$ rpki-client -vvf rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/B94D12C0F07F11EBAE5A5934C4F9AE02.roa File: B94D12C0F07F11EBAE5A5934C4F9AE02.roa (raw, json) Hash identifier: ZbaNyd2npVQ7n+Gz6EMJlX5yHpd7tPiQHaPoJPJgyBc= Subject key identifier: 4B:9E:A3:92:91:D7:7E:45:F2:00:92:0F:10:4F:67:CF:7C:45:2A:02 Certificate issuer: /CN=A9183798/serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Certificate serial: 101C Authority key identifier: 3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/B94D12C0F07F11EBAE5A5934C4F9AE02.roa Signing time: Thu 24 Apr 2025 17:46:16 +0000 ROA not before: Thu 24 Apr 2025 17:46:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63528 IP address blocks: 203.159.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4124 (0x101c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183798, serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Validity Not Before: Apr 24 17:46:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=680a78e8-48f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:dd:e4:5e:2a:02:39:c0:85:a9:19:1c:d6:63: 1b:0a:9e:e6:ee:85:db:88:ed:58:95:d3:8a:4f:04: 53:49:50:1f:51:d2:84:e5:0c:03:e3:4f:42:a4:6c: 20:b4:80:bd:83:a5:56:66:c5:eb:ea:83:44:d9:69: e4:db:2f:77:3f:b2:a2:69:62:84:23:e4:30:38:ed: f9:dd:b3:13:9c:3d:c1:c8:9b:39:ca:c1:2e:af:2e: cb:25:59:3d:5f:49:68:81:df:d0:50:a5:e8:4a:69: 40:bf:6f:9d:09:69:ad:55:8f:e2:b5:08:6d:0d:00: a3:29:85:db:b7:d3:47:ac:15:c8:d9:09:be:20:72: c8:7c:4f:0d:9b:8b:43:b1:ba:64:e5:13:87:d6:4b: c4:de:e7:d7:92:7a:a1:92:29:e2:92:d5:7b:ce:8c: 33:27:ef:0a:a0:fa:68:44:31:19:a4:72:f2:1e:46: b9:38:05:96:e9:2e:17:57:06:82:2f:f4:62:cf:b9: 5d:1b:15:e5:e8:3d:58:2a:35:11:00:95:89:33:94: 70:ab:2e:4f:6d:a6:9a:fa:5f:50:e1:65:83:d4:17: f0:ad:7d:72:11:b1:be:13:4a:27:51:75:1a:ad:f0: ed:14:65:01:b3:ec:0e:f2:6e:a6:42:2c:f8:a8:4f: 7b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:9E:A3:92:91:D7:7E:45:F2:00:92:0F:10:4F:67:CF:7C:45:2A:02 X509v3 Authority Key Identifier: keyid:3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/B94D12C0F07F11EBAE5A5934C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.159.66.0/23 Signature Algorithm: sha256WithRSAEncryption aa:da:49:2c:e9:f3:95:f9:ad:1a:b8:12:83:c5:62:9d:ba:ce: 61:79:fc:d3:6a:01:97:ca:25:5b:ef:06:4e:9f:cc:d4:fb:b0: 86:49:b7:65:18:f2:27:b8:36:3b:a9:4c:da:f0:31:e6:df:e6: a2:81:54:95:1c:9e:2c:6d:92:59:03:48:c5:ec:0d:dc:8a:1e: b5:62:72:de:4f:e0:28:86:c7:d0:a7:0a:9e:31:b2:c2:bd:6f: 5d:f7:80:15:59:9e:f0:22:16:93:f2:9d:62:b4:fd:28:60:3f: 5c:6e:59:07:ea:f2:fa:d1:ff:90:57:a3:49:3b:7d:a0:2b:72: 01:ad:35:42:84:53:3f:5e:35:9b:0c:3b:cf:d7:58:7c:47:38: 0b:a7:86:dc:91:66:a3:54:e7:a6:36:db:e0:74:6a:54:69:3b: b9:d6:74:7d:57:fe:04:47:93:c1:21:d2:6b:14:2e:8b:a9:cd: 2a:d1:98:5c:2f:56:e3:fe:49:33:89:66:5f:8f:37:4d:43:43: 4f:ae:12:6d:c0:54:58:0f:46:9c:be:7b:77:bb:de:1e:c6:41: d4:10:24:70:bd:90:2f:ce:db:83:f8:16:f7:7d:53:96:67:15: 4e:4c:a2:3f:25:ee:78:31:0a:08:e0:88:e7:1b:1e:4f:62:d4: cc:cc:80:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3OTgxMTAvBgNVBAUTKDNBMDJFRkY3Q0M5QzhCQUExMkQ3Qzg1MkI2RkZDNjlG QjA2MDk4OUIwHhcNMjUwNDI0MTc0NjE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzhlOC00OGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqd3kXioCOcCFqRkc1mMbCp7m7oXbiO1YldOKTwRTSVAfUdKE5QwD409CpGwg tIC9g6VWZsXr6oNE2Wnk2y93P7KiaWKEI+QwOO353bMTnD3ByJs5ysEury7LJVk9 X0logd/QUKXoSmlAv2+dCWmtVY/itQhtDQCjKYXbt9NHrBXI2Qm+IHLIfE8Nm4tD sbpk5ROH1kvE3ufXknqhkiniktV7zowzJ+8KoPpoRDEZpHLyHka5OAWW6S4XVwaC L/Riz7ldGxXl6D1YKjURAJWJM5Rwqy5Pbaaa+l9Q4WWD1BfwrX1yEbG+E0onUXUa rfDtFGUBs+wO8m6mQiz4qE97ewIDAQABo4IClTCCApEwHQYDVR0OBBYEFEueo5KR 135F8gCSDxBPZ898RSoCMB8GA1UdIwQYMBaAFDoC7/fMnIuqEtfIUrb/xp+wYJib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc5OC85MDE3QjUwQTRB MjcxMUU5QUNGMTdDMjZDNEY5QUUwMi9PZ0x2OTh5Y2k2b1MxOGhTdHZfR243Qmdt SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09nTHY5OHljaTZvUzE4aFN0dl9HbjdCZ21Kcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM3OTgvOTAxN0I1MEE0QTI3MTFFOUFDRjE3QzI2QzRGOUFFMDIvQjk0RDEyQzBG MDdGMTFFQkFFNUE1OTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLn0IwDQYJKoZIhvcNAQELBQADggEBAKraSSzp85X5rRq4 EoPFYp26zmF5/NNqAZfKJVvvBk6fzNT7sIZJt2UY8ie4NjupTNrwMebf5qKBVJUc nixtklkDSMXsDdyKHrVict5P4CiGx9CnCp4xssK9b133gBVZnvAiFpPynWK0/Shg P1xuWQfq8vrR/5BXo0k7faArcgGtNUKEUz9eNZsMO8/XWHxHOAunhtyRZqNU56Y2 2+B0alRpO7nWdH1X/gRHk8Eh0msULoupzSrRmFwvVuP+STOJZl+PN01DQ0+uEm3A VFgPRpy+e3e73h7GQdQQJHC9kC/O24P4Fvd9U5ZnFU5Moj8l7ngxCgjgiOcbHk9i 1MzMgEs= -----END CERTIFICATE-----Generated at Sat Apr 26 15:03:09 2025 by rpki-client