$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/F406C3F26AE311EF82D7860FC4F9AE02.roa File: F406C3F26AE311EF82D7860FC4F9AE02.roa (raw, json) Hash identifier: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4= Subject key identifier: 27:3D:A9:8F:42:E8:5E:4C:93:28:A2:76:6A:D9:14:76:E3:E4:86:21 Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: EA Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/F406C3F26AE311EF82D7860FC4F9AE02.roa Signing time: Thu 27 Feb 2025 07:00:26 +0000 ROA not before: Thu 27 Feb 2025 07:00:26 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4760 IP address blocks: 202.4.202.0/23 maxlen: 23 202.4.204.0/23 maxlen: 23 202.4.215.0/24 maxlen: 24 202.4.216.0/23 maxlen: 23 202.4.218.0/23 maxlen: 23 202.4.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B Validity Not Before: Feb 27 07:00:26 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67c00d8a-c25d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b2:d6:4d:25:d3:55:7f:33:a5:2d:ac:03:9b: 84:80:eb:6d:88:70:7d:24:22:59:e2:57:a7:77:41: 88:88:cb:dd:ff:d7:8c:29:63:72:12:e1:67:07:91: 12:02:c7:7c:af:b2:f3:c8:8f:4e:28:76:07:2a:07: 69:d5:0c:19:ad:df:0a:4d:04:d4:94:33:82:33:0f: 97:58:6d:1f:da:80:0e:ee:65:8f:73:b8:93:6d:91: a8:e5:dc:d0:b5:82:4a:9c:00:be:d0:33:f0:e6:12: 43:07:94:96:f3:4f:39:33:c8:8f:e7:4c:83:5d:57: 69:b5:86:5d:96:71:ba:fe:4f:1f:9d:e3:91:21:56: 39:91:0d:c7:ac:8c:70:9b:a3:61:7c:14:c7:5f:09: 68:a1:53:64:5b:de:be:b4:c1:ce:a6:a9:62:0c:3b: 97:5e:ad:8d:19:94:0a:3c:3c:3f:2a:a7:5b:6f:a1: 9e:ea:22:52:f0:7a:82:7c:d2:75:3f:15:a7:e7:a1: 64:ad:d6:53:df:1c:cf:4d:26:6f:9b:b8:66:ec:60: ac:66:dd:8c:53:a5:c0:a3:0b:9c:90:d3:1d:e2:77: f3:bf:2e:77:6c:27:cb:03:6d:79:39:1a:d1:4c:db: b8:32:f1:19:8b:43:60:ad:60:4d:21:e0:a8:f1:19: 7d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3D:A9:8F:42:E8:5E:4C:93:28:A2:76:6A:D9:14:76:E3:E4:86:21 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/F406C3F26AE311EF82D7860FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.4.202.0-202.4.205.255 202.4.215.0-202.4.220.255 Signature Algorithm: sha256WithRSAEncryption 4a:bc:00:a4:b3:3e:e5:e3:34:f6:16:15:14:a8:ec:a3:a8:fa: 0a:3f:f0:20:ba:17:f9:a0:b6:a9:7c:9a:67:50:71:67:ea:38: 1b:68:5a:04:d6:d0:0b:2b:3e:55:b3:17:6a:37:ca:70:7e:39: c9:dc:98:52:aa:2b:ac:95:56:e0:f3:af:70:96:10:6a:9c:71: ad:00:5f:ba:16:2f:96:4a:3c:dc:f6:53:33:35:96:d6:b3:e3: de:bd:42:dd:ef:13:e5:6d:11:5d:03:a0:23:95:fe:90:c2:52: 76:09:f0:85:55:5e:7e:47:39:af:6a:8f:cf:99:5e:b3:30:dc: bf:9f:bf:f8:c8:18:69:20:85:e5:8a:e2:50:f6:eb:fe:30:f5: 75:b0:bf:d7:90:4d:be:b2:07:c1:ab:7b:1e:d2:90:8c:ea:aa: 71:7d:8d:32:59:b9:3f:4a:fd:cd:04:e0:e2:e8:08:49:ff:84: 93:c3:1b:a9:70:89:b4:14:48:1e:6b:09:ee:d6:40:94:f7:3a: 7f:0a:b6:cc:01:bb:d0:dc:db:45:af:88:16:21:04:fb:c9:4a: 96:01:53:28:f8:86:ab:17:ab:98:f4:8e:6a:3f:a1:80:b0:86: 82:b3:79:41:1f:4a:9e:f8:29:7f:89:d6:3c:03:13:52:e6:29: 41:52:f4:4f -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUwMjI3MDcwMDI2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MwMGQ4YS1jMjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rLWTSXTVX8zpS2sA5uEgOttiHB9JCJZ4lend0GIiMvd/9eMKWNyEuFnB5ES Asd8r7LzyI9OKHYHKgdp1QwZrd8KTQTUlDOCMw+XWG0f2oAO7mWPc7iTbZGo5dzQ tYJKnAC+0DPw5hJDB5SW8085M8iP50yDXVdptYZdlnG6/k8fneORIVY5kQ3HrIxw m6NhfBTHXwlooVNkW96+tMHOpqliDDuXXq2NGZQKPDw/Kqdbb6Ge6iJS8HqCfNJ1 PxWn56FkrdZT3xzPTSZvm7hm7GCsZt2MU6XAowuckNMd4nfzvy53bCfLA215ORrR TNu4MvEZi0NgrWBNIeCo8Rl9GwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFCc9qY9C 6F5MkyiidmrZFHbj5IYhMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVGN0IvQTEzMUIzOTRCQjM5MTFFRUE2NTU0MTdFQzRGOUFFMDIvRjQwNkMzRjI2 QUUzMTFFRjgyRDc4NjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAcoEygMEAcoEzDAMAwQAygTXAwQAygTcMA0GCSqGSIb3 DQEBCwUAA4IBAQBKvACksz7l4zT2FhUUqOyjqPoKP/Aguhf5oLapfJpnUHFn6jgb aFoE1tALKz5VsxdqN8pwfjnJ3JhSqiuslVbg869wlhBqnHGtAF+6Fi+WSjzc9lMz NZbWs+PevULd7xPlbRFdA6Ajlf6QwlJ2CfCFVV5+Rzmvao/PmV6zMNy/n7/4yBhp IIXliuJQ9uv+MPV1sL/XkE2+sgfBq3se0pCM6qpxfY0yWbk/Sv3NBODi6AhJ/4ST wxupcIm0FEgeawnu1kCU9zp/CrbMAbvQ3NtFr4gWIQT7yUqWAVMo+IarF6uY9I5q P6GAsIaCs3lBH0qe+Cl/idY8AxNS5ilBUvRP -----END CERTIFICATE-----Generated at Sat Apr 5 07:17:02 2025 by rpki-client