$ rpki-client -vvf rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/E0CFA54EFE4D11EF8274971BC4F9AE02.roa File: E0CFA54EFE4D11EF8274971BC4F9AE02.roa (raw, json) Hash identifier: xErSiwEVGbEN6QlFmGLkFVWsdMEkeNM0TxyRejXCRHw= Subject key identifier: 1E:D7:96:F3:49:36:A3:3F:33:16:F7:91:40:24:CE:F0:75:8D:70:7C Certificate issuer: /CN=A9197ADE/serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Certificate serial: 1E Authority key identifier: D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/E0CFA54EFE4D11EF8274971BC4F9AE02.roa Signing time: Tue 29 Apr 2025 08:13:47 +0000 ROA not before: Tue 29 Apr 2025 08:13:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38494 IP address blocks: 123.176.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:04:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197ADE, serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Validity Not Before: Apr 29 08:13:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68108a3a-7644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:41:fa:4c:05:7d:d8:1d:5a:01:1f:90:6e:4b: 9d:34:f5:ad:fc:df:10:18:a3:d5:58:66:df:d1:17: 06:06:e5:63:d4:c8:b9:e5:bf:1e:69:6b:e2:94:3d: ee:c5:32:18:d2:64:9c:1b:95:af:71:52:ef:08:ac: 8f:20:a5:4d:95:2e:35:ff:54:e2:81:ec:6d:dd:5a: 26:f0:0b:f8:22:5d:8b:c0:93:80:6f:0a:c5:18:bd: 58:dc:b8:48:2f:e7:58:6d:77:6f:51:18:6d:32:27: 9f:cd:06:40:1a:53:23:d4:9b:ea:3b:6c:3e:ea:94: fa:7e:ca:05:70:f7:33:c4:71:57:ac:e2:c3:ee:36: 40:19:04:28:a2:fd:50:1a:21:3b:8d:e6:c1:a9:64: cc:c1:06:bf:0c:f5:c4:61:f9:89:5f:ca:d5:33:c2: 69:76:3f:9a:88:4c:00:ac:d1:30:a6:c0:aa:20:71: 19:9b:d8:78:b7:08:aa:65:40:b2:95:d0:54:58:65: 09:01:15:1d:54:5b:76:e0:19:ff:f8:54:31:0c:93: 44:af:fa:9c:50:68:ff:f8:c1:ee:a2:49:0b:cd:e9: 8b:14:ff:5c:12:9a:25:23:82:47:b5:69:d8:9a:ec: df:4f:10:63:7d:40:30:15:db:67:cc:7e:51:76:ce: b6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D7:96:F3:49:36:A3:3F:33:16:F7:91:40:24:CE:F0:75:8D:70:7C X509v3 Authority Key Identifier: keyid:D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/E0CFA54EFE4D11EF8274971BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.176.120.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:5c:70:74:a8:6b:6c:73:e4:25:70:57:60:dc:79:96:0b:3f: 67:74:a8:38:3e:34:4e:fe:5f:17:03:59:74:ca:00:b3:88:d2: fc:81:ec:3d:cf:eb:3f:ef:3b:65:ce:9b:41:c0:80:48:08:19: 06:34:be:6e:5b:40:9c:83:ce:6a:ac:21:39:cc:65:47:c2:43: 01:1b:8f:de:1b:5f:9c:51:2d:8b:ac:f1:12:78:4b:77:71:28: 49:f8:0c:5f:c9:21:4d:b6:c4:1a:1a:a3:25:3c:55:d7:f4:2c: 01:3f:26:de:25:47:dd:88:8b:d1:00:7c:e3:ac:cb:7d:d9:18: cd:25:34:50:8c:92:42:38:3a:61:79:90:f1:d8:45:1e:3b:33: 92:46:a5:15:99:78:da:31:af:f0:c6:da:29:87:d2:8d:a0:ac: db:61:73:8b:e8:9b:d2:bb:b3:bf:b3:f8:6a:06:d2:b3:25:81: f3:59:fc:92:3c:ad:8e:de:95:02:75:22:e7:78:68:c0:42:a0: 74:04:f2:fe:9c:08:54:56:dd:1f:51:e5:f1:8f:b0:56:ea:45: 03:38:ed:c8:96:36:3c:2f:05:a2:24:5b:fb:04:f2:97:ba:4e: 13:c7:7b:33:4c:92:32:f8:9d:6f:af:24:04:b1:65:6b:97:5c: 50:b7:83:2f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0FERTExMC8GA1UEBRMoRDkzMjBCRkRBQzBDOTBCMzQyOEE0NEZDN0RDQTBFMkY3 OTA5Nzc0MTAeFw0yNTA0MjkwODEzNDdaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTA4YTNhLTc2NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeQfpMBX3YHVoBH5BuS5009a383xAYo9VYZt/RFwYG5WPUyLnlvx5pa+KUPe7F MhjSZJwbla9xUu8IrI8gpU2VLjX/VOKB7G3dWibwC/giXYvAk4BvCsUYvVjcuEgv 51htd29RGG0yJ5/NBkAaUyPUm+o7bD7qlPp+ygVw9zPEcVes4sPuNkAZBCii/VAa ITuN5sGpZMzBBr8M9cRh+YlfytUzwml2P5qITACs0TCmwKogcRmb2Hi3CKplQLKV 0FRYZQkBFR1UW3bgGf/4VDEMk0Sv+pxQaP/4we6iSQvN6YsU/1wSmiUjgke1adia 7N9PEGN9QDAV22fMflF2zrapAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHteW80k2 oz8zFveRQCTO8HWNcHwwHwYDVR0jBBgwFoAU2TIL/awMkLNCikT8fcoOL3kJd0Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QURFLzg5QTQ5M0UyRkU0 RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xOQ2lrVDhmY29PTDNrSmQw RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlRJTF9hd01rTE5DaWtUOGZjb09MM2tKZDBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0FERS84OUE0OTNFMkZFNEQxMUVGQTFBRkZDMUFDNEY5QUUwMi9FMENGQTU0RUZF NEQxMUVGODI3NDk3MUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHuweDANBgkqhkiG9w0BAQsFAAOCAQEAPlxwdKhrbHPkJXBX YNx5lgs/Z3SoOD40Tv5fFwNZdMoAs4jS/IHsPc/rP+87Zc6bQcCASAgZBjS+bltA nIPOaqwhOcxlR8JDARuP3htfnFEti6zxEnhLd3EoSfgMX8khTbbEGhqjJTxV1/Qs AT8m3iVH3YiL0QB846zLfdkYzSU0UIySQjg6YXmQ8dhFHjszkkalFZl42jGv8Mba KYfSjaCs22Fzi+ib0ruzv7P4agbSsyWB81n8kjytjt6VAnUi53howEKgdATy/pwI VFbdH1Hl8Y+wVupFAzjtyJY2PC8FoiRb+wTyl7pOE8d7M0ySMvidb68kBLFla5dc ULeDLw== -----END CERTIFICATE-----Generated at Tue May 13 09:16:17 2025 by rpki-client