$ rpki-client -vvf rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/857A6BC00E9711EB9A6C2B3CC4F9AE02.roa File: 857A6BC00E9711EB9A6C2B3CC4F9AE02.roa (raw, json) Hash identifier: Ok9YVh7iJVfq5jAi1dUk84sBA5IsYOWabJTj7XjuXII= Subject key identifier: 0E:6A:49:8E:56:3B:FA:0E:02:A8:66:B3:91:6B:BF:D2:61:79:B1:6B Certificate issuer: /CN=A9110718/serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Certificate serial: 07BF Authority key identifier: 76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/857A6BC00E9711EB9A6C2B3CC4F9AE02.roa Signing time: Wed 16 Apr 2025 21:31:50 +0000 ROA not before: Wed 16 Apr 2025 21:31:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45600 IP address blocks: 202.92.148.0/22 maxlen: 22 2400:b000:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110718, serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Validity Not Before: Apr 16 21:31:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=680021c6-6329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e5:2a:92:76:b1:56:79:70:49:a3:82:68:68: 62:9e:05:3e:6c:4d:85:55:c5:2e:98:12:7f:8d:e3: 46:d2:e2:88:7e:fd:7a:09:95:38:ba:19:d4:00:58: bc:57:14:80:b9:95:17:0b:1f:cd:83:f2:44:03:30: 82:f4:86:b8:d1:d7:3a:51:50:21:c2:6c:47:0a:dd: d3:04:72:6e:28:ce:85:e6:6d:ed:78:91:dc:2f:2e: 0b:8c:8f:73:76:3a:34:38:13:1c:e9:65:13:5f:68: 6e:b2:c0:b9:c4:86:3b:9a:d4:98:a3:7b:ec:1d:7f: 01:8e:a9:cf:b4:64:74:c7:61:1a:36:df:99:76:80: b6:50:9e:04:64:86:05:9b:e7:1f:9d:24:30:b9:67: 1b:94:55:65:07:e6:8c:f8:81:69:b2:54:fc:b9:aa: 1d:b7:7d:b3:92:ed:ef:95:5b:d1:22:65:8b:4a:c0: 39:24:e3:c6:6b:87:d8:7f:50:dc:8c:ad:ab:c2:25: 7d:6d:fe:92:17:bf:06:15:87:2e:e8:62:b8:d0:06: 56:ca:7a:60:5e:65:ab:2f:52:36:c8:aa:d9:88:38: 27:92:b8:74:1e:14:07:1c:50:b5:33:8b:2a:74:66: 52:0a:28:6a:6f:c0:e8:c5:0f:9b:c7:8d:ad:db:cf: 65:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6A:49:8E:56:3B:FA:0E:02:A8:66:B3:91:6B:BF:D2:61:79:B1:6B X509v3 Authority Key Identifier: keyid:76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/857A6BC00E9711EB9A6C2B3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.92.148.0/22 IPv6: 2400:b000:300::/48 Signature Algorithm: sha256WithRSAEncryption 50:ff:06:9f:f7:48:d4:ee:ec:3d:a0:fd:a8:ab:aa:c8:48:b2: 8b:45:c4:6f:69:7c:0c:c7:8b:ee:8e:1f:8c:cb:93:52:55:ee: 78:4d:23:7d:8f:83:b6:d6:c9:2f:23:ad:9b:fa:2b:b6:d1:dc: df:72:f6:21:d6:e2:de:4f:c5:5c:e8:52:36:61:47:6f:e6:3c: d4:d6:ad:84:4b:28:48:fa:80:46:ee:77:4b:da:8b:e8:9e:98: 7b:64:62:41:9b:74:43:77:64:ea:ac:1e:e4:84:89:d8:53:18: 2f:5c:2a:3d:fd:73:9a:f5:52:a0:0b:95:a4:7b:f1:6a:a0:39: 38:84:ee:26:3e:4f:de:e1:c6:c0:de:3b:1e:ad:2c:88:8c:28: 82:3a:a8:8b:ea:00:3b:60:3a:a9:c8:a3:31:c9:72:c0:75:dc: 68:1c:bd:b6:65:8f:b0:e2:aa:d4:bf:da:e4:39:7e:d8:53:bc: ad:9b:24:97:0b:01:0e:23:cd:31:29:23:33:fa:53:11:73:39: c1:b2:36:f9:76:22:4a:9d:7c:ae:98:ec:ce:c0:28:6c:21:d9: 40:e7:77:81:91:e9:68:10:1a:4a:5c:f9:7b:11:71:a5:8a:99: 6f:ad:bb:42:fd:f9:b2:02:ed:0e:4d:c0:36:c4:14:d6:0d:3b: 49:ca:44:f5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA3MTgxMTAvBgNVBAUTKDc2MTc0NjI1RTgxNjMyRDM4REY2MkE4M0I1N0IwM0JB Mjg4N0U2RjUwHhcNMjUwNDE2MjEzMTUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwMjFjNi02MzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOUqknaxVnlwSaOCaGhingU+bE2FVcUumBJ/jeNG0uKIfv16CZU4uhnUAFi8 VxSAuZUXCx/Ng/JEAzCC9Ia40dc6UVAhwmxHCt3TBHJuKM6F5m3teJHcLy4LjI9z djo0OBMc6WUTX2hussC5xIY7mtSYo3vsHX8BjqnPtGR0x2EaNt+ZdoC2UJ4EZIYF m+cfnSQwuWcblFVlB+aM+IFpslT8uaodt32zku3vlVvRImWLSsA5JOPGa4fYf1Dc jK2rwiV9bf6SF78GFYcu6GK40AZWynpgXmWrL1I2yKrZiDgnkrh0HhQHHFC1M4sq dGZSCihqb8DoxQ+bx42t289luQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA5qSY5W O/oOAqhms5Frv9JhebFrMB8GA1UdIwQYMBaAFHYXRiXoFjLTjfYqg7V7A7ooh+b1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDcxOC85MjgzRURFRTBF OTQxMUVCOTY2OUUxMzNDNEY5QUUwMi9kaGRHSmVnV010T045aXFEdFhzRHVpaUg1 dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoZEdKZWdXTXRPTjlpcUR0WHNEdWlpSDV2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA3MTgvOTI4M0VERUUwRTk0MTFFQjk2NjlFMTMzQzRGOUFFMDIvODU3QTZCQzAw RTk3MTFFQjlBNkMyQjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKXJQwDwQCAAIwCQMHACQAsAADADANBgkqhkiG9w0BAQsF AAOCAQEAUP8Gn/dI1O7sPaD9qKuqyEiyi0XEb2l8DMeL7o4fjMuTUlXueE0jfY+D ttbJLyOtm/orttHc33L2Idbi3k/FXOhSNmFHb+Y81NathEsoSPqARu53S9qL6J6Y e2RiQZt0Q3dk6qwe5ISJ2FMYL1wqPf1zmvVSoAuVpHvxaqA5OITuJj5P3uHGwN47 Hq0siIwogjqoi+oAO2A6qcijMclywHXcaBy9tmWPsOKq1L/a5Dl+2FO8rZsklwsB DiPNMSkjM/pTEXM5wbI2+XYiSp18rpjszsAobCHZQOd3gZHpaBAaSlz5exFxpYqZ b627Qv35sgLtDk3ANsQU1g07ScpE9Q== -----END CERTIFICATE-----Generated at Sat Apr 26 08:08:51 2025 by rpki-client