$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/90AE648CDA6011ED9BC6175FC4F9AE02.roa File: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (raw, json) Hash identifier: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU= Subject key identifier: BE:21:81:4A:5C:CD:44:7E:AE:1C:5E:8D:F4:F3:34:A6:3A:C2:FE:B4 Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 0177 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/90AE648CDA6011ED9BC6175FC4F9AE02.roa Signing time: Wed 19 Mar 2025 03:19:18 +0000 ROA not before: Wed 19 Mar 2025 03:19:18 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135047 IP address blocks: 210.48.174.0/24 maxlen: 24 210.48.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Mar 19 03:19:18 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67da37b6-1721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:16:62:a8:a2:39:d1:e7:21:ba:85:e0:fb:07: 78:f1:d9:a9:61:d9:c5:21:5d:f8:a3:ea:09:7c:11: ad:a3:ae:76:b2:8d:b9:de:86:ef:97:93:b5:62:26: 63:7d:3e:e0:59:2f:97:93:5b:e7:98:7c:10:11:8a: 62:0e:22:9c:42:f9:d0:a6:c2:1d:99:65:fe:37:db: 10:c9:88:f3:bd:50:77:af:26:ae:21:3c:fc:6b:df: 2c:60:2c:fb:cb:11:ef:1e:ca:d2:89:f2:3c:f9:3a: e4:26:3a:19:a0:18:f4:33:31:99:95:4b:37:00:2d: d7:6d:8d:49:62:e2:aa:f5:0f:d0:6b:c9:3b:e3:82: de:ff:aa:9d:93:f1:3e:c3:6d:2e:f6:d4:d5:a8:ef: 9e:ae:9f:91:c9:8e:46:3d:43:7d:88:95:4f:23:03: 9a:f5:7a:71:4a:0d:df:a0:71:c3:f5:cc:e6:d1:74: fa:6f:21:e9:45:24:6d:cc:34:6a:f6:98:79:14:16: f2:74:47:3d:18:c3:b2:d2:67:3e:bc:9f:48:76:8b: c3:c7:bd:10:73:30:a2:cd:cf:99:bd:a7:73:14:70: 0f:57:17:44:59:43:07:5f:25:e5:ba:44:5e:de:3d: 10:f4:74:5d:1a:1d:2e:88:6e:11:7d:14:bd:89:74: 84:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:21:81:4A:5C:CD:44:7E:AE:1C:5E:8D:F4:F3:34:A6:3A:C2:FE:B4 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/90AE648CDA6011ED9BC6175FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.48.174.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:a6:4a:92:55:a6:89:67:ff:bf:f5:ce:7f:43:ac:d0:41:6c: 72:29:47:5c:4b:b4:ae:23:ee:49:b5:b9:1a:15:03:b5:3d:3d: dc:fb:3c:41:e5:3d:cf:b6:d4:39:78:75:b3:11:1e:01:8b:19: 37:c7:6a:46:cc:5f:77:49:7d:1e:19:34:cd:cc:23:85:57:79: fa:af:9e:05:d4:c0:4c:63:cf:a0:93:f7:bc:84:37:91:dc:be: a7:ba:3c:bc:b3:10:93:fa:44:77:a3:66:40:6c:93:f7:f9:b9: 4f:94:95:4a:73:e3:a6:a5:db:fe:bb:26:15:c2:7a:f6:98:f4: 52:0e:cf:a0:b0:44:9d:da:ed:10:17:75:0b:63:3e:b5:4d:07: b6:c4:61:91:b6:7d:b1:6b:0e:bc:ac:95:40:63:be:ac:2c:70: 69:25:e9:b2:ff:04:47:e0:df:54:f6:8d:8c:fa:31:51:08:d8: 0d:d9:15:cf:cf:0e:29:59:f3:03:c0:b9:17:56:67:90:7a:5b: e3:e4:98:de:6d:6e:72:6a:73:af:42:2d:12:6e:93:98:8f:d5: 83:2f:d1:44:de:96:ef:02:f2:a8:91:dc:d0:c8:bd:08:41:39: ff:e1:26:b9:26:95:f9:01:5c:83:22:ab:59:50:da:4f:a9:44: 51:5b:25:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwMzE5MDMxOTE4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RhMzdiNi0xNzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxZiqKI50echuoXg+wd48dmpYdnFIV34o+oJfBGto652so253obvl5O1YiZj fT7gWS+Xk1vnmHwQEYpiDiKcQvnQpsIdmWX+N9sQyYjzvVB3ryauITz8a98sYCz7 yxHvHsrSifI8+TrkJjoZoBj0MzGZlUs3AC3XbY1JYuKq9Q/Qa8k744Le/6qdk/E+ w20u9tTVqO+erp+RyY5GPUN9iJVPIwOa9XpxSg3foHHD9czm0XT6byHpRSRtzDRq 9ph5FBbydEc9GMOy0mc+vJ9IdovDx70QczCizc+ZvadzFHAPVxdEWUMHXyXlukRe 3j0Q9HRdGh0uiG4RfRS9iXSEhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL4hgUpc zUR+rhxejfTzNKY6wv60MB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBDNTMvQ0U0NDVCRDBEQTVCMTFFRDk2NzQ3QzVBQzRGOUFFMDIvOTBBRTY0OENE QTYwMTFFRDlCQzYxNzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHSMK4wDQYJKoZIhvcNAQELBQADggEBAC+mSpJVpoln/7/1 zn9DrNBBbHIpR1xLtK4j7km1uRoVA7U9Pdz7PEHlPc+21Dl4dbMRHgGLGTfHakbM X3dJfR4ZNM3MI4VXefqvngXUwExjz6CT97yEN5Hcvqe6PLyzEJP6RHejZkBsk/f5 uU+UlUpz46al2/67JhXCevaY9FIOz6CwRJ3a7RAXdQtjPrVNB7bEYZG2fbFrDrys lUBjvqwscGkl6bL/BEfg31T2jYz6MVEI2A3ZFc/PDilZ8wPAuRdWZ5B6W+PkmN5t bnJqc69CLRJuk5iP1YMv0UTelu8C8qiR3NDIvQhBOf/hJrkmlfkBXIMiq1lQ2k+p RFFbJa0= -----END CERTIFICATE-----Generated at Sat Apr 26 17:09:14 2025 by rpki-client