$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/DE670A60679D11EEAFBA0A5DC4F9AE02.roa File: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (raw, json) Hash identifier: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4= Subject key identifier: 85:A8:2A:80:1C:40:B4:DB:A1:59:6B:CB:31:3F:37:59:5D:AB:4C:A4 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3460 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/DE670A60679D11EEAFBA0A5DC4F9AE02.roa Signing time: Sat 22 Feb 2025 15:50:59 +0000 ROA not before: Sat 22 Feb 2025 15:50:59 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 46606 IP address blocks: 45.113.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13408 (0x3460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Feb 22 15:50:59 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b9f263-3b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cd:2c:78:60:47:91:75:f0:c3:28:17:3c:97: 75:86:da:1d:2e:78:66:9d:f9:3e:a6:65:57:b1:1f: bb:f9:18:0a:5a:45:63:0a:3e:79:d1:52:95:df:a6: 5c:8c:ee:e4:9a:89:70:db:ce:2f:42:2f:92:eb:55: de:d2:bb:8b:50:f8:0b:6c:65:0e:21:49:59:12:40: e3:8d:07:64:a4:b7:62:47:0f:01:48:f6:03:9f:88: 2f:1a:17:7a:c6:96:59:f2:18:16:48:a9:4d:4c:82: 63:a0:35:77:be:25:66:df:3f:8e:64:c2:12:e7:07: 83:19:e6:b4:c6:6f:89:f0:89:a5:14:47:6c:11:e1: 62:d0:1b:87:c2:bb:91:a3:40:48:ca:ff:a4:39:ec: ab:f6:ea:ea:38:e5:d8:e2:5f:b6:2d:ae:73:84:5d: 45:7d:91:c7:16:25:10:1b:c8:72:95:05:bf:4c:97: 1f:4f:06:57:ad:e1:da:bb:bd:82:87:2c:f8:1c:88: 1d:ee:96:27:94:4a:ed:cf:70:d6:76:00:1b:25:4d: c2:18:db:32:7d:e1:3f:37:88:bb:f2:46:0b:a9:4b: 9a:4b:f5:1c:ac:99:b3:5e:9e:8e:3e:fb:ad:bb:ef: d7:c9:b5:79:bb:f2:3e:76:fe:9c:01:0f:1b:98:83: 9f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A8:2A:80:1C:40:B4:DB:A1:59:6B:CB:31:3F:37:59:5D:AB:4C:A4 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/DE670A60679D11EEAFBA0A5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.123.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:c8:e7:50:ce:08:3e:23:f3:ad:43:fa:34:41:24:67:32:bc: c4:0a:2d:e0:17:78:ca:44:9b:d0:50:26:67:38:52:d9:39:b7: 53:23:6f:a6:be:10:66:3e:3b:d2:0c:de:83:50:25:19:96:19: 00:4d:38:d4:bf:eb:32:aa:95:ee:94:d2:ca:2e:c2:04:e3:28: 21:80:40:73:50:81:6d:e6:70:7d:7f:4f:6c:3d:e6:75:c6:27: 20:1a:f7:07:6d:2b:b6:24:11:dc:96:24:52:b3:95:f0:07:41: f6:41:09:77:f4:81:c1:d3:e4:35:d9:19:10:cb:8f:18:2b:f9: 50:09:ec:c5:2e:c7:cd:c1:a0:44:a4:7e:f7:d4:e4:aa:0c:34: 9f:5e:ba:69:f2:8d:77:bd:d8:03:06:81:b4:69:de:c5:bb:14: 13:95:67:5b:68:cd:75:55:9f:df:33:12:31:cb:68:e4:d2:32: 75:8b:30:cf:82:ce:b6:cb:ee:60:63:93:42:fb:14:b7:1a:27: e3:82:9d:9d:96:dd:55:cf:58:8d:c6:28:7b:95:27:db:00:90: e7:d1:8a:c8:11:13:17:dc:b3:c4:c5:7e:88:81:e7:e8:f6:37: d5:fb:2e:ea:60:f2:7a:1d:d6:a9:19:3d:71:19:05:02:ca:6a: b0:ca:f3:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwMjIyMTU1MDU5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I5ZjI2My0zYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM0seGBHkXXwwygXPJd1htodLnhmnfk+pmVXsR+7+RgKWkVjCj550VKV36Zc jO7kmolw284vQi+S61Xe0ruLUPgLbGUOIUlZEkDjjQdkpLdiRw8BSPYDn4gvGhd6 xpZZ8hgWSKlNTIJjoDV3viVm3z+OZMIS5weDGea0xm+J8ImlFEdsEeFi0BuHwruR o0BIyv+kOeyr9urqOOXY4l+2La5zhF1FfZHHFiUQG8hylQW/TJcfTwZXreHau72C hyz4HIgd7pYnlErtz3DWdgAbJU3CGNsyfeE/N4i78kYLqUuaS/UcrJmzXp6OPvut u+/XybV5u/I+dv6cAQ8bmIOfgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIWoKoAc QLTboVlryzE/N1ldq0ykMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE3NTMvODA1MTQ1OTAxREE3MTFFMkFBQTk0QUExMDhCMDJDRDIvREU2NzBBNjA2 NzlEMTFFRUFGQkEwQTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcXswDQYJKoZIhvcNAQELBQADggEBAB/I51DOCD4j861D +jRBJGcyvMQKLeAXeMpEm9BQJmc4Utk5t1Mjb6a+EGY+O9IM3oNQJRmWGQBNONS/ 6zKqle6U0souwgTjKCGAQHNQgW3mcH1/T2w95nXGJyAa9wdtK7YkEdyWJFKzlfAH QfZBCXf0gcHT5DXZGRDLjxgr+VAJ7MUux83BoESkfvfU5KoMNJ9eumnyjXe92AMG gbRp3sW7FBOVZ1tozXVVn98zEjHLaOTSMnWLMM+CzrbL7mBjk0L7FLcaJ+OCnZ2W 3VXPWI3GKHuVJ9sAkOfRisgRExfcs8TFfoiB5+j2N9X7Lupg8nod1qkZPXEZBQLK arDK81E= -----END CERTIFICATE-----Generated at Sat Apr 26 15:09:40 2025 by rpki-client