$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa File: 9580A702548211EFAADB996FC4F9AE02.roa (raw, json) Hash identifier: bdHgyKcyyyLsXCxe6xjw+MULUMGxfLoTKKgonGSTImI= Subject key identifier: BA:42:51:C2:D4:FB:76:67:4A:12:BF:74:17:C3:4F:CE:E4:F0:7A:9D Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: B7 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa Signing time: Thu 24 Apr 2025 03:57:49 +0000 ROA not before: Thu 24 Apr 2025 03:57:48 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 150436 IP address blocks: 45.78.192.0/18 maxlen: 24 69.5.0.0/19 maxlen: 24 207.166.160.0/19 maxlen: 24 216.230.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Apr 24 03:57:48 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6809b6bc-c2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:06:a8:c7:06:ff:50:14:f0:d0:15:23:4b:2c: 5f:c4:3e:ba:43:7f:93:81:eb:6b:d7:a0:16:e0:1a: a3:6a:50:b4:72:7f:99:46:60:34:4f:93:e3:a9:51: 58:40:b5:26:53:b6:a5:2d:a0:b9:a6:b7:62:52:32: 8a:29:c9:6d:16:06:00:d8:fa:b0:bb:54:bd:8d:8f: e5:1a:da:0a:34:79:33:ec:10:b7:6a:46:c8:ca:b5: 86:91:b5:ff:c5:46:9b:a5:c4:cc:ce:0b:c0:05:12: e8:f8:48:ff:c6:88:dd:48:8d:9e:df:90:87:fb:7d: c4:c0:50:b2:f3:b4:16:1b:ad:f0:53:c2:ef:5b:1f: d5:62:ba:42:8f:9f:de:5c:bd:cf:f0:0f:74:33:ca: 71:84:80:e6:dd:7f:4b:06:a2:9a:8a:f4:3b:4c:d8: e8:13:b7:87:2f:da:72:18:e3:8b:40:be:45:24:b2: 53:6f:30:53:2e:5d:28:e6:ad:6f:35:46:87:71:eb: 0b:f8:bd:a2:b5:76:ab:2c:e5:df:8b:6e:4e:47:3d: bb:c9:fb:1b:35:6b:f0:87:bf:3b:49:a6:71:c0:6a: 91:9f:ad:17:f8:b2:93:00:b5:4f:2b:b6:d3:d9:0b: 34:f6:ad:7d:76:eb:55:59:0e:77:45:58:9e:ad:82: b5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:42:51:C2:D4:FB:76:67:4A:12:BF:74:17:C3:4F:CE:E4:F0:7A:9D X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/9580A702548211EFAADB996FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.78.192.0/18 69.5.0.0/19 207.166.160.0/19 216.230.192.0/19 Signature Algorithm: sha256WithRSAEncryption d2:aa:31:65:1b:67:e6:91:9d:8f:9c:66:df:4f:f1:fb:58:24: 4a:f7:c5:c8:c6:ec:aa:c2:da:a7:00:58:27:56:42:c1:ec:f1: d9:20:16:c6:fd:a4:c7:a6:af:56:99:99:f4:f5:b0:7d:25:b0: 04:8f:17:24:82:ee:d6:e3:0b:07:b7:cf:cb:cb:fc:b6:77:e3: 10:51:ba:63:7c:56:49:6e:bc:87:de:26:83:b0:9a:52:c7:15: 5e:36:eb:15:0f:0f:ef:54:7d:46:d3:81:ca:db:a3:fa:3e:67: 3d:d3:b2:f5:d5:5a:2a:43:50:e3:1c:4a:1f:cc:1b:45:d3:4a: 08:0e:49:47:0a:6d:98:a8:e1:1a:1f:36:da:7e:ac:e8:b0:69: e1:de:ca:4a:b1:7b:91:88:8f:ed:68:4b:22:ef:57:f6:a6:ff: 11:6f:59:22:ee:98:db:ba:9e:7f:e6:4f:f2:c5:1a:8a:07:17: c5:4e:a2:11:2f:19:d4:93:d8:c4:97:cb:f2:3b:ce:24:27:dd: d4:71:c6:4f:91:57:b7:37:6a:43:cb:fb:03:31:b2:86:78:e2: c6:62:9b:e0:08:f6:94:e4:99:16:57:2e:45:ac:89:15:9d:96: bd:da:8b:13:c6:81:27:7c:2d:25:b8:f6:2c:07:b5:74:de:a9: 33:dc:a6:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNDI0MDM1NzQ4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA5YjZiYy1jMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwaoxwb/UBTw0BUjSyxfxD66Q3+Tgetr16AW4BqjalC0cn+ZRmA0T5PjqVFY QLUmU7alLaC5prdiUjKKKcltFgYA2Pqwu1S9jY/lGtoKNHkz7BC3akbIyrWGkbX/ xUabpcTMzgvABRLo+Ej/xojdSI2e35CH+33EwFCy87QWG63wU8LvWx/VYrpCj5/e XL3P8A90M8pxhIDm3X9LBqKaivQ7TNjoE7eHL9pyGOOLQL5FJLJTbzBTLl0o5q1v NUaHcesL+L2itXarLOXfi25ORz27yfsbNWvwh787SaZxwGqRn60X+LKTALVPK7bT 2Qs09q19dutVWQ53RVierYK1bQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFLpCUcLU +3ZnShK/dBfDT87k8HqdMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvOEY5MDkxRDQzMkIwMTFFRkE0Q0JGOTZBQzRGOUFFMDIvOTU4MEE3MDI1 NDgyMTFFRkFBREI5OTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAYtTsADBAVFBQADBAXPpqADBAXY5sAwDQYJKoZIhvcNAQEL BQADggEBANKqMWUbZ+aRnY+cZt9P8ftYJEr3xcjG7KrC2qcAWCdWQsHs8dkgFsb9 pMemr1aZmfT1sH0lsASPFySC7tbjCwe3z8vL/LZ34xBRumN8VkluvIfeJoOwmlLH FV426xUPD+9UfUbTgcrbo/o+Zz3TsvXVWipDUOMcSh/MG0XTSggOSUcKbZio4Rof Ntp+rOiwaeHeykqxe5GIj+1oSyLvV/am/xFvWSLumNu6nn/mT/LFGooHF8VOohEv GdST2MSXy/I7ziQn3dRxxk+RV7c3akPL+wMxsoZ44sZim+AI9pTkmRZXLkWsiRWd lr3aixPGgSd8LSW49iwHtXTeqTPcpgg= -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:17 2025 by rpki-client