$ rpki-client -vvf rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/21CF5E6C7AF111EF8BC4E684C4F9AE02.roa File: 21CF5E6C7AF111EF8BC4E684C4F9AE02.roa (raw, json) Hash identifier: b1nalvR/eNXqTum+cSymzCLGQcxE1TXmTmkjmB0g0BY= Subject key identifier: 04:71:91:3B:F7:98:09:E6:8E:03:E3:80:8F:21:1C:E7:36:9A:28:2D Certificate issuer: /CN=A9110718/serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Certificate serial: 07B9 Authority key identifier: 76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/21CF5E6C7AF111EF8BC4E684C4F9AE02.roa Signing time: Wed 16 Apr 2025 21:31:44 +0000 ROA not before: Wed 16 Apr 2025 21:31:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132794 IP address blocks: 202.92.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1977 (0x7b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110718, serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Validity Not Before: Apr 16 21:31:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=680021c0-e629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bd:d9:5c:de:0b:77:df:33:96:0c:d3:95:21: 81:4a:67:a1:07:6b:b7:1c:20:1e:3c:f1:9e:32:50: 84:ac:2f:93:ba:2a:ff:5b:9d:c3:7d:30:85:01:97: 0b:c7:5c:fd:4f:38:e9:3f:49:2e:b7:67:1e:bd:28: 5d:52:f7:0e:cb:92:8d:ef:fb:56:e4:29:b6:0a:01: 7e:0b:9a:93:95:00:da:6d:51:03:00:d7:d1:7c:af: cf:9b:c5:a7:77:21:88:61:62:f8:3e:b7:0d:77:8d: 0b:62:01:50:fe:66:6a:26:b7:3f:3d:46:0c:aa:55: 05:0d:2c:14:d9:0e:ca:de:71:62:33:a7:95:e2:85: 2e:d3:36:9d:13:ba:54:5f:d4:56:1e:ea:14:32:6a: 62:83:6f:d7:ff:54:02:72:e3:f0:73:3f:73:f5:c8: 1c:3e:58:c7:94:d8:64:ef:4f:c5:39:b2:0c:1e:d5: f2:5f:6f:16:9e:c5:92:00:16:61:f9:66:11:bf:ce: 17:29:3e:97:10:7f:5a:dc:31:db:25:29:10:73:cb: d8:da:46:7d:0e:f4:22:bb:44:f4:5e:e7:c0:49:97: 22:4f:fa:b7:96:b6:76:7c:a0:d9:4f:e2:0c:21:c9: 8f:e7:3f:01:9b:6c:dd:43:8d:f3:6c:ea:fb:84:c6: 44:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:71:91:3B:F7:98:09:E6:8E:03:E3:80:8F:21:1C:E7:36:9A:28:2D X509v3 Authority Key Identifier: keyid:76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/21CF5E6C7AF111EF8BC4E684C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.92.157.0/24 Signature Algorithm: sha256WithRSAEncryption 57:c0:20:fa:29:e9:e4:38:70:a6:23:b7:e1:72:64:f9:89:ac: c1:52:8f:e0:d5:e8:ec:26:8e:ce:a0:2c:d4:e8:34:0c:48:3f: 32:41:5a:73:67:41:e2:98:78:6f:1f:36:12:3e:f3:8c:cb:a5: 52:43:26:0d:cd:be:fd:13:7f:8d:a6:67:0d:65:6d:86:33:70: 07:7f:0c:ae:8b:4a:79:eb:e5:c1:c7:a0:37:24:ca:76:78:7a: 13:5d:16:79:cc:85:f1:ce:b7:7e:5c:99:b2:8a:0b:0b:fa:cc: 7c:2c:ec:9f:f3:d4:45:3e:b3:11:cf:87:a5:08:8c:5e:1b:8e: 66:23:3e:93:1a:6a:5d:00:c4:41:16:d9:d9:f8:be:b4:d6:e1: b3:0f:9d:5e:87:be:e7:58:61:66:e9:59:b8:10:d8:e7:a5:6b: 12:d2:ec:4e:98:6b:16:60:df:08:3e:e4:c4:54:df:c6:d3:6b: 85:25:ad:fc:12:f8:06:74:48:dd:01:aa:49:d9:c6:7c:df:86: 7b:c1:2a:f0:71:c4:9f:ef:6f:55:c1:40:18:f9:0c:71:ad:6c: 63:15:16:4f:37:a9:25:53:82:23:90:39:8c:60:7f:84:c2:3f: 6e:4a:0d:ea:c6:bb:f9:1d:e4:d2:db:4c:d4:ed:d4:33:26:54: 0f:a9:25:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA3MTgxMTAvBgNVBAUTKDc2MTc0NjI1RTgxNjMyRDM4REY2MkE4M0I1N0IwM0JB Mjg4N0U2RjUwHhcNMjUwNDE2MjEzMTQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwMjFjMC1lNjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwr3ZXN4Ld98zlgzTlSGBSmehB2u3HCAePPGeMlCErC+Tuir/W53DfTCFAZcL x1z9TzjpP0kut2cevShdUvcOy5KN7/tW5Cm2CgF+C5qTlQDabVEDANfRfK/Pm8Wn dyGIYWL4PrcNd40LYgFQ/mZqJrc/PUYMqlUFDSwU2Q7K3nFiM6eV4oUu0zadE7pU X9RWHuoUMmpig2/X/1QCcuPwcz9z9cgcPljHlNhk70/FObIMHtXyX28WnsWSABZh +WYRv84XKT6XEH9a3DHbJSkQc8vY2kZ9DvQiu0T0XufASZciT/q3lrZ2fKDZT+IM IcmP5z8Bm2zdQ43zbOr7hMZE0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFARxkTv3 mAnmjgPjgI8hHOc2migtMB8GA1UdIwQYMBaAFHYXRiXoFjLTjfYqg7V7A7ooh+b1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDcxOC85MjgzRURFRTBF OTQxMUVCOTY2OUUxMzNDNEY5QUUwMi9kaGRHSmVnV010T045aXFEdFhzRHVpaUg1 dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoZEdKZWdXTXRPTjlpcUR0WHNEdWlpSDV2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA3MTgvOTI4M0VERUUwRTk0MTFFQjk2NjlFMTMzQzRGOUFFMDIvMjFDRjVFNkM3 QUYxMTFFRjhCQzRFNjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKXJ0wDQYJKoZIhvcNAQELBQADggEBAFfAIPop6eQ4cKYj t+FyZPmJrMFSj+DV6Owmjs6gLNToNAxIPzJBWnNnQeKYeG8fNhI+84zLpVJDJg3N vv0Tf42mZw1lbYYzcAd/DK6LSnnr5cHHoDckynZ4ehNdFnnMhfHOt35cmbKKCwv6 zHws7J/z1EU+sxHPh6UIjF4bjmYjPpMaal0AxEEW2dn4vrTW4bMPnV6HvudYYWbp WbgQ2OelaxLS7E6YaxZg3wg+5MRU38bTa4UlrfwS+AZ0SN0BqknZxnzfhnvBKvBx xJ/vb1XBQBj5DHGtbGMVFk83qSVTgiOQOYxgf4TCP25KDerGu/kd5NLbTNTt1DMm VA+pJd8= -----END CERTIFICATE-----Generated at Sat Apr 26 07:58:25 2025 by rpki-client