$ rpki-client -vvf rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/8A991E5AD6DC11EF9E9B2B15C4F9AE02.roa File: 8A991E5AD6DC11EF9E9B2B15C4F9AE02.roa (raw, json) Hash identifier: FHrz83TvBf0PQed/UPRQj7z6Reuifr4TTzu0H0Cz+Nc= Subject key identifier: E3:E9:B7:2A:0B:B6:C9:70:95:B5:17:94:DC:B1:95:14:B9:4B:1D:1B Certificate issuer: /CN=A919D180/serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Certificate serial: 40 Authority key identifier: 87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/8A991E5AD6DC11EF9E9B2B15C4F9AE02.roa Signing time: Mon 07 Apr 2025 06:44:41 +0000 ROA not before: Mon 07 Apr 2025 06:44:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 10118 IP address blocks: 202.45.88.0/21 maxlen: 21 202.45.89.0/24 maxlen: 24 202.45.90.0/23 maxlen: 23 202.45.92.0/23 maxlen: 23 202.45.92.0/24 maxlen: 24 202.45.93.0/24 maxlen: 24 202.45.94.0/23 maxlen: 23 202.45.94.0/24 maxlen: 24 202.45.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D180, serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Validity Not Before: Apr 7 06:44:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f37459-f615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:08:84:d6:5b:4e:95:51:59:fc:a8:96:7f:7a: 98:16:0c:6b:90:30:29:d7:57:21:f9:eb:fa:86:9b: 3a:60:be:74:28:c7:d2:14:e0:ca:90:b4:1d:a3:59: 2f:0b:43:6f:28:7f:84:e1:04:50:69:d2:0f:1b:b3: d4:d7:8e:cb:c1:4d:d0:33:15:36:27:ff:a5:4e:c7: f1:a2:a6:b0:ad:94:f7:63:c0:09:8a:47:28:24:6f: c3:b7:3a:58:61:c1:68:09:19:6a:5c:8d:c1:f3:da: 5c:df:30:81:1d:e5:50:97:cc:fe:5c:74:5e:23:72: f5:6c:67:cb:ea:89:60:60:46:dd:c6:93:53:dd:70: 7c:99:4a:ff:56:84:dc:ec:7c:d2:b4:7e:90:7b:83: 88:50:b9:02:22:d3:20:44:57:a9:27:c4:52:d6:e7: f3:ce:4c:c3:ec:86:c0:c1:29:f8:2f:45:32:7b:c1: 13:23:fb:0d:77:06:f3:9b:17:a8:18:ec:c0:b4:c8: 89:20:0b:55:27:78:8c:9e:dc:95:28:3a:36:87:4f: df:10:46:7b:82:84:a6:be:9a:99:08:cd:0a:dd:78: c1:0d:53:9e:4d:f4:08:a7:ed:92:56:6d:e9:15:d2: f7:70:3a:60:26:d4:2d:17:02:2c:8c:06:14:cc:23: a3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E9:B7:2A:0B:B6:C9:70:95:B5:17:94:DC:B1:95:14:B9:4B:1D:1B X509v3 Authority Key Identifier: keyid:87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/8A991E5AD6DC11EF9E9B2B15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.88.0/21 Signature Algorithm: sha256WithRSAEncryption 61:88:51:6e:07:82:b9:1b:7f:1f:b7:3b:21:59:77:b9:6b:a4: e0:40:ab:5e:2e:00:96:f1:99:8e:39:87:e7:43:03:74:bc:27: a5:d2:f5:4c:56:5f:c2:de:2b:f1:2f:d9:82:9d:c9:56:ce:02: 9a:2e:4d:82:d2:2c:c9:51:c1:88:5d:1e:1a:44:ae:ee:d0:eb: 43:21:2a:c0:27:23:c4:a2:40:49:7b:4b:36:da:ba:28:e1:62: b4:f6:bf:86:7a:52:0d:5d:5a:40:19:ef:e5:3f:b1:42:4e:67: ce:c2:06:c7:51:10:bc:bf:b8:a1:22:38:74:f0:b2:af:09:84: 7f:4a:d9:df:7f:63:4e:27:c8:d0:46:49:f6:48:66:b7:23:c0: e3:38:ab:aa:21:9a:13:0e:68:20:6d:67:30:bf:5e:a3:1b:51: 04:71:2b:36:f3:ca:51:ff:46:91:3a:6b:21:02:d7:00:53:44: af:b0:6e:34:b0:fc:a1:56:c5:35:ad:6b:9f:08:ac:bb:e4:f8: c3:0a:22:d8:f0:6b:0e:a8:80:4e:d4:66:98:23:94:90:b8:67: 99:89:9e:b6:f8:f9:b0:ce:d3:29:f7:cb:a4:48:f9:e0:b4:0b: dc:a5:ce:01:e1:1c:c5:6a:cc:e7:e0:8c:f3:1d:ee:06:ce:16: 17:3c:1d:bb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDE4MDExMC8GA1UEBRMoODdEQTQ0QTRDRjgzOUMzODgxQzZCQzM4NjgzQ0NEQzMw OENBN0NFOTAeFw0yNTA0MDcwNjQ0NDFaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjM3NDU5LWY2MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRCITWW06VUVn8qJZ/epgWDGuQMCnXVyH56/qGmzpgvnQox9IU4MqQtB2jWS8L Q28of4ThBFBp0g8bs9TXjsvBTdAzFTYn/6VOx/GiprCtlPdjwAmKRygkb8O3Olhh wWgJGWpcjcHz2lzfMIEd5VCXzP5cdF4jcvVsZ8vqiWBgRt3Gk1PdcHyZSv9WhNzs fNK0fpB7g4hQuQIi0yBEV6knxFLW5/POTMPshsDBKfgvRTJ7wRMj+w13BvObF6gY 7MC0yIkgC1UneIye3JUoOjaHT98QRnuChKa+mpkIzQrdeMENU55N9Ain7ZJWbekV 0vdwOmAm1C0XAiyMBhTMI6NpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4+m3Kgu2 yXCVtReU3LGVFLlLHRswHwYDVR0jBBgwFoAUh9pEpM+DnDiBxrw4aDzNwwjKfOkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEMTgwLzc3NDI4N0YyRDZD NzExRUZBM0UxRDgxQ0M0RjlBRTAyL2g5cEVwTS1EbkRpQnhydzRhRHpOd3dqS2ZP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDlwRXBNLURuRGlCeHJ3NGFEek53d2pLZk9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDE4MC83NzQyODdGMkQ2QzcxMUVGQTNFMUQ4MUNDNEY5QUUwMi84QTk5MUU1QUQ2 REMxMUVGOUU5QjJCMTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA8otWDANBgkqhkiG9w0BAQsFAAOCAQEAYYhRbgeCuRt/H7c7 IVl3uWuk4ECrXi4AlvGZjjmH50MDdLwnpdL1TFZfwt4r8S/Zgp3JVs4Cmi5NgtIs yVHBiF0eGkSu7tDrQyEqwCcjxKJASXtLNtq6KOFitPa/hnpSDV1aQBnv5T+xQk5n zsIGx1EQvL+4oSI4dPCyrwmEf0rZ339jTifI0EZJ9khmtyPA4zirqiGaEw5oIG1n ML9eoxtRBHErNvPKUf9GkTprIQLXAFNEr7BuNLD8oVbFNa1rnwisu+T4wwoi2PBr DqiATtRmmCOUkLhnmYmetvj5sM7TKffLpEj54LQL3KXOAeEcxWrM5+CM8x3uBs4W Fzwduw== -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:56 2025 by rpki-client