$ rpki-client -vvf rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa File: B8370F3A5E6011EDB5361D3BC4F9AE02.roa (raw, json) Hash identifier: 3spAcopzpeJWyW5mR0mGk38MM078PmmdgI27LOSYIH0= Subject key identifier: 03:19:C8:42:7D:13:13:35:19:C3:51:DB:83:9A:7B:3F:8C:CA:54:EC Certificate issuer: /CN=A9155675/serialNumber=C7B1309D00872D0666396B4C23D8EF5C312C6BEB Certificate serial: 01F0 Authority key identifier: C7:B1:30:9D:00:87:2D:06:66:39:6B:4C:23:D8:EF:5C:31:2C:6B:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa Signing time: Thu 19 Jun 2025 02:39:08 +0000 ROA not before: Thu 19 Jun 2025 02:39:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45353 IP address blocks: 202.45.144.0/22 maxlen: 22 202.45.144.0/24 maxlen: 24 202.45.145.0/24 maxlen: 24 202.45.146.0/24 maxlen: 24 202.45.147.0/24 maxlen: 24 2001:df0:8b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.crl rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:39:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155675, serialNumber=C7B1309D00872D0666396B4C23D8EF5C312C6BEB Validity Not Before: Jun 19 02:39:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6853784c-4cff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:67:08:88:98:74:09:9e:08:c3:0b:f5:fc:53: 12:e5:86:0d:e3:9e:c5:50:51:87:96:af:d9:a1:00: e3:d0:2b:b3:de:bc:1c:5f:c8:b0:d8:64:9e:96:21: 79:cb:64:0c:a2:24:97:42:26:39:55:b9:d6:e0:f4: df:b7:c7:50:3b:f6:d2:a9:ed:4a:43:af:8a:35:16: c6:78:79:3e:eb:02:c2:e7:46:31:10:74:12:4e:90: d8:77:74:37:e0:de:8f:48:73:45:ec:d4:3b:77:90: 8d:42:48:54:ac:76:ce:e9:23:1d:6d:d3:81:91:81: c8:d0:73:c8:16:3f:8a:26:1b:3c:2f:2a:fe:63:c2: 67:88:fc:87:b2:4e:d6:1a:8e:7c:fa:e5:5b:56:93: 6e:37:7d:04:31:3e:39:4c:de:50:29:3e:08:85:51: 88:0e:a1:4c:4c:99:d6:92:2d:c7:17:29:0c:e8:5d: 1a:bb:41:99:40:cc:b9:9d:f5:0f:d8:ed:e4:52:52: 45:85:87:81:13:75:e3:48:7e:3f:c4:39:bd:36:08: 8a:bb:fb:07:4f:4e:fd:d7:a7:a4:8f:47:66:5c:80: ad:08:15:57:8b:0f:65:ac:07:7f:c6:14:22:c1:fa: 50:a8:96:5d:4a:05:a2:af:6a:0c:6a:cd:13:5b:86: a1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:19:C8:42:7D:13:13:35:19:C3:51:DB:83:9A:7B:3F:8C:CA:54:EC X509v3 Authority Key Identifier: keyid:C7:B1:30:9D:00:87:2D:06:66:39:6B:4C:23:D8:EF:5C:31:2C:6B:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.144.0/22 IPv6: 2001:df0:8b::/48 Signature Algorithm: sha256WithRSAEncryption 84:96:8a:fd:c6:81:d9:39:43:d9:4a:9d:05:cd:a0:8f:a2:ab: 8d:50:92:ad:a6:4e:77:35:6d:e6:bf:fb:71:4a:11:db:e4:88: 5c:82:20:87:1a:69:5e:a6:f0:6f:f4:b3:97:37:51:f5:f0:83: db:e0:45:38:ed:34:17:e7:b8:9f:b4:1a:5f:2c:15:4d:49:42: df:65:2b:e8:7f:d3:d9:f5:78:b5:1b:61:27:91:9b:86:23:94: 25:f7:a5:61:62:27:ad:e5:41:73:79:ba:a9:83:88:fd:6e:cc: 09:76:c8:b3:12:44:89:35:fe:04:b2:62:42:5a:b5:63:21:ac: d4:0e:57:42:c8:eb:01:42:05:f0:8e:6c:f1:d3:71:64:e8:c6: c0:d2:87:65:18:6d:0f:b3:1b:6b:b5:2c:7e:5f:82:4b:9d:b3: 65:19:88:11:f9:2f:b8:da:26:e0:df:f8:a9:58:f6:e6:86:75: 36:4b:b2:0a:68:be:77:00:78:5b:ab:b3:89:b1:89:2f:d3:fa: cc:78:d4:88:07:fc:91:66:1a:c8:3e:4e:5c:74:db:e9:82:9c: 3d:f4:02:d8:a7:aa:18:b6:1b:6a:44:20:5e:5d:78:e9:b3:db: 85:8b:76:97:a4:6b:59:28:d5:e7:94:35:fb:fd:77:50:de:27: 71:c8:40:4d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2NzUxMTAvBgNVBAUTKEM3QjEzMDlEMDA4NzJEMDY2NjM5NkI0QzIzRDhFRjVD MzEyQzZCRUIwHhcNMjUwNjE5MDIzOTA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzNzg0Yy00Y2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2cIiJh0CZ4Iwwv1/FMS5YYN457FUFGHlq/ZoQDj0Cuz3rwcX8iw2GSeliF5 y2QMoiSXQiY5VbnW4PTft8dQO/bSqe1KQ6+KNRbGeHk+6wLC50YxEHQSTpDYd3Q3 4N6PSHNF7NQ7d5CNQkhUrHbO6SMdbdOBkYHI0HPIFj+KJhs8Lyr+Y8JniPyHsk7W Go58+uVbVpNuN30EMT45TN5QKT4IhVGIDqFMTJnWki3HFykM6F0au0GZQMy5nfUP 2O3kUlJFhYeBE3XjSH4/xDm9NgiKu/sHT07916ekj0dmXICtCBVXiw9lrAd/xhQi wfpQqJZdSgWir2oMas0TW4ahaQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAMZyEJ9 ExM1GcNR24Oaez+MylTsMB8GA1UdIwQYMBaAFMexMJ0Ahy0GZjlrTCPY71wxLGvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY3NS82RDExRjU3ODVF NUMxMUVEOUREREQyMURDNEY5QUUwMi94N0V3blFDSExRWm1PV3RNSTlqdlhERXNh LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3RXduUUNITFFabU9XdE1JOWp2WERFc2Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2NzUvNkQxMUY1Nzg1RTVDMTFFRDlEREREMjFEQzRGOUFFMDIvQjgzNzBGM0E1 RTYwMTFFREI1MzYxRDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKLZAwDwQCAAIwCQMHACABDfAAizANBgkqhkiG9w0BAQsF AAOCAQEAhJaK/caB2TlD2UqdBc2gj6KrjVCSraZOdzVt5r/7cUoR2+SIXIIghxpp Xqbwb/SzlzdR9fCD2+BFOO00F+e4n7QaXywVTUlC32Ur6H/T2fV4tRthJ5GbhiOU JfelYWInreVBc3m6qYOI/W7MCXbIsxJEiTX+BLJiQlq1YyGs1A5XQsjrAUIF8I5s 8dNxZOjGwNKHZRhtD7Mba7Usfl+CS52zZRmIEfkvuNom4N/4qVj25oZ1NkuyCmi+ dwB4W6uzibGJL9P6zHjUiAf8kWYayD5OXHTb6YKcPfQC2KeqGLYbakQgXl146bPb hYt2l6RrWSjV55Q1+/13UN4ncchATQ== -----END CERTIFICATE-----Generated at Fri Jun 20 02:35:49 2025 by rpki-client