$ rpki-client -vvf rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/F10E46E6F07C11EBB9AF1B63C4F9AE02.roa File: F10E46E6F07C11EBB9AF1B63C4F9AE02.roa (raw, json) Hash identifier: wikUFUY0h7gGqht6lrAAGNzDvHHVKOxeJ+8mIhyaOLg= Subject key identifier: 52:36:14:03:BA:82:CF:C8:00:C9:3F:03:0E:32:68:D1:06:56:7C:13 Certificate issuer: /CN=A9183798/serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Certificate serial: 1018 Authority key identifier: 3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/F10E46E6F07C11EBB9AF1B63C4F9AE02.roa Signing time: Thu 24 Apr 2025 17:46:12 +0000 ROA not before: Thu 24 Apr 2025 17:46:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137856 IP address blocks: 203.159.76.0/22 maxlen: 24 2405:3340::/32 maxlen: 32 2405:3340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4120 (0x1018) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183798, serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Validity Not Before: Apr 24 17:46:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=680a78e3-e3c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0d:d3:20:72:da:7e:e3:cc:84:53:14:df:9a: 86:eb:ba:1d:8e:c8:36:c6:2b:98:c0:4c:19:cf:2e: 25:9d:fc:ed:20:27:e8:e2:bc:71:0c:04:c9:cf:8f: 16:f5:e1:a5:0b:01:8d:3e:3e:30:b8:56:02:96:4f: 08:f6:b1:e5:3b:1f:35:5a:db:dd:d6:bc:ba:49:42: 90:5c:93:42:56:c7:62:a3:12:74:2a:9b:9f:73:60: 9d:50:69:8e:d3:4e:fc:17:1c:83:8b:68:88:3a:df: 72:4e:38:2b:0b:a8:db:5a:cf:17:27:0d:49:6c:a1: b4:a7:b7:ea:d2:6e:c5:b9:4f:b8:50:5d:c3:13:9d: 5d:39:6d:25:69:1c:65:e8:7e:f7:04:b4:bc:f5:68: fc:c1:a1:fc:0c:3f:f1:20:55:df:bb:2a:29:d3:5a: 6b:ad:b8:d5:17:4d:36:4a:b3:16:41:8c:eb:b2:69: 1e:f2:29:db:78:d0:9a:74:d4:3b:5d:20:53:b0:ee: fe:e3:cb:2e:4f:9d:19:57:8d:7a:79:34:46:e6:44: d1:c0:76:5e:cf:6f:fd:a0:9d:70:d9:a1:00:6a:f0: aa:70:c7:e3:4e:76:db:53:84:31:47:36:95:ef:a3: 2e:6d:2c:7d:f5:e4:fd:b8:7a:e5:2a:b5:ac:0d:ea: f9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:36:14:03:BA:82:CF:C8:00:C9:3F:03:0E:32:68:D1:06:56:7C:13 X509v3 Authority Key Identifier: keyid:3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/F10E46E6F07C11EBB9AF1B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.159.76.0/22 IPv6: 2405:3340::/32 Signature Algorithm: sha256WithRSAEncryption 01:fb:a3:80:d4:cf:98:96:c0:23:9c:88:68:04:3a:c5:df:a3: 46:b6:54:2a:c0:8a:2b:d3:a9:91:ed:a7:b8:c8:a4:fa:67:ba: d2:a8:dd:f1:7a:78:74:09:11:c6:2c:e1:2f:7f:d3:35:92:78: c8:f5:4a:8c:48:3a:d4:41:1e:07:b5:a6:97:2b:33:6b:07:8c: 94:44:08:1e:ec:4a:9d:b4:83:5f:1c:f1:33:eb:be:eb:8d:22: bd:6a:50:bd:df:f1:0e:f0:2c:8e:e8:7e:13:4e:f8:55:25:c8: e6:4e:23:77:70:cf:a5:7b:ad:b7:f6:36:ae:c8:2e:1e:3f:28: 27:99:0d:4d:8f:b6:ab:f1:4c:01:c2:fc:0f:13:4e:3d:ad:d1: 08:ee:ff:12:4e:3c:45:6f:ec:f0:e6:81:8e:18:b9:9a:ec:26: 1b:9f:3b:52:ab:77:8a:bc:2d:3e:c7:47:cd:99:59:e0:f6:40: a6:7b:6f:9f:b5:7a:77:44:42:23:d7:c7:25:df:37:5b:6d:5d: fc:dc:82:89:53:90:dd:6b:23:11:31:aa:6c:49:65:50:fe:c6: c0:a7:a6:54:85:a7:c9:0b:6f:7a:2c:b3:72:02:0f:57:31:17: 62:5d:b2:bd:15:a4:4d:dc:60:6e:d4:c6:9a:cd:b3:1b:e2:50: 36:aa:b2:ce -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3OTgxMTAvBgNVBAUTKDNBMDJFRkY3Q0M5QzhCQUExMkQ3Qzg1MkI2RkZDNjlG QjA2MDk4OUIwHhcNMjUwNDI0MTc0NjEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzhlMy1lM2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA3TIHLafuPMhFMU35qG67odjsg2xiuYwEwZzy4lnfztICfo4rxxDATJz48W 9eGlCwGNPj4wuFYClk8I9rHlOx81Wtvd1ry6SUKQXJNCVsdioxJ0Kpufc2CdUGmO 0078FxyDi2iIOt9yTjgrC6jbWs8XJw1JbKG0p7fq0m7FuU+4UF3DE51dOW0laRxl 6H73BLS89Wj8waH8DD/xIFXfuyop01prrbjVF002SrMWQYzrsmke8inbeNCadNQ7 XSBTsO7+48suT50ZV416eTRG5kTRwHZez2/9oJ1w2aEAavCqcMfjTnbbU4QxRzaV 76MubSx99eT9uHrlKrWsDer5VwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFI2FAO6 gs/IAMk/Aw4yaNEGVnwTMB8GA1UdIwQYMBaAFDoC7/fMnIuqEtfIUrb/xp+wYJib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc5OC85MDE3QjUwQTRB MjcxMUU5QUNGMTdDMjZDNEY5QUUwMi9PZ0x2OTh5Y2k2b1MxOGhTdHZfR243Qmdt SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09nTHY5OHljaTZvUzE4aFN0dl9HbjdCZ21Kcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM3OTgvOTAxN0I1MEE0QTI3MTFFOUFDRjE3QzI2QzRGOUFFMDIvRjEwRTQ2RTZG MDdDMTFFQkI5QUYxQjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBALLn0wwDQQCAAIwBwMFACQFM0AwDQYJKoZIhvcNAQELBQAD ggEBAAH7o4DUz5iWwCOciGgEOsXfo0a2VCrAiivTqZHtp7jIpPpnutKo3fF6eHQJ EcYs4S9/0zWSeMj1SoxIOtRBHge1ppcrM2sHjJRECB7sSp20g18c8TPrvuuNIr1q UL3f8Q7wLI7ofhNO+FUlyOZOI3dwz6V7rbf2Nq7ILh4/KCeZDU2PtqvxTAHC/A8T Tj2t0Qju/xJOPEVv7PDmgY4YuZrsJhufO1Krd4q8LT7HR82ZWeD2QKZ7b5+1endE QiPXxyXfN1ttXfzcgolTkN1rIxExqmxJZVD+xsCnplSFp8kLb3oss3ICD1cxF2Jd sr0VpE3cYG7UxprNsxviUDaqss4= -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:30 2025 by rpki-client