$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/93EE047E4BB511EE9309AA4EC4F9AE02.roa File: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (raw, json) Hash identifier: qG2SpUwJrHBZ/Em7b+P8cRrxcy56td2rq8TeEJ3xATs= Subject key identifier: A8:BE:69:43:F2:A0:EA:2D:FA:E1:F0:6C:57:8E:BB:2B:72:5C:34:DA Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0B3D Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/93EE047E4BB511EE9309AA4EC4F9AE02.roa Signing time: Tue 10 Jun 2025 22:10:13 +0000 ROA not before: Tue 10 Jun 2025 22:10:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 21859 IP address blocks: 43.152.178.0/24 maxlen: 24 101.33.12.0/24 maxlen: 24 101.33.13.0/24 maxlen: 24 101.33.14.0/24 maxlen: 24 101.33.15.0/24 maxlen: 24 240d:c010:14b::/48 maxlen: 48 240d:c010:14c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2877 (0xb3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Jun 10 22:10:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6848ad44-57e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bf:e4:c1:b7:91:87:06:6c:21:c8:e8:d3:d1: 50:4d:3e:e1:1b:77:39:8e:0d:2f:20:b3:73:ca:7b: 81:ed:44:91:3d:5e:4b:37:aa:c2:44:56:d8:69:cc: f4:3f:a2:44:ce:2a:c9:08:51:db:3e:aa:f2:c7:90: e3:43:e1:b7:8e:dd:83:75:2f:6c:03:da:32:69:1b: d4:3b:6b:35:94:12:7d:0b:90:fa:69:0b:ae:67:82: b0:b1:26:9d:97:68:04:88:3c:31:16:2a:1a:f7:41: 63:a4:52:8d:d3:60:38:5e:70:13:37:0a:a5:b0:5b: fc:03:35:49:a8:a5:ce:a7:0c:5c:44:06:63:7d:ac: 18:1e:ac:82:9b:ec:82:87:c2:6a:5e:07:c7:72:a2: 32:8c:23:76:17:f9:df:ec:e5:7c:27:ee:1a:ec:ec: 90:35:fe:f6:8d:cc:fc:20:29:5a:f8:f3:68:41:d1: 1d:a1:bb:05:34:9c:2c:96:6d:3b:1d:3b:0c:56:ff: 94:99:cf:81:78:0e:93:84:19:11:a9:73:b2:a0:5e: 0a:22:72:f2:dc:77:b2:ac:b8:15:3e:ca:2c:99:42: f5:0a:ba:33:10:dd:33:a8:8b:f6:ff:df:58:52:da: 0b:84:c7:da:a0:29:83:ce:0d:40:0d:13:e0:c9:d3: ea:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:BE:69:43:F2:A0:EA:2D:FA:E1:F0:6C:57:8E:BB:2B:72:5C:34:DA X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/93EE047E4BB511EE9309AA4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.152.178.0/24 101.33.12.0/22 IPv6: 240d:c010:14b::-240d:c010:14c:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b1:5d:81:bc:9b:a7:df:44:a9:b2:de:55:e0:4e:ae:9f:33:9a: 54:d3:ac:d1:95:6d:c0:ec:88:e1:6d:2c:6a:a0:49:39:7e:17: 6b:c6:f2:ed:98:93:78:59:c5:95:0b:c6:18:c1:10:2f:2e:25: 17:f0:88:7d:49:ea:34:67:83:ad:e9:68:68:35:ec:15:54:90: 52:e7:3a:95:97:23:ec:3e:25:4e:9b:a6:39:d3:58:e0:6f:a3: f7:76:43:f2:b7:2e:c0:fd:a5:ba:14:ad:a5:87:d6:07:b0:45: 79:37:c7:e9:b9:44:3f:1d:aa:31:e1:d5:51:cc:64:a1:93:54: 56:a5:7e:1d:33:41:a8:4d:77:18:ad:a1:99:3e:66:f5:53:e2: 63:b8:e1:22:fc:1e:c7:d4:90:fc:f0:f0:d6:08:69:46:2a:4d: 0f:1f:52:ff:ae:97:28:3d:44:a5:fc:b7:a6:d2:38:7d:6b:2c: 88:77:f0:60:69:45:29:da:6e:00:55:ef:1c:bf:25:13:8d:2d: 01:e1:6a:e2:95:ff:9e:0d:58:ab:23:0f:8f:86:bb:ce:b1:38: 90:04:34:82:84:d4:34:58:26:4a:3a:d3:44:e8:e4:df:cf:2b: 85:ef:0c:b5:f2:7f:36:e7:12:5a:21:29:0c:45:11:77:a1:d9: 17:a7:a8:dd -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICCz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUwNjEwMjIxMDEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4YWQ0NC01N2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvL/kwbeRhwZsIcjo09FQTT7hG3c5jg0vILNzynuB7USRPV5LN6rCRFbYacz0 P6JEzirJCFHbPqryx5DjQ+G3jt2DdS9sA9oyaRvUO2s1lBJ9C5D6aQuuZ4KwsSad l2gEiDwxFioa90FjpFKN02A4XnATNwqlsFv8AzVJqKXOpwxcRAZjfawYHqyCm+yC h8JqXgfHcqIyjCN2F/nf7OV8J+4a7OyQNf72jcz8ICla+PNoQdEdobsFNJwslm07 HTsMVv+Umc+BeA6ThBkRqXOyoF4KInLy3HeyrLgVPsosmUL1CrozEN0zqIv2/99Y UtoLhMfaoCmDzg1ADRPgydPqGQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFKi+aUPy oOot+uHwbFeOuytyXDTaMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdENjcvNjlFNkMxNkE0NDJBMTFFQjk1OTlBRDM4QzRGOUFFMDIvOTNFRTA0N0U0 QkI1MTFFRTkzMDlBQTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAArmLIDBAJlIQwwGgQCAAIwFDASAwcAJA3AEAFLAwcAJA3A EAFMMA0GCSqGSIb3DQEBCwUAA4IBAQCxXYG8m6ffRKmy3lXgTq6fM5pU06zRlW3A 7IjhbSxqoEk5fhdrxvLtmJN4WcWVC8YYwRAvLiUX8Ih9Seo0Z4Ot6WhoNewVVJBS 5zqVlyPsPiVOm6Y501jgb6P3dkPyty7A/aW6FK2lh9YHsEV5N8fpuUQ/Haox4dVR zGShk1RWpX4dM0GoTXcYraGZPmb1U+JjuOEi/B7H1JD88PDWCGlGKk0PH1L/rpco PUSl/Lem0jh9ayyId/BgaUUp2m4AVe8cvyUTjS0B4Wrilf+eDVirIw+PhrvOsTiQ BDSChNQ0WCZKOtNE6OTfzyuF7wy18n825xJaISkMRRF3odkXp6jd -----END CERTIFICATE-----Generated at Thu Jun 19 23:43:49 2025 by rpki-client