$ rpki-client -vvf rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa File: 8068BF600E9711EB9A6C2B3CC4F9AE02.roa (raw, json) Hash identifier: iqYDXGJezvbHsoQI5LOs/HpZOp9DdP6shWT091zXI/w= Subject key identifier: F2:CA:D4:CA:C2:3B:18:88:14:55:38:CC:B4:36:ED:33:30:18:03:CA Certificate issuer: /CN=A9110718/serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Certificate serial: 07B5 Authority key identifier: 76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa Signing time: Wed 16 Apr 2025 21:31:41 +0000 ROA not before: Wed 16 Apr 2025 21:31:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 131245 IP address blocks: 202.92.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 21:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1973 (0x7b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110718, serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Validity Not Before: Apr 16 21:31:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=680021bd-6b49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:96:38:61:eb:12:34:7d:a1:4f:5d:a5:f6:87: c1:d5:8b:5a:40:3d:43:e7:dc:48:dc:e1:d5:d2:5e: 2a:44:00:70:1e:38:f5:21:ee:65:2d:ec:eb:b5:db: 4d:6d:49:0b:18:ca:ab:9f:a8:39:3f:d0:b1:cc:ed: dd:80:d9:81:ab:ac:5a:1f:ec:90:d0:95:88:6e:43: 36:44:56:77:45:4a:f3:c0:01:0f:fb:26:3b:64:82: 6e:46:b6:46:3d:d2:1e:44:b7:db:02:e8:e6:ac:70: 21:07:71:41:f7:cf:83:0e:4b:aa:99:aa:ba:5a:e4: 67:c0:a6:56:52:81:c6:6e:e0:12:cd:51:8d:fa:e8: 40:ca:a1:92:67:ae:4b:9e:7f:36:74:33:d9:8a:b1: df:99:a7:5c:c7:e7:32:2b:c6:7d:cd:42:a2:88:99: 00:f7:1b:08:59:7d:18:86:71:5e:19:f3:34:98:5b: 7f:dc:43:f7:17:5c:dd:89:75:5e:66:8c:13:db:63: 4a:1f:68:f0:f9:c9:8c:10:e7:e4:54:02:9e:98:1d: 80:79:e4:43:b4:d7:2a:b6:0a:2c:fe:e4:e2:90:4d: f1:74:16:39:dd:ae:b4:51:15:82:c9:43:84:43:32: f3:4d:42:fa:7e:4c:cd:36:21:1e:a1:d2:bf:be:3e: 69:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CA:D4:CA:C2:3B:18:88:14:55:38:CC:B4:36:ED:33:30:18:03:CA X509v3 Authority Key Identifier: keyid:76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.92.133.0/24 Signature Algorithm: sha256WithRSAEncryption 63:a9:27:4b:ca:78:da:90:36:fd:aa:30:fd:84:82:33:41:1e: 30:00:12:f8:eb:32:e2:17:e6:4b:ba:76:cc:e6:d2:41:38:c5: 0d:31:80:94:b2:98:aa:50:29:2b:ef:96:18:17:5e:33:11:1c: bf:87:da:02:2b:6f:c4:bc:a4:f3:74:c1:93:a8:9e:7f:a0:f5: 76:69:6b:1e:ad:87:fc:47:25:a1:b2:d2:0d:92:d7:26:85:67: e0:f1:4f:c2:6a:67:ee:44:a2:fe:7a:37:27:a9:42:13:d9:c1: cb:51:18:ba:93:43:7e:e5:ad:81:f2:d9:1b:bf:bf:ad:8c:ce: 7c:80:97:7d:c7:2f:1d:2e:08:51:0e:34:da:19:4c:18:a6:88: b1:b5:44:cd:a3:8b:e1:7d:19:67:1f:fe:0a:95:ff:f7:61:e3: 30:4c:a9:94:f7:eb:79:98:88:38:96:7b:42:62:81:71:93:86: ca:51:3c:3a:0f:6c:c3:2f:75:60:ff:99:23:a0:ea:b0:5c:da: f1:72:a4:36:34:48:10:36:61:01:54:f7:a6:72:0e:c5:b5:a8: 45:d4:85:87:60:cb:c8:d9:9c:9c:4c:3d:d8:8b:4e:45:25:18: 7e:07:1b:22:7e:28:a1:03:36:97:4d:1f:15:a1:43:9d:b9:cf: cd:f5:df:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA3MTgxMTAvBgNVBAUTKDc2MTc0NjI1RTgxNjMyRDM4REY2MkE4M0I1N0IwM0JB Mjg4N0U2RjUwHhcNMjUwNDE2MjEzMTQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwMjFiZC02YjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZY4YesSNH2hT12l9ofB1YtaQD1D59xI3OHV0l4qRABwHjj1Ie5lLezrtdtN bUkLGMqrn6g5P9CxzO3dgNmBq6xaH+yQ0JWIbkM2RFZ3RUrzwAEP+yY7ZIJuRrZG PdIeRLfbAujmrHAhB3FB98+DDkuqmaq6WuRnwKZWUoHGbuASzVGN+uhAyqGSZ65L nn82dDPZirHfmadcx+cyK8Z9zUKiiJkA9xsIWX0YhnFeGfM0mFt/3EP3F1zdiXVe ZowT22NKH2jw+cmMEOfkVAKemB2AeeRDtNcqtgos/uTikE3xdBY53a60URWCyUOE QzLzTUL6fkzNNiEeodK/vj5paQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPLK1MrC OxiIFFU4zLQ27TMwGAPKMB8GA1UdIwQYMBaAFHYXRiXoFjLTjfYqg7V7A7ooh+b1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDcxOC85MjgzRURFRTBF OTQxMUVCOTY2OUUxMzNDNEY5QUUwMi9kaGRHSmVnV010T045aXFEdFhzRHVpaUg1 dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoZEdKZWdXTXRPTjlpcUR0WHNEdWlpSDV2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA3MTgvOTI4M0VERUUwRTk0MTFFQjk2NjlFMTMzQzRGOUFFMDIvODA2OEJGNjAw RTk3MTFFQjlBNkMyQjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKXIUwDQYJKoZIhvcNAQELBQADggEBAGOpJ0vKeNqQNv2q MP2EgjNBHjAAEvjrMuIX5ku6dszm0kE4xQ0xgJSymKpQKSvvlhgXXjMRHL+H2gIr b8S8pPN0wZOonn+g9XZpax6th/xHJaGy0g2S1yaFZ+DxT8JqZ+5Eov56NyepQhPZ wctRGLqTQ37lrYHy2Ru/v62MznyAl33HLx0uCFEONNoZTBimiLG1RM2ji+F9GWcf /gqV//dh4zBMqZT363mYiDiWe0JigXGThspRPDoPbMMvdWD/mSOg6rBc2vFypDY0 SBA2YQFU96ZyDsW1qEXUhYdgy8jZnJxMPdiLTkUlGH4HGyJ+KKEDNpdNHxWhQ525 z831388= -----END CERTIFICATE-----Generated at Tue Apr 22 13:32:41 2025 by rpki-client