$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa File: 21B7F8F2932111EEA205F93BC4F9AE02.roa (raw, json) Hash identifier: BC1XUzBkjyQzlz4GvtxH81hMdlkimJB+lU8F+PmiFVI= Subject key identifier: D6:BC:4A:78:9D:59:BF:F7:9F:94:6F:21:CA:96:9C:DE:9F:5B:2F:3E Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 039C Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa Signing time: Wed 07 May 2025 01:38:19 +0000 ROA not before: Wed 07 May 2025 01:38:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 43.243.193.0/24 maxlen: 24 45.113.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 924 (0x39c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2, serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: May 7 01:38:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681ab98b-41ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:37:a3:14:e7:b8:e7:24:b4:e5:b1:0a:53:cc: 3c:fd:0a:9d:5e:8a:03:4c:80:4c:ff:ef:09:59:af: 6b:68:10:e2:bf:25:e7:2e:fc:b7:f1:19:88:a6:a3: 4c:54:12:c3:e7:39:40:ee:c2:ce:6e:2f:7a:01:b6: ab:75:d4:7f:a1:fa:36:14:7e:87:01:b8:1c:10:34: 78:5f:91:e8:22:45:c4:33:8a:23:b4:e0:18:ea:32: 62:fa:5f:bd:5a:f6:b9:87:73:08:30:fd:c4:b4:2a: 80:be:6d:38:65:a1:92:9b:a4:c8:b3:42:3f:61:51: 5c:15:f0:4f:27:30:ec:ba:7f:21:49:b3:5b:08:17: 65:e2:47:a9:29:a8:72:d2:5d:26:26:fb:ab:69:a7: 1f:47:7f:ae:ab:ce:44:62:c3:3e:bb:4d:2a:8c:a1: b7:58:fa:c4:c2:15:ba:94:76:37:98:71:2d:48:9b: 82:0f:61:d1:b0:dd:d8:72:21:ae:50:fd:8f:56:67: 06:98:c5:2e:22:93:e0:5d:48:fc:09:9a:86:c0:7a: c1:f3:58:55:4f:7a:f1:2b:3d:d5:6b:5e:ba:ef:c2: 4d:04:c6:1f:0a:ff:bc:88:6b:df:6f:6d:0f:3f:37: ab:9e:63:a1:42:6f:51:23:6b:53:e9:05:38:07:08: 16:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BC:4A:78:9D:59:BF:F7:9F:94:6F:21:CA:96:9C:DE:9F:5B:2F:3E X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.193.0/24 45.113.83.0/24 Signature Algorithm: sha256WithRSAEncryption c0:cf:b0:53:f9:2a:cc:7a:79:2a:a6:97:92:61:86:e7:95:64: f2:15:42:fa:15:a1:31:fd:9b:a2:b0:6e:a7:dd:56:52:ae:a3: 4a:91:55:c7:69:d8:a1:84:4d:e0:6b:2b:7c:8a:5d:2b:18:17: 84:81:ec:cf:d4:6a:25:f1:38:ec:38:19:23:d6:98:9d:19:db: 08:00:d3:36:de:65:f9:5d:18:c6:d9:da:da:85:7b:bd:ea:0b: 33:81:b1:a8:b8:8c:4e:10:30:51:ca:18:1e:7a:4c:d0:0d:66: 88:03:e7:9e:d9:fe:e5:f3:4f:21:5e:90:5c:24:19:1a:ba:8d: 16:36:87:a4:53:8e:d9:3b:1e:40:4a:27:56:da:4e:ba:9c:c8: 58:01:43:5a:4c:ef:d1:e4:6b:d9:19:ce:20:61:17:d1:c9:df: 6a:a5:86:58:b4:77:24:cc:b8:25:27:f8:75:06:b8:d9:1e:66: db:21:eb:79:c7:86:54:93:e7:e1:bf:d9:64:75:d2:b0:b2:d5: 15:90:d9:94:fe:1b:4d:b0:5a:39:cc:b4:88:bc:31:b5:51:d7: 28:60:73:fc:b9:66:bc:34:78:b7:a5:b0:73:73:3a:01:41:fa: b8:f3:9f:53:80:b0:9c:24:68:4d:48:38:60:e2:a3:61:b9:a4: 23:75:1d:4b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjUwNTA3MDEzODE5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjk4Yi00MWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TejFOe45yS05bEKU8w8/QqdXooDTIBM/+8JWa9raBDivyXnLvy38RmIpqNM VBLD5zlA7sLObi96AbarddR/ofo2FH6HAbgcEDR4X5HoIkXEM4ojtOAY6jJi+l+9 Wva5h3MIMP3EtCqAvm04ZaGSm6TIs0I/YVFcFfBPJzDsun8hSbNbCBdl4kepKahy 0l0mJvuraacfR3+uq85EYsM+u00qjKG3WPrEwhW6lHY3mHEtSJuCD2HRsN3YciGu UP2PVmcGmMUuIpPgXUj8CZqGwHrB81hVT3rxKz3Va16678JNBMYfCv+8iGvfb20P PzernmOhQm9RI2tT6QU4BwgW9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNa8Snid Wb/3n5RvIcqWnN6fWy8+MB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvMjFCN0Y4RjI5 MzIxMTFFRUEyMDVGOTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr88EDBAAtcVMwDQYJKoZIhvcNAQELBQADggEBAMDPsFP5 Ksx6eSqml5JhhueVZPIVQvoVoTH9m6KwbqfdVlKuo0qRVcdp2KGETeBrK3yKXSsY F4SB7M/UaiXxOOw4GSPWmJ0Z2wgA0zbeZfldGMbZ2tqFe73qCzOBsai4jE4QMFHK GB56TNANZogD557Z/uXzTyFekFwkGRq6jRY2h6RTjtk7HkBKJ1baTrqcyFgBQ1pM 79Hka9kZziBhF9HJ32qlhli0dyTMuCUn+HUGuNkeZtsh63nHhlST5+G/2WR10rCy 1RWQ2ZT+G02wWjnMtIi8MbVR1yhgc/y5Zrw0eLelsHNzOgFB+rjzn1OAsJwkaE1I OGDio2G5pCN1HUs= -----END CERTIFICATE-----Generated at Sun May 11 13:47:09 2025 by rpki-client