$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa File: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (raw, json) Hash identifier: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo= Subject key identifier: 0D:F6:73:3E:90:06:53:C3:61:04:CA:A2:D8:87:A0:34:94:A8:82:A6 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 0199 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa Signing time: Fri 09 May 2025 02:51:50 +0000 ROA not before: Fri 09 May 2025 02:51:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38829 IP address blocks: 118.127.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: May 9 02:51:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d6dc6-8e56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ad:af:98:28:cc:ad:33:87:5a:b2:cb:1b:8e: c6:f1:3e:b7:b3:ae:c9:64:dd:cf:36:2d:be:5b:d7: f0:35:14:1d:2e:bf:7f:4f:20:b5:2b:00:9f:27:12: 25:a7:40:2c:a3:1c:57:e3:a2:e7:4c:9a:52:26:40: bb:45:a4:35:d5:e5:a1:ac:e3:51:1e:16:93:30:a4: 45:ab:80:f0:be:86:a8:ce:58:0f:53:ee:36:94:dd: 29:81:80:af:ee:3f:4f:45:16:06:2d:95:47:de:f1: 7a:14:fa:de:5f:7e:6d:21:4c:1e:ac:39:87:50:03: d6:73:a2:dd:72:2e:4a:f0:9d:42:08:29:b5:b8:75: 46:9f:f1:3a:3c:fe:5b:3c:37:3b:de:10:b9:b8:ad: b4:2c:45:0a:14:f5:a8:4e:7f:c0:4b:e6:52:58:43: 1d:33:42:fa:41:64:60:b2:f8:04:dc:76:fe:4e:ad: 71:11:93:74:16:84:69:5a:30:ba:d9:0c:c9:6e:0d: 8c:e5:82:ef:08:1a:57:b7:44:cf:47:c3:b8:06:9b: 3c:5e:10:2a:6e:66:9f:2b:90:6f:68:1c:8b:ed:45: 47:0e:df:c3:8e:ee:57:70:76:2b:14:f5:96:b3:f4: 80:f5:8e:49:a4:5f:9a:d3:e8:bd:fc:6d:39:88:e9: 01:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F6:73:3E:90:06:53:C3:61:04:CA:A2:D8:87:A0:34:94:A8:82:A6 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.127.160.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:6d:fb:0b:40:ba:d5:3b:20:f2:b2:c9:e9:f8:01:74:e4:79: db:8a:dd:82:c5:18:d3:7a:28:08:d4:4e:64:49:76:97:ba:91: 6a:bc:a3:95:69:f6:5b:80:d3:c0:a6:74:98:3c:55:ba:d3:d0: 0b:cd:50:b0:a3:76:39:9e:f5:66:63:39:a9:4d:72:90:24:7f: a8:96:14:4e:53:76:11:c6:38:22:e6:c1:a1:5b:3f:a5:8d:bd: 22:6c:f1:a1:65:88:a7:a9:3d:7f:df:4f:75:35:7f:89:c0:fa: 72:c4:9c:d9:5b:65:a9:55:a5:30:db:67:ff:a5:ed:0a:4a:54: d3:66:58:9d:e6:f0:35:4a:b8:03:37:21:dd:f2:9c:0d:97:01: e8:21:9f:9b:4d:1b:ee:77:9d:0e:2c:34:f9:1a:9c:ca:69:f2: 1e:17:2d:4b:58:e3:ff:03:fd:3b:88:2f:c7:ab:c9:90:75:1d: b3:e2:4f:81:33:6f:cc:49:df:86:02:15:dd:ce:56:53:21:ad: 76:e8:d0:63:ef:4b:17:73:17:4b:f8:01:e5:f0:cf:ee:26:45: 8c:09:7f:02:1d:f3:6c:40:2e:b3:0f:f2:be:6e:0d:11:b4:36: 3d:e2:90:75:1b:55:ab:73:3e:e3:55:01:e3:68:e4:a0:2a:d6: 8a:f0:01:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUwNTA5MDI1MTUwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNmRjNi04ZTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7K2vmCjMrTOHWrLLG47G8T63s67JZN3PNi2+W9fwNRQdLr9/TyC1KwCfJxIl p0AsoxxX46LnTJpSJkC7RaQ11eWhrONRHhaTMKRFq4DwvoaozlgPU+42lN0pgYCv 7j9PRRYGLZVH3vF6FPreX35tIUwerDmHUAPWc6Ldci5K8J1CCCm1uHVGn/E6PP5b PDc73hC5uK20LEUKFPWoTn/AS+ZSWEMdM0L6QWRgsvgE3Hb+Tq1xEZN0FoRpWjC6 2QzJbg2M5YLvCBpXt0TPR8O4Bps8XhAqbmafK5BvaByL7UVHDt/Dju5XcHYrFPWW s/SA9Y5JpF+a0+i9/G05iOkBlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA32cz6Q BlPDYQTKotiHoDSUqIKmMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhDNzMvOEU1QzlDQzBDMzE0MTFFRDk3QTBBMzdGQzRGOUFFMDIvRDhFQzJEODRD NkZGMTFFREE5M0ExRDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN2f6AwDQYJKoZIhvcNAQELBQADggEBAE5t+wtAutU7IPKy yen4AXTkeduK3YLFGNN6KAjUTmRJdpe6kWq8o5Vp9luA08CmdJg8VbrT0AvNULCj djme9WZjOalNcpAkf6iWFE5TdhHGOCLmwaFbP6WNvSJs8aFliKepPX/fT3U1f4nA +nLEnNlbZalVpTDbZ/+l7QpKVNNmWJ3m8DVKuAM3Id3ynA2XAeghn5tNG+53nQ4s NPkanMpp8h4XLUtY4/8D/TuIL8eryZB1HbPiT4Ezb8xJ34YCFd3OVlMhrXbo0GPv SxdzF0v4AeXwz+4mRYwJfwId82xALrMP8r5uDRG0Nj3ikHUbVatzPuNVAeNo5KAq 1orwAek= -----END CERTIFICATE-----Generated at Wed May 14 19:32:33 2025 by rpki-client