21:91:41:7f:2a:58:54: 23:89:7e:91:13:1a:5e:54:65:52:09:d6:5b:28:1d:ac:19:7c: 60:1a:0e:2d:78:2e:4d:70:9d:e3:85:78:df:4d:3a:b8:98:52: c1:14:24:49:50:fc:70:6f:aa:58:90:cc:93:bf:1f:80:d5:d3: e9:cb:0d:37:89:cb:fe:9d:67:9b:23:b9:e0:34:d3:9d:c5:d7: 7c:5f:82:89:c6:f7:07:b0:4b:28:1b:73:72:8d:19:6d:3c:4f: 47:92:09:14:8f:2f:26:e3:a7:81:ed:4b:df:f0:9f:8f:64:1b: 8f:29:cb:84:2e:c7:6b:b3:48:6e:62:59:b2:e3:6d:30:bd:d0: 86:61:eb:dd:aa:24:26:b4:49:47:25:2a:ae:70:7a:3f:9b:0e: 91:bc:94:0c:49:1e:a6:58:ad:35:58:e0:55:52:e5:d5:4e:28: 13:72:22:ca:45:31:c3:d0:57:ed:17:c1:e3:4d:03:33:06:c3: 9f:1a:66:af -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU3MzkxMTAvBgNVBAUTKDBBNjk2RjYzMzY3N0NDN0ZBNURDN0Q1QkIyOTlEMzk4 MzBGQkU5NDIwHhcNMjUwNDAyMjA1MDU1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYTMyZi0yZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvdv+F+yQtX+nV8JyarTH/gJ7LISYqS66KCyEQHTP3+QStvhizS/FDrTe1I7 8gu/lUrJMmPfd2lPVP9t3ndYC8Xu5qwgxcJzGw4VPAnbgX/wA7oXhWBik3CT7TY1 VTA34dXVckB3OJKYz2kuY8JBItGDepj/YKu7rZrv9jITEY2hP0K2redWILhCOVwK JcOBY/Konsi3VC6Q4HfCpyy8L3U+dKqemzHaAZJ5HmCc1BQQ3O0lfSqfu4+C4Jx7 IjCu2QwC0wcAwnQ0kJfSch/46xpLc0hJFFj1vI4d2pHXfiEM8eQn/00ShhgDFIFh Iof0H7hGci8RmdKhE2lvZPmDmQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFCxhhbV7 01Z9XnLzMQghxtzLjXMTMB8GA1UdIwQYMBaAFAppb2M2d8x/pdx9W7KZ05gw++lC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTczOS82QkEwMzI4OEFD NTUxMUVBQTgxNTlFNUNDNEY5QUUwMi9DbWx2WXpaM3pILWwzSDFic3BuVG1ERDc2 VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtbHZZelozekgtbDNIMWJzcG5UbURENzZVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU3MzkvNkJBMDMyODhBQzU1MTFFQUE4MTU5RTVDQzRGOUFFMDIvNUVGREQzQzQ2 NDE1MTFFRjkyRjczNTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAUxAIAwDAMEAzEAqAMEAjEAsAMEAMsiJQMEAMuuGjANBgkq hkiG9w0BAQsFAAOCAQEAYFjbiHzz8Ae071pMoh0rtk5OPzpOeTdqoplcV1lVUtVY r9t3CUT22+8PHleVaeifSkUxaIkf0szcBOWgir6Pt2ohkUF/KlhUI4l+kRMaXlRl UgnWWygdrBl8YBoOLXguTXCd44V43006uJhSwRQkSVD8cG+qWJDMk78fgNXT6csN N4nL/p1nmyO54DTTncXXfF+Cicb3B7BLKBtzco0ZbTxPR5IJFI8vJuOnge1L3/Cf j2QbjynLhC7Ha7NIbmJZsuNtML3QhmHr3aokJrRJRyUqrnB6P5sOkbyUDEkeplit NVjgVVLl1U4oE3IiykUxw9BX7RfB400DMwbDnxpmrw== -----END CERTIFICATE-----Generated at Sat Apr 26 09:06:06 2025 by rpki-client