$ rpki-client -vvf rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/3BD3D78AD17B11EF8626DB84C4F9AE02.roa File: 3BD3D78AD17B11EF8626DB84C4F9AE02.roa (raw, json) Hash identifier: rjaSyAzG4Vkfbg5uZuSjD+n9EriKOHglMvv9YunPzH4= Subject key identifier: 81:41:41:A9:44:29:0C:3C:08:93:E0:B9:26:19:3E:7A:80:D0:43:9F Certificate issuer: /CN=A9183798/serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Certificate serial: 1019 Authority key identifier: 3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/3BD3D78AD17B11EF8626DB84C4F9AE02.roa Signing time: Thu 24 Apr 2025 17:46:12 +0000 ROA not before: Thu 24 Apr 2025 17:46:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137875 IP address blocks: 203.159.78.0/24 maxlen: 24 2405:3340:e128::/48 maxlen: 48 2405:3340:e129::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4121 (0x1019) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183798, serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Validity Not Before: Apr 24 17:46:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=680a78e4-74d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b6:eb:b2:61:13:04:54:3d:29:ea:54:bb:29: 44:bb:de:3d:ca:ce:e1:ab:f4:46:69:03:e3:cc:7a: 01:a1:40:8f:79:12:72:e2:c1:4e:51:8e:3e:e6:86: d4:06:5a:0f:3a:6e:5b:2d:2d:05:36:fd:d6:d1:ab: 36:31:61:50:14:7d:8e:3d:a8:65:90:87:22:e6:f4: 41:a9:d7:07:e9:29:96:56:76:f2:40:ce:4e:91:b9: ec:36:eb:ac:89:7b:23:ce:e9:fb:a0:cb:26:cf:74: 63:cf:b2:88:27:7f:ef:99:13:9f:af:1d:7f:18:3d: ce:a4:85:5b:72:7a:f3:a8:45:9e:8f:01:35:2d:71: 68:b0:b3:91:d3:ec:d1:f6:fc:63:1f:51:5c:5d:60: c0:95:74:ce:eb:38:21:b0:d9:d5:b7:18:e0:1f:0f: 14:5c:f8:0b:be:05:b3:1e:a6:8b:a9:c9:16:52:dc: 99:99:c3:32:05:aa:ca:73:90:dc:57:a0:7f:74:67: 4d:f0:cf:14:00:06:53:82:24:c6:0c:9e:8d:2a:02: e0:54:81:32:fb:79:31:cc:1e:b1:0e:49:a9:00:ee: 45:d1:ab:aa:e2:bd:6d:47:13:0e:48:2e:7c:97:d7: 84:39:4a:b4:c6:d5:bf:6b:bf:39:37:82:b3:22:f6: 0e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:41:41:A9:44:29:0C:3C:08:93:E0:B9:26:19:3E:7A:80:D0:43:9F X509v3 Authority Key Identifier: keyid:3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/3BD3D78AD17B11EF8626DB84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.159.78.0/24 IPv6: 2405:3340:e128::/47 Signature Algorithm: sha256WithRSAEncryption 96:8f:76:0f:ac:a2:c1:8e:87:31:0e:9d:a9:9c:9d:51:d1:a3: 66:d9:d7:61:97:76:f8:31:0b:b6:4c:2e:59:6b:68:6e:1a:2f: ba:61:3c:a6:5b:f8:7f:23:0c:70:6b:ae:2d:0b:16:ed:e8:f7: bb:14:8b:b3:16:95:d5:28:6d:62:bb:93:68:82:ad:52:7f:21: 37:e6:36:22:ca:e1:61:bb:ae:58:b1:4a:90:a6:98:38:03:69: af:bd:cd:5a:b4:f9:21:e2:54:de:c6:a6:ba:a9:17:ea:0b:54: a1:6d:36:4e:61:a6:6c:1e:03:40:7a:37:b5:07:b7:06:56:12: 92:32:8c:69:e5:8c:5f:86:ad:96:b9:9e:d8:84:d6:7b:71:90: 91:e2:b4:6f:92:91:c9:7a:38:b3:ec:e3:8d:0f:ce:b0:09:d2: f0:d8:c1:cb:18:53:af:5a:be:a3:c7:8f:26:1b:0d:4e:e9:be: 73:50:26:cc:f1:b3:2b:07:9e:cf:2f:32:6a:ac:47:d1:ca:0a: db:42:9c:b8:8c:5f:27:26:08:8f:05:3f:71:29:1b:6d:0e:46: a2:b7:07:a9:2a:98:f6:b4:40:50:fb:3d:98:83:05:c0:05:5f: 09:b3:f8:95:bd:2d:a1:76:75:eb:c1:72:4f:66:fc:67:f9:c0: 49:f1:a3:a3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICEBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3OTgxMTAvBgNVBAUTKDNBMDJFRkY3Q0M5QzhCQUExMkQ3Qzg1MkI2RkZDNjlG QjA2MDk4OUIwHhcNMjUwNDI0MTc0NjEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzhlNC03NGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLbrsmETBFQ9KepUuylEu949ys7hq/RGaQPjzHoBoUCPeRJy4sFOUY4+5obU BloPOm5bLS0FNv3W0as2MWFQFH2OPahlkIci5vRBqdcH6SmWVnbyQM5OkbnsNuus iXsjzun7oMsmz3Rjz7KIJ3/vmROfrx1/GD3OpIVbcnrzqEWejwE1LXFosLOR0+zR 9vxjH1FcXWDAlXTO6zghsNnVtxjgHw8UXPgLvgWzHqaLqckWUtyZmcMyBarKc5Dc V6B/dGdN8M8UAAZTgiTGDJ6NKgLgVIEy+3kxzB6xDkmpAO5F0auq4r1tRxMOSC58 l9eEOUq0xtW/a785N4KzIvYOzwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIFBQalE KQw8CJPguSYZPnqA0EOfMB8GA1UdIwQYMBaAFDoC7/fMnIuqEtfIUrb/xp+wYJib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc5OC85MDE3QjUwQTRB MjcxMUU5QUNGMTdDMjZDNEY5QUUwMi9PZ0x2OTh5Y2k2b1MxOGhTdHZfR243Qmdt SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09nTHY5OHljaTZvUzE4aFN0dl9HbjdCZ21Kcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM3OTgvOTAxN0I1MEE0QTI3MTFFOUFDRjE3QzI2QzRGOUFFMDIvM0JEM0Q3OEFE MTdCMTFFRjg2MjZEQjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLn04wDwQCAAIwCQMHASQFM0DhKDANBgkqhkiG9w0BAQsF AAOCAQEAlo92D6yiwY6HMQ6dqZydUdGjZtnXYZd2+DELtkwuWWtobhovumE8plv4 fyMMcGuuLQsW7ej3uxSLsxaV1ShtYruTaIKtUn8hN+Y2IsrhYbuuWLFKkKaYOANp r73NWrT5IeJU3samuqkX6gtUoW02TmGmbB4DQHo3tQe3BlYSkjKMaeWMX4atlrme 2ITWe3GQkeK0b5KRyXo4s+zjjQ/OsAnS8NjByxhTr1q+o8ePJhsNTum+c1AmzPGz Kweezy8yaqxH0coK20KcuIxfJyYIjwU/cSkbbQ5GorcHqSqY9rRAUPs9mIMFwAVf CbP4lb0toXZ168FyT2b8Z/nASfGjow== -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:50 2025 by rpki-client