$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/263DB02C4BB611EE9B959267C4F9AE02.roa File: 263DB02C4BB611EE9B959267C4F9AE02.roa (raw, json) Hash identifier: uy/Ya9Uphz8yk5gzFrvw8K92wA25vKbiFTbIY5cp56U= Subject key identifier: 0F:F5:80:0F:04:CF:4B:13:56:F2:7D:80:82:8B:4D:59:A8:42:0C:89 Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0B3A Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/263DB02C4BB611EE9B959267C4F9AE02.roa Signing time: Tue 10 Jun 2025 22:10:08 +0000 ROA not before: Tue 10 Jun 2025 22:10:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138915 IP address blocks: 43.152.163.0/24 maxlen: 24 240d:c010:102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2874 (0xb3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Jun 10 22:10:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6848ad40-f21a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:79:ae:30:1f:d4:16:7a:b1:26:cb:a3:4a:c9: a4:6d:ef:48:b4:54:50:af:44:24:0a:38:e8:f3:99: 95:07:ca:cf:6d:99:f6:21:84:c7:d2:1e:30:f9:62: 01:11:d4:16:00:b3:1d:f8:32:37:f6:47:76:10:6a: 97:ea:4f:35:67:0a:d7:30:81:9d:8a:50:2a:ba:24: 57:a9:6f:a1:ec:fd:41:aa:33:5e:f4:7e:e8:68:37: 9c:b0:7a:06:57:97:8c:7c:9d:d3:d2:ce:7e:5e:1c: 0f:85:66:06:c8:9a:ae:f0:f4:ed:de:52:d0:bf:ec: ac:e6:70:6b:15:7c:03:10:6a:d0:99:83:a2:a3:e6: 4c:ff:6b:a8:e4:2d:da:65:09:dc:6f:65:1b:90:50: 25:07:80:94:2e:6c:a2:7a:43:e8:5d:fb:31:4e:7d: 2d:e9:05:4b:b5:ac:d3:c8:5e:09:96:9c:5a:2c:b2: 01:8f:1f:9b:0d:5c:ae:27:df:fe:c2:1a:5d:ee:5a: 92:d3:29:41:72:1f:b6:d2:6c:5d:68:0e:0a:b9:84: 88:ea:74:82:73:b2:ae:17:3f:ec:50:37:61:b5:78: d0:9e:e6:d7:b3:53:1a:04:7f:42:8f:da:11:5b:50: 64:c3:4e:1a:9c:cb:85:40:41:79:ef:48:db:44:83: 03:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F5:80:0F:04:CF:4B:13:56:F2:7D:80:82:8B:4D:59:A8:42:0C:89 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/263DB02C4BB611EE9B959267C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.152.163.0/24 IPv6: 240d:c010:102::/48 Signature Algorithm: sha256WithRSAEncryption 41:25:ed:89:a1:1e:53:5a:4f:55:04:e0:c5:fd:e3:82:32:01: 46:65:9c:f6:50:01:4c:36:dc:4a:26:c1:c7:de:98:4a:4c:1f: 5d:80:c3:0e:fa:6c:9e:e5:12:52:3f:4b:b4:70:dc:70:61:2f: 3c:ae:53:41:ea:5d:ef:66:ed:f1:ee:2e:af:71:a1:24:04:2c: e7:d2:11:66:71:15:39:bb:ab:28:ea:4d:2b:58:dd:23:b7:ce: 00:2b:41:47:c5:02:f2:6e:6c:6c:ce:24:12:fc:ae:23:ab:54: a9:e7:e3:6d:ad:df:5e:e1:f3:2c:f8:fc:33:43:2f:10:a7:6c: 43:fc:fb:3c:ec:cc:77:2c:47:58:e4:38:b6:01:df:61:28:47: a2:f7:89:3c:04:18:dd:7c:8e:e2:dc:3b:ab:fb:6f:85:68:a0: 2f:0c:c0:4a:e4:6d:25:18:4f:7b:dd:3f:6a:ee:ab:bd:b4:5e: 53:2d:6d:ab:5e:35:00:80:20:f1:21:33:ab:e9:fc:fa:30:94: 8b:a7:98:14:34:c4:2b:d8:71:8b:ec:6c:17:bc:5c:17:27:0c: c7:da:10:4f:e7:ea:a5:91:08:b9:33:b3:0b:f0:e6:75:78:84: c0:22:43:34:e7:ed:d0:dc:78:61:70:f0:82:7f:da:9d:42:ea: a8:23:57:6a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUwNjEwMjIxMDA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4YWQ0MC1mMjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynmuMB/UFnqxJsujSsmkbe9ItFRQr0QkCjjo85mVB8rPbZn2IYTH0h4w+WIB EdQWALMd+DI39kd2EGqX6k81ZwrXMIGdilAquiRXqW+h7P1BqjNe9H7oaDecsHoG V5eMfJ3T0s5+XhwPhWYGyJqu8PTt3lLQv+ys5nBrFXwDEGrQmYOio+ZM/2uo5C3a ZQncb2UbkFAlB4CULmyiekPoXfsxTn0t6QVLtazTyF4JlpxaLLIBjx+bDVyuJ9/+ whpd7lqS0ylBch+20mxdaA4KuYSI6nSCc7KuFz/sUDdhtXjQnubXs1MaBH9Cj9oR W1Bkw04anMuFQEF570jbRIMDRQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA/1gA8E z0sTVvJ9gIKLTVmoQgyJMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdENjcvNjlFNkMxNkE0NDJBMTFFQjk1OTlBRDM4QzRGOUFFMDIvMjYzREIwMkM0 QkI2MTFFRTlCOTU5MjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAArmKMwDwQCAAIwCQMHACQNwBABAjANBgkqhkiG9w0BAQsF AAOCAQEAQSXtiaEeU1pPVQTgxf3jgjIBRmWc9lABTDbcSibBx96YSkwfXYDDDvps nuUSUj9LtHDccGEvPK5TQepd72bt8e4ur3GhJAQs59IRZnEVOburKOpNK1jdI7fO ACtBR8UC8m5sbM4kEvyuI6tUqefjba3fXuHzLPj8M0MvEKdsQ/z7POzMdyxHWOQ4 tgHfYShHoveJPAQY3XyO4tw7q/tvhWigLwzASuRtJRhPe90/au6rvbReUy1tq141 AIAg8SEzq+n8+jCUi6eYFDTEK9hxi+xsF7xcFycMx9oQT+fqpZEIuTOzC/DmdXiE wCJDNOft0Nx4YXDwgn/anULqqCNXag== -----END CERTIFICATE-----Generated at Fri Jun 20 16:46:18 2025 by rpki-client