$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/4965C7C02E4411F0B187B122C4F9AE02.roa File: 4965C7C02E4411F0B187B122C4F9AE02.roa (raw, json) Hash identifier: vT0qzVdoUmxJ/TJ/AidkSPg3ugEyyFgQIDSZRoXd/0g= Subject key identifier: E0:9C:A3:4D:1E:AB:80:E4:45:42:77:20:48:04:89:30:E6:2A:78:07 Certificate issuer: /CN=A9144F34/serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Certificate serial: 4D Authority key identifier: 4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/4965C7C02E4411F0B187B122C4F9AE02.roa Signing time: Sun 11 May 2025 08:45:27 +0000 ROA not before: Sun 11 May 2025 08:45:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138004 IP address blocks: 160.250.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F34, serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Validity Not Before: May 11 08:45:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=682063a7-2645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:34:6f:45:aa:d7:10:25:b9:de:25:b4:53:bf: 85:4c:6d:51:f3:71:b0:ab:f9:00:a7:de:f8:ed:f6: d5:2a:8b:4e:bd:4d:3f:66:27:5a:30:48:8b:97:ea: c1:1b:ee:f4:a9:63:0c:9b:31:37:46:65:98:c4:1e: 69:f5:26:24:f1:6d:46:f0:88:4d:04:9f:17:d7:bc: 98:f2:2b:d5:f4:9c:01:46:02:d3:b0:bc:8d:b8:41: cd:39:e7:8a:d4:3a:a2:e9:e2:f1:04:25:51:1c:31: 24:fe:77:a3:f0:58:b5:c7:b8:5b:75:52:5c:78:f9: 31:06:a9:a0:2c:bb:6a:0b:f3:ca:44:1c:15:b4:a0: 4f:f4:1e:9c:d3:f1:07:f8:95:9a:30:45:4e:1a:86: cd:2b:d6:cb:ec:03:8f:8b:5c:e4:5d:90:8c:72:06: 67:1a:ce:60:eb:90:0b:c3:36:a3:9c:4b:6c:ac:09: 11:ab:f5:8b:00:a6:96:0d:ee:98:3d:9e:bb:5a:8d: 78:13:0f:39:b8:40:4a:71:69:19:1c:96:b2:ec:ac: 53:c7:82:23:68:5b:26:1c:90:cc:56:b7:92:a6:cb: 77:92:c5:ff:30:ac:76:d3:8a:a5:92:46:aa:2f:6a: 64:3f:e6:8b:01:1c:15:ee:a2:7d:3c:0a:57:fd:2f: be:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9C:A3:4D:1E:AB:80:E4:45:42:77:20:48:04:89:30:E6:2A:78:07 X509v3 Authority Key Identifier: keyid:4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/4965C7C02E4411F0B187B122C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.223.0/24 Signature Algorithm: sha256WithRSAEncryption 63:3f:ad:b2:3e:6a:fb:93:8f:28:4c:8f:53:9d:9f:0e:42:d4: 1f:1a:7d:c9:2f:2f:a5:d5:af:cf:b0:6c:3e:a5:5c:47:60:fe: 38:f3:5e:25:e7:8d:2b:d7:cc:4a:3f:57:da:89:3b:aa:05:f4: 5c:a4:dd:96:d6:95:5f:10:39:b2:f7:70:2b:7b:db:45:30:84: f7:30:ad:0d:ae:91:b3:7c:e9:33:ee:29:fd:0f:77:26:f7:c5: 8e:31:99:d6:93:90:2f:ec:c2:a8:73:83:3a:3b:1b:f4:e1:07: dd:d3:aa:e1:bd:7c:fe:2e:2c:a8:96:b4:88:3d:1f:9e:0b:28: 91:e2:2a:8a:6d:20:97:f0:fc:e8:fc:20:8d:f3:1c:53:d0:33: 9d:8b:37:79:bf:60:ce:dc:76:ac:0e:2f:c8:97:5b:70:72:c8: 14:b2:e4:cc:0e:86:9e:77:2e:7d:98:6e:4f:f6:12:d9:68:0c: f3:8b:05:86:ce:ed:fc:80:ad:31:82:88:d3:bd:32:dd:ff:6b: 29:3d:ac:b8:62:ee:72:f9:f5:5f:14:bf:df:b2:ad:a7:92:e6: 6b:fb:24:37:bb:97:32:42:29:47:d4:94:b4:f3:1a:6f:c0:e5: e1:9e:1c:b0:67:dd:b9:bc:fa:35:81:24:75:2a:58:52:50:06: 79:3d:2d:54 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NEYzNDExMC8GA1UEBRMoNEIzMTA4QkM1NzU4ODQzRDYzREZGNkZDNjQwOTdGMkIx NjQ0Q0I4QTAeFw0yNTA1MTEwODQ1MjdaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjA2M2E3LTI2NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVNG9FqtcQJbneJbRTv4VMbVHzcbCr+QCn3vjt9tUqi069TT9mJ1owSIuX6sEb 7vSpYwybMTdGZZjEHmn1JiTxbUbwiE0EnxfXvJjyK9X0nAFGAtOwvI24Qc0554rU OqLp4vEEJVEcMST+d6PwWLXHuFt1Ulx4+TEGqaAsu2oL88pEHBW0oE/0HpzT8Qf4 lZowRU4ahs0r1svsA4+LXORdkIxyBmcazmDrkAvDNqOcS2ysCRGr9YsAppYN7pg9 nrtajXgTDzm4QEpxaRkclrLsrFPHgiNoWyYckMxWt5Kmy3eSxf8wrHbTiqWSRqov amQ/5osBHBXuon08Clf9L76hAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4JyjTR6r gORFQncgSASJMOYqeAcwHwYDVR0jBBgwFoAUSzEIvFdYhD1j3/b8ZAl/KxZEy4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0RjM0LzREMjJFRUUwQkRF OTExRUZCRkQ1Mzg4MkM0RjlBRTAyL1N6RUl2RmRZaEQxajNfYjhaQWxfS3haRXk0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU3pFSXZGZFloRDFqM19iOFpBbF9LeFpFeTRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEYzNC80RDIyRUVFMEJERTkxMUVGQkZENTM4ODJDNEY5QUUwMi80OTY1QzdDMDJF NDQxMUYwQjE4N0IxMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD63zANBgkqhkiG9w0BAQsFAAOCAQEAYz+tsj5q+5OPKEyP U52fDkLUHxp9yS8vpdWvz7BsPqVcR2D+OPNeJeeNK9fMSj9X2ok7qgX0XKTdltaV XxA5svdwK3vbRTCE9zCtDa6Rs3zpM+4p/Q93JvfFjjGZ1pOQL+zCqHODOjsb9OEH 3dOq4b18/i4sqJa0iD0fngsokeIqim0gl/D86PwgjfMcU9AznYs3eb9gztx2rA4v yJdbcHLIFLLkzA6GnncufZhuT/YS2WgM84sFhs7t/ICtMYKI070y3f9rKT2suGLu cvn1XxS/37Ktp5Lma/skN7uXMkIpR9SUtPMab8Dl4Z4csGfdubz6NYEkdSpYUlAG eT0tVA== -----END CERTIFICATE-----Generated at Sat May 17 01:03:58 2025 by rpki-client