$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/95F1EC2A20E011F086D75E5CC4F9AE02.roa File: 95F1EC2A20E011F086D75E5CC4F9AE02.roa (raw, json) Hash identifier: CnHAKJhcFhKxT9bBgQkQzh3x9o/fPEBq15JlvNEADLg= Subject key identifier: 5B:71:44:C8:54:0B:92:0E:91:67:0B:F8:FF:02:C7:79:FB:8B:3F:69 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D28 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/95F1EC2A20E011F086D75E5CC4F9AE02.roa Signing time: Thu 24 Apr 2025 07:49:01 +0000 ROA not before: Thu 24 Apr 2025 07:49:01 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 2914 IP address blocks: 111.92.131.0/24 maxlen: 24 111.92.133.0/24 maxlen: 24 111.92.134.0/24 maxlen: 24 111.92.139.0/24 maxlen: 24 111.92.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Apr 24 07:49:01 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6809eced-c99f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ce:ce:50:00:5c:24:f5:35:0c:c1:f1:b8:00: c7:bc:b5:2f:d0:32:cc:d3:07:99:03:71:31:fc:e7: 21:aa:ee:55:60:fe:b0:7d:06:9b:85:e4:fb:0a:40: ca:78:21:f9:a2:21:b3:04:bb:52:55:e5:5f:7b:2d: 78:0d:d0:ef:6d:0d:8b:05:1c:92:69:e3:b8:d9:04: 5b:51:40:38:42:31:3c:9c:63:04:a1:e2:71:4a:21: 40:fe:3a:df:37:bc:97:f4:9d:24:e7:8f:04:72:5f: 82:41:12:89:d2:7f:b7:a6:2e:d3:b4:c3:2c:1f:fa: 2f:e2:f2:d6:08:c2:51:a6:e3:be:a4:7e:19:6b:f9: 11:23:7e:05:5b:72:c6:8f:5c:c1:7e:50:9d:b1:b5: c8:6d:52:4b:52:6e:fd:23:b3:2c:d0:0c:a6:29:57: 19:26:f7:05:6f:6e:94:08:bf:d6:4c:42:bb:ac:ed: ca:7b:9f:72:30:77:ae:f2:e6:f8:ff:2b:9c:de:37: 6c:98:36:57:e8:b5:3f:4d:21:ff:6a:63:b0:23:c3: 99:47:5f:99:06:d1:cb:93:a4:75:ba:ec:cb:5f:fe: 4d:21:6b:26:13:12:0f:a9:bd:e1:67:d8:03:48:1f: ab:52:f4:05:b8:f5:e4:b9:85:34:eb:12:45:c7:63: d4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:71:44:C8:54:0B:92:0E:91:67:0B:F8:FF:02:C7:79:FB:8B:3F:69 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/95F1EC2A20E011F086D75E5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.92.131.0/24 111.92.133.0-111.92.134.255 111.92.139.0/24 111.92.142.0/24 Signature Algorithm: sha256WithRSAEncryption 23:0e:2a:a3:7d:c2:95:3a:c7:76:ad:9b:a5:cc:12:4b:0e:ce: 15:37:2a:74:5d:9e:70:04:12:e1:42:5c:ad:0d:33:99:20:31: 0d:25:0f:d3:05:59:35:c3:9f:ab:db:ae:6f:8d:75:fe:a8:bc: 4b:fc:84:36:9f:70:55:76:d8:c6:b4:e9:90:9b:a1:a3:8d:ac: 87:9d:7b:df:c6:d5:2a:a3:41:63:46:e8:68:0e:fd:b2:40:7a: 9b:b8:f5:dc:75:60:60:06:c1:3c:02:57:25:0a:fb:26:28:8e: 81:cb:00:cc:8a:e3:34:f0:ba:f0:f4:32:e6:18:5f:6d:ff:c6: ab:6b:66:05:a9:6e:39:a4:d9:c3:8b:80:98:68:21:e0:07:13: 12:2c:22:94:be:07:1e:dc:d2:e3:04:7f:a1:b0:6c:5e:ef:79: bb:80:19:8a:37:a3:9a:07:ef:a8:08:ad:5d:cb:d7:24:cb:2d: 8f:09:56:3d:5b:5b:65:de:98:2c:40:24:18:ad:9f:95:20:65: 0b:91:43:65:6c:38:d6:f3:62:3f:ca:e6:62:a3:53:55:39:90: 93:78:d1:e6:4e:62:33:b1:68:9c:e5:87:32:ee:fc:f0:06:08: 8c:ce:de:76:48:d1:38:5f:a1:f0:e0:44:0e:0d:46:4d:85:b0: 87:db:94:f9 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNDI0MDc0OTAxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA5ZWNlZC1jOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp87OUABcJPU1DMHxuADHvLUv0DLM0weZA3Ex/Ochqu5VYP6wfQabheT7CkDK eCH5oiGzBLtSVeVfey14DdDvbQ2LBRySaeO42QRbUUA4QjE8nGMEoeJxSiFA/jrf N7yX9J0k548Ecl+CQRKJ0n+3pi7TtMMsH/ov4vLWCMJRpuO+pH4Za/kRI34FW3LG j1zBflCdsbXIbVJLUm79I7Ms0AymKVcZJvcFb26UCL/WTEK7rO3Ke59yMHeu8ub4 /yuc3jdsmDZX6LU/TSH/amOwI8OZR1+ZBtHLk6R1uuzLX/5NIWsmExIPqb3hZ9gD SB+rUvQFuPXkuYU06xJFx2PU5QIDAQABo4ICrzCCAqswHQYDVR0OBBYEFFtxRMhU C5IOkWcL+P8Cx3n7iz9pMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvOTVGMUVDMkEy MEUwMTFGMDg2RDc1RTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBABvXIMwDAMEAG9chQMEAG9chgMEAG9ciwMEAG9cjjANBgkq hkiG9w0BAQsFAAOCAQEAIw4qo33ClTrHdq2bpcwSSw7OFTcqdF2ecAQS4UJcrQ0z mSAxDSUP0wVZNcOfq9uub411/qi8S/yENp9wVXbYxrTpkJuho42sh51738bVKqNB Y0boaA79skB6m7j13HVgYAbBPAJXJQr7JiiOgcsAzIrjNPC68PQy5hhfbf/Gq2tm BaluOaTZw4uAmGgh4AcTEiwilL4HHtzS4wR/obBsXu95u4AZijejmgfvqAitXcvX JMstjwlWPVtbZd6YLEAkGK2flSBlC5FDZWw41vNiP8rmYqNTVTmQk3jR5k5iM7Fo nOWHMu788AYIjM7edkjROF+h8OBEDg1GTYWwh9uU+Q== -----END CERTIFICATE-----Generated at Sat Apr 26 08:08:55 2025 by rpki-client