$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa File: BD3FF814A49811EEAD789D2AC4F9AE02.roa (raw, json) Hash identifier: oWJMpDIMTFAfw38plnHhHvz3GPHifE5GFKfNlopflac= Subject key identifier: 7B:FB:49:06:59:13:B8:F1:33:08:69:F3:B1:06:A7:C1:19:CC:82:1E Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Certificate serial: 28D3 Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa Signing time: Sat 24 May 2025 15:43:35 +0000 ROA not before: Sat 24 May 2025 15:43:35 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38193 IP address blocks: 218.100.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10451 (0x28d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Validity Not Before: May 24 15:43:35 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6831e926-fea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:51:c0:d1:42:e7:8f:06:69:9b:b2:2c:df: b6:ba:dc:a6:40:7e:e6:50:6e:46:bf:de:f1:4e:ab: 43:fd:d0:fb:f1:eb:44:31:cd:92:96:27:fe:fe:77: 88:74:c6:29:bb:01:33:a4:32:82:1c:26:bf:3c:02: 30:41:e6:35:da:70:9f:3c:ec:f1:ae:4d:4e:b5:06: ca:70:33:56:e2:84:2b:9f:e2:2c:a7:f9:a1:12:10: 3d:4d:7d:c3:7a:1e:39:83:93:0b:bb:ae:4b:a5:9f: 6b:6f:f5:9b:a7:e1:8e:3b:bd:e4:2d:77:9a:0b:6e: f4:65:eb:9c:99:e4:50:4f:3a:a0:f9:53:f1:c1:d2: ab:74:57:b0:a1:05:7c:20:57:9b:27:a5:35:4e:57: 3d:50:eb:e9:ec:9c:a1:62:da:66:19:d9:fb:31:22: 74:83:b3:9b:fc:e8:51:c4:fd:21:e7:e4:a3:17:8e: af:54:18:36:eb:c3:70:46:7e:34:09:56:bc:ea:9e: ce:ac:85:cc:41:23:c8:df:b5:8e:1e:2b:3d:52:19: 96:c9:23:5a:5e:fa:7e:d5:ba:da:18:3a:5f:dc:5c: ea:4d:11:e8:7f:84:bb:e1:8f:ef:f2:ba:53:f3:aa: ab:90:e1:67:a9:8a:71:1f:21:a5:80:cf:64:68:f2: 56:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:FB:49:06:59:13:B8:F1:33:08:69:F3:B1:06:A7:C1:19:CC:82:1E X509v3 Authority Key Identifier: keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.100.85.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:5c:b2:94:f6:d2:4a:ba:79:f9:36:2c:a0:98:a6:b9:3e:ea: 90:3c:e7:0b:d3:7b:08:a8:8a:c6:54:89:30:92:2f:e3:b8:9e: d5:64:77:11:c3:1a:5f:cc:75:d4:49:3d:6f:ac:9d:dc:27:de: 7d:7f:75:ea:3b:ed:2d:11:7e:78:38:a7:39:75:c1:1e:3c:5d: 5a:cb:b6:f0:fa:fb:b6:d7:f9:1c:eb:d7:1f:f7:f8:99:7f:c5: f3:da:61:02:23:09:53:4f:84:da:f3:ec:6d:50:f8:a0:70:5c: c5:bb:5b:0e:78:f3:41:18:9e:4b:9d:db:96:aa:db:8e:a3:4b: 6f:c2:a1:93:6c:4a:8e:22:6d:96:df:4a:5d:2b:8d:47:90:d8: 5e:d5:90:bb:54:c4:72:37:1a:e9:3d:72:8a:56:c9:c1:af:f1: d9:2e:8a:85:84:d7:2e:85:b5:78:56:ad:47:21:9f:97:44:ad: 3a:1c:7b:a5:8b:da:ac:e8:df:3f:7d:56:15:48:c4:92:3a:6b: 1e:90:91:a8:12:43:15:ca:06:b2:10:38:4b:a4:c2:14:21:68: bf:cf:84:07:28:ed:4c:af:ff:70:68:35:85:1d:23:5c:7e:34: 83:98:7b:dc:f9:3f:84:6d:ec:68:91:c3:0a:92:1f:c7:e9:f8: 30:8c:16:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKDkwMDlFNzQxOTZENDhCMDM5NjRGMUZDNTZDRkU0NDZF QzUwNDhDRjcwHhcNMjUwNTI0MTU0MzM1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMxZTkyNi1mZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYRRwNFC548GaZuyLN+2utymQH7mUG5Gv97xTqtD/dD78etEMc2Slif+/neI dMYpuwEzpDKCHCa/PAIwQeY12nCfPOzxrk1OtQbKcDNW4oQrn+Isp/mhEhA9TX3D eh45g5MLu65LpZ9rb/Wbp+GOO73kLXeaC270ZeucmeRQTzqg+VPxwdKrdFewoQV8 IFebJ6U1Tlc9UOvp7JyhYtpmGdn7MSJ0g7Ob/OhRxP0h5+SjF46vVBg268NwRn40 CVa86p7OrIXMQSPI37WOHis9UhmWySNaXvp+1braGDpf3FzqTRHof4S74Y/v8rpT 86qrkOFnqYpxHyGlgM9kaPJWsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHv7SQZZ E7jxMwhp87EGp8EZzIIeMB8GA1UdIwQYMBaAFJAJ50GW1IsDlk8fxWz+RG7FBIz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni9CQzFEQzFGNkMx NzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3T1dUeF9GYlA1RWJzVUVq UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBbm5RWmJVaXdPV1R4X0ZiUDVFYnNVRWpQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvQkMxREMxRjZDMTc1MTFFNEEyQzdCNzRDQzRGOUFFMDIvQkQzRkY4MTRB NDk4MTFFRUFENzg5RDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADaZFUwDQYJKoZIhvcNAQELBQADggEBAIxcspT20kq6efk2 LKCYprk+6pA85wvTewioisZUiTCSL+O4ntVkdxHDGl/MddRJPW+sndwn3n1/deo7 7S0Rfng4pzl1wR48XVrLtvD6+7bX+Rzr1x/3+Jl/xfPaYQIjCVNPhNrz7G1Q+KBw XMW7Ww5480EYnkud25aq246jS2/CoZNsSo4ibZbfSl0rjUeQ2F7VkLtUxHI3Guk9 copWycGv8dkuioWE1y6FtXhWrUchn5dErToce6WL2qzo3z99VhVIxJI6ax6QkagS QxXKBrIQOEukwhQhaL/PhAco7Uyv/3BoNYUdI1x+NIOYe9z5P4Rt7GiRwwqSH8fp +DCMFv8= -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:55 2025 by rpki-client