$ rpki-client -vvf rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/2E5B28FC1E9611F098931D57C4F9AE02.roa File: 2E5B28FC1E9611F098931D57C4F9AE02.roa (raw, json) Hash identifier: EXZKaPGUwtsDkK02FHOfFve03nhQLXnXoDpLr6aZfVk= Subject key identifier: DB:4C:E0:0F:79:3B:55:0A:6D:7F:2C:86:83:CF:AC:D6:79:FA:EF:3C Certificate issuer: /CN=A9172999/serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Certificate serial: 02BC Authority key identifier: 2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/2E5B28FC1E9611F098931D57C4F9AE02.roa Signing time: Mon 21 Apr 2025 09:51:22 +0000 ROA not before: Mon 21 Apr 2025 09:51:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18186 IP address blocks: 43.248.173.0/24 maxlen: 24 43.248.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172999, serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Validity Not Before: Apr 21 09:51:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6806151a-8384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:83:9f:cf:cd:7c:57:fd:b7:f4:af:53:33: d7:f1:be:c9:9e:a1:57:d7:39:4d:dd:0c:9c:87:05: f8:b6:63:16:6c:02:65:04:d5:c6:18:10:65:12:3b: a7:d1:88:9e:9c:4c:7c:a1:4b:3d:da:eb:b5:98:0f: af:27:2b:a5:05:35:cb:d7:d3:2f:87:d0:b1:7d:6c: 2a:46:47:8b:3e:81:9d:a6:0a:08:4f:22:61:c3:b6: 95:0b:bc:8b:26:2f:5c:69:70:1d:6b:2f:f6:e4:a7: 37:99:58:f4:b0:52:87:ed:5a:d4:15:26:63:57:f1: 19:72:75:aa:58:bc:52:4b:2f:02:55:32:cc:a9:74: 00:de:d0:74:0e:96:7c:04:c1:dc:e5:90:7c:d9:88: 8e:5b:86:95:98:47:3b:6e:82:b7:41:9f:82:00:3e: d4:6f:ac:3e:7f:a5:2b:08:1f:e8:a2:3c:43:68:7f: 62:ca:3b:f6:1d:32:17:69:37:c1:97:8c:23:13:40: 5f:79:a4:f6:aa:71:ea:82:90:9e:8b:fb:7d:eb:f8: 1c:a0:07:9d:9d:17:4d:25:2b:26:54:75:64:38:bd: 7e:d4:e8:e9:5b:ea:8c:70:ea:1e:53:6c:2d:7f:f3: 46:4f:b6:7c:72:b3:b1:9c:5a:8f:b4:2d:64:19:c9: af:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4C:E0:0F:79:3B:55:0A:6D:7F:2C:86:83:CF:AC:D6:79:FA:EF:3C X509v3 Authority Key Identifier: keyid:2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/2E5B28FC1E9611F098931D57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.173.0/24 43.248.175.0/24 Signature Algorithm: sha256WithRSAEncryption c3:29:6e:78:cc:60:49:1d:53:d4:e6:bf:12:80:ce:ab:1b:3f: be:c0:06:fe:2d:02:8a:ae:78:b7:26:7e:c4:a3:44:62:26:fb: 07:c3:b1:18:81:f2:1f:4d:64:e1:25:f4:93:8d:de:f8:e1:f5: 99:a7:a1:6f:d8:99:e0:65:cd:c4:da:c6:f5:17:3d:e6:79:db: 76:a8:d2:31:91:70:22:3c:59:5e:89:68:77:81:1e:9c:c3:9a: 2e:a3:68:dc:11:1f:8a:a2:25:5d:22:3d:fe:0a:e7:7e:88:86: 68:a3:a0:fb:3a:27:db:a3:6e:f0:ef:6e:99:fc:12:0e:1c:59: fc:66:95:a7:d7:05:15:5c:82:34:ae:67:34:6e:44:94:b9:83: 22:bf:a6:dc:8a:a5:27:20:46:01:ce:70:ab:49:ec:85:b1:10: 25:45:ee:cd:cb:b7:09:d4:3c:8c:4c:0c:a8:ac:96:da:fd:34: 9c:7b:52:df:97:8c:0b:f2:9a:ab:40:aa:90:b8:b2:5c:e4:7e: 39:bc:5e:c6:93:92:2d:b4:3b:b3:42:6a:e7:69:27:62:96:35: 01:1c:3c:94:a0:b5:2d:68:95:9f:6b:93:59:be:86:dd:f5:5a: 0c:be:56:44:21:1f:7a:de:17:17:c3:f0:ad:82:94:31:82:3a: f8:be:98:a1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI5OTkxMTAvBgNVBAUTKDJGNTMzRUEwRTQwODE5REY1NjNFM0Y3RkUzRkU4NzQy OEQ1MkEwRDUwHhcNMjUwNDIxMDk1MTIyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODA2MTUxYS04Mzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHKDn8/NfFf9t/SvUzPX8b7JnqFX1zlN3QychwX4tmMWbAJlBNXGGBBlEjun 0YienEx8oUs92uu1mA+vJyulBTXL19Mvh9CxfWwqRkeLPoGdpgoITyJhw7aVC7yL Ji9caXAday/25Kc3mVj0sFKH7VrUFSZjV/EZcnWqWLxSSy8CVTLMqXQA3tB0DpZ8 BMHc5ZB82YiOW4aVmEc7boK3QZ+CAD7Ub6w+f6UrCB/oojxDaH9iyjv2HTIXaTfB l4wjE0BfeaT2qnHqgpCei/t96/gcoAednRdNJSsmVHVkOL1+1OjpW+qMcOoeU2wt f/NGT7Z8crOxnFqPtC1kGcmvoQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNtM4A95 O1UKbX8shoPPrNZ5+u88MB8GA1UdIwQYMBaAFC9TPqDkCBnfVj4/f+P+h0KNUqDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjk5OS9CMUMxQjBEQTAz MUUxMUVEOTZFMjU2MjBDNEY5QUUwMi9MMU0tb09RSUdkOVdQajlfNF82SFFvMVNv TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxTS1vT1FJR2Q5V1BqOV80XzZIUW8xU29OVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI5OTkvQjFDMUIwREEwMzFFMTFFRDk2RTI1NjIwQzRGOUFFMDIvMkU1QjI4RkMx RTk2MTFGMDk4OTMxRDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr+K0DBAAr+K8wDQYJKoZIhvcNAQELBQADggEBAMMpbnjM YEkdU9TmvxKAzqsbP77ABv4tAoqueLcmfsSjRGIm+wfDsRiB8h9NZOEl9JON3vjh 9ZmnoW/YmeBlzcTaxvUXPeZ523ao0jGRcCI8WV6JaHeBHpzDmi6jaNwRH4qiJV0i Pf4K536IhmijoPs6J9ujbvDvbpn8Eg4cWfxmlafXBRVcgjSuZzRuRJS5gyK/ptyK pScgRgHOcKtJ7IWxECVF7s3LtwnUPIxMDKisltr9NJx7Ut+XjAvymqtAqpC4slzk fjm8XsaTki20O7NCaudpJ2KWNQEcPJSgtS1olZ9rk1m+ht31Wgy+VkQhH3reFxfD 8K2ClDGCOvi+mKE= -----END CERTIFICATE-----Generated at Sat Apr 26 09:31:09 2025 by rpki-client