$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa File: 25FE32B86D9D11EEB269D31CC4F9AE02.roa (raw, json) Hash identifier: XBTNFChUOehrdQ5J3okPPPcp7T4Od1Rs1x+s2bvuzOk= Subject key identifier: C6:89:EC:BE:91:0C:96:58:B5:EF:96:97:A0:7A:49:CC:3A:7F:C5:35 Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: 0118 Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa Signing time: Thu 10 Apr 2025 09:54:01 +0000 ROA not before: Thu 10 Apr 2025 09:54:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151848 IP address blocks: 202.77.138.0/24 maxlen: 24 2001:df3:3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79, serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Validity Not Before: Apr 10 09:54:01 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67f79539-d056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:24:d9:ff:33:b5:c7:5c:cb:d1:6c:ef:db:42: f3:31:d9:ee:7a:24:37:62:1e:82:77:e9:a1:38:b7: 1f:d6:5e:0f:b3:6f:fc:b4:21:7f:c1:50:81:27:62: 9a:3f:b2:f0:1d:0f:c4:c5:41:52:eb:3e:cf:87:75: b3:d7:7a:e0:80:a0:b3:05:b9:70:e8:c6:4e:b3:25: 75:32:4f:27:74:c2:ea:5d:f7:51:e1:69:23:f6:b2: 52:f2:fa:45:98:ba:aa:83:54:87:6c:4f:3c:15:96: 61:6c:5b:bb:1f:ac:31:91:e5:a5:1e:d9:ef:27:23: b5:55:f3:07:db:ea:04:8b:0a:1e:ea:b9:5a:85:65: 60:6e:3a:54:cc:7c:3a:8e:ac:de:9e:5f:bb:5e:13: cd:19:3b:d3:22:d3:8f:22:85:87:b6:7e:3f:fc:79: 93:13:5f:a9:65:3f:5a:08:0b:00:26:68:2b:a2:7f: 47:76:e9:4e:5a:b3:a7:5e:6c:a4:4f:02:23:52:29: c4:95:b1:b1:f0:80:87:d8:7a:16:87:06:0a:97:e5: 18:6e:81:ae:fd:79:a9:0d:2c:e1:b8:d3:2b:89:ea: 8b:04:b6:aa:81:e5:b8:ff:42:f6:2a:4f:38:b9:fc: ac:e3:cf:c5:26:3d:2d:01:3e:ba:e0:78:32:36:0a: 84:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:89:EC:BE:91:0C:96:58:B5:EF:96:97:A0:7A:49:CC:3A:7F:C5:35 X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.77.138.0/24 IPv6: 2001:df3:3c0::/48 Signature Algorithm: sha256WithRSAEncryption 1b:ac:7c:ca:ee:95:61:3d:3e:24:f3:a3:a0:08:e3:e2:3c:c8: db:e5:d0:1c:85:d0:e1:29:89:5c:5b:c1:ce:8f:9b:80:bd:d9: ae:26:6e:73:2f:4e:f8:2f:3d:05:f4:5e:f1:20:9e:29:8c:30: dc:36:fe:b8:a5:c0:eb:f2:39:4e:29:9c:94:66:17:83:97:99: 0c:1a:d4:85:34:36:3e:31:26:5b:4d:3d:1d:46:49:20:b0:8d: 06:dc:6a:83:72:ff:67:45:19:63:70:2d:4f:f6:e6:f9:d9:e1: da:f7:2a:b7:01:22:6a:3b:88:29:6f:32:64:ed:f0:3b:de:2d: 06:82:2b:a1:b6:e7:66:61:23:69:9f:85:80:1f:32:51:df:49: 0e:26:e3:3b:85:d7:13:ef:e8:a8:c6:04:61:95:e2:29:d6:4c: 90:05:97:be:47:3f:6f:8d:19:9a:a5:13:0b:11:c5:e0:8d:21: 81:9b:7d:bd:cb:1a:d0:0e:68:99:76:87:a1:f0:e2:05:88:95: e5:95:40:b6:59:a6:bb:de:d6:58:db:ed:96:98:36:ca:3c:be: fd:ba:4b:cf:65:94:c7:10:bd:2c:b6:4e:58:b9:f3:9e:e9:22: b3:8e:4e:a9:49:fe:73:dd:9d:38:8b:31:83:c3:af:92:50:5f: 31:37:76:9f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBENzkxMTAvBgNVBAUTKDRFMjFGNUFBOEM5MjhDMEI2NzU3QzAzRTU1QjBBNTky M0M0RTQ4QUIwHhcNMjUwNDEwMDk1NDAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3OTUzOS1kMDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1STZ/zO1x1zL0Wzv20LzMdnueiQ3Yh6Cd+mhOLcf1l4Ps2/8tCF/wVCBJ2Ka P7LwHQ/ExUFS6z7Ph3Wz13rggKCzBblw6MZOsyV1Mk8ndMLqXfdR4Wkj9rJS8vpF mLqqg1SHbE88FZZhbFu7H6wxkeWlHtnvJyO1VfMH2+oEiwoe6rlahWVgbjpUzHw6 jqzenl+7XhPNGTvTItOPIoWHtn4//HmTE1+pZT9aCAsAJmgron9HdulOWrOnXmyk TwIjUinElbGx8ICH2HoWhwYKl+UYboGu/XmpDSzhuNMrieqLBLaqgeW4/0L2Kk84 ufys48/FJj0tAT664HgyNgqEuwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMaJ7L6R DJZYte+Wl6B6Scw6f8U1MB8GA1UdIwQYMBaAFE4h9aqMkowLZ1fAPlWwpZI8Tkir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MEQ3OS9FMTgyMDhCQzZE OUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pBdG5WOEEtVmJDbGtqeE9T S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODBENzkvRTE4MjA4QkM2RDlDMTFFRUEwMkJCQjBFQzRGOUFFMDIvMjVGRTMyQjg2 RDlEMTFFRUIyNjlEMzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKTYowDwQCAAIwCQMHACABDfMDwDANBgkqhkiG9w0BAQsF AAOCAQEAG6x8yu6VYT0+JPOjoAjj4jzI2+XQHIXQ4SmJXFvBzo+bgL3ZriZucy9O +C89BfRe8SCeKYww3Db+uKXA6/I5TimclGYXg5eZDBrUhTQ2PjEmW009HUZJILCN Btxqg3L/Z0UZY3AtT/bm+dnh2vcqtwEiajuIKW8yZO3wO94tBoIrobbnZmEjaZ+F gB8yUd9JDibjO4XXE+/oqMYEYZXiKdZMkAWXvkc/b40ZmqUTCxHF4I0hgZt9vcsa 0A5omXaHofDiBYiV5ZVAtlmmu97WWNvtlpg2yjy+/bpLz2WUxxC9LLZOWLnznuki s45OqUn+c92dOIsxg8OvklBfMTd2nw== -----END CERTIFICATE-----Generated at Sat Apr 26 13:33:26 2025 by rpki-client