$ rpki-client -vvf rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/E9E440F2411511ECBC2FB20BC4F9AE02.roa File: E9E440F2411511ECBC2FB20BC4F9AE02.roa (raw, json) Hash identifier: oCq0GS/e8jzWI+qfCm+Q9EBQNv1mP52MN9gsJPInZfo= Subject key identifier: 48:3C:0C:81:E4:A9:69:D1:DF:01:92:0B:14:6A:1F:C8:9C:E9:9D:6C Certificate issuer: /CN=A9188EB6/serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Certificate serial: 044E Authority key identifier: DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/E9E440F2411511ECBC2FB20BC4F9AE02.roa Signing time: Wed 05 Feb 2025 00:03:18 +0000 ROA not before: Wed 05 Feb 2025 00:03:17 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 132077 IP address blocks: 202.94.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1102 (0x44e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188EB6, serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Validity Not Before: Feb 5 00:03:17 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a2aac5-b093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:21:9c:b8:28:11:6e:f5:5b:87:6c:35:52:80: 33:c8:be:e0:5e:b2:a5:73:08:15:67:30:6c:25:c5: a0:a7:c0:59:ab:2e:9c:71:93:cc:87:d1:08:e7:52: b3:0f:a6:71:33:92:75:32:34:39:ed:4c:fa:bb:15: 1c:a4:09:19:d8:57:71:9e:ba:ea:3d:ed:f3:05:ee: c6:a3:a1:3b:fc:87:9c:d1:9f:a7:ec:86:1d:10:3d: dd:49:f9:05:09:93:19:f2:40:38:b6:81:d4:44:a5: 67:5d:e2:a9:35:bb:47:08:27:23:31:7d:a2:47:28: 30:07:6a:bb:a2:c4:ce:3d:51:81:35:33:d4:92:2e: 62:e5:bc:aa:1f:be:2e:9f:d5:d9:43:e4:f5:59:b8: d3:b1:0b:3e:35:ec:52:ce:60:48:6b:16:d5:fb:c1: 59:7b:ab:b8:65:ef:27:71:1d:73:fc:be:6c:24:11: b5:59:08:3b:42:30:95:d4:a5:6e:1f:2d:cf:89:1d: b3:13:3b:f0:62:56:1d:53:64:d4:09:37:9a:90:9b: 16:40:7e:41:1a:ff:a0:e9:16:49:b3:04:cd:89:e8: dd:6f:41:de:1a:dc:ba:83:50:ca:f4:e6:f5:d2:8a: ca:ff:ee:d7:38:c2:8d:30:cb:e9:fd:d9:f9:80:a7: 48:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:3C:0C:81:E4:A9:69:D1:DF:01:92:0B:14:6A:1F:C8:9C:E9:9D:6C X509v3 Authority Key Identifier: keyid:DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/E9E440F2411511ECBC2FB20BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.72.0/24 Signature Algorithm: sha256WithRSAEncryption d5:fd:7f:ca:ef:01:5f:7e:4c:22:a8:ac:14:eb:93:c0:c0:56: 90:e3:e3:02:4b:b4:ae:5e:ed:45:09:b0:c5:00:6a:ec:13:db: 17:ab:4a:a6:08:83:bb:b9:7a:03:50:f4:02:c3:46:a1:41:85: 12:ab:6a:2b:f7:9f:b6:3e:9e:fc:d7:19:8a:c3:c3:e0:1f:56: ca:30:a9:76:a5:11:14:83:83:d9:41:69:fd:32:b6:e4:46:47: fd:6e:63:34:ec:51:b3:eb:96:c0:3a:8f:64:df:60:b7:dc:67: 7a:d2:b7:30:b7:84:fa:dd:48:a1:f8:32:14:a8:86:a3:c2:88: ed:4a:5a:98:18:61:73:a1:76:17:88:81:ec:d1:e3:f9:ad:c2: 29:d5:9c:8d:1d:6e:2e:2a:f0:6e:94:a3:04:30:44:f0:aa:02: 8f:c4:c9:4a:f6:31:c5:46:4c:9a:1b:d1:df:30:cf:9a:22:2f: 8d:01:63:c6:67:51:b9:90:d3:06:16:9b:35:65:94:d5:6d:fc: 38:6e:ef:91:25:e5:47:7c:38:e3:73:55:d1:0f:06:fd:90:50: 8d:73:e4:03:6f:2e:f6:6d:8a:f9:70:2d:f0:39:88:29:c0:b5: 07:0d:86:63:c0:e9:c1:45:43:c0:36:bc:2a:39:bf:59:5d:01: 1d:ee:b0:09 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhFQjYxMTAvBgNVBAUTKERBNDM5QkNGMDNDQUZDQjVCRTdFRDBBRTdCMzI4RjY5 Rjg4QzFCMkIwHhcNMjUwMjA1MDAwMzE3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyYWFjNS1iMDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iGcuCgRbvVbh2w1UoAzyL7gXrKlcwgVZzBsJcWgp8BZqy6ccZPMh9EI51Kz D6ZxM5J1MjQ57Uz6uxUcpAkZ2FdxnrrqPe3zBe7Go6E7/Iec0Z+n7IYdED3dSfkF CZMZ8kA4toHURKVnXeKpNbtHCCcjMX2iRygwB2q7osTOPVGBNTPUki5i5byqH74u n9XZQ+T1WbjTsQs+NexSzmBIaxbV+8FZe6u4Ze8ncR1z/L5sJBG1WQg7QjCV1KVu Hy3PiR2zEzvwYlYdU2TUCTeakJsWQH5BGv+g6RZJswTNiejdb0HeGty6g1DK9Ob1 0orK/+7XOMKNMMvp/dn5gKdIqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEg8DIHk qWnR3wGSCxRqH8ic6Z1sMB8GA1UdIwQYMBaAFNpDm88Dyvy1vn7Qrnsyj2n4jBsr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEVCNi8zRUJGNDc5QTQx MTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19MVy1mdEN1ZXpLUGFmaU1H eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrT2J6d1BLX0xXLWZ0Q3VlektQYWZpTUd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhFQjYvM0VCRjQ3OUE0MTE0MTFFQzhFQTk2RDBCQzRGOUFFMDIvRTlFNDQwRjI0 MTE1MTFFQ0JDMkZCMjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKXkgwDQYJKoZIhvcNAQELBQADggEBANX9f8rvAV9+TCKo rBTrk8DAVpDj4wJLtK5e7UUJsMUAauwT2xerSqYIg7u5egNQ9ALDRqFBhRKraiv3 n7Y+nvzXGYrDw+AfVsowqXalERSDg9lBaf0ytuRGR/1uYzTsUbPrlsA6j2TfYLfc Z3rStzC3hPrdSKH4MhSohqPCiO1KWpgYYXOhdheIgezR4/mtwinVnI0dbi4q8G6U owQwRPCqAo/EyUr2McVGTJob0d8wz5oiL40BY8ZnUbmQ0wYWmzVllNVt/Dhu75El 5Ud8OONzVdEPBv2QUI1z5ANvLvZtivlwLfA5iCnAtQcNhmPA6cFFQ8A2vCo5v1ld AR3usAk= -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:07 2025 by rpki-client