$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/C14670EE323811F09C91DE2FC4F9AE02.roa File: C14670EE323811F09C91DE2FC4F9AE02.roa (raw, json) Hash identifier: FB2huuZ/tiCR/IS/ucieD51OLCSYw6eG3ZIKY9r9AjQ= Subject key identifier: 7B:32:DD:91:D5:2F:E6:BA:D8:9A:67:2A:2A:AB:A3:37:30:64:6F:02 Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 0A8D Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/C14670EE323811F09C91DE2FC4F9AE02.roa Signing time: Fri 16 May 2025 09:32:59 +0000 ROA not before: Fri 16 May 2025 09:32:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24462 IP address blocks: 101.78.204.0/22 maxlen: 24 116.92.130.0/24 maxlen: 24 203.174.32.0/24 maxlen: 24 220.232.228.0/24 maxlen: 24 220.232.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2701 (0xa8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E, serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Validity Not Before: May 16 09:32:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6827064b-9749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ce:de:8e:42:ad:9a:4c:fb:74:20:cb:e7:b1: fc:c1:fd:82:0b:97:e1:c1:09:a1:1b:06:75:3b:32: 92:59:4f:fd:f5:9f:86:1e:96:50:6f:37:49:81:07: b2:ea:3b:6b:b3:49:04:2b:25:ff:b6:2c:06:20:fb: 49:b4:f5:2e:65:7f:33:9e:39:08:80:33:d9:d1:08: fd:f0:e2:18:a4:99:c5:c3:12:3a:22:8a:d6:b0:12: fc:49:3b:2e:47:09:ba:a7:ea:db:06:ee:20:fc:ab: 0e:aa:b0:53:9a:57:ed:7b:26:70:13:dc:42:17:f0: 3f:c4:db:8a:08:71:78:18:44:98:4c:5a:53:c6:7a: 30:ac:a5:f0:da:43:40:9b:34:fd:13:49:fc:a7:ea: ed:34:dd:56:20:09:09:db:d3:d1:e5:9c:0b:24:e6: 72:6e:96:b7:c1:14:82:c5:bd:0a:b1:7d:83:b0:7c: 92:b2:26:52:a1:57:62:3d:35:0c:79:1d:24:c7:bc: 60:a8:34:5d:58:0c:a0:5e:b5:dc:d4:99:b9:5c:d3: c3:a3:b5:93:27:3e:0c:d5:d2:2f:b2:0a:ac:6d:e2: fe:47:8a:26:4d:af:37:c8:aa:25:c5:fd:3a:5e:72: 8c:c1:89:5c:26:8c:cf:c7:41:68:24:68:4a:52:b4: 0c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:32:DD:91:D5:2F:E6:BA:D8:9A:67:2A:2A:AB:A3:37:30:64:6F:02 X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/C14670EE323811F09C91DE2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.78.204.0/22 116.92.130.0/24 203.174.32.0/24 220.232.228.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:e9:78:2b:af:42:96:5f:df:50:2b:57:5d:5b:7c:de:30:6f: 2d:e4:88:23:67:c2:8e:83:98:16:7f:94:52:3d:85:b1:8e:8c: 24:bb:b9:4b:03:d2:9b:97:1f:27:0a:20:9e:8a:cb:e7:c1:85: c9:0e:53:5d:f9:02:9c:84:4b:0e:d7:8b:80:c0:4f:fe:c6:0e: e9:60:10:05:99:62:b4:c6:d1:30:0d:ec:89:22:f5:20:91:61: 60:9b:01:ef:aa:87:94:bf:db:b6:60:c9:08:4a:87:88:dd:b4: 93:d6:f5:ec:15:13:cb:d8:55:34:23:5c:39:55:6a:37:b7:67: 3e:31:29:e7:6e:d4:38:f9:0b:6b:12:1a:fe:f3:9d:80:2e:b2: 18:c1:75:99:c6:0a:39:9d:76:e6:cf:26:bf:b2:3b:1b:15:c1: da:a8:ba:84:9f:6b:10:89:33:5b:f7:fd:d7:6f:cc:dc:90:12: 0d:c9:61:f6:a4:42:f3:e8:c9:ed:e8:1a:94:6c:c1:7f:b3:ed: 45:89:00:c2:b3:6c:5a:f6:af:0f:bf:33:e3:b9:79:e5:bb:51: e7:6f:60:33:7c:a3:ac:fa:22:78:37:eb:82:16:c6:a3:10:a0: 74:8d:bf:25:5f:38:d3:b0:69:a0:3d:8b:2e:9b:da:a4:cb:42: 46:e4:27:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjUwNTE2MDkzMjU5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3MDY0Yi05NzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqM7ejkKtmkz7dCDL57H8wf2CC5fhwQmhGwZ1OzKSWU/99Z+GHpZQbzdJgQey 6jtrs0kEKyX/tiwGIPtJtPUuZX8znjkIgDPZ0Qj98OIYpJnFwxI6IorWsBL8STsu Rwm6p+rbBu4g/KsOqrBTmlfteyZwE9xCF/A/xNuKCHF4GESYTFpTxnowrKXw2kNA mzT9E0n8p+rtNN1WIAkJ29PR5ZwLJOZybpa3wRSCxb0KsX2DsHySsiZSoVdiPTUM eR0kx7xgqDRdWAygXrXc1Jm5XNPDo7WTJz4M1dIvsgqsbeL+R4omTa83yKolxf06 XnKMwYlcJozPx0FoJGhKUrQMjwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFHsy3ZHV L+a62JpnKiqrozcwZG8CMB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvQzE0NjcwRUUz MjM4MTFGMDlDOTFERTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJlTswDBAB0XIIDBADLriADBAHc6OQwDQYJKoZIhvcNAQEL BQADggEBAI3peCuvQpZf31ArV11bfN4wby3kiCNnwo6DmBZ/lFI9hbGOjCS7uUsD 0puXHycKIJ6Ky+fBhckOU135ApyESw7Xi4DAT/7GDulgEAWZYrTG0TAN7Iki9SCR YWCbAe+qh5S/27ZgyQhKh4jdtJPW9ewVE8vYVTQjXDlVaje3Zz4xKedu1Dj5C2sS Gv7znYAushjBdZnGCjmddubPJr+yOxsVwdqouoSfaxCJM1v3/ddvzNyQEg3JYfak QvPoye3oGpRswX+z7UWJAMKzbFr2rw+/M+O5eeW7UedvYDN8o6z6Ing364IWxqMQ oHSNvyVfONOwaaA9iy6b2qTLQkbkJ5g= -----END CERTIFICATE-----Generated at Mon Jun 2 06:57:02 2025 by rpki-client