$ rpki-client -vvf rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa File: 09DF69582A3411EB9E69467DC4F9AE02.roa (raw, json) Hash identifier: Vs9WbC7+FXTpkpEtrPfe5o3W7t/VcDXrHl+kg25ZJHc= Subject key identifier: C4:54:D9:0E:B3:23:E4:B5:86:D1:EF:E8:CA:BC:26:D8:E2:D0:6C:A8 Certificate issuer: /CN=A9148827/serialNumber=484AE8C0D15799B5FF081FE40C3E1E00E4E89478 Certificate serial: 0AE5 Authority key identifier: 48:4A:E8:C0:D1:57:99:B5:FF:08:1F:E4:0C:3E:1E:00:E4:E8:94:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa Signing time: Wed 26 Mar 2025 19:29:43 +0000 ROA not before: Wed 26 Mar 2025 19:29:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58689 IP address blocks: 116.204.228.0/22 maxlen: 23 116.204.228.0/24 maxlen: 24 116.204.229.0/24 maxlen: 24 116.204.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.crl rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2789 (0xae5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148827, serialNumber=484AE8C0D15799B5FF081FE40C3E1E00E4E89478 Validity Not Before: Mar 26 19:29:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e455a7-ffac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:fa:9f:cc:4d:c6:5e:15:f5:f6:c3:a6:e6: 8a:c1:ab:80:4d:b0:7a:fd:be:88:da:e6:e0:4d:94: 64:b9:c3:75:be:98:eb:e4:f1:04:11:3a:24:8c:8a: c9:c5:c2:0d:d2:2c:4c:ee:11:a1:2f:f0:76:00:26: 15:3b:3d:29:20:dd:7b:bf:25:eb:8f:33:2c:03:54: d6:b1:79:9c:f2:ef:f0:2a:e0:3f:b6:64:cf:67:5d: d9:17:ac:94:24:b0:0c:9d:c0:64:e7:82:af:9c:a6: 4e:e8:cb:1a:d3:49:04:d7:b9:67:a5:f3:42:8b:1e: 42:a1:51:54:11:e8:8b:82:6b:86:21:06:40:83:dd: c9:d4:6e:b3:e4:2e:15:d1:2e:9d:69:ac:0d:bd:9d: 08:84:55:9d:9a:2a:c8:51:a3:81:35:02:6c:a9:ac: 0c:d7:d0:51:04:3f:83:3e:1f:eb:a1:19:3a:0d:af: 42:87:fe:e7:4f:db:03:67:73:6d:f1:ad:45:15:71: 6b:6f:2b:4b:c3:ba:1c:be:f0:d9:b8:c6:f1:e1:81: 27:ca:e6:60:f1:da:40:44:78:02:39:f1:db:c6:59: 69:ea:37:3b:81:f7:aa:80:ac:c1:76:15:9b:1b:2d: a6:a0:b8:ca:55:2f:b7:38:07:55:a2:d9:1f:14:d1: c0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:54:D9:0E:B3:23:E4:B5:86:D1:EF:E8:CA:BC:26:D8:E2:D0:6C:A8 X509v3 Authority Key Identifier: keyid:48:4A:E8:C0:D1:57:99:B5:FF:08:1F:E4:0C:3E:1E:00:E4:E8:94:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.228.0/22 Signature Algorithm: sha256WithRSAEncryption 82:f6:23:a4:b4:96:74:f5:e7:c2:fc:41:81:1a:84:52:76:13: ea:5d:1b:b1:97:8f:48:05:cb:6d:15:6b:23:a3:cd:0f:05:96: 82:0c:ea:45:c5:bb:6b:a4:5f:e9:ad:bc:f3:4b:15:be:5b:d2: 74:b4:42:8f:76:02:9a:82:68:e9:73:0a:95:70:87:93:9e:84: bb:1b:55:47:a2:09:7c:9a:57:f7:81:06:02:04:49:04:06:d6: ff:4b:65:c9:8d:a1:dd:c2:fc:09:31:c7:e1:29:0c:7c:44:75: ea:9d:e3:55:5d:0d:99:a9:23:d9:2c:0d:8d:61:66:1d:35:98: 18:b6:a6:03:8e:8f:86:b9:90:a4:09:e2:b9:6b:15:16:f7:c8: f0:2e:01:b1:a9:40:e1:f0:81:37:e0:dd:3b:5a:8f:06:af:12: 6c:1c:99:80:28:9c:cb:0f:16:89:71:23:8f:d6:d8:03:77:1e: 2d:f4:49:ba:be:20:88:f3:e6:c1:79:62:3e:59:22:8a:92:13: 77:38:b9:b7:f9:68:e6:0c:be:0f:2f:ae:12:5d:84:86:c0:49: bc:f1:74:9a:d5:13:a5:06:e8:b6:7e:9c:c6:4f:66:2f:be:cd: 63:bd:52:d0:e4:a6:c8:e6:f2:ed:0b:cb:98:72:54:32:ff:fc: 6c:da:c8:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg4MjcxMTAvBgNVBAUTKDQ4NEFFOEMwRDE1Nzk5QjVGRjA4MUZFNDBDM0UxRTAw RTRFODk0NzgwHhcNMjUwMzI2MTkyOTQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NTVhNy1mZmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZn6n8xNxl4V9fbDpuaKwauATbB6/b6I2ubgTZRkucN1vpjr5PEEETokjIrJ xcIN0ixM7hGhL/B2ACYVOz0pIN17vyXrjzMsA1TWsXmc8u/wKuA/tmTPZ13ZF6yU JLAMncBk54KvnKZO6Msa00kE17lnpfNCix5CoVFUEeiLgmuGIQZAg93J1G6z5C4V 0S6daawNvZ0IhFWdmirIUaOBNQJsqawM19BRBD+DPh/roRk6Da9Ch/7nT9sDZ3Nt 8a1FFXFrbytLw7ocvvDZuMbx4YEnyuZg8dpARHgCOfHbxllp6jc7gfeqgKzBdhWb Gy2moLjKVS+3OAdVotkfFNHAJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMRU2Q6z I+S1htHv6Mq8Jtji0GyoMB8GA1UdIwQYMBaAFEhK6MDRV5m1/wgf5Aw+HgDk6JR4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODgyNy84ODg3MTkzNjQ5 MjUxMUVBQTk0NDk3NkZDNEY5QUUwMi9TRXJvd05GWG1iWF9DQl9rREQ0ZUFPVG9s SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NFcm93TkZYbWJYX0NCX2tERDRlQU9Ub2xIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg4MjcvODg4NzE5MzY0OTI1MTFFQUE5NDQ5NzZGQzRGOUFFMDIvMDlERjY5NTgy QTM0MTFFQjlFNjk0NjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0zOQwDQYJKoZIhvcNAQELBQADggEBAIL2I6S0lnT158L8 QYEahFJ2E+pdG7GXj0gFy20VayOjzQ8FloIM6kXFu2ukX+mtvPNLFb5b0nS0Qo92 ApqCaOlzCpVwh5OehLsbVUeiCXyaV/eBBgIESQQG1v9LZcmNod3C/Akxx+EpDHxE deqd41VdDZmpI9ksDY1hZh01mBi2pgOOj4a5kKQJ4rlrFRb3yPAuAbGpQOHwgTfg 3TtajwavEmwcmYAonMsPFolxI4/W2AN3Hi30Sbq+IIjz5sF5Yj5ZIoqSE3c4ubf5 aOYMvg8vrhJdhIbASbzxdJrVE6UG6LZ+nMZPZi++zWO9UtDkpsjm8u0Ly5hyVDL/ /GzayOc= -----END CERTIFICATE-----Generated at Sat Apr 26 15:03:49 2025 by rpki-client