$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/70017B5CF74111EF98C99938C4F9AE02.roa File: 70017B5CF74111EF98C99938C4F9AE02.roa (raw, json) Hash identifier: 2qfdADfdo36JxITYdf4pd34OcKO4BbP5IH9WNGohmvk= Subject key identifier: AD:A5:4A:AF:B8:F1:EF:56:7F:BD:15:EC:53:7B:0F:CB:A7:EA:51:2A Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 07C7 Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/70017B5CF74111EF98C99938C4F9AE02.roa Signing time: Mon 31 Mar 2025 21:21:31 +0000 ROA not before: Mon 31 Mar 2025 21:21:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 13444 IP address blocks: 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 116.204.210.0/24 maxlen: 24 116.204.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1991 (0x7c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5, serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Validity Not Before: Mar 31 21:21:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb075b-ba44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a3:55:22:a5:fe:d3:09:ee:7f:ac:4f:7b:92: e7:f2:2e:f5:10:33:89:7f:e6:ba:a6:69:0f:03:22: 29:42:d1:18:68:a4:58:e7:ee:93:9e:2a:7e:78:ce: 01:d2:08:89:c6:56:53:4a:aa:1c:f3:91:5d:f0:59: a4:58:6d:3f:2d:89:17:3f:a1:41:42:05:8c:b5:fb: e3:d5:59:58:d2:43:5b:3d:9f:92:8a:f7:46:15:2e: 5e:2e:00:f3:c7:24:43:2b:4c:54:6b:db:df:a2:cf: ca:2a:27:b7:19:de:67:47:87:af:db:d0:2c:9d:f2: f5:3e:61:c1:14:87:7a:e1:df:10:56:f3:db:90:1d: ae:0f:2d:de:6a:6a:c6:3c:12:2e:7a:ce:c4:fb:7c: 73:8b:a5:ae:ea:b5:f4:1c:3e:fa:65:d0:c0:be:6f: 89:4b:83:81:af:c2:12:92:d2:bd:43:50:fe:97:5d: 98:e7:ce:ad:d5:e7:76:90:8b:ad:b5:ff:a8:2f:cc: c9:8f:5c:1b:8a:ea:91:19:39:8e:b5:14:80:26:00: a8:2a:8b:aa:fc:45:05:11:11:43:52:4f:90:ce:fb: 51:83:b7:3c:ad:13:14:cd:8d:ac:a2:1a:cb:a2:23: d5:a8:1c:dc:5a:98:b9:b1:d7:fd:92:66:02:93:e9: b1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A5:4A:AF:B8:F1:EF:56:7F:BD:15:EC:53:7B:0F:CB:A7:EA:51:2A X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/70017B5CF74111EF98C99938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.208.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:87:08:83:0d:b4:05:1d:45:07:03:13:d5:78:ae:e3:93:0d: 3d:e5:f3:0c:20:e8:00:af:58:12:ca:c5:6c:63:6d:22:fb:c1: 52:d3:07:c0:6b:5a:a7:f6:bd:2b:88:75:f5:2d:60:68:3e:43: 16:3d:e2:3d:21:8a:50:ae:ec:44:e6:be:37:f2:3e:c5:2d:fa: 0f:6b:3f:82:fb:63:1e:6e:a9:1d:ab:3c:60:b1:31:01:d8:5a: 78:1e:ad:1f:87:2d:3f:82:b4:23:d3:32:8a:c1:6d:c5:4f:fe: c6:4a:9f:7e:74:65:ee:0d:23:70:c5:e4:1d:1c:fc:c5:f7:13: cf:bd:d2:79:38:71:dd:4d:97:b3:69:91:3b:3a:8b:84:89:34: af:03:fe:cd:2e:20:73:f4:d1:04:8c:33:48:39:ad:a1:c5:80: df:28:35:e5:41:af:6f:5d:f4:77:90:6c:aa:83:b8:8a:08:d7: 5e:70:71:4f:93:73:55:dd:20:f4:3c:86:90:1c:1b:40:87:c9: 60:c0:8f:c3:e0:01:cc:72:f5:db:8a:ba:bb:fa:0a:17:f4:49: 0c:8b:83:5a:64:b1:0f:d0:10:d6:19:cc:2f:75:8d:6e:13:44: a6:10:02:4d:71:72:1c:d4:00:dd:bc:86:13:3b:23:5f:09:f7: 7c:cf:13:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjUwMzMxMjEyMTMxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViMDc1Yi1iYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKNVIqX+0wnuf6xPe5Ln8i71EDOJf+a6pmkPAyIpQtEYaKRY5+6Tnip+eM4B 0giJxlZTSqoc85Fd8FmkWG0/LYkXP6FBQgWMtfvj1VlY0kNbPZ+SivdGFS5eLgDz xyRDK0xUa9vfos/KKie3Gd5nR4ev29AsnfL1PmHBFId64d8QVvPbkB2uDy3eamrG PBIues7E+3xzi6Wu6rX0HD76ZdDAvm+JS4OBr8ISktK9Q1D+l12Y586t1ed2kIut tf+oL8zJj1wbiuqRGTmOtRSAJgCoKouq/EUFERFDUk+QzvtRg7c8rRMUzY2sohrL oiPVqBzcWpi5sdf9kmYCk+mxqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK2lSq+4 8e9Wf70V7FN7D8un6lEqMB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvNzAwMTdCNUNG NzQxMTFFRjk4Qzk5OTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0zNAwDQYJKoZIhvcNAQELBQADggEBAA+HCIMNtAUdRQcD E9V4ruOTDT3l8wwg6ACvWBLKxWxjbSL7wVLTB8BrWqf2vSuIdfUtYGg+QxY94j0h ilCu7ETmvjfyPsUt+g9rP4L7Yx5uqR2rPGCxMQHYWngerR+HLT+CtCPTMorBbcVP /sZKn350Ze4NI3DF5B0c/MX3E8+90nk4cd1Nl7NpkTs6i4SJNK8D/s0uIHP00QSM M0g5raHFgN8oNeVBr29d9HeQbKqDuIoI115wcU+Tc1XdIPQ8hpAcG0CHyWDAj8Pg Acxy9duKurv6Chf0SQyLg1pksQ/QENYZzC91jW4TRKYQAk1xchzUAN28hhM7I18J 93zPE58= -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:42 2025 by rpki-client