$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa File: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (raw, json) Hash identifier: QIByum0Q8MqWfLpB0ykV4dVr25yJxf+XqNJq06uiuWw= Subject key identifier: 47:27:AD:A1:A5:4C:D8:0E:C3:B1:57:F4:35:B5:6A:59:C9:53:A5:3A Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1CB2 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa Signing time: Fri 04 Apr 2025 10:49:58 +0000 ROA not before: Fri 04 Apr 2025 10:49:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 58470 IP address blocks: 119.30.105.0/24 maxlen: 24 119.30.116.0/22 maxlen: 24 2401::/36 maxlen: 36 2401:0:6f00::/40 maxlen: 40 2401:0:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7346 (0x1cb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568 Validity Not Before: Apr 4 10:49:58 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67efb955-7078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:81:4e:56:2a:a2:3b:cd:35:3d:7b:90:de: 2d:15:b4:30:56:a0:29:98:ec:88:ef:54:bb:94:2e: 99:5c:97:50:d4:5f:23:12:0a:9a:ca:01:2e:0d:28: 07:19:6a:8a:b4:fa:cd:da:67:98:14:1b:12:61:0c: d2:09:9e:42:0f:1d:19:89:2d:62:60:f0:d3:d2:bc: 30:ce:60:00:64:16:0d:ef:bd:aa:05:d6:3c:5d:1e: 7d:57:88:27:c0:c4:33:40:8a:e9:df:a7:5d:57:37: 46:5a:96:96:ff:41:f7:00:6c:d9:29:23:e5:f0:fb: 0b:c2:af:e8:18:c9:ba:ef:27:29:fa:53:0f:b9:80: 31:91:13:df:ee:00:9d:61:ce:b1:cd:4d:58:d5:8a: 53:34:b2:ef:26:27:ec:28:8d:f6:2e:5f:6f:02:ef: 3b:44:ca:b9:df:fb:90:4a:44:a2:19:5c:88:cb:54: 2a:79:0d:6a:b7:84:7d:0b:39:bf:91:8c:b9:c8:45: 72:ba:9e:ac:de:7d:29:55:0d:32:57:83:29:a8:84: 8c:68:3c:70:cf:83:14:0c:0e:f6:11:44:83:33:d3: fb:5f:e6:c0:b2:e3:56:b5:97:04:6e:a2:ea:5e:35: cc:0f:a3:7c:c3:53:96:10:4c:3f:fd:86:9f:a4:b0: 4d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:27:AD:A1:A5:4C:D8:0E:C3:B1:57:F4:35:B5:6A:59:C9:53:A5:3A X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.30.105.0/24 119.30.116.0/22 IPv6: 2401::/36 2401:0:6f00::/40 2401:0:c000::/40 Signature Algorithm: sha256WithRSAEncryption 9c:1b:b6:96:e7:25:1f:de:24:92:f2:3b:52:18:da:e6:23:36: b5:14:1f:29:94:05:fc:02:81:eb:f3:5e:d5:6c:9a:b8:a1:bd: 97:25:40:cd:7a:d5:02:42:23:eb:4a:11:ce:d2:1b:9c:58:24: d2:68:b5:5e:e2:f3:83:3a:89:05:ef:d8:58:b1:f2:cb:0f:33: cf:34:8f:a0:04:db:b5:7c:be:67:17:1d:68:a2:64:72:58:45: bb:85:da:5d:56:24:8e:64:a8:97:d2:b9:3d:82:c8:87:1a:c7: 9e:d9:b3:82:6b:15:f3:f9:05:0d:df:55:0a:31:78:5e:16:34: 55:95:1d:cb:74:b5:b2:ea:c4:49:5d:48:e6:aa:4a:56:a2:cb: fd:0d:05:2e:05:5c:60:62:19:de:3a:36:59:65:c9:30:b1:d0: 02:f2:47:a7:13:bb:8d:b9:88:7f:74:6e:38:7d:bc:32:88:b1: 0a:ac:e2:1b:f2:b8:ee:9c:c4:ec:17:c5:d0:4e:7d:86:5d:4f: 12:cb:53:1b:47:10:96:fc:2d:5f:32:73:0e:e3:71:55:f2:6b: fa:bb:c3:82:eb:08:4f:05:db:30:24:19:7a:1b:43:9e:7f:1d: 58:bb:5d:37:fe:9c:da:54:0b:26:64:74:be:75:ac:84:fd:9f: 8d:ca:55:59 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICHLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUwNDA0MTA0OTU4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VmYjk1NS03MDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeSBTlYqojvNNT17kN4tFbQwVqApmOyI71S7lC6ZXJdQ1F8jEgqaygEuDSgH GWqKtPrN2meYFBsSYQzSCZ5CDx0ZiS1iYPDT0rwwzmAAZBYN772qBdY8XR59V4gn wMQzQIrp36ddVzdGWpaW/0H3AGzZKSPl8PsLwq/oGMm67ycp+lMPuYAxkRPf7gCd Yc6xzU1Y1YpTNLLvJifsKI32Ll9vAu87RMq53/uQSkSiGVyIy1QqeQ1qt4R9Czm/ kYy5yEVyup6s3n0pVQ0yV4MpqISMaDxwz4MUDA72EUSDM9P7X+bAsuNWtZcEbqLq XjXMD6N8w1OWEEw//YafpLBN4QIDAQABo4ICuzCCArcwHQYDVR0OBBYEFEcnraGl TNgOw7FX9DW1alnJU6U6MB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvNzc3RjVDRUU4 QUE2MTFFQTk0QkMwRDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBIEAgABMAwDBAB3HmkDBAJ3HnQwHgQCAAIwGAMGBCQBAAAAAwYAJAEAAG8D BgAkAQAAwDANBgkqhkiG9w0BAQsFAAOCAQEAnBu2luclH94kkvI7Uhja5iM2tRQf KZQF/AKB6/Ne1WyauKG9lyVAzXrVAkIj60oRztIbnFgk0mi1XuLzgzqJBe/YWLHy yw8zzzSPoATbtXy+ZxcdaKJkclhFu4XaXVYkjmSol9K5PYLIhxrHntmzgmsV8/kF Dd9VCjF4XhY0VZUdy3S1surESV1I5qpKVqLL/Q0FLgVcYGIZ3jo2WWXJMLHQAvJH pxO7jbmIf3RuOH28MoixCqziG/K47pzE7BfF0E59hl1PEstTG0cQlvwtXzJzDuNx VfJr+rvDgusITwXbMCQZehtDnn8dWLtdN/6c2lQLJmR0vnWshP2fjcpVWQ== -----END CERTIFICATE-----Generated at Sat Apr 5 07:12:09 2025 by rpki-client