$ rpki-client -vvf rpki.apnic.net/member_repository/A9146EB7/831A842A1FDE11F0B9654717C4F9AE02/04FD874E1FDF11F094B3136AC4F9AE02.roa File: 04FD874E1FDF11F094B3136AC4F9AE02.roa (raw, json) Hash identifier: 1VVixJvC9Ao+Yu3/0+4xin/rpRbqJh0O4hx1E0p4fGo= Subject key identifier: 88:DA:FA:9F:97:B0:CD:C2:A2:8A:AA:F0:13:D8:C1:07:CD:F5:90:36 Certificate issuer: /CN=A9146EB7/serialNumber=805AAA36C017E9E86C3032A3DAAE8D268BDD4254 Certificate serial: 02 Authority key identifier: 80:5A:AA:36:C0:17:E9:E8:6C:30:32:A3:DA:AE:8D:26:8B:DD:42:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFqqNsAX6ehsMDKj2q6NJovdQlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146EB7/831A842A1FDE11F0B9654717C4F9AE02/04FD874E1FDF11F094B3136AC4F9AE02.roa Signing time: Wed 23 Apr 2025 01:05:17 +0000 ROA not before: Wed 23 Apr 2025 01:05:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153793 IP address blocks: 163.227.101.0/24 maxlen: 24 2001:df5:6440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146EB7/831A842A1FDE11F0B9654717C4F9AE02/gFqqNsAX6ehsMDKj2q6NJovdQlQ.crl rsync://rpki.apnic.net/member_repository/A9146EB7/831A842A1FDE11F0B9654717C4F9AE02/gFqqNsAX6ehsMDKj2q6NJovdQlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFqqNsAX6ehsMDKj2q6NJovdQlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:12:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146EB7, serialNumber=805AAA36C017E9E86C3032A3DAAE8D268BDD4254 Validity Not Before: Apr 23 01:05:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68083ccd-5e2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:61:e9:41:90:16:f0:f6:df:40:80:3c:cf:c6: cb:25:67:56:05:ec:66:18:bf:f0:94:47:f0:99:9a: 9f:e3:61:29:11:b1:fd:0a:36:f3:92:44:3a:93:eb: a1:f9:aa:eb:49:ee:7c:0c:90:8b:e7:c2:82:89:08: 72:97:df:7b:40:ee:c3:aa:5a:3e:47:3e:da:2e:dd: 16:fb:2c:02:b9:0b:b6:4a:bf:f5:f5:16:4e:8d:ed: a6:1a:8e:e3:22:bf:f7:1f:c7:3d:0d:64:7b:6d:aa: 7b:6c:70:45:85:cb:e5:f7:81:46:09:fb:72:1c:22: ba:4c:2b:d9:c8:ea:d8:67:92:7c:05:ae:fa:57:9c: db:82:e1:f8:fb:95:16:84:e8:f6:ae:94:fb:be:1e: 62:c6:b9:7f:6a:10:e6:f8:13:21:47:be:2b:ba:77: ac:ae:ca:ad:d7:5b:6f:17:8b:34:1a:cd:c0:7f:ca: 7a:7e:9c:de:06:5a:2a:b5:de:10:72:89:04:51:b2: 37:7b:ba:a2:37:17:95:64:59:93:07:60:97:2c:b7: e2:5f:dd:50:60:f2:53:69:2c:fe:50:99:9b:44:75: 1e:ad:5f:3e:dd:2d:6d:dc:bd:bd:b4:8c:46:7c:56: 31:ac:86:07:fa:f2:a7:92:62:22:a0:b4:91:60:7b: d5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:DA:FA:9F:97:B0:CD:C2:A2:8A:AA:F0:13:D8:C1:07:CD:F5:90:36 X509v3 Authority Key Identifier: keyid:80:5A:AA:36:C0:17:E9:E8:6C:30:32:A3:DA:AE:8D:26:8B:DD:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146EB7/831A842A1FDE11F0B9654717C4F9AE02/gFqqNsAX6ehsMDKj2q6NJovdQlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFqqNsAX6ehsMDKj2q6NJovdQlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146EB7/831A842A1FDE11F0B9654717C4F9AE02/04FD874E1FDF11F094B3136AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.101.0/24 IPv6: 2001:df5:6440::/48 Signature Algorithm: sha256WithRSAEncryption 21:5b:df:29:a8:8e:af:d0:5a:06:16:db:82:87:c9:7a:90:58: 1a:94:59:df:fd:03:27:35:a6:1a:4f:90:00:79:44:3f:6f:ed: 73:7b:bf:92:6e:5d:cb:fd:69:83:61:2d:1b:2c:1c:b6:9e:08: 12:ba:ce:f3:1c:fd:f0:b0:12:c8:33:0e:76:3d:93:09:d1:06: 62:53:51:f2:ce:42:c0:d2:76:b7:ba:ff:73:c4:2a:bb:df:e7: 70:f8:be:1c:76:ee:ba:ca:ae:cb:43:c9:b8:39:74:4e:ee:47: c5:9f:dd:fb:20:68:7b:34:29:34:3b:93:97:54:a3:f3:7b:29: f5:39:6c:51:95:3c:97:71:d7:d4:d6:b6:14:51:52:8b:56:bd: d0:1f:28:fe:44:1c:3d:fa:cd:fb:c9:a0:ce:c2:c6:4d:db:de: f3:90:c6:c4:2e:d5:2d:b6:22:8b:bc:9a:68:86:62:be:6a:b1: 6f:60:59:07:6b:a0:22:11:c6:ec:9d:36:61:1e:01:66:95:2a: a6:8e:6f:00:2c:da:f3:ff:2a:33:ca:5e:50:f7:17:be:43:98: 50:23:16:5d:43:b3:ec:e4:b8:24:2f:5d:ba:67:80:d0:fa:e3: 7b:45:d3:3a:6e:94:51:23:b3:f3:58:99:e8:2d:ca:15:9c:78: 38:a7:69:75 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NkVCNzExMC8GA1UEBRMoODA1QUFBMzZDMDE3RTlFODZDMzAzMkEzREFBRThEMjY4 QkRENDI1NDAeFw0yNTA0MjMwMTA1MTdaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDgzY2NkLTVlMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcYelBkBbw9t9AgDzPxsslZ1YF7GYYv/CUR/CZmp/jYSkRsf0KNvOSRDqT66H5 qutJ7nwMkIvnwoKJCHKX33tA7sOqWj5HPtou3Rb7LAK5C7ZKv/X1Fk6N7aYajuMi v/cfxz0NZHttqntscEWFy+X3gUYJ+3IcIrpMK9nI6thnknwFrvpXnNuC4fj7lRaE 6PaulPu+HmLGuX9qEOb4EyFHviu6d6yuyq3XW28XizQazcB/ynp+nN4GWiq13hBy iQRRsjd7uqI3F5VkWZMHYJcst+Jf3VBg8lNpLP5QmZtEdR6tXz7dLW3cvb20jEZ8 VjGshgf68qeSYiKgtJFge9WrAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUiNr6n5ew zcKiiqrwE9jBB831kDYwHwYDVR0jBBgwFoAUgFqqNsAX6ehsMDKj2q6NJovdQlQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2RUI3LzgzMUE4NDJBMUZE RTExRjBCOTY1NDcxN0M0RjlBRTAyL2dGcXFOc0FYNmVoc01ES2oycTZOSm92ZFFs US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0ZxcU5zQVg2ZWhzTURLajJxNk5Kb3ZkUWxRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkVCNy84MzFBODQyQTFGREUxMUYwQjk2NTQ3MTdDNEY5QUUwMi8wNEZEODc0RTFG REYxMUYwOTRCMzEzNkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKPjZTAPBAIAAjAJAwcAIAEN9WRAMA0GCSqGSIb3DQEBCwUA A4IBAQAhW98pqI6v0FoGFtuCh8l6kFgalFnf/QMnNaYaT5AAeUQ/b+1ze7+Sbl3L /WmDYS0bLBy2nggSus7zHP3wsBLIMw52PZMJ0QZiU1HyzkLA0na3uv9zxCq73+dw +L4cdu66yq7LQ8m4OXRO7kfFn937IGh7NCk0O5OXVKPzeyn1OWxRlTyXcdfU1rYU UVKLVr3QHyj+RBw9+s37yaDOwsZN297zkMbELtUttiKLvJpohmK+arFvYFkHa6Ai EcbsnTZhHgFmlSqmjm8ALNrz/yozyl5Q9xe+Q5hQIxZdQ7Ps5LgkL126Z4DQ+uN7 RdM6bpRRI7PzWJnoLcoVnHg4p2l1 -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:21 2025 by rpki-client