$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/09C9D20691BC11EB8C38801CC4F9AE02.roa File: 09C9D20691BC11EB8C38801CC4F9AE02.roa (raw, json) Hash identifier: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw= Subject key identifier: BD:A7:A0:DF:4E:C0:8A:35:2C:53:48:B6:8E:51:7A:94:7D:56:FC:08 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 0627 Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/09C9D20691BC11EB8C38801CC4F9AE02.roa Signing time: Fri 04 Apr 2025 23:03:13 +0000 ROA not before: Fri 04 Apr 2025 23:03:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17705 IP address blocks: 192.245.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Apr 4 23:03:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f06530-4208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:82:79:31:6c:64:85:66:17:cb:69:ca:12:20: ad:99:c8:65:0e:a0:09:36:50:ad:af:ac:48:dd:b0: 5f:47:e6:d7:0e:d0:82:de:c8:ff:fd:ae:91:c2:5d: 79:d2:de:2d:01:77:15:a6:bc:64:61:87:6a:6c:2a: f2:22:fe:15:42:c4:59:75:1f:c1:94:9a:dc:ea:ce: 2e:a0:6d:6e:28:7b:60:fd:58:99:38:42:7d:8b:57: d1:61:7d:5a:62:b9:b3:6c:02:ab:35:62:99:a9:a2: e3:4d:7d:27:14:30:7d:68:37:94:85:18:2b:46:43: 38:49:bc:19:e4:5c:e2:e7:98:52:b6:61:6f:e3:75: 68:8a:8e:4d:09:bb:1f:c8:3d:8e:65:19:1c:fb:75: 70:fc:d9:e6:ab:bb:6f:77:1c:c4:40:7b:86:89:03: e9:cf:a9:a1:b4:06:02:c4:64:70:e4:43:ba:f2:76: 5f:bf:1c:cb:a3:8d:c4:f0:4c:ae:04:58:c9:fb:48: 5b:7b:fa:5b:aa:2c:7f:79:84:97:db:e8:d9:6b:88: 62:42:6d:c3:05:bf:33:4f:7f:b9:6a:e1:25:d7:9c: a1:b0:11:3e:94:c5:17:ac:8c:86:fe:3b:1f:73:52: dd:37:75:41:41:04:d8:65:f5:da:8f:53:58:9b:8b: 23:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A7:A0:DF:4E:C0:8A:35:2C:53:48:B6:8E:51:7A:94:7D:56:FC:08 X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/09C9D20691BC11EB8C38801CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.245.185.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:e7:34:53:fb:2b:cc:7d:56:3c:6b:3d:df:96:9f:e5:67:5a: 5b:42:2a:97:d4:c3:9e:69:17:ec:36:4d:d2:4f:41:67:a0:0a: c8:cb:06:4c:8c:17:a8:1a:6b:77:9e:0d:d7:71:36:c6:38:e9: 7d:e9:ed:7f:f7:5c:9e:e5:b2:fe:95:1b:63:dc:58:dd:d5:82: 3d:a7:41:47:98:ba:9a:7f:0c:90:18:dc:f6:8e:dc:3e:c7:c3: 8b:6b:6b:ba:2d:66:93:31:82:a0:e8:08:af:b6:fe:ba:52:ca: 18:7e:22:6a:05:ee:e9:ed:84:ff:bf:7a:b1:31:8d:50:a2:4c: 98:c8:e2:3e:9b:a3:01:8b:dd:cd:b8:36:07:c7:86:c0:3a:33: fa:27:00:44:27:3a:ad:b3:c2:a1:39:13:ff:4f:6a:06:8c:07: 2a:ed:f5:93:ab:d9:df:7e:ee:3f:65:a1:b6:dd:b3:04:bb:b6: 82:0f:35:97:39:1d:a9:7a:74:e7:6b:bd:f0:46:0f:b1:58:35: 55:24:a8:a1:1d:a6:84:6a:28:6f:52:2f:cc:8d:22:e0:61:1f: 82:f9:4b:e5:45:93:29:84:c3:d5:18:45:fd:d1:54:a1:8f:0b: ba:01:51:83:3f:6e:b5:31:e4:e5:1a:73:68:fa:cb:dc:a2:f9: 0b:a2:c4:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUwNDA0MjMwMzEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwNjUzMC00MjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYJ5MWxkhWYXy2nKEiCtmchlDqAJNlCtr6xI3bBfR+bXDtCC3sj//a6Rwl15 0t4tAXcVprxkYYdqbCryIv4VQsRZdR/BlJrc6s4uoG1uKHtg/ViZOEJ9i1fRYX1a YrmzbAKrNWKZqaLjTX0nFDB9aDeUhRgrRkM4SbwZ5Fzi55hStmFv43Voio5NCbsf yD2OZRkc+3Vw/Nnmq7tvdxzEQHuGiQPpz6mhtAYCxGRw5EO68nZfvxzLo43E8Eyu BFjJ+0hbe/pbqix/eYSX2+jZa4hiQm3DBb8zT3+5auEl15yhsBE+lMUXrIyG/jsf c1LdN3VBQQTYZfXaj1NYm4sjQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL2noN9O wIo1LFNIto5RepR9VvwIMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDNTIvQjQ2Q0Q3N0U5MUI5MTFFQjlDNUI0NjE4QzRGOUFFMDIvMDlDOUQyMDY5 MUJDMTFFQjhDMzg4MDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADA9bkwDQYJKoZIhvcNAQELBQADggEBAIznNFP7K8x9Vjxr Pd+Wn+VnWltCKpfUw55pF+w2TdJPQWegCsjLBkyMF6gaa3eeDddxNsY46X3p7X/3 XJ7lsv6VG2PcWN3Vgj2nQUeYupp/DJAY3PaO3D7Hw4tra7otZpMxgqDoCK+2/rpS yhh+ImoF7unthP+/erExjVCiTJjI4j6bowGL3c24NgfHhsA6M/onAEQnOq2zwqE5 E/9PagaMByrt9ZOr2d9+7j9lobbdswS7toIPNZc5Hal6dOdrvfBGD7FYNVUkqKEd poRqKG9SL8yNIuBhH4L5S+VFkymEw9UYRf3RVKGPC7oBUYM/brUx5OUac2j6y9yi +QuixCA= -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:28 2025 by rpki-client