$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa File: 1501E24625F511EF8F342F3EC4F9AE02.roa (raw, json) Hash identifier: rqaw6gYQFHtDXhAs9qwdnQlxs87gmG1kJR92kC6fKaU= Subject key identifier: 34:E4:E2:F0:FD:01:9A:49:77:17:CB:91:C7:BE:B0:0F:2C:49:31:0C Certificate issuer: /CN=A9188F77/serialNumber=16315A68A745080BDDB6C8F0156D043068931B57 Certificate serial: 96 Authority key identifier: 16:31:5A:68:A7:45:08:0B:DD:B6:C8:F0:15:6D:04:30:68:93:1B:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa Signing time: Tue 11 Mar 2025 05:30:21 +0000 ROA not before: Tue 11 Mar 2025 05:30:21 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136433 IP address blocks: 163.223.76.0/24 maxlen: 24 202.61.110.0/24 maxlen: 24 2001:df4:4a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.crl rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F77 Validity Not Before: Mar 11 05:30:21 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67cfca6c-c95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a9:b5:5a:77:40:41:7b:77:94:5a:63:0b:f9: c9:f1:10:22:b7:64:38:8e:88:91:db:d8:e2:80:2c: b3:ae:bc:e9:18:df:13:f7:82:cf:f3:0a:cf:5c:3b: 9a:03:e9:98:a7:05:b3:4e:95:f7:41:a8:a1:e6:ac: e7:e5:15:51:bd:dd:92:8f:a6:6a:fe:e8:92:8a:b2: 72:4a:4a:47:e2:a9:1c:63:ff:2d:c1:65:48:bc:78: 94:02:cd:00:d1:e2:b6:a6:ad:2b:14:e0:3c:1f:f0: c2:64:a7:20:99:25:a7:a6:a7:83:8f:04:3c:4d:1a: 08:45:30:6f:6a:be:3d:94:5e:bb:36:38:c9:7d:eb: 0b:07:05:73:11:94:64:bf:20:aa:67:c1:91:bc:e8: 63:86:45:9b:0f:40:d5:e7:49:2e:ca:53:73:90:30: 91:d1:53:bb:3a:bc:30:96:fd:a9:fd:6b:9e:f0:79: 7d:69:81:04:d8:51:d9:66:cf:56:c4:01:4f:d3:d3: 24:17:88:ce:4c:44:6d:63:cf:30:54:9c:98:37:30: 68:91:77:f1:85:b8:9c:17:82:48:cc:17:28:cd:74: 4b:fc:57:72:b7:55:39:02:39:52:8c:38:20:30:18: 29:e4:46:2a:b7:a6:c2:12:f1:3d:35:9e:af:0a:51: ab:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E4:E2:F0:FD:01:9A:49:77:17:CB:91:C7:BE:B0:0F:2C:49:31:0C X509v3 Authority Key Identifier: keyid:16:31:5A:68:A7:45:08:0B:DD:B6:C8:F0:15:6D:04:30:68:93:1B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.76.0/24 202.61.110.0/24 IPv6: 2001:df4:4a40::/48 Signature Algorithm: sha256WithRSAEncryption b3:b2:cb:f3:43:84:2f:50:50:50:26:ab:82:44:02:c3:67:39: 82:29:3f:b8:5d:b0:53:3d:6b:49:60:b4:24:61:77:db:9c:5b: 79:ef:64:8a:c4:63:f7:06:e6:d1:fd:ab:e1:c8:d0:4e:93:1c: 94:06:0f:ee:71:ba:91:24:9c:92:fb:7c:44:5f:27:ac:d2:20: 13:9e:66:25:17:f3:93:db:16:69:e3:11:80:23:c0:6d:81:48: 79:0c:18:81:23:16:f8:30:de:31:d4:b4:90:c3:c3:2a:93:c8: 51:1e:c2:65:8c:b9:90:b2:7d:95:ae:f6:cc:20:38:2b:00:56: d6:6e:dc:5d:74:fa:4e:29:d9:ad:c9:d6:f7:50:9a:ab:03:7e: 88:7d:4d:bc:0d:5c:96:09:15:32:12:f7:52:f6:70:26:91:25: 8a:10:01:6b:c4:90:34:ce:64:03:20:e8:7c:d4:e3:74:75:a4: 2f:56:6a:95:85:8a:32:f6:c5:b4:07:cc:c4:7c:50:30:44:0f: c3:64:cb:e0:db:10:99:7c:1a:3b:cf:e8:5b:2e:27:9f:6b:f1: 25:37:bf:bf:69:e6:9f:97:2b:e6:6c:26:7a:7e:94:a1:d3:6c: 1d:34:85:80:52:f9:be:e6:79:b9:de:c2:a8:c9:32:c1:14:92: f0:ca:a6:82 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhGNzcxMTAvBgNVBAUTKDE2MzE1QTY4QTc0NTA4MEJEREI2QzhGMDE1NkQwNDMw Njg5MzFCNTcwHhcNMjUwMzExMDUzMDIxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmY2E2Yy1jOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0am1WndAQXt3lFpjC/nJ8RAit2Q4joiR29jigCyzrrzpGN8T94LP8wrPXDua A+mYpwWzTpX3Qaih5qzn5RVRvd2Sj6Zq/uiSirJySkpH4qkcY/8twWVIvHiUAs0A 0eK2pq0rFOA8H/DCZKcgmSWnpqeDjwQ8TRoIRTBvar49lF67NjjJfesLBwVzEZRk vyCqZ8GRvOhjhkWbD0DV50kuylNzkDCR0VO7Orwwlv2p/Wue8Hl9aYEE2FHZZs9W xAFP09MkF4jOTERtY88wVJyYNzBokXfxhbicF4JIzBcozXRL/Fdyt1U5AjlSjDgg MBgp5EYqt6bCEvE9NZ6vClGrOwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDTk4vD9 AZpJdxfLkce+sA8sSTEMMB8GA1UdIwQYMBaAFBYxWminRQgL3bbI8BVtBDBokxtX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEY3Ny9DRDI4NzM4MjI1 QzExMUVGOTAwOTdGNUFDNEY5QUUwMi9GakZhYUtkRkNBdmR0c2p3RlcwRU1HaVRH MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZqRmFhS2RGQ0F2ZHRzandGVzBFTUdpVEcxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhGNzcvQ0QyODczODIyNUMxMTFFRjkwMDk3RjVBQzRGOUFFMDIvMTUwMUUyNDYy NUY1MTFFRjhGMzQyRjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBACj30wDBADKPW4wDwQCAAIwCQMHACABDfRKQDANBgkqhkiG 9w0BAQsFAAOCAQEAs7LL80OEL1BQUCargkQCw2c5gik/uF2wUz1rSWC0JGF325xb ee9kisRj9wbm0f2r4cjQTpMclAYP7nG6kSSckvt8RF8nrNIgE55mJRfzk9sWaeMR gCPAbYFIeQwYgSMW+DDeMdS0kMPDKpPIUR7CZYy5kLJ9la72zCA4KwBW1m7cXXT6 TinZrcnW91CaqwN+iH1NvA1clgkVMhL3UvZwJpElihABa8SQNM5kAyDofNTjdHWk L1ZqlYWKMvbFtAfMxHxQMEQPw2TL4NsQmXwaO8/oWy4nn2vxJTe/v2nmn5cr5mwm en6UodNsHTSFgFL5vuZ5ud7CqMkywRSS8Mqmgg== -----END CERTIFICATE-----Generated at Fri Apr 11 20:04:08 2025 by rpki-client