$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/088C9298981611EFBE510B59C4F9AE02.roa File: 088C9298981611EFBE510B59C4F9AE02.roa (raw, json) Hash identifier: +mzl+XLmGyaMauQYRfPSe1wPo0jhs14C721ea24fx4w= Subject key identifier: C5:F2:D1:26:6A:EB:F1:F2:79:D7:BE:67:8B:EE:4C:69:34:31:DC:6F Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: 7A Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/088C9298981611EFBE510B59C4F9AE02.roa Signing time: Thu 05 Jun 2025 06:40:57 +0000 ROA not before: Thu 05 Jun 2025 06:40:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152690 IP address blocks: 163.61.48.0/24 maxlen: 24 202.37.166.0/24 maxlen: 24 2401:dfa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62, serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Jun 5 06:40:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68413bf8-dbc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a1:dd:aa:72:c1:9e:eb:1d:e6:70:5a:b9:72: bb:d8:b9:12:6d:9a:1e:3b:5b:26:0c:92:56:44:d7: bd:ac:3a:dd:78:66:f7:cd:80:b0:41:42:1d:93:1f: 7c:70:84:ec:d9:1e:f0:0b:73:8d:07:04:cd:d5:19: 62:1b:25:05:e9:ce:3c:26:95:a0:71:d3:31:2c:83: 7b:2c:fd:e6:b3:d4:b3:d3:2a:47:b6:3d:a4:35:e3: 4f:12:3d:2a:1b:3c:36:e9:50:7a:83:e9:c1:c2:24: 82:48:6d:60:2d:1d:0e:f8:3c:a9:49:d2:ae:30:80: 6e:d1:a9:5c:a7:5f:a0:3e:3c:25:95:a8:73:ce:0a: 7e:80:98:82:3a:07:a5:85:29:38:50:fe:45:f7:86: 2c:a2:64:1b:64:91:f8:83:fb:ae:16:ab:f5:db:5f: 24:e6:89:f6:46:13:f2:2b:4c:51:bd:72:a4:09:b5: a1:1d:45:e9:3d:71:ac:fc:16:21:b9:5d:5e:a8:65: fe:89:d5:10:09:e5:42:b9:63:c2:c1:be:60:5c:89: 93:5a:11:36:42:c9:ca:7a:60:a1:23:5e:3e:e8:80: a8:c3:fb:b6:8e:98:9c:51:4a:40:6c:65:35:82:58: 16:55:74:72:a6:d5:83:0f:13:cb:46:5b:ad:2f:51: 68:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F2:D1:26:6A:EB:F1:F2:79:D7:BE:67:8B:EE:4C:69:34:31:DC:6F X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/088C9298981611EFBE510B59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.48.0/24 202.37.166.0/24 IPv6: 2401:dfa0::/32 Signature Algorithm: sha256WithRSAEncryption 8a:6e:e3:ff:68:93:ce:d1:52:84:30:75:94:96:61:22:42:9b: 6a:21:fd:80:35:ce:eb:cb:0f:da:93:1a:72:96:b3:60:46:ad: 0b:b1:a1:5a:d3:48:b4:2f:00:39:67:14:eb:b4:9a:59:83:b4: 8f:0c:43:6a:6a:20:4b:50:24:a7:bd:ad:ef:b6:f9:bd:26:d4: 9a:90:f8:8a:9e:2b:e4:c8:83:2b:26:f9:3e:f4:50:b8:90:e3: 18:3c:99:7b:84:a7:41:b7:62:b5:11:70:aa:3a:31:41:28:66: ae:6c:d8:4d:71:78:2a:be:8d:28:cf:3f:83:f1:18:47:e6:12: a4:4c:93:3c:ca:34:2b:c4:82:81:51:e9:df:e3:e0:f4:85:20: 17:5c:4f:4e:a2:aa:54:90:2e:ea:22:d1:89:6b:c5:dc:e5:c7: f2:80:d6:bb:24:32:c9:83:2e:83:a4:ee:2c:2b:2d:34:67:0e: 9b:2a:ea:3b:17:35:bb:c0:24:fa:d2:24:aa:c2:88:ea:03:71: db:36:a5:52:7d:71:2f:63:e6:e6:f2:5e:8f:ac:0a:78:f1:12: 72:7f:8e:22:b8:9e:3b:11:66:f0:49:42:cd:86:85:7d:77:fd: 32:f1:f5:d9:2c:3d:48:40:86:9d:2e:2e:6d:fe:fe:97:3a:60: 37:b9:a8:bb -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OUM2MjExMC8GA1UEBRMoQ0Y4MDRBNkYzRDg2QTE5NzEzQTRFODg2RDU5N0I0REM2 NDQ1Njg2QTAeFw0yNTA2MDUwNjQwNTdaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDEzYmY4LWRiYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCood2qcsGe6x3mcFq5crvYuRJtmh47WyYMklZE172sOt14ZvfNgLBBQh2TH3xw hOzZHvALc40HBM3VGWIbJQXpzjwmlaBx0zEsg3ss/eaz1LPTKke2PaQ1408SPSob PDbpUHqD6cHCJIJIbWAtHQ74PKlJ0q4wgG7RqVynX6A+PCWVqHPOCn6AmII6B6WF KThQ/kX3hiyiZBtkkfiD+64Wq/XbXyTmifZGE/IrTFG9cqQJtaEdRek9caz8FiG5 XV6oZf6J1RAJ5UK5Y8LBvmBciZNaETZCycp6YKEjXj7ogKjD+7aOmJxRSkBsZTWC WBZVdHKm1YMPE8tGW60vUWi/AgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUxfLRJmrr 8fJ5175ni+5MaTQx3G8wHwYDVR0jBBgwFoAUz4BKbz2GoZcTpOiG1Ze03GRFaGow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5QzYyLzg0RjQ2QjY4OTgx NTExRUZBNEJEM0Q1N0M0RjlBRTAyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFH by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejRCS2J6MkdvWmNUcE9pRzFaZTAzR1JGYUdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUM2Mi84NEY0NkI2ODk4MTUxMUVGQTRCRDNENTdDNEY5QUUwMi8wODhDOTI5ODk4 MTYxMUVGQkU1MTBCNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAKM9MAMEAMolpjANBAIAAjAHAwUAJAHfoDANBgkqhkiG9w0B AQsFAAOCAQEAim7j/2iTztFShDB1lJZhIkKbaiH9gDXO68sP2pMacpazYEatC7Gh WtNItC8AOWcU67SaWYO0jwxDamogS1Akp72t77b5vSbUmpD4ip4r5MiDKyb5PvRQ uJDjGDyZe4SnQbditRFwqjoxQShmrmzYTXF4Kr6NKM8/g/EYR+YSpEyTPMo0K8SC gVHp3+Pg9IUgF1xPTqKqVJAu6iLRiWvF3OXH8oDWuyQyyYMug6TuLCstNGcOmyrq Oxc1u8Ak+tIkqsKI6gNx2zalUn1xL2Pm5vJej6wKePEScn+OIrieOxFm8ElCzYaF fXf9MvH12Sw9SECGnS4ubf7+lzpgN7mouw== -----END CERTIFICATE-----Generated at Sat Jun 21 02:04:33 2025 by rpki-client