$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/916EFEE0DA6011ED9BC6175FC4F9AE02.roa File: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (raw, json) Hash identifier: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw= Subject key identifier: AF:ED:AD:C6:93:51:5E:94:00:57:5E:69:64:D8:68:00:CC:F9:51:D6 Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 0178 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/916EFEE0DA6011ED9BC6175FC4F9AE02.roa Signing time: Wed 19 Mar 2025 03:19:19 +0000 ROA not before: Wed 19 Mar 2025 03:19:19 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 23655 IP address blocks: 210.48.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Mar 19 03:19:19 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67da37b7-25a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f7:40:75:44:d4:28:12:e6:c2:ef:e2:3c:d3: a4:93:34:9c:e8:f6:28:1c:32:51:e7:f1:6a:64:77: f7:8f:45:64:b8:bb:97:8b:f2:fe:fe:c1:a2:b1:93: 99:4e:2f:6a:ed:27:29:f7:7a:52:59:29:6b:3c:29: 31:a3:6a:bd:ea:b5:49:ca:fa:2f:f6:3b:a3:bf:c7: e2:1d:61:52:a0:44:af:e3:60:9a:19:3e:14:27:fe: 90:5c:cd:da:8d:95:d1:f4:b3:20:7c:3f:00:09:87: 60:00:67:51:79:c5:64:8f:0d:a0:af:cb:91:cb:35: 76:ea:aa:52:85:ab:e8:39:78:9a:c5:78:67:6f:69: 18:22:72:1b:9e:15:a0:d2:8b:c1:fc:27:c9:ec:1e: 6e:2c:fb:f7:2b:be:0b:67:b2:cc:e0:38:6d:76:a8: 06:6d:c3:ba:ff:1f:91:4b:49:b4:fd:e5:32:ec:0f: 01:c2:0f:31:a8:f4:81:b1:79:50:91:fe:bb:2b:65: b7:36:e9:41:8a:69:18:43:fc:fa:44:ed:d8:8f:c3: 4f:87:e2:55:10:9f:9c:f1:9a:76:86:61:92:fd:10: 9b:e8:7e:9a:c1:b2:10:d4:87:7d:ca:e2:3c:5c:3d: 0f:68:57:2a:34:e1:f0:f2:41:0d:28:81:35:70:82: 13:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:ED:AD:C6:93:51:5E:94:00:57:5E:69:64:D8:68:00:CC:F9:51:D6 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/916EFEE0DA6011ED9BC6175FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.48.190.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:35:a1:16:5e:48:a6:58:02:0b:58:e1:e0:f7:e5:00:6a:44: 88:3b:a8:b5:34:e5:5e:aa:f0:16:45:e7:67:51:af:51:4a:de: cb:99:9a:c6:ed:9d:b0:67:ad:51:b6:c2:9b:ea:c7:4b:cb:60: 20:e2:8b:49:69:56:c4:ec:0a:fe:26:6e:aa:05:92:f7:19:c7: 2e:32:15:40:4b:93:e3:23:b8:59:73:18:16:7e:5f:ed:b9:b4: 80:00:6a:be:9d:2c:8b:ee:a8:b5:02:13:e0:5b:51:3c:31:c0: e4:38:06:24:5d:2d:f3:c5:18:1b:9c:a7:22:02:9c:7f:30:23: 2a:6b:10:fb:c2:af:f9:8b:f4:fb:8c:8d:00:09:90:db:7b:99: bf:78:1b:67:3e:c8:ea:92:d9:3c:21:55:de:79:af:0d:8b:f4: 28:42:59:f5:c2:0d:09:ae:b4:a1:4e:8b:d3:dd:3e:2f:61:94: e9:67:7a:57:78:06:de:5a:c6:f9:70:5f:2b:76:ce:8e:55:8e: 37:fe:b7:b7:dd:94:14:83:3e:c4:f2:f1:49:63:2b:69:a8:9e: 5a:23:6e:d1:99:ef:32:ef:1a:f8:43:d3:da:30:11:74:74:5f: 86:88:fb:a1:42:bf:54:c4:54:06:c8:15:21:38:62:60:7f:82: 6e:47:32:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwMzE5MDMxOTE5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RhMzdiNy0yNWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PdAdUTUKBLmwu/iPNOkkzSc6PYoHDJR5/FqZHf3j0VkuLuXi/L+/sGisZOZ Ti9q7Scp93pSWSlrPCkxo2q96rVJyvov9jujv8fiHWFSoESv42CaGT4UJ/6QXM3a jZXR9LMgfD8ACYdgAGdRecVkjw2gr8uRyzV26qpShavoOXiaxXhnb2kYInIbnhWg 0ovB/CfJ7B5uLPv3K74LZ7LM4DhtdqgGbcO6/x+RS0m0/eUy7A8Bwg8xqPSBsXlQ kf67K2W3NulBimkYQ/z6RO3Yj8NPh+JVEJ+c8Zp2hmGS/RCb6H6awbIQ1Id9yuI8 XD0PaFcqNOHw8kENKIE1cIITRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK/trcaT UV6UAFdeaWTYaADM+VHWMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBDNTMvQ0U0NDVCRDBEQTVCMTFFRDk2NzQ3QzVBQzRGOUFFMDIvOTE2RUZFRTBE QTYwMTFFRDlCQzYxNzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSML4wDQYJKoZIhvcNAQELBQADggEBAE81oRZeSKZYAgtY 4eD35QBqRIg7qLU05V6q8BZF52dRr1FK3suZmsbtnbBnrVG2wpvqx0vLYCDii0lp VsTsCv4mbqoFkvcZxy4yFUBLk+MjuFlzGBZ+X+25tIAAar6dLIvuqLUCE+BbUTwx wOQ4BiRdLfPFGBucpyICnH8wIyprEPvCr/mL9PuMjQAJkNt7mb94G2c+yOqS2Twh Vd55rw2L9ChCWfXCDQmutKFOi9PdPi9hlOlneld4Bt5axvlwXyt2zo5Vjjf+t7fd lBSDPsTy8UljK2monlojbtGZ7zLvGvhD09owEXR0X4aI+6FCv1TEVAbIFSE4YmB/ gm5HMjI= -----END CERTIFICATE-----Generated at Sat Apr 26 17:10:38 2025 by rpki-client