$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa File: 1AC9199AD3CB11EF84052053C4F9AE02.roa (raw, json) Hash identifier: 3g8CG6eXI2y/sKSche4ErWaN1/woBDrqwhgjSA2yZ4o= Subject key identifier: 27:88:65:96:15:DA:EE:1A:12:C0:64:46:5A:96:DA:F4:AB:E7:01:7D Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 22AB Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa Signing time: Fri 02 May 2025 16:23:52 +0000 ROA not before: Fri 02 May 2025 16:23:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141177 IP address blocks: 43.250.48.0/22 maxlen: 24 45.64.114.0/23 maxlen: 23 45.64.114.0/24 maxlen: 24 45.64.115.0/24 maxlen: 24 2404:7c00:2::/48 maxlen: 48 2404:7c00:10::/44 maxlen: 44 2404:7c00:20::/44 maxlen: 44 2404:7c00:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8875 (0x22ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333, serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: May 2 16:23:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6814f198-4df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a0:1f:1f:55:17:fb:49:4c:4a:71:00:8c:63: 5f:1c:c1:ab:20:68:11:08:cc:6f:76:5e:6d:53:6e: 5c:9e:22:05:7e:35:2d:3c:85:57:16:7b:00:9a:28: 7f:a7:23:90:0f:6b:d4:b8:45:2b:8c:d9:75:d2:65: 26:41:61:7d:f2:8e:08:40:74:05:6f:48:98:10:b4: 88:5e:07:7f:67:40:bb:bd:7b:f9:33:7f:5d:55:dd: e9:af:36:14:9b:78:c9:0c:d9:67:2d:a0:cf:cf:c9: d1:2b:d6:0b:98:87:ab:67:ba:55:ac:18:52:77:79: 92:8c:05:0b:ba:f1:b8:77:31:79:c9:c7:a1:6f:d4: 0c:c0:14:5a:a3:02:63:7e:60:e1:e6:cc:04:0e:a7: 50:46:b2:85:74:66:23:a6:f9:8a:4b:e1:7f:e1:40: a3:5d:0d:d6:af:e7:ca:08:00:de:62:95:1d:ce:8a: 20:4d:bc:9f:51:5a:b6:e1:bc:45:c9:45:f8:ba:f1: b9:06:7c:31:27:46:8c:6f:37:56:f7:5a:75:c3:d7: e8:66:bf:b6:ad:38:cc:cd:87:d3:91:74:1f:db:09: 91:c9:22:f8:99:c5:2c:e5:7d:3a:fa:51:7b:72:ca: 4b:30:4e:2c:86:78:32:fc:23:c9:e0:93:18:47:ac: 89:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:88:65:96:15:DA:EE:1A:12:C0:64:46:5A:96:DA:F4:AB:E7:01:7D X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/1AC9199AD3CB11EF84052053C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.48.0/22 45.64.114.0/23 IPv6: 2404:7c00:2::/48 2404:7c00:10::-2404:7c00:2f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9e:c4:a0:73:25:df:9b:90:5f:dd:e3:03:ef:08:df:fc:5b:05: a2:e5:bd:50:a6:97:2c:ee:57:41:00:0e:b5:d5:4c:57:d2:d3: 22:08:5b:c5:e0:5f:c3:37:2c:52:64:11:e0:31:75:ef:62:ee: 0e:c3:1b:13:13:2d:d4:36:92:fe:99:1b:08:3c:c3:e5:3a:f8: 81:7e:c4:62:60:63:a0:ea:b0:1f:7d:da:50:a4:50:06:8e:23: be:50:68:2c:45:3d:04:2f:be:cd:a9:c6:10:ae:8a:06:5b:59: f4:d9:43:aa:ba:dd:47:ac:cc:e0:16:8c:12:bc:e9:dc:5f:1f: f9:48:fa:f2:e3:f4:87:8f:8e:eb:93:34:d1:2d:a0:a4:99:10: f8:4b:b3:64:7a:53:86:9b:29:7d:4e:fd:c1:25:87:b1:f0:75: 1a:1f:a3:4c:26:0b:2a:32:c5:ca:f3:8f:b0:59:a3:8e:9a:68: 09:2e:9f:c8:f2:21:9b:56:18:9a:58:65:87:00:3d:66:db:31: ae:b4:ec:78:40:97:b3:33:99:f3:de:a7:30:1e:0e:11:0e:f7: ea:4a:1a:4c:e8:b7:5a:46:06:36:39:57:57:3a:a8:8f:5d:6a: 7a:cd:12:fc:ee:cb:5f:19:ce:8b:0f:98:c3:dd:df:30:a9:b3: e0:14:7b:15 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICIqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjUwNTAyMTYyMzUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE0ZjE5OC00ZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqAfH1UX+0lMSnEAjGNfHMGrIGgRCMxvdl5tU25cniIFfjUtPIVXFnsAmih/ pyOQD2vUuEUrjNl10mUmQWF98o4IQHQFb0iYELSIXgd/Z0C7vXv5M39dVd3przYU m3jJDNlnLaDPz8nRK9YLmIerZ7pVrBhSd3mSjAULuvG4dzF5ycehb9QMwBRaowJj fmDh5swEDqdQRrKFdGYjpvmKS+F/4UCjXQ3Wr+fKCADeYpUdzoogTbyfUVq24bxF yUX4uvG5BnwxJ0aMbzdW91p1w9foZr+2rTjMzYfTkXQf2wmRySL4mcUs5X06+lF7 cspLME4shngy/CPJ4JMYR6yJ9QIDAQABo4ICwDCCArwwHQYDVR0OBBYEFCeIZZYV 2u4aEsBkRlqW2vSr5wF9MB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkzMzMvMDY1REEzQkFCODQ0MTFFNUI1MzU3QjJGQzRGOUFFMDIvMUFDOTE5OUFE M0NCMTFFRjg0MDUyMDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MBIEAgABMAwDBAIr+jADBAEtQHIwIwQCAAIwHQMHACQEfAAAAjASAwcEJAR8 AAAQAwcEJAR8AAAgMA0GCSqGSIb3DQEBCwUAA4IBAQCexKBzJd+bkF/d4wPvCN/8 WwWi5b1Qppcs7ldBAA611UxX0tMiCFvF4F/DNyxSZBHgMXXvYu4OwxsTEy3UNpL+ mRsIPMPlOviBfsRiYGOg6rAffdpQpFAGjiO+UGgsRT0EL77NqcYQrooGW1n02UOq ut1HrMzgFowSvOncXx/5SPry4/SHj47rkzTRLaCkmRD4S7NkelOGmyl9Tv3BJYex 8HUaH6NMJgsqMsXK84+wWaOOmmgJLp/I8iGbVhiaWGWHAD1m2zGutOx4QJezM5nz 3qcwHg4RDvfqShpM6LdaRgY2OVdXOqiPXWp6zRL87stfGc6LD5jD3d8wqbPgFHsV -----END CERTIFICATE-----Generated at Sun May 11 04:51:20 2025 by rpki-client