$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/46583B08FFC811EF9E6A8A4DC4F9AE02/9180262C1B6111F08E120D13C4F9AE02.roa File: 9180262C1B6111F08E120D13C4F9AE02.roa (raw, json) Hash identifier: UO0nTpEkdJy+JoHNof8rmf/UJPCvzKCOY9ll8YOUh5U= Subject key identifier: 50:C5:2B:1E:BF:56:14:E9:24:C4:06:FF:19:9C:26:B4:4E:2F:22:95 Certificate issuer: /CN=A9158F8D/serialNumber=4C8D7BEA24CAFCC57A53E8E774872D3D8B2EB45D Certificate serial: 14 Authority key identifier: 4C:8D:7B:EA:24:CA:FC:C5:7A:53:E8:E7:74:87:2D:3D:8B:2E:B4:5D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TI176iTK_MV6U-jndIctPYsutF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/46583B08FFC811EF9E6A8A4DC4F9AE02/9180262C1B6111F08E120D13C4F9AE02.roa Signing time: Thu 17 Apr 2025 07:57:12 +0000 ROA not before: Thu 17 Apr 2025 07:57:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138199 IP address blocks: 185.24.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/46583B08FFC811EF9E6A8A4DC4F9AE02/TI176iTK_MV6U-jndIctPYsutF0.crl rsync://rpki.apnic.net/member_repository/A9158F8D/46583B08FFC811EF9E6A8A4DC4F9AE02/TI176iTK_MV6U-jndIctPYsutF0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TI176iTK_MV6U-jndIctPYsutF0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=4C8D7BEA24CAFCC57A53E8E774872D3D8B2EB45D Validity Not Before: Apr 17 07:57:12 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6800b457-34df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:30:75:3e:2d:8a:33:9a:fe:2e:78:8c:8a:15: 7a:96:8d:f0:1d:0f:cf:52:6b:f0:c8:df:35:39:0d: 35:11:1a:2d:81:7e:7c:00:b4:2c:c9:63:64:0d:7a: 11:2a:fe:2a:92:83:52:81:a1:1a:22:fe:49:fc:1b: a0:85:df:54:b7:16:5d:58:71:98:8d:f9:12:f5:fd: 54:0f:81:af:05:06:30:6a:9f:4d:02:21:bb:82:48: 75:59:12:bf:a7:84:e4:c6:05:2e:b5:24:05:fd:c6: 87:f6:3d:a2:8f:8b:88:28:8c:dd:b9:c6:9c:ff:35: a4:0a:24:6d:ac:30:1e:0b:87:a6:62:d7:71:54:26: 38:bb:cd:d0:00:43:12:37:5b:22:d1:5d:47:cf:12: 73:1b:06:9f:e6:0f:f1:c1:0e:71:c0:4b:f7:1b:60: 14:e1:10:94:c9:81:c1:77:e5:34:30:8b:f2:b4:a4: 1c:15:51:0e:84:51:46:a9:d6:b0:18:81:91:78:20: 60:e0:80:68:c6:4b:81:9b:bb:7f:c8:33:10:d5:d0: b0:de:e8:59:c8:ad:8d:11:1d:54:d6:4a:07:41:4c: 91:7a:2e:3d:8e:52:52:ba:7d:e6:ff:41:3c:97:a7: 5e:87:67:3c:90:6d:1a:e3:93:42:2f:f2:a1:ab:1e: 34:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C5:2B:1E:BF:56:14:E9:24:C4:06:FF:19:9C:26:B4:4E:2F:22:95 X509v3 Authority Key Identifier: keyid:4C:8D:7B:EA:24:CA:FC:C5:7A:53:E8:E7:74:87:2D:3D:8B:2E:B4:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/46583B08FFC811EF9E6A8A4DC4F9AE02/TI176iTK_MV6U-jndIctPYsutF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TI176iTK_MV6U-jndIctPYsutF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/46583B08FFC811EF9E6A8A4DC4F9AE02/9180262C1B6111F08E120D13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.24.232.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:0e:79:4f:3a:ff:90:e0:7b:ff:e9:36:38:e5:c5:1f:19:e6: 80:4c:8b:41:4f:f3:99:56:b6:c7:44:0b:97:ee:a9:1e:4f:09: bb:6b:35:3e:e7:37:4b:94:b4:dc:25:d2:a2:d7:5e:be:ad:5f: 1e:77:ea:d1:57:04:62:98:80:df:68:5d:e1:41:b7:64:58:07: 8a:e0:40:80:df:35:56:6b:3a:35:79:7c:ca:6b:88:e4:6f:bb: 31:54:06:0c:40:d0:b8:0c:f6:61:68:34:e9:22:8c:fd:86:c0: bc:1b:7b:5d:1d:32:8a:ec:73:33:98:d7:b6:b5:a8:4f:24:85: e1:0b:00:e4:c9:bb:d5:66:60:79:e5:b0:de:01:61:9c:71:d1: 62:1f:6f:fc:6a:06:9c:60:ee:65:b6:f4:14:ab:66:18:ad:87: 30:e6:1f:ad:f1:b3:ae:a7:30:3c:5e:7e:3a:f5:3c:c1:d1:72: 94:10:3d:68:6f:9a:61:e8:9b:22:8f:86:f0:fa:33:bc:51:86: c2:28:fd:98:6b:a6:6a:07:32:84:f5:43:5d:bf:fd:96:cf:7a: f3:eb:78:bb:74:90:d8:2f:40:75:37:81:16:a9:3a:c2:3f:9b: 50:63:79:37:66:da:5e:bf:bb:b8:d2:18:ef:19:2b:ae:49:8b: 55:89:53:d9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OEY4RDExMC8GA1UEBRMoNEM4RDdCRUEyNENBRkNDNTdBNTNFOEU3NzQ4NzJEM0Q4 QjJFQjQ1RDAeFw0yNTA0MTcwNzU3MTJaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDBiNDU3LTM0ZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4MHU+LYozmv4ueIyKFXqWjfAdD89Sa/DI3zU5DTURGi2BfnwAtCzJY2QNehEq /iqSg1KBoRoi/kn8G6CF31S3Fl1YcZiN+RL1/VQPga8FBjBqn00CIbuCSHVZEr+n hOTGBS61JAX9xof2PaKPi4gojN25xpz/NaQKJG2sMB4Lh6Zi13FUJji7zdAAQxI3 WyLRXUfPEnMbBp/mD/HBDnHAS/cbYBThEJTJgcF35TQwi/K0pBwVUQ6EUUap1rAY gZF4IGDggGjGS4Gbu3/IMxDV0LDe6FnIrY0RHVTWSgdBTJF6Lj2OUlK6feb/QTyX p16HZzyQbRrjk0Iv8qGrHjTdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUMUrHr9W FOkkxAb/GZwmtE4vIpUwHwYDVR0jBBgwFoAUTI176iTK/MV6U+jndIctPYsutF0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4RjhELzQ2NTgzQjA4RkZD ODExRUY5RTZBOEE0REM0RjlBRTAyL1RJMTc2aVRLX01WNlUtam5kSWN0UFlzdXRG MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvVEkxNzZpVEtfTVY2VS1qbmRJY3RQWXN1dEYwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC80NjU4M0IwOEZGQzgxMUVGOUU2QThBNERDNEY5QUUwMi85MTgwMjYyQzFC NjExMUYwOEUxMjBEMTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEArkY6DANBgkqhkiG9w0BAQsFAAOCAQEATQ55Tzr/kOB7/+k2 OOXFHxnmgEyLQU/zmVa2x0QLl+6pHk8Ju2s1Puc3S5S03CXSotdevq1fHnfq0VcE YpiA32hd4UG3ZFgHiuBAgN81Vms6NXl8ymuI5G+7MVQGDEDQuAz2YWg06SKM/YbA vBt7XR0yiuxzM5jXtrWoTySF4QsA5Mm71WZgeeWw3gFhnHHRYh9v/GoGnGDuZbb0 FKtmGK2HMOYfrfGzrqcwPF5+OvU8wdFylBA9aG+aYeibIo+G8PozvFGGwij9mGum agcyhPVDXb/9ls968+t4u3SQ2C9AdTeBFqk6wj+bUGN5N2baXr+7uNIY7xkrrkmL VYlT2Q== -----END CERTIFICATE-----Generated at Fri May 16 06:08:41 2025 by rpki-client