$ rpki-client -vvf rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa File: 76DDA85AFE5211EC8F4A4F16C4F9AE02.roa (raw, json) Hash identifier: 3m2SQFBv5Jj9U4DJ7yaxwWUfUobTKq/igN4z5bbj3Hc= Subject key identifier: AA:60:29:10:64:FC:51:AA:7A:73:F6:CF:CC:49:87:52:43:65:CC:3F Certificate issuer: /CN=A9151F3B/serialNumber=BE92ABA4A0144319EE6D45AB9090D88D5DAF37FE Certificate serial: 05CC Authority key identifier: BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa Signing time: Sat 01 Mar 2025 00:52:17 +0000 ROA not before: Sat 01 Mar 2025 00:52:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 8075 IP address blocks: 113.197.64.0/24 maxlen: 24 113.197.65.0/24 maxlen: 24 113.197.66.0/24 maxlen: 24 113.197.67.0/24 maxlen: 24 203.84.134.0/24 maxlen: 24 203.84.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1484 (0x5cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151F3B Validity Not Before: Mar 1 00:52:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c25a41-1ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c4:03:93:bf:d3:9b:f0:a3:b8:d7:59:66:5f: 27:12:ba:25:cc:64:70:dd:03:99:cf:f5:17:f9:bf: 74:e0:30:35:a7:7a:7d:9a:7d:40:00:6d:6a:08:22: 63:c2:1d:3d:ff:60:e0:10:d4:32:09:6a:c9:ec:e2: ca:13:97:fc:41:f4:92:6f:9b:03:9d:df:63:78:10: 97:22:73:b0:ee:99:90:5d:3b:32:20:8c:69:13:9d: 5f:b9:ed:b1:56:99:c1:3c:ee:13:2d:cb:c4:12:91: 49:58:06:87:b9:34:ee:dd:76:0c:5a:09:4d:8e:ba: 1c:8b:95:cb:64:ce:c8:49:b7:6d:96:19:f4:44:78: 2b:6e:81:41:7d:ec:7f:27:7f:96:05:16:7a:31:e7: 23:0d:b2:81:55:86:6f:40:4c:72:be:23:e1:a8:3a: 78:ad:20:90:83:64:92:6b:8c:87:87:90:87:1e:29: 82:e2:2d:e8:d8:9c:07:56:66:03:42:d4:d4:d6:7c: 39:f5:7d:5b:0a:ed:d1:7a:ed:fa:51:df:0c:b5:f1: d6:f8:c2:5d:cd:f4:12:ad:a6:eb:3d:54:50:f2:36: 3a:ae:a7:a1:14:49:69:46:2b:28:f4:9e:53:36:1b: ae:07:e5:49:95:3b:7f:8c:5f:45:81:19:28:07:44: 1e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:60:29:10:64:FC:51:AA:7A:73:F6:CF:CC:49:87:52:43:65:CC:3F X509v3 Authority Key Identifier: keyid:BE:92:AB:A4:A0:14:43:19:EE:6D:45:AB:90:90:D8:8D:5D:AF:37:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/vpKrpKAUQxnubUWrkJDYjV2vN_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vpKrpKAUQxnubUWrkJDYjV2vN_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151F3B/4F8B91B8B9B611EBB411E92EC4F9AE02/76DDA85AFE5211EC8F4A4F16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.64.0/22 203.84.134.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:f0:c4:e5:5b:48:d2:d2:77:8d:a9:73:d6:92:eb:3f:5c:47: 20:fa:d1:6e:27:78:5b:0a:c2:a0:93:1d:82:eb:4f:f2:ac:30: 60:2e:4c:75:2f:22:74:7d:d5:ec:de:4d:17:cb:d0:19:af:9a: d3:ca:98:bd:86:8a:69:3a:1b:6a:b4:b1:95:2f:00:61:65:cf: 0d:d6:06:67:af:e5:4f:71:1f:e9:cc:58:dc:87:d4:1e:df:93: 3b:8c:a3:3b:4d:c9:a6:a2:01:94:09:d8:f1:b6:69:7a:fa:e4: 0d:63:fc:72:73:03:80:63:48:4b:35:f2:be:5f:02:eb:7a:4f: 88:9a:6b:69:8b:8e:34:31:84:e3:d2:1c:69:4c:02:e4:b0:7d: 26:e2:a5:b1:7e:c5:72:b6:86:36:98:ea:67:67:31:38:25:2c: e4:93:a7:02:5f:9c:eb:ca:fb:f6:29:51:ca:1e:31:66:08:0d: 56:73:92:aa:cf:ea:09:ef:ac:32:90:c0:b1:3f:f0:97:5b:4a: a4:51:d3:c4:28:20:a7:8d:7e:da:ca:3b:0c:af:18:5a:88:61: b4:ab:2f:e3:6b:18:8f:65:69:77:e6:e6:c2:2a:bc:05:81:a1: 9f:ca:4f:6d:7e:89:d3:5e:3b:51:e2:19:58:7d:31:ce:3e:0a: 8f:8b:ca:b3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFGM0IxMTAvBgNVBAUTKEJFOTJBQkE0QTAxNDQzMTlFRTZENDVBQjkwOTBEODhE NURBRjM3RkUwHhcNMjUwMzAxMDA1MjE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyNWE0MS0xZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sQDk7/Tm/CjuNdZZl8nErolzGRw3QOZz/UX+b904DA1p3p9mn1AAG1qCCJj wh09/2DgENQyCWrJ7OLKE5f8QfSSb5sDnd9jeBCXInOw7pmQXTsyIIxpE51fue2x VpnBPO4TLcvEEpFJWAaHuTTu3XYMWglNjroci5XLZM7ISbdtlhn0RHgrboFBfex/ J3+WBRZ6MecjDbKBVYZvQExyviPhqDp4rSCQg2SSa4yHh5CHHimC4i3o2JwHVmYD QtTU1nw59X1bCu3Reu36Ud8MtfHW+MJdzfQSrabrPVRQ8jY6rqehFElpRiso9J5T NhuuB+VJlTt/jF9FgRkoB0QeXwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKpgKRBk /FGqenP2z8xJh1JDZcw/MB8GA1UdIwQYMBaAFL6Sq6SgFEMZ7m1Fq5CQ2I1drzf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUYzQi80RjhCOTFCOEI5 QjYxMUVCQjQxMUU5MkVDNEY5QUUwMi92cEtycEtBVVF4bnViVVdya0pEWWpWMnZO XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwS3JwS0FVUXhudWJVV3JrSkRZalYydk5fNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFGM0IvNEY4QjkxQjhCOUI2MTFFQkI0MTFFOTJFQzRGOUFFMDIvNzZEREE4NUFG RTUyMTFFQzhGNEE0RjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJxxUADBAHLVIYwDQYJKoZIhvcNAQELBQADggEBAG/wxOVb SNLSd42pc9aS6z9cRyD60W4neFsKwqCTHYLrT/KsMGAuTHUvInR91ezeTRfL0Bmv mtPKmL2Gimk6G2q0sZUvAGFlzw3WBmev5U9xH+nMWNyH1B7fkzuMoztNyaaiAZQJ 2PG2aXr65A1j/HJzA4BjSEs18r5fAut6T4iaa2mLjjQxhOPSHGlMAuSwfSbipbF+ xXK2hjaY6mdnMTglLOSTpwJfnOvK+/YpUcoeMWYIDVZzkqrP6gnvrDKQwLE/8Jdb SqRR08QoIKeNftrKOwyvGFqIYbSrL+NrGI9laXfm5sIqvAWBoZ/KT21+idNeO1Hi GVh9Mc4+Co+LyrM= -----END CERTIFICATE-----Generated at Fri Apr 4 20:38:54 2025 by rpki-client