$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/B9800BF82E9011ED96AE647FC4F9AE02.roa File: B9800BF82E9011ED96AE647FC4F9AE02.roa (raw, json) Hash identifier: r9rxwsZy05OBv79BaleZs2CDNDVKsWtQPtZMqmB3o+8= Subject key identifier: 89:68:8E:A1:F2:65:D5:D8:2D:E6:4F:1D:60:64:7F:A3:3A:CD:40:1F Certificate issuer: /CN=A917E0A8/serialNumber=0508CBE9AB6EE7F629F1E17385F3E0FDEF8C3D3B Certificate serial: 0571 Authority key identifier: 05:08:CB:E9:AB:6E:E7:F6:29:F1:E1:73:85:F3:E0:FD:EF:8C:3D:3B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/B9800BF82E9011ED96AE647FC4F9AE02.roa Signing time: Wed 30 Apr 2025 19:29:46 +0000 ROA not before: Wed 30 Apr 2025 19:29:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 59253 IP address blocks: 164.152.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.crl rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1393 (0x571) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=0508CBE9AB6EE7F629F1E17385F3E0FDEF8C3D3B Validity Not Before: Apr 30 19:29:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68127a2a-ebe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d3:c8:6b:86:e0:89:34:9c:36:0a:e1:ec:aa: f1:52:da:fd:98:f5:87:2e:c8:9c:f5:b6:d5:08:c4: 53:3d:1c:71:a6:2c:f7:3d:38:0d:74:12:fe:20:e8: e3:a9:75:23:bf:98:d8:35:45:e7:d5:5a:61:0e:18: 17:d5:b3:db:b5:cf:37:18:90:0f:f6:3f:b1:12:fd: a1:e3:d2:fe:c1:6f:e4:51:c1:a2:7a:7c:b2:20:5b: 3e:2d:dd:4d:79:b0:06:6a:22:d5:16:b9:8b:d7:6f: 73:31:ab:c8:1d:e8:a7:e3:1b:dd:e0:d6:93:7f:ba: 39:13:97:fc:68:57:fc:4b:a9:cf:7d:36:44:59:f9: 2a:94:21:df:95:e0:61:b6:81:15:32:bf:a5:05:25: d3:b9:f0:27:d7:4d:5c:e5:ed:49:2b:cb:dc:8a:b6: b6:a4:a7:c5:1f:f7:2b:82:22:9d:92:97:8c:43:76: cd:2f:da:a9:63:a1:5d:55:94:70:15:3e:64:9e:ce: ab:de:12:5b:dc:d6:1b:28:98:6f:d2:7b:ef:2b:9e: d3:bf:a5:53:a5:c1:6e:87:56:db:8b:d8:33:ad:f6: 16:65:e0:46:0b:30:69:dc:10:5f:da:b5:71:bd:78: cd:3b:80:95:4f:6d:65:ca:85:a8:09:ff:5c:ba:b6: 04:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:68:8E:A1:F2:65:D5:D8:2D:E6:4F:1D:60:64:7F:A3:3A:CD:40:1F X509v3 Authority Key Identifier: keyid:05:08:CB:E9:AB:6E:E7:F6:29:F1:E1:73:85:F3:E0:FD:EF:8C:3D:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/B9800BF82E9011ED96AE647FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.152.166.0/23 Signature Algorithm: sha256WithRSAEncryption 50:78:b5:59:d8:e3:a9:45:33:54:37:c9:7b:e1:61:7d:3f:35: d6:71:16:07:7c:40:65:48:81:c6:37:07:90:1d:bb:89:de:4b: be:79:a1:61:1d:e8:2f:e2:70:a4:72:40:b9:bc:2b:f1:06:3a: 8f:51:4e:b6:6d:8f:f8:52:b6:e6:fd:9d:ab:87:a7:bd:09:c3: 8d:6a:5b:b2:ce:27:f0:a3:a8:60:dc:1f:2e:3e:ae:48:3c:4e: c4:2e:58:a2:76:07:c3:4d:91:e8:14:ff:a1:f5:e2:c1:8b:82: 1d:e7:f7:8a:a0:6c:96:a3:ad:91:f0:1c:11:a9:3a:34:b4:05: 01:06:ee:b1:66:01:99:fb:7d:84:2a:ed:6d:61:bc:37:ac:4f: ff:35:80:8c:40:3e:1b:55:12:47:d2:8f:c9:4f:09:f8:70:0e: d4:e0:3a:e0:d3:36:1c:5b:c3:85:6c:19:07:7c:5c:bd:fa:5a: db:b5:fe:24:b6:d2:70:e0:76:5b:e0:64:f8:db:14:7c:9a:c3: b0:14:3f:ac:22:f0:29:85:80:2f:be:2a:dd:84:2c:79:43:2b: d0:f0:3a:d9:85:7e:ca:2e:fa:44:d3:93:65:e1:a5:a0:00:8c: 67:9f:1f:82:77:2d:f2:64:65:31:7e:40:f6:37:53:86:3d:d9: f8:48:82:7c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDA1MDhDQkU5QUI2RUU3RjYyOUYxRTE3Mzg1RjNFMEZE RUY4QzNEM0IwHhcNMjUwNDMwMTkyOTQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyN2EyYS1lYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NPIa4bgiTScNgrh7KrxUtr9mPWHLsic9bbVCMRTPRxxpiz3PTgNdBL+IOjj qXUjv5jYNUXn1VphDhgX1bPbtc83GJAP9j+xEv2h49L+wW/kUcGienyyIFs+Ld1N ebAGaiLVFrmL129zMavIHein4xvd4NaTf7o5E5f8aFf8S6nPfTZEWfkqlCHfleBh toEVMr+lBSXTufAn101c5e1JK8vcira2pKfFH/crgiKdkpeMQ3bNL9qpY6FdVZRw FT5kns6r3hJb3NYbKJhv0nvvK57Tv6VTpcFuh1bbi9gzrfYWZeBGCzBp3BBf2rVx vXjNO4CVT21lyoWoCf9curYEywIDAQABo4IClTCCApEwHQYDVR0OBBYEFIlojqHy ZdXYLeZPHWBkf6M6zUAfMB8GA1UdIwQYMBaAFAUIy+mrbuf2KfHhc4Xz4P3vjD07 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC8wQzQ3NDkwQUVB QjMxMUVCOTgxMUE0NjVDNEY5QUUwMi9CUWpMNmF0dTVfWXA4ZUZ6aGZQZ19lLU1Q VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JRakw2YXR1NV9ZcDhlRnpoZlBnX2UtTVBUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvMEM0NzQ5MEFFQUIzMTFFQjk4MTFBNDY1QzRGOUFFMDIvQjk4MDBCRjgy RTkwMTFFRDk2QUU2NDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGkmKYwDQYJKoZIhvcNAQELBQADggEBAFB4tVnY46lFM1Q3 yXvhYX0/NdZxFgd8QGVIgcY3B5Adu4neS755oWEd6C/icKRyQLm8K/EGOo9RTrZt j/hStub9nauHp70Jw41qW7LOJ/CjqGDcHy4+rkg8TsQuWKJ2B8NNkegU/6H14sGL gh3n94qgbJajrZHwHBGpOjS0BQEG7rFmAZn7fYQq7W1hvDesT/81gIxAPhtVEkfS j8lPCfhwDtTgOuDTNhxbw4VsGQd8XL36Wtu1/iS20nDgdlvgZPjbFHyaw7AUP6wi 8CmFgC++Kt2ELHlDK9DwOtmFfsou+kTTk2XhpaAAjGefH4J3LfJkZTF+QPY3U4Y9 2fhIgnw= -----END CERTIFICATE-----Generated at Fri May 16 18:11:44 2025 by rpki-client