$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/3C2408105CBF11ECACDFE47BC4F9AE02.roa File: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (raw, json) Hash identifier: 0H9iVWOcGuVvN/MVa3XeV+I+PG+LvrsVTNSfk98zbHw= Subject key identifier: 78:F7:98:99:BF:F5:89:78:FD:17:D2:EA:3C:90:46:A2:5E:86:64:EE Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 05D1 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/3C2408105CBF11ECACDFE47BC4F9AE02.roa Signing time: Sun 04 May 2025 23:04:01 +0000 ROA not before: Sun 04 May 2025 23:04:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136523 IP address blocks: 150.107.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1489 (0x5d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: May 4 23:04:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6817f261-ca4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fd:42:e5:cc:33:15:54:c1:2a:62:18:4a:f7: 1a:5c:4f:b8:18:dd:9f:fa:9c:f0:55:11:fa:31:9e: cb:e9:92:8a:6b:ed:2a:bd:0c:eb:26:a2:bb:1e:d2: c7:bd:df:bf:f0:65:e7:3c:10:a0:1f:3c:86:b9:39: 2c:29:93:97:18:05:14:d7:12:3f:af:07:77:30:67: b7:08:30:e3:74:a0:0f:b6:2c:1f:ed:e8:ad:ea:de: 00:a3:1e:35:69:69:c8:d0:f5:2e:28:eb:ca:03:6a: b6:70:31:34:d5:6c:b4:2c:8f:b9:26:da:f9:3e:a3: 45:68:2b:bc:df:44:2d:6f:8f:12:ca:b1:73:e8:5e: 87:a9:c4:e3:ac:3f:1c:64:d4:d1:c5:83:ca:ac:b9: 04:b0:a0:5a:6d:50:88:30:ba:33:55:85:6b:72:e5: da:c5:ea:76:b2:c5:6d:1b:e1:68:36:94:35:a0:be: 86:06:10:da:47:39:c6:ef:0f:5e:88:72:6a:41:e7: 6b:57:ae:2d:60:4c:57:23:3b:7c:58:1e:c0:96:0b: e5:e9:d9:98:e8:e2:ad:8e:74:24:3f:fb:86:9a:94: 19:ef:c9:4d:71:bd:65:90:06:76:14:83:40:4f:cf: 26:b4:dd:1c:18:58:61:d6:ea:f1:2b:4a:d0:16:02: 29:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F7:98:99:BF:F5:89:78:FD:17:D2:EA:3C:90:46:A2:5E:86:64:EE X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/3C2408105CBF11ECACDFE47BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.107.29.0/24 Signature Algorithm: sha256WithRSAEncryption 74:29:8f:0a:5b:31:fc:14:75:67:4a:eb:54:fb:ee:e8:29:f0: 4f:9c:7d:94:57:31:44:92:9d:d7:ba:bb:b5:69:ca:64:bc:92: 9f:1e:9e:e0:e6:10:fe:46:68:fc:bc:a1:88:57:bf:e2:a1:60: 8f:5b:f0:a3:89:c6:34:68:e2:c4:20:06:c2:e8:42:0f:5a:3c: 93:f4:95:93:c4:c8:ce:a1:10:84:72:49:05:df:24:85:2b:c8: b2:94:f7:4b:94:f5:84:a7:2a:f9:06:75:9a:90:c6:6a:04:e8: 2e:28:0b:73:e7:1d:69:fe:6c:74:e7:ed:f4:df:3b:f8:55:45: 10:fb:eb:ee:58:7a:22:72:cd:8c:6d:f7:3a:09:7e:c1:01:3a: a3:a9:b8:52:b8:e7:74:51:c1:b5:29:f1:c1:08:15:95:15:e6: 80:50:0d:ee:38:78:1a:3d:23:8c:05:43:67:0c:1b:39:4e:0f: be:5c:f1:31:21:44:d8:12:7b:f2:ab:43:73:29:e4:63:78:2c: 94:99:49:8f:b0:a6:92:3b:23:12:c2:6c:52:2d:2a:24:8f:99: d4:d0:27:88:74:f0:81:27:78:e8:25:ea:37:89:5b:18:c3:ef: 10:fc:c8:13:8b:26:56:d5:b4:d0:d9:81:c7:e3:0c:d0:53:b0: 3f:35:7d:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwNTA0MjMwNDAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3ZjI2MS1jYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAov1C5cwzFVTBKmIYSvcaXE+4GN2f+pzwVRH6MZ7L6ZKKa+0qvQzrJqK7HtLH vd+/8GXnPBCgHzyGuTksKZOXGAUU1xI/rwd3MGe3CDDjdKAPtiwf7eit6t4Aox41 aWnI0PUuKOvKA2q2cDE01Wy0LI+5Jtr5PqNFaCu830Qtb48SyrFz6F6HqcTjrD8c ZNTRxYPKrLkEsKBabVCIMLozVYVrcuXaxep2ssVtG+FoNpQ1oL6GBhDaRznG7w9e iHJqQedrV64tYExXIzt8WB7Algvl6dmY6OKtjnQkP/uGmpQZ78lNcb1lkAZ2FINA T88mtN0cGFhh1urxK0rQFgIpBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHj3mJm/ 9Yl4/RfS6jyQRqJehmTuMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBDOTUvREUyRkYxRjRCQUM3MTFFQkFGMkU2ODEzQzRGOUFFMDIvM0MyNDA4MTA1 Q0JGMTFFQ0FDREZFNDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACWax0wDQYJKoZIhvcNAQELBQADggEBAHQpjwpbMfwUdWdK 61T77ugp8E+cfZRXMUSSnde6u7VpymS8kp8enuDmEP5GaPy8oYhXv+KhYI9b8KOJ xjRo4sQgBsLoQg9aPJP0lZPEyM6hEIRySQXfJIUryLKU90uU9YSnKvkGdZqQxmoE 6C4oC3PnHWn+bHTn7fTfO/hVRRD76+5YeiJyzYxt9zoJfsEBOqOpuFK453RRwbUp 8cEIFZUV5oBQDe44eBo9I4wFQ2cMGzlOD75c8TEhRNgSe/KrQ3Mp5GN4LJSZSY+w ppI7IxLCbFItKiSPmdTQJ4h08IEneOgl6jeJWxjD7xD8yBOLJlbVtNDZgcfjDNBT sD81fZk= -----END CERTIFICATE-----Generated at Mon May 12 12:43:34 2025 by rpki-client