$ rpki-client -vvf rpki.apnic.net/member_repository/A9147244/F2F123F803C311F088F46D1EC4F9AE02/A85CC65C057211F090CABA0FC4F9AE02.roa File: A85CC65C057211F090CABA0FC4F9AE02.roa (raw, json) Hash identifier: eiqihH3alG4cpxSKP/Yj1LxkWhK+ibmojtLolUx4Bhs= Subject key identifier: 5A:8C:0E:19:24:8C:98:7B:E2:B7:42:BD:11:23:2F:9D:F1:BD:73:DE Certificate issuer: /CN=A9147244/serialNumber=7ABBA0AD9EC8ED655EFC79957D0315EAF785FAEC Certificate serial: 08 Authority key identifier: 7A:BB:A0:AD:9E:C8:ED:65:5E:FC:79:95:7D:03:15:EA:F7:85:FA:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/erugrZ7I7WVe_HmVfQMV6veF-uw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147244/F2F123F803C311F088F46D1EC4F9AE02/A85CC65C057211F090CABA0FC4F9AE02.roa Signing time: Thu 20 Mar 2025 10:04:06 +0000 ROA not before: Thu 20 Mar 2025 10:04:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153685 IP address blocks: 163.223.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147244/F2F123F803C311F088F46D1EC4F9AE02/erugrZ7I7WVe_HmVfQMV6veF-uw.crl rsync://rpki.apnic.net/member_repository/A9147244/F2F123F803C311F088F46D1EC4F9AE02/erugrZ7I7WVe_HmVfQMV6veF-uw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/erugrZ7I7WVe_HmVfQMV6veF-uw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147244, serialNumber=7ABBA0AD9EC8ED655EFC79957D0315EAF785FAEC Validity Not Before: Mar 20 10:04:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67dbe816-ffbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e1:46:6e:fd:da:50:56:54:2c:94:d9:42:24: d5:31:21:ae:82:76:b1:6a:a6:9a:77:00:73:67:42: 5c:83:19:45:8e:c9:89:de:92:83:58:f5:78:e8:15: e0:16:96:b9:e1:43:a8:d3:45:9b:ae:68:35:ad:32: 28:ab:84:19:ce:89:86:9a:87:4e:7b:44:6c:a4:26: ec:88:a4:1f:b0:89:98:ab:2d:4a:8f:35:68:75:a7: 7c:6a:0e:53:9b:71:61:b7:5e:32:26:d3:d1:c2:d3: 5b:6e:0e:d5:74:af:08:53:60:3e:9a:94:ba:67:fe: 0d:56:a1:ca:3e:01:5a:58:50:9c:89:b2:60:30:e0: 5e:d0:e1:b4:13:7b:11:81:0f:bf:db:fe:50:6e:8e: 27:2c:83:f1:9b:15:3c:65:c6:05:9f:f2:d4:d1:81: c3:20:9f:be:f1:26:ef:da:10:87:13:02:d0:b5:60: 73:3e:28:f2:01:0d:ac:02:e3:c8:06:ca:b3:48:6b: cd:c0:a7:cc:d3:97:1e:69:63:5c:1e:9d:2e:64:d0: e6:6b:ee:2b:fe:49:29:dc:86:02:ea:3f:e2:ec:d6: b8:2b:91:b7:6e:23:8f:89:17:52:01:ed:c7:b3:7b: ba:ab:4c:90:4c:9a:d2:3c:82:f9:ff:73:b6:78:9d: 86:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8C:0E:19:24:8C:98:7B:E2:B7:42:BD:11:23:2F:9D:F1:BD:73:DE X509v3 Authority Key Identifier: keyid:7A:BB:A0:AD:9E:C8:ED:65:5E:FC:79:95:7D:03:15:EA:F7:85:FA:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147244/F2F123F803C311F088F46D1EC4F9AE02/erugrZ7I7WVe_HmVfQMV6veF-uw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/erugrZ7I7WVe_HmVfQMV6veF-uw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147244/F2F123F803C311F088F46D1EC4F9AE02/A85CC65C057211F090CABA0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.92.0/23 Signature Algorithm: sha256WithRSAEncryption 18:3b:11:b0:79:2a:19:5c:26:ce:1b:4b:aa:23:4c:ef:55:ac: 18:37:b3:d4:bf:5e:9d:cf:05:d9:cd:2b:1f:60:b3:fe:0f:e5: ff:ee:a8:1a:ba:a5:e3:66:09:38:78:4c:5f:99:8f:f4:c4:97: 11:4b:44:fe:a2:06:dd:0e:2b:18:7f:93:9c:be:49:d3:b1:ad: 83:a5:be:23:98:92:5f:96:86:7b:ea:a3:27:ce:66:3c:af:2e: 23:32:b5:be:c9:52:dc:e6:f5:34:6f:5c:ad:97:f8:eb:eb:24: 43:10:9c:8e:b9:fe:98:c5:9a:80:31:91:84:6c:22:ab:09:67: 6e:64:8c:4b:06:5c:70:9b:c1:35:54:6d:ea:13:a2:e8:62:e1: b7:a2:a0:7c:dd:80:f4:76:2b:c2:cb:ea:2c:b7:68:fa:a1:52: 29:0c:c7:ae:c3:3a:e6:90:1a:57:b4:81:fd:b2:78:59:1a:9e: d1:d4:e5:4a:fa:d9:e3:c7:c2:4b:af:ac:39:7e:43:a6:8a:f2: 33:9d:04:00:d7:dd:15:9d:b8:6e:77:af:a3:46:23:28:6f:73: 3b:ed:c3:e5:81:0a:6f:4e:87:1e:f1:e0:b7:c2:f7:bc:60:c3: 20:12:e8:12:ee:cb:cb:87:c9:64:72:d7:bf:11:50:4e:58:b7: 36:85:ea:3e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzI0NDExMC8GA1UEBRMoN0FCQkEwQUQ5RUM4RUQ2NTVFRkM3OTk1N0QwMzE1RUFG Nzg1RkFFQzAeFw0yNTAzMjAxMDA0MDZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZGJlODE2LWZmYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCf4UZu/dpQVlQslNlCJNUxIa6CdrFqppp3AHNnQlyDGUWOyYnekoNY9XjoFeAW lrnhQ6jTRZuuaDWtMiirhBnOiYaah057RGykJuyIpB+wiZirLUqPNWh1p3xqDlOb cWG3XjIm09HC01tuDtV0rwhTYD6alLpn/g1Woco+AVpYUJyJsmAw4F7Q4bQTexGB D7/b/lBujicsg/GbFTxlxgWf8tTRgcMgn77xJu/aEIcTAtC1YHM+KPIBDawC48gG yrNIa83Ap8zTlx5pY1wenS5k0OZr7iv+SSnchgLqP+Ls1rgrkbduI4+JF1IB7cez e7qrTJBMmtI8gvn/c7Z4nYbdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWowOGSSM mHvit0K9ESMvnfG9c94wHwYDVR0jBBgwFoAUerugrZ7I7WVe/HmVfQMV6veF+uww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3MjQ0L0YyRjEyM0Y4MDND MzExRjA4OEY0NkQxRUM0RjlBRTAyL2VydWdyWjdJN1dWZV9IbVZmUU1WNnZlRi11 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXJ1Z3JaN0k3V1ZlX0htVmZRTVY2dmVGLXV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0NC9GMkYxMjNGODAzQzMxMUYwODhGNDZEMUVDNEY5QUUwMi9BODVDQzY1QzA1 NzIxMUYwOTBDQUJBMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPfXDANBgkqhkiG9w0BAQsFAAOCAQEAGDsRsHkqGVwmzhtL qiNM71WsGDez1L9enc8F2c0rH2Cz/g/l/+6oGrql42YJOHhMX5mP9MSXEUtE/qIG 3Q4rGH+TnL5J07Gtg6W+I5iSX5aGe+qjJ85mPK8uIzK1vslS3Ob1NG9crZf46+sk QxCcjrn+mMWagDGRhGwiqwlnbmSMSwZccJvBNVRt6hOi6GLht6KgfN2A9HYrwsvq LLdo+qFSKQzHrsM65pAaV7SB/bJ4WRqe0dTlSvrZ48fCS6+sOX5DporyM50EANfd FZ24bnevo0YjKG9zO+3D5YEKb06HHvHgt8L3vGDDIBLoEu7Ly4fJZHLXvxFQTli3 NoXqPg== -----END CERTIFICATE-----Generated at Sat Apr 26 08:32:35 2025 by rpki-client