$ rpki-client -vvf rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/45D237A423E211F0A5DCED27C4F9AE02.roa File: 45D237A423E211F0A5DCED27C4F9AE02.roa (raw, json) Hash identifier: 3wfdkAiEkFODU6B4YeHm0vdAyiuwr8rUvXL2nV5+auc= Subject key identifier: 68:96:85:8C:E8:E5:DE:57:F5:54:3C:A6:DD:A5:DF:C8:A4:08:20:6F Certificate issuer: /CN=A9199656/serialNumber=C9C30B7C57E2F016DB1F01C09E592E050474C9A6 Certificate serial: 02 Authority key identifier: C9:C3:0B:7C:57:E2:F0:16:DB:1F:01:C0:9E:59:2E:05:04:74:C9:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/45D237A423E211F0A5DCED27C4F9AE02.roa Signing time: Mon 28 Apr 2025 03:38:39 +0000 ROA not before: Mon 28 Apr 2025 03:38:39 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45597 IP address blocks: 203.176.114.0/24 maxlen: 24 203.176.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.crl rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199656, serialNumber=C9C30B7C57E2F016DB1F01C09E592E050474C9A6 Validity Not Before: Apr 28 03:38:39 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=680ef83f-4c9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e7:7e:92:46:42:47:38:97:b5:12:b8:22:aa: 92:b0:a0:0b:f5:a3:7f:5f:43:ba:0e:e2:13:72:f9: 24:d6:01:4c:60:16:cc:9e:49:63:4a:41:85:00:3c: 17:17:ca:49:22:71:80:13:94:bc:56:4b:65:0e:18: 72:8c:ad:fc:12:94:14:b4:95:8d:82:84:71:56:53: d6:d6:93:e3:89:39:0c:94:65:87:95:09:50:6f:8e: 1d:49:d3:be:7b:e4:e9:17:1f:8c:3d:7c:da:57:21: bc:f4:fe:01:20:a2:ff:5c:3e:e5:5a:61:79:85:f3: e2:15:b0:eb:bc:a3:cd:b3:ba:2e:39:8b:b4:32:bf: 1a:65:e8:fb:21:93:d7:83:ee:ce:4c:52:61:db:9e: 81:b2:e2:59:da:00:5f:e9:a2:7c:a2:a2:ab:e9:56: 00:0f:5c:5a:6f:65:a1:c0:8f:d6:60:0d:8c:41:03: b5:e2:81:c4:ba:ea:f7:ef:c6:45:31:af:e8:42:02: f9:87:5d:9a:cb:7f:64:25:01:d5:e3:88:c7:36:de: 35:83:ae:6d:21:74:3c:18:8d:07:5a:19:d1:3c:86: c4:bb:40:e2:fa:d2:91:29:7c:2a:a8:5f:ac:97:2b: c0:7c:ee:d7:c5:70:e9:ec:73:ef:62:d1:d5:6a:f2: 4c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:96:85:8C:E8:E5:DE:57:F5:54:3C:A6:DD:A5:DF:C8:A4:08:20:6F X509v3 Authority Key Identifier: keyid:C9:C3:0B:7C:57:E2:F0:16:DB:1F:01:C0:9E:59:2E:05:04:74:C9:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/ycMLfFfi8BbbHwHAnlkuBQR0yaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycMLfFfi8BbbHwHAnlkuBQR0yaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199656/A5E7CD7623E111F0A650EA23C4F9AE02/45D237A423E211F0A5DCED27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.176.114.0/23 Signature Algorithm: sha256WithRSAEncryption 70:c8:08:1e:b0:3e:f5:5f:0f:e3:a4:a6:4f:a2:2c:dc:78:aa: 44:50:96:7a:5b:e2:a2:0a:ae:29:fd:84:9f:dd:85:cf:66:55: 3b:73:e6:47:33:52:cf:4a:23:eb:03:14:9f:64:99:bb:59:f4: f9:1e:4b:fd:df:bc:29:5f:62:ce:3b:0d:17:1e:27:6b:90:96: 7a:09:de:5d:2f:4d:0f:2f:f9:b8:82:91:e9:b5:5b:66:da:a8: dd:97:43:0d:74:f5:78:46:f0:34:35:83:f4:ac:95:8e:19:7d: 6c:01:1d:a8:01:06:7e:a3:cd:83:cc:4a:bc:9e:56:79:98:67: a6:4d:f6:a3:c8:e1:7a:24:97:7b:2d:90:5e:73:25:c3:02:97: d6:e8:b5:05:2c:22:d3:42:4c:2b:98:58:c7:f9:30:2d:4f:e9: 75:bd:c6:59:9f:be:e0:04:19:31:2c:f2:84:f8:92:e5:5b:4f: b0:d8:e8:eb:9b:f5:b7:e6:73:fe:fe:1b:bf:67:e5:f2:69:cb: 40:54:31:c3:ab:85:0b:65:5d:58:a3:2b:09:13:e4:51:18:8a: 12:d2:5d:17:61:14:1a:3c:89:2d:96:0d:c3:8b:81:a8:b4:f2: 87:c3:46:a7:b8:ae:a1:66:f9:d7:3d:62:e5:85:03:57:75:74: e6:82:c2:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTY1NjExMC8GA1UEBRMoQzlDMzBCN0M1N0UyRjAxNkRCMUYwMUMwOUU1OTJFMDUw NDc0QzlBNjAeFw0yNTA0MjgwMzM4MzlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGVmODNmLTRjOWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDY536SRkJHOJe1ErgiqpKwoAv1o39fQ7oO4hNy+STWAUxgFsyeSWNKQYUAPBcX ykkicYATlLxWS2UOGHKMrfwSlBS0lY2ChHFWU9bWk+OJOQyUZYeVCVBvjh1J0757 5OkXH4w9fNpXIbz0/gEgov9cPuVaYXmF8+IVsOu8o82zui45i7Qyvxpl6Pshk9eD 7s5MUmHbnoGy4lnaAF/ponyioqvpVgAPXFpvZaHAj9ZgDYxBA7XigcS66vfvxkUx r+hCAvmHXZrLf2QlAdXjiMc23jWDrm0hdDwYjQdaGdE8hsS7QOL60pEpfCqoX6yX K8B87tfFcOnsc+9i0dVq8kwrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaJaFjOjl 3lf1VDym3aXfyKQIIG8wHwYDVR0jBBgwFoAUycMLfFfi8BbbHwHAnlkuBQR0yaYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5NjU2L0E1RTdDRDc2MjNF MTExRjBBNjUwRUEyM0M0RjlBRTAyL3ljTUxmRmZpOEJiYkh3SEFubGt1QlFSMHlh WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWNNTGZGZmk4QmJiSHdIQW5sa3VCUVIweWFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTY1Ni9BNUU3Q0Q3NjIzRTExMUYwQTY1MEVBMjNDNEY5QUUwMi80NUQyMzdBNDIz RTIxMUYwQTVEQ0VEMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcuwcjANBgkqhkiG9w0BAQsFAAOCAQEAcMgIHrA+9V8P46Sm T6Is3HiqRFCWelviogquKf2En92Fz2ZVO3PmRzNSz0oj6wMUn2SZu1n0+R5L/d+8 KV9izjsNFx4na5CWegneXS9NDy/5uIKR6bVbZtqo3ZdDDXT1eEbwNDWD9KyVjhl9 bAEdqAEGfqPNg8xKvJ5WeZhnpk32o8jheiSXey2QXnMlwwKX1ui1BSwi00JMK5hY x/kwLU/pdb3GWZ++4AQZMSzyhPiS5VtPsNjo65v1t+Zz/v4bv2fl8mnLQFQxw6uF C2VdWKMrCRPkURiKEtJdF2EUGjyJLZYNw4uBqLTyh8NGp7iuoWb51z1i5YUDV3V0 5oLCTA== -----END CERTIFICATE-----Generated at Wed May 14 18:23:29 2025 by rpki-client