$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB9A/49CD0304CFF311EF9062E521C4F9AE02/B926074003DE11F0BE74EF4FC4F9AE02.roa File: B926074003DE11F0BE74EF4FC4F9AE02.roa (raw, json) Hash identifier: yO8wrLfsa5iXZNjaq13V35mcBYp1h+ZJbpYI1FUk9vw= Subject key identifier: 7F:38:5A:D4:FE:EA:A8:59:55:94:C3:E2:FF:D7:99:8F:3D:2D:F3:B5 Certificate issuer: /CN=A917BB9A/serialNumber=A6172EEBE1FCD1A978CCA467E1B58A30B37951EB Certificate serial: 6E Authority key identifier: A6:17:2E:EB:E1:FC:D1:A9:78:CC:A4:67:E1:B5:8A:30:B3:79:51:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phcu6-H80al4zKRn4bWKMLN5Ues.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB9A/49CD0304CFF311EF9062E521C4F9AE02/B926074003DE11F0BE74EF4FC4F9AE02.roa Signing time: Thu 24 Apr 2025 13:17:53 +0000 ROA not before: Thu 24 Apr 2025 13:17:53 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 56209 IP address blocks: 150.129.172.0/23 maxlen: 23 150.129.172.0/24 maxlen: 24 150.129.173.0/24 maxlen: 24 150.129.174.0/23 maxlen: 23 150.129.174.0/24 maxlen: 24 150.129.175.0/24 maxlen: 24 202.71.24.0/23 maxlen: 23 202.71.24.0/24 maxlen: 24 202.71.25.0/24 maxlen: 24 202.71.26.0/24 maxlen: 24 202.71.27.0/24 maxlen: 24 202.71.28.0/24 maxlen: 24 202.71.29.0/24 maxlen: 24 202.71.30.0/24 maxlen: 24 202.71.31.0/24 maxlen: 24 2401:a3e0::/48 maxlen: 48 2401:a3e0:1::/48 maxlen: 48 2401:a3e0:2::/48 maxlen: 48 2401:a3e0:3::/48 maxlen: 48 2401:a3e0:4::/48 maxlen: 48 2401:a3e0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB9A/49CD0304CFF311EF9062E521C4F9AE02/phcu6-H80al4zKRn4bWKMLN5Ues.crl rsync://rpki.apnic.net/member_repository/A917BB9A/49CD0304CFF311EF9062E521C4F9AE02/phcu6-H80al4zKRn4bWKMLN5Ues.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phcu6-H80al4zKRn4bWKMLN5Ues.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB9A, serialNumber=A6172EEBE1FCD1A978CCA467E1B58A30B37951EB Validity Not Before: Apr 24 13:17:53 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=680a3a01-c84c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:0c:a9:16:50:36:4d:c1:de:89:db:fb:78: 29:40:05:68:96:34:84:21:a1:e5:b4:d3:43:24:43: 92:f4:97:87:3c:0c:43:07:9e:e7:c3:ff:d4:e5:3f: e1:b9:2f:d0:69:66:24:7c:a3:07:71:b5:11:e3:9b: a8:d7:03:79:a8:14:61:e7:a6:d2:77:8e:e6:5e:24: e2:9f:45:16:c4:c8:91:cf:41:c8:bb:18:f8:28:d7: 75:17:d4:01:42:4f:5d:e2:16:fd:9a:9e:92:b0:39: 7a:d8:08:58:45:18:fd:b2:cc:46:e3:0a:7b:ed:2f: 70:56:da:c5:a1:fc:65:04:79:8e:ff:ab:e6:54:ad: 27:db:19:02:d2:d2:bb:7a:4c:ce:29:f9:c8:b7:f2: 49:79:e6:0f:24:46:22:d2:f1:73:33:30:2f:45:9a: 23:de:a9:fe:0e:73:49:e5:d3:b8:be:77:48:22:40: ba:21:bb:6c:b5:b3:11:7b:7e:e8:71:23:24:a2:4a: 88:ad:6f:6e:40:a8:ca:cf:2d:60:98:b5:74:75:ba: 21:a1:00:41:74:25:58:41:b8:65:1c:2b:02:e1:c9: 39:48:13:25:da:92:1d:cf:a0:d1:07:ad:d6:4a:cc: 7c:15:83:3b:c7:ce:44:5a:f5:f2:c4:f6:d3:de:be: c5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:38:5A:D4:FE:EA:A8:59:55:94:C3:E2:FF:D7:99:8F:3D:2D:F3:B5 X509v3 Authority Key Identifier: keyid:A6:17:2E:EB:E1:FC:D1:A9:78:CC:A4:67:E1:B5:8A:30:B3:79:51:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB9A/49CD0304CFF311EF9062E521C4F9AE02/phcu6-H80al4zKRn4bWKMLN5Ues.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phcu6-H80al4zKRn4bWKMLN5Ues.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB9A/49CD0304CFF311EF9062E521C4F9AE02/B926074003DE11F0BE74EF4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.129.172.0/22 202.71.24.0/21 IPv6: 2401:a3e0::-2401:a3e0:5:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 04:8a:fd:48:a0:b2:18:5d:59:06:db:ea:0b:27:db:93:86:01: b3:03:bc:b2:09:ed:3b:99:ea:2a:4b:09:e2:cd:5a:84:cd:93: ea:b4:08:01:ef:45:5a:cf:51:46:99:9a:92:ec:90:34:16:36: 55:8f:6e:5a:ac:88:53:00:e6:af:97:9c:05:4a:b6:8c:bf:a8: 9c:08:b0:02:0f:d6:c8:cc:99:30:6b:ab:58:df:e8:df:f2:1b: cc:f0:a6:85:93:6c:9b:4a:d3:d5:e2:ee:57:ac:3a:8d:20:c5: 1f:ed:39:c7:09:70:5d:d4:cd:35:99:1e:92:8c:fa:c5:e8:e2: 11:d1:9d:87:30:6a:38:8f:93:e8:f2:4a:71:0c:d7:2b:27:4b: be:58:4d:7e:ff:27:96:5b:ee:fa:a2:5d:ee:3a:01:33:a3:ba: 4e:54:9e:10:8b:7e:1c:e0:02:ac:70:38:d9:87:87:43:9f:81: ac:49:9e:3f:3c:43:e3:56:f2:d6:ea:37:bc:df:3d:40:fb:9c: 0e:4f:1a:d3:b3:79:93:e7:55:9e:e8:ba:fc:94:78:c8:67:52: c7:5c:e2:26:b2:8a:9c:1f:0c:bb:bf:c0:20:be:d5:7f:05:dd: 57:18:22:d5:14:17:bb:4c:f0:9a:95:7c:db:92:79:49:d6:89: f9:46:00:dc -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QkI5QTExMC8GA1UEBRMoQTYxNzJFRUJFMUZDRDFBOTc4Q0NBNDY3RTFCNThBMzBC Mzc5NTFFQjAeFw0yNTA0MjQxMzE3NTNaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGEzYTAxLWM4NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC66gypFlA2TcHeidv7eClABWiWNIQhoeW000MkQ5L0l4c8DEMHnufD/9TlP+G5 L9BpZiR8owdxtRHjm6jXA3moFGHnptJ3juZeJOKfRRbEyJHPQci7GPgo13UX1AFC T13iFv2anpKwOXrYCFhFGP2yzEbjCnvtL3BW2sWh/GUEeY7/q+ZUrSfbGQLS0rt6 TM4p+ci38kl55g8kRiLS8XMzMC9FmiPeqf4Oc0nl07i+d0giQLohu2y1sxF7fuhx IySiSoitb25AqMrPLWCYtXR1uiGhAEF0JVhBuGUcKwLhyTlIEyXakh3PoNEHrdZK zHwVgzvHzkRa9fLE9tPevsVXAgMBAAGjggK1MIICsTAdBgNVHQ4EFgQUfzha1P7q qFlVlMPi/9eZjz0t87UwHwYDVR0jBBgwFoAUphcu6+H80al4zKRn4bWKMLN5Uesw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCQjlBLzQ5Q0QwMzA0Q0ZG MzExRUY5MDYyRTUyMUM0RjlBRTAyL3BoY3U2LUg4MGFsNHpLUm40YldLTUxONVVl cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGhjdTYtSDgwYWw0ektSbjRiV0tNTE41VWVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI5QS80OUNEMDMwNENGRjMxMUVGOTA2MkU1MjFDNEY5QUUwMi9COTI2MDc0MDAz REUxMUYwQkU3NEVGNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA/BggrBgEFBQcBBwEB/wQw MC4wEgQCAAEwDAMEApaBrAMEA8pHGDAYBAIAAjASMBADBQUkAaPgAwcBJAGj4AAE MA0GCSqGSIb3DQEBCwUAA4IBAQAEiv1IoLIYXVkG2+oLJ9uThgGzA7yyCe07meoq SwnizVqEzZPqtAgB70Vaz1FGmZqS7JA0FjZVj25arIhTAOavl5wFSraMv6icCLAC D9bIzJkwa6tY3+jf8hvM8KaFk2ybStPV4u5XrDqNIMUf7TnHCXBd1M01mR6SjPrF 6OIR0Z2HMGo4j5Po8kpxDNcrJ0u+WE1+/yeWW+76ol3uOgEzo7pOVJ4Qi34c4AKs cDjZh4dDn4GsSZ4/PEPjVvLW6je83z1A+5wOTxrTs3mT51We6Lr8lHjIZ1LHXOIm soqcHwy7v8AgvtV/Bd1XGCLVFBe7TPCalXzbknlJ1on5RgDc -----END CERTIFICATE-----Generated at Sat Apr 26 14:11:03 2025 by rpki-client