$ rpki-client -vvf rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/B8E7D994D00711EAB66A1255C4F9AE02.roa File: B8E7D994D00711EAB66A1255C4F9AE02.roa (raw, json) Hash identifier: NTDwpkNkDHYvPlbXgriI89H0onb/SkI96RAfrzWAkp8= Subject key identifier: 54:5C:9A:23:3E:BF:3A:4D:9C:66:42:20:60:3C:D9:5A:71:43:D0:3A Certificate issuer: /CN=A9191FA5/serialNumber=AB11E809F2BC66B0D1E60B8A31F86B5B82E00E39 Certificate serial: 35D1 Authority key identifier: AB:11:E8:09:F2:BC:66:B0:D1:E6:0B:8A:31:F8:6B:5B:82:E0:0E:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/B8E7D994D00711EAB66A1255C4F9AE02.roa Signing time: Wed 22 Jan 2025 14:50:28 +0000 ROA not before: Wed 22 Jan 2025 14:50:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 20940 IP address blocks: 220.227.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.crl rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13777 (0x35d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191FA5, serialNumber=AB11E809F2BC66B0D1E60B8A31F86B5B82E00E39 Validity Not Before: Jan 22 14:50:28 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=679105b4-c196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:77:36:0b:5e:34:c0:59:1e:13:45:d6:6c:b9: 13:b1:cc:09:88:bd:b8:e4:2e:12:ce:3a:8d:b4:10: 20:9c:0a:61:cf:b4:c1:4e:fb:81:5b:e7:7e:3c:ce: 3e:b4:47:5b:96:c2:17:1f:91:ec:be:30:94:87:dd: ff:f3:fd:65:67:07:a7:c4:aa:12:df:74:01:b3:0c: d8:37:f2:bd:38:c1:1e:fe:d4:36:59:ef:dd:ef:ed: 3b:44:fc:af:b2:11:ec:75:23:8a:92:95:73:a2:a8: 2d:8d:2d:d6:04:94:5d:17:e5:ac:93:8c:e2:4f:67: 04:19:dc:03:92:62:07:a4:cc:47:34:fe:4d:3e:62: e0:0f:04:32:4d:5b:db:9d:b1:8d:a3:8b:29:42:30: 8c:7a:86:b2:12:70:36:78:08:07:fd:1a:ca:4f:4c: b8:dc:7c:68:9e:ba:61:bb:24:fc:ef:4c:24:bc:63: 90:7a:77:30:03:9c:dc:bb:1c:56:05:0e:2f:3e:d8: 35:e4:fa:a2:62:ed:df:7d:73:fc:17:6d:fb:1a:0f: e4:83:bb:e6:b9:2f:22:b1:46:13:07:3a:e9:4f:17: c5:1e:9a:3d:9a:f4:40:7b:2b:de:3e:8f:9d:c6:ff: 85:1f:66:b3:65:84:e7:61:04:4a:1a:cf:17:d8:99: 09:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:5C:9A:23:3E:BF:3A:4D:9C:66:42:20:60:3C:D9:5A:71:43:D0:3A X509v3 Authority Key Identifier: keyid:AB:11:E8:09:F2:BC:66:B0:D1:E6:0B:8A:31:F8:6B:5B:82:E0:0E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/B8E7D994D00711EAB66A1255C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.227.183.0/24 Signature Algorithm: sha256WithRSAEncryption 49:92:16:56:4d:80:15:e7:28:b7:92:82:1e:1b:11:f4:2b:cc: 9e:b1:8a:bb:84:2b:e0:a9:8d:58:e8:bc:fe:95:48:0f:17:07: 28:ae:93:3d:b6:c3:5b:ea:9d:3c:20:77:cc:fb:25:fe:cf:94: b1:aa:12:b1:37:ad:7a:3e:d6:c5:29:82:ac:fc:59:81:78:7d: ba:a7:79:3c:b5:f7:d8:a1:4c:c6:0d:1b:07:80:90:9b:4d:9c: 66:14:73:2e:5e:2c:04:3a:ff:9b:94:4b:b9:bc:3b:41:0c:68: 5b:68:43:d8:21:62:22:58:d0:ae:32:a6:f0:dc:2f:18:a3:19: 36:3f:16:c9:e3:9f:45:24:c6:b5:09:b3:42:ea:b0:7b:66:22: 63:f6:fe:f9:5c:20:07:97:38:7e:4e:77:bf:bf:0e:e5:56:f1: 93:96:84:39:fd:ea:e1:6f:12:4c:e1:ca:9d:d9:98:ba:7a:c2: f3:61:9e:63:16:21:63:5a:83:52:78:2b:e2:e7:0c:29:6f:db: c0:a4:ba:de:75:3f:d0:4a:fc:ee:51:c7:04:31:7b:0d:ee:88: 44:e6:cb:e4:04:62:a6:c6:17:46:f4:4b:84:9f:c3:db:9e:5d: 56:75:05:64:5e:20:fc:dc:18:bb:cd:d7:ed:b6:6f:88:b7:2b: 27:e2:e4:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFGQTUxMTAvBgNVBAUTKEFCMTFFODA5RjJCQzY2QjBEMUU2MEI4QTMxRjg2QjVC ODJFMDBFMzkwHhcNMjUwMTIyMTQ1MDI4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxMDViNC1jMTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Hc2C140wFkeE0XWbLkTscwJiL245C4SzjqNtBAgnAphz7TBTvuBW+d+PM4+ tEdblsIXH5HsvjCUh93/8/1lZwenxKoS33QBswzYN/K9OMEe/tQ2We/d7+07RPyv shHsdSOKkpVzoqgtjS3WBJRdF+Wsk4ziT2cEGdwDkmIHpMxHNP5NPmLgDwQyTVvb nbGNo4spQjCMeoayEnA2eAgH/RrKT0y43HxonrphuyT870wkvGOQencwA5zcuxxW BQ4vPtg15PqiYu3ffXP8F237Gg/kg7vmuS8isUYTBzrpTxfFHpo9mvRAeyvePo+d xv+FH2azZYTnYQRKGs8X2JkJiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFRcmiM+ vzpNnGZCIGA82VpxQ9A6MB8GA1UdIwQYMBaAFKsR6AnyvGaw0eYLijH4a1uC4A45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUZBNS8wODA1NkNFNDFE ODcxMUUyOUREM0M2REUwOEIwMkNEMi9xeEhvQ2ZLOFpyRFI1Z3VLTWZoclc0TGdE amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F4SG9DZks4WnJEUjVndUtNZmhyVzRMZ0Rqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFGQTUvMDgwNTZDRTQxRDg3MTFFMjlERDNDNkRFMDhCMDJDRDIvQjhFN0Q5OTRE MDA3MTFFQUI2NkExMjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADc47cwDQYJKoZIhvcNAQELBQADggEBAEmSFlZNgBXnKLeS gh4bEfQrzJ6xiruEK+CpjVjovP6VSA8XByiukz22w1vqnTwgd8z7Jf7PlLGqErE3 rXo+1sUpgqz8WYF4fbqneTy199ihTMYNGweAkJtNnGYUcy5eLAQ6/5uUS7m8O0EM aFtoQ9ghYiJY0K4ypvDcLxijGTY/Fsnjn0UkxrUJs0LqsHtmImP2/vlcIAeXOH5O d7+/DuVW8ZOWhDn96uFvEkzhyp3ZmLp6wvNhnmMWIWNag1J4K+LnDClv28Ckut51 P9BK/O5RxwQxew3uiETmy+QEYqbGF0b0S4Sfw9ueXVZ1BWReIPzcGLvN1+22b4i3 Kyfi5Ps= -----END CERTIFICATE-----Generated at Sat Apr 26 07:43:40 2025 by rpki-client