$ rpki-client -vvf rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/9B2C760CD89B11EF8D75534EC4F9AE02.roa File: 9B2C760CD89B11EF8D75534EC4F9AE02.roa (raw, json) Hash identifier: xl5aD0CkAXn3HLD4UrJj4+rSpG0xnpxW+n1qEQtppVM= Subject key identifier: 0B:73:5B:F3:96:B1:7C:03:FB:6E:6D:8A:D1:9E:B7:C2:D1:35:99:45 Certificate issuer: /CN=A9188CCC/serialNumber=E231D30927E49A6A22D9F6ACD706103BE3E5DC16 Certificate serial: 0115 Authority key identifier: E2:31:D3:09:27:E4:9A:6A:22:D9:F6:AC:D7:06:10:3B:E3:E5:DC:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/9B2C760CD89B11EF8D75534EC4F9AE02.roa Signing time: Wed 22 Jan 2025 08:33:51 +0000 ROA not before: Wed 22 Jan 2025 08:33:51 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55734 IP address blocks: 43.245.0.0/22 maxlen: 24 103.232.184.0/22 maxlen: 24 223.27.120.0/22 maxlen: 24 2401:4ce0::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.crl rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188CCC, serialNumber=E231D30927E49A6A22D9F6ACD706103BE3E5DC16 Validity Not Before: Jan 22 08:33:51 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6790ad6e-19c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9a:24:98:1d:5c:0d:52:7a:e9:10:f2:11:cc: 3f:e4:cf:fb:d9:83:47:92:c5:27:b7:b9:d9:58:aa: 4e:fe:c8:dd:89:d6:78:d1:6c:6b:bd:8d:ca:11:de: a5:f7:45:3c:30:7a:5f:60:b7:a9:30:42:9d:eb:7a: 69:a3:86:7c:99:e3:d9:2a:8d:40:29:6a:77:cd:12: f8:2e:43:ff:85:1b:61:4c:41:f5:77:32:6b:ae:bf: c6:7a:ea:ba:db:85:ac:7f:0c:20:79:b2:2e:20:09: e7:c0:b7:2c:fb:ee:fa:ba:d9:ea:00:fe:fc:5e:ee: b8:95:cb:1b:02:5b:3b:cf:9f:41:94:c9:0d:31:0d: 38:9c:87:f5:bf:fa:82:97:b2:51:fb:b7:f8:08:ea: a0:3c:42:4f:93:71:de:1c:d6:9a:28:1c:88:60:e1: 87:6c:1b:e3:8c:de:27:ec:ef:c0:9c:33:0a:44:b7: 4f:e0:49:af:65:c0:26:e5:fd:79:ea:d7:47:70:d8: 11:c1:e6:97:7d:0e:90:67:44:8f:6f:8a:32:23:c1: 52:b2:2b:2a:ea:60:b3:93:f3:e4:d1:bd:7b:00:54: 3b:c5:93:a6:14:3d:28:a1:91:16:02:9a:90:5c:ac: 79:d6:55:9b:a9:a1:d4:e1:74:3f:bc:7d:9d:aa:82: e8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:73:5B:F3:96:B1:7C:03:FB:6E:6D:8A:D1:9E:B7:C2:D1:35:99:45 X509v3 Authority Key Identifier: keyid:E2:31:D3:09:27:E4:9A:6A:22:D9:F6:AC:D7:06:10:3B:E3:E5:DC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/9B2C760CD89B11EF8D75534EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.0.0/22 103.232.184.0/22 223.27.120.0/22 IPv6: 2401:4ce0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:b7:7f:d3:5e:23:08:83:1f:e7:13:f2:49:ad:f2:8f:eb:49: be:62:1d:9b:b3:bb:09:9e:2a:18:b5:8a:3a:99:ae:17:16:8c: fb:d4:ad:05:b1:ce:f7:bc:67:b1:fe:14:5e:9b:40:40:5a:80: 8d:eb:f4:2e:aa:d6:8e:6c:5f:3c:2f:fb:05:77:d7:ef:c4:e2: ac:b7:8c:3f:ad:26:91:d8:7f:0b:26:48:ea:89:4a:5c:0e:55: 18:0c:5d:26:6c:86:19:59:e5:16:cf:2c:db:d5:18:cc:3a:06: ef:dc:47:b6:05:87:6c:7e:b6:4f:f9:88:89:d5:97:33:6b:e2: 77:0d:af:23:f2:a2:1b:39:c6:bd:ca:5e:5d:07:9d:32:0f:86: d0:ea:fc:21:e3:61:b2:f4:3c:b6:ad:22:c5:64:f6:7f:26:3d: 3e:dd:2e:64:66:5a:a2:41:48:b1:d7:d4:a0:fe:12:a0:c9:a2: be:6f:12:e2:2d:5e:56:d8:96:b5:1b:8d:e9:2a:76:13:7b:39: e4:23:94:70:2e:66:84:f3:1c:ec:c4:20:e5:e3:f1:c1:42:7d: d4:80:64:0e:a3:76:c9:5f:1c:4f:1b:e9:58:c3:a2:cf:41:61: aa:9f:fc:fd:a6:db:c5:74:ce:cb:26:ff:e6:f0:38:4e:26:79: f4:9c:56:c4 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhDQ0MxMTAvBgNVBAUTKEUyMzFEMzA5MjdFNDlBNkEyMkQ5RjZBQ0Q3MDYxMDNC RTNFNURDMTYwHhcNMjUwMTIyMDgzMzUxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkwYWQ2ZS0xOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJokmB1cDVJ66RDyEcw/5M/72YNHksUnt7nZWKpO/sjdidZ40WxrvY3KEd6l 90U8MHpfYLepMEKd63ppo4Z8mePZKo1AKWp3zRL4LkP/hRthTEH1dzJrrr/Geuq6 24WsfwwgebIuIAnnwLcs++76utnqAP78Xu64lcsbAls7z59BlMkNMQ04nIf1v/qC l7JR+7f4COqgPEJPk3HeHNaaKByIYOGHbBvjjN4n7O/AnDMKRLdP4EmvZcAm5f15 6tdHcNgRweaXfQ6QZ0SPb4oyI8FSsisq6mCzk/Pk0b17AFQ7xZOmFD0ooZEWApqQ XKx51lWbqaHU4XQ/vH2dqoLo4wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFAtzW/OW sXwD+25titGet8LRNZlFMB8GA1UdIwQYMBaAFOIx0wkn5JpqItn2rNcGEDvj5dwW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OENDQy83RTZFMDAxNDQ1 NDcxMUVFQUNEMzVGNDFDNEY5QUUwMi80akhUQ1Nma21tb2kyZmFzMXdZUU8tUGwz QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqSFRDU2ZrbW1vaTJmYXMxd1lRTy1QbDNCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhDQ0MvN0U2RTAwMTQ0NTQ3MTFFRUFDRDM1RjQxQzRGOUFFMDIvOUIyQzc2MENE ODlCMTFFRjhENzU1MzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIr9QADBAJn6LgDBALfG3gwDQQCAAIwBwMFACQBTOAwDQYJ KoZIhvcNAQELBQADggEBACq3f9NeIwiDH+cT8kmt8o/rSb5iHZuzuwmeKhi1ijqZ rhcWjPvUrQWxzve8Z7H+FF6bQEBagI3r9C6q1o5sXzwv+wV31+/E4qy3jD+tJpHY fwsmSOqJSlwOVRgMXSZshhlZ5RbPLNvVGMw6Bu/cR7YFh2x+tk/5iInVlzNr4ncN ryPyohs5xr3KXl0HnTIPhtDq/CHjYbL0PLatIsVk9n8mPT7dLmRmWqJBSLHX1KD+ EqDJor5vEuItXlbYlrUbjekqdhN7OeQjlHAuZoTzHOzEIOXj8cFCfdSAZA6jdslf HE8b6VjDos9BYaqf/P2m28V0zssm/+bwOE4mefScVsQ= -----END CERTIFICATE-----Generated at Sat Apr 26 09:20:30 2025 by rpki-client