$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6A90213E3FAD11EEA252F62FC4F9AE02.roa File: 6A90213E3FAD11EEA252F62FC4F9AE02.roa (raw, json) Hash identifier: Co0oH18UWvs2mZktht06NywANpQZQV/ORKqi/8Frf4w= Subject key identifier: 25:C0:F3:A2:E8:4D:17:11:A5:DB:FD:E8:73:C5:1D:6A:7E:4A:E7:87 Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 19C5 Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6A90213E3FAD11EEA252F62FC4F9AE02.roa Signing time: Sat 12 Apr 2025 16:25:05 +0000 ROA not before: Sat 12 Apr 2025 16:25:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7714 IP address blocks: 202.20.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6597 (0x19c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: Apr 12 16:25:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fa93e0-a33b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d9:2a:20:aa:e8:78:7f:48:8e:83:fc:c1:ca: 64:8f:e7:39:70:2c:34:d6:ff:e1:bf:f0:e8:a3:42: de:4d:37:15:47:32:b4:13:ab:1b:5e:da:65:07:5c: 63:0d:23:7c:ee:aa:17:4a:58:2d:5e:a6:b8:2c:3e: ff:ab:ee:0c:ae:db:04:cd:39:44:94:af:ca:3d:b8: bc:63:37:61:1a:af:97:24:04:28:0d:61:08:00:17: ee:02:1d:e8:bf:bb:75:56:66:42:dc:42:a2:0d:06: 29:bc:21:62:36:7b:c7:63:dd:dc:39:b5:7e:3e:31: 8f:ed:d0:9a:70:db:df:3b:5a:eb:95:9a:9b:f8:79: da:65:5e:96:6c:29:f8:89:90:33:fc:db:db:6b:b0: bc:42:e8:8f:d0:ee:f8:04:95:b7:5b:c7:d3:0c:6e: 09:d0:39:f4:c6:f3:c3:ff:33:20:95:62:a8:9c:81: 64:0f:36:cf:0a:cf:9b:d0:ee:94:75:e1:e7:7d:65: 02:82:c9:71:49:7d:09:79:97:51:b9:14:a8:90:e6: 33:ba:4f:32:70:de:d4:a0:e7:6a:c9:5a:4a:dd:74: 18:0b:a7:05:0a:19:2a:77:d6:5d:0a:e1:74:0d:ee: b7:65:67:49:62:07:d6:e3:8b:9a:49:84:87:9b:a6: b9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C0:F3:A2:E8:4D:17:11:A5:DB:FD:E8:73:C5:1D:6A:7E:4A:E7:87 X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6A90213E3FAD11EEA252F62FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.20.76.0/24 Signature Algorithm: sha256WithRSAEncryption ca:5d:d9:07:10:c5:dd:79:19:e0:8e:33:42:1e:88:92:35:a6: a9:b3:f0:12:3f:d4:88:43:88:c7:cb:98:a0:bb:1a:83:a7:52: 97:85:8f:e4:a2:39:5a:87:df:01:1c:42:19:a8:b1:39:16:ea: fd:56:84:ba:ca:1c:59:72:b3:37:0c:9e:c9:8f:79:95:19:04: da:85:67:ba:cb:83:a9:06:92:61:ea:b3:93:09:95:46:3e:78: 06:49:64:d7:04:9c:d5:d9:df:22:d4:b5:37:0e:2b:b5:2b:32: 7b:45:e3:c2:6c:1f:97:f5:89:da:ce:f6:16:b8:d3:43:29:b5: 04:e8:8d:d9:ee:3b:23:ac:96:d5:e2:41:58:a0:0f:fa:01:bd: d9:3c:8d:89:9f:31:82:3b:45:a1:e5:3b:38:a6:24:12:2a:eb: da:d8:8c:d2:d2:42:0e:86:51:4d:a3:29:c1:80:2e:29:be:a9: 54:8a:0d:ef:45:03:67:f5:31:0c:5d:5c:04:52:ea:15:30:0e: a7:bd:b2:01:32:57:dd:6c:8d:a0:91:8c:f6:fa:92:54:2f:b8: a3:e4:f5:e7:f2:41:da:84:99:89:86:91:67:fa:42:cd:d7:98: fb:cb:28:be:fe:77:ee:d6:27:06:7f:d1:c6:33:b4:3f:63:1d: 7d:7b:ce:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjUwNDEyMTYyNTA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhOTNlMC1hMzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNkqIKroeH9IjoP8wcpkj+c5cCw01v/hv/Doo0LeTTcVRzK0E6sbXtplB1xj DSN87qoXSlgtXqa4LD7/q+4MrtsEzTlElK/KPbi8YzdhGq+XJAQoDWEIABfuAh3o v7t1VmZC3EKiDQYpvCFiNnvHY93cObV+PjGP7dCacNvfO1rrlZqb+HnaZV6WbCn4 iZAz/Nvba7C8QuiP0O74BJW3W8fTDG4J0Dn0xvPD/zMglWKonIFkDzbPCs+b0O6U deHnfWUCgslxSX0JeZdRuRSokOYzuk8ycN7UoOdqyVpK3XQYC6cFChkqd9ZdCuF0 De63ZWdJYgfW44uaSYSHm6a5fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCXA86Lo TRcRpdv96HPFHWp+SueHMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvNkE5MDIxM0Uz RkFEMTFFRUEyNTJGNjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKFEwwDQYJKoZIhvcNAQELBQADggEBAMpd2QcQxd15GeCO M0IeiJI1pqmz8BI/1IhDiMfLmKC7GoOnUpeFj+SiOVqH3wEcQhmosTkW6v1WhLrK HFlyszcMnsmPeZUZBNqFZ7rLg6kGkmHqs5MJlUY+eAZJZNcEnNXZ3yLUtTcOK7Ur MntF48JsH5f1idrO9ha400MptQTojdnuOyOsltXiQVigD/oBvdk8jYmfMYI7RaHl OzimJBIq69rYjNLSQg6GUU2jKcGALim+qVSKDe9FA2f1MQxdXARS6hUwDqe9sgEy V91sjaCRjPb6klQvuKPk9efyQdqEmYmGkWf6Qs3XmPvLKL7+d+7WJwZ/0cYztD9j HX17zrI= -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:47 2025 by rpki-client