$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/06CAA9C230C211ECBB5A4116C4F9AE02.roa File: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (raw, json) Hash identifier: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo= Subject key identifier: C5:BE:72:BA:D2:48:8F:5E:D2:B8:7B:8C:54:09:A7:6F:0D:4B:55:D8 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 0487 Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/06CAA9C230C211ECBB5A4116C4F9AE02.roa Signing time: Thu 27 Feb 2025 01:23:42 +0000 ROA not before: Thu 27 Feb 2025 01:23:42 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 9744 IP address blocks: 203.33.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Feb 27 01:23:42 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bfbe9d-d10e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:48:f3:f8:e3:af:c7:89:50:18:e5:94:12:88: 58:e4:3d:a7:b4:35:0d:f9:b7:d9:b1:6b:97:b4:89: 77:d0:d8:5d:f2:2d:e4:4e:03:fe:c2:8c:c9:23:21: a0:84:ab:01:b5:6e:f3:5a:81:99:34:b1:9b:57:26: bb:67:a2:21:b2:57:28:e4:42:7d:ac:7b:2c:95:0d: 10:f8:a8:16:e9:2b:f3:8a:b5:11:25:49:dc:3b:f6: 56:a9:77:1c:a4:bc:08:f0:3b:33:51:7b:13:95:ff: 1d:89:73:1c:35:78:05:40:af:6b:82:7a:3e:f7:4d: 99:9b:35:8c:e4:fc:da:90:9c:27:6c:ea:d2:54:a6: 20:8c:24:62:a6:ad:c8:97:cc:65:bf:93:9e:f4:d9: bd:4c:42:7f:53:69:0f:4d:51:9d:47:46:01:7e:c8: 9f:dc:d3:f8:27:5d:aa:a3:33:b3:76:23:1d:cb:08: 6e:f8:e2:bb:6d:c0:9c:68:c8:08:03:a8:1c:ce:62: b1:bf:4a:70:e1:3a:ba:30:8e:3d:2c:08:96:80:ed: af:40:bb:e6:75:e3:46:fe:65:2e:2d:c3:de:47:52: 09:8a:59:bc:55:a0:a3:1d:1d:fb:17:58:47:7c:12: 77:68:c8:f9:35:d7:18:44:37:7a:02:b8:bf:0a:a8: 71:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:BE:72:BA:D2:48:8F:5E:D2:B8:7B:8C:54:09:A7:6F:0D:4B:55:D8 X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/06CAA9C230C211ECBB5A4116C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.189.0/24 Signature Algorithm: sha256WithRSAEncryption db:9c:53:77:78:29:0b:82:1b:fe:f8:b0:9a:6a:23:a5:84:58: 63:a0:bf:7d:e8:71:da:75:a5:9a:9c:cc:80:38:c8:85:b2:56: 58:0d:6c:32:bc:91:2d:c4:72:79:4f:81:b9:7a:07:94:e9:fe: 43:fd:01:89:25:8d:ff:e5:65:5e:0e:39:8f:39:1e:10:db:48: 8e:a1:9f:d9:b9:d4:54:bd:c0:b8:eb:cb:45:df:e5:45:59:69: c6:a7:5d:61:70:69:69:c5:d6:73:26:f6:26:16:c6:b7:6e:b7: bb:10:c9:00:2b:9d:48:ec:57:a1:58:ee:d3:df:31:7e:e2:12: aa:3f:1c:e6:5f:76:b4:24:32:e8:39:54:eb:c9:44:9a:55:a8: ba:cf:ec:3a:99:35:16:2a:98:4b:a7:0d:aa:eb:d6:15:90:da: ab:45:ca:3a:d5:3a:82:cb:80:c1:51:ac:d0:ba:7f:c6:5e:f0: 29:93:77:f5:a7:ec:e2:d8:74:1d:7a:c3:fe:d6:95:cb:60:5c: 1b:01:de:a8:3e:ba:d6:ed:2d:18:4f:09:32:11:5e:9c:b3:6d: 53:9d:a2:96:f7:47:de:8f:cd:29:65:b9:2d:f8:54:ef:ef:5f: c9:d6:65:98:d5:f9:40:6f:69:6f:f2:db:df:1e:bb:c5:f1:53: e2:f2:9b:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUwMjI3MDEyMzQyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmYmU5ZC1kMTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ujz+OOvx4lQGOWUEohY5D2ntDUN+bfZsWuXtIl30Nhd8i3kTgP+wozJIyGg hKsBtW7zWoGZNLGbVya7Z6Ihslco5EJ9rHsslQ0Q+KgW6SvzirURJUncO/ZWqXcc pLwI8DszUXsTlf8diXMcNXgFQK9rgno+902ZmzWM5PzakJwnbOrSVKYgjCRipq3I l8xlv5Oe9Nm9TEJ/U2kPTVGdR0YBfsif3NP4J12qozOzdiMdywhu+OK7bcCcaMgI A6gczmKxv0pw4Tq6MI49LAiWgO2vQLvmdeNG/mUuLcPeR1IJilm8VaCjHR37F1hH fBJ3aMj5NdcYRDd6Ari/Cqhx8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMW+crrS SI9e0rh7jFQJp28NS1XYMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBCQkYvRTQ5MTEyM0EzMEJGMTFFQ0E4NUM0NDE0QzRGOUFFMDIvMDZDQUE5QzIz MEMyMTFFQ0JCNUE0MTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIb0wDQYJKoZIhvcNAQELBQADggEBANucU3d4KQuCG/74 sJpqI6WEWGOgv33ocdp1pZqczIA4yIWyVlgNbDK8kS3EcnlPgbl6B5Tp/kP9AYkl jf/lZV4OOY85HhDbSI6hn9m51FS9wLjry0Xf5UVZacanXWFwaWnF1nMm9iYWxrdu t7sQyQArnUjsV6FY7tPfMX7iEqo/HOZfdrQkMug5VOvJRJpVqLrP7DqZNRYqmEun Darr1hWQ2qtFyjrVOoLLgMFRrNC6f8Ze8CmTd/Wn7OLYdB16w/7WlctgXBsB3qg+ utbtLRhPCTIRXpyzbVOdopb3R96PzSlluS34VO/vX8nWZZjV+UBvaW/y298eu8Xx U+Lym7s= -----END CERTIFICATE-----Generated at Sat Apr 26 13:44:00 2025 by rpki-client