$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/316EEFD4AAE511E68EBE4D52C4F9AE02.roa File: 316EEFD4AAE511E68EBE4D52C4F9AE02.roa (raw, json) Hash identifier: JRg1LZXcFPzNHPCZgdhpiNiCJWsLCkY/WCIHJGUF1Yc= Subject key identifier: 37:B5:C3:63:5F:7E:37:F3:88:58:9A:50:57:AA:89:15:A9:03:8D:43 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 3489 Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/316EEFD4AAE511E68EBE4D52C4F9AE02.roa Signing time: Thu 30 Jan 2025 14:30:22 +0000 ROA not before: Thu 30 Jan 2025 14:30:21 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 132001 IP address blocks: 198.48.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13449 (0x3489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Jan 30 14:30:21 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679b8cfd-ee5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ef:41:e5:df:c6:07:91:36:aa:ff:2b:4b:05: 98:16:64:26:2f:fe:76:d9:0d:9d:f2:f4:1f:93:32: b3:88:12:2b:c9:8f:98:70:fb:5e:3c:48:53:1b:0a: 0a:78:cb:e2:76:bc:16:08:ae:bb:9a:de:1e:b7:b5: 64:20:9a:47:8a:f5:48:05:6e:57:f9:28:42:29:a2: f4:d8:7e:99:1f:b3:33:24:95:ea:39:c8:79:2b:81: de:b1:40:a9:9f:5f:28:92:5a:99:78:fb:3e:28:cd: c4:3b:5e:73:92:0b:4b:7d:24:b7:cf:d1:ad:a1:09: 4f:0a:86:71:43:42:ee:8e:07:7e:fa:4a:df:55:85: 42:5b:b3:eb:24:b2:f1:60:cf:52:80:ab:5f:c1:21: 4c:b3:72:c1:9a:ed:3b:04:a1:a1:e0:96:30:63:57: 18:8f:a9:4f:59:d2:17:c9:f5:67:22:aa:af:75:78: 9d:1e:aa:a0:2f:66:ff:ff:86:49:be:7f:fd:6b:22: 04:cb:6b:bc:4c:b8:26:b8:f6:16:0e:01:e5:0a:26: bb:6a:a1:13:6f:b2:45:d3:44:fe:58:52:e4:d4:f1: 9f:22:11:0d:cd:d3:a5:b4:1b:48:a9:89:73:74:aa: 03:be:8f:fd:c8:c6:2c:da:b9:6c:bf:d1:d5:b7:ff: 0a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B5:C3:63:5F:7E:37:F3:88:58:9A:50:57:AA:89:15:A9:03:8D:43 X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/316EEFD4AAE511E68EBE4D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 198.48.2.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:ed:ef:1a:c3:eb:b3:a8:20:84:2d:b6:31:f4:a7:6c:57:5e: 3a:c6:09:e0:10:dd:ce:db:d4:cc:78:ee:30:14:cc:6c:48:dc: 6c:ef:cb:11:6e:35:12:6e:29:3e:12:19:e8:89:e9:9e:2c:0b: 5f:89:e9:73:a4:90:bb:e9:5a:07:f1:d2:af:0a:2c:cc:52:e2: cb:2e:43:a7:8e:03:01:c9:d9:bd:53:0a:94:a9:98:dd:9e:1a: 93:c9:b7:9e:f1:7a:e3:94:2a:76:30:be:a6:bd:94:57:77:95: ed:7f:a0:3d:5e:2e:55:16:88:99:0d:d0:d0:43:9a:ea:d4:36: 5b:95:6f:74:b7:a4:84:f5:9d:f6:74:b9:31:64:7c:31:57:35: 4a:83:f7:f5:80:49:19:a1:d6:55:e2:69:8d:fa:bd:ad:d7:a9: ad:a4:2a:76:be:3b:30:5c:71:b3:90:06:42:59:d2:6a:c0:3a: c2:9e:3e:61:9e:42:db:67:54:d5:a3:42:fb:7e:c6:42:ff:d5: ae:c6:ac:4a:9d:79:e9:cc:5e:4c:e1:8b:74:85:6e:e3:7d:67: 33:5a:72:64:9a:11:d6:70:ce:52:36:44:8e:ab:c0:3e:67:80: 26:09:9b:0b:36:f1:77:af:3b:44:7c:08:fe:92:55:63:07:de: d8:fc:e7:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjUwMTMwMTQzMDIxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliOGNmZC1lZTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAse9B5d/GB5E2qv8rSwWYFmQmL/522Q2d8vQfkzKziBIryY+YcPtePEhTGwoK eMvidrwWCK67mt4et7VkIJpHivVIBW5X+ShCKaL02H6ZH7MzJJXqOch5K4HesUCp n18oklqZePs+KM3EO15zkgtLfSS3z9GtoQlPCoZxQ0Lujgd++krfVYVCW7PrJLLx YM9SgKtfwSFMs3LBmu07BKGh4JYwY1cYj6lPWdIXyfVnIqqvdXidHqqgL2b//4ZJ vn/9ayIEy2u8TLgmuPYWDgHlCia7aqETb7JF00T+WFLk1PGfIhENzdOltBtIqYlz dKoDvo/9yMYs2rlsv9HVt/8K6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDe1w2Nf fjfziFiaUFeqiRWpA41DMB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ4ODAvNEU4NjQ1MEMxRDZBMTFFMkJCNzAxNEE4MDhCMDJDRDIvMzE2RUVGRDRB QUU1MTFFNjhFQkU0RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADGMAIwDQYJKoZIhvcNAQELBQADggEBAF7t7xrD67OoIIQt tjH0p2xXXjrGCeAQ3c7b1Mx47jAUzGxI3GzvyxFuNRJuKT4SGeiJ6Z4sC1+J6XOk kLvpWgfx0q8KLMxS4ssuQ6eOAwHJ2b1TCpSpmN2eGpPJt57xeuOUKnYwvqa9lFd3 le1/oD1eLlUWiJkN0NBDmurUNluVb3S3pIT1nfZ0uTFkfDFXNUqD9/WASRmh1lXi aY36va3Xqa2kKna+OzBccbOQBkJZ0mrAOsKePmGeQttnVNWjQvt+xkL/1a7GrEqd eenMXkzhi3SFbuN9ZzNacmSaEdZwzlI2RI6rwD5ngCYJmws28XevO0R8CP6SVWMH 3tj85/8= -----END CERTIFICATE-----Generated at Sat Apr 26 16:56:52 2025 by rpki-client