$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3C0150CC25F711F0BA6BC461C4F9AE02.roa File: 3C0150CC25F711F0BA6BC461C4F9AE02.roa (raw, json) Hash identifier: 3nF4cvLj139/qC59LZaw3WXWjKCR+W8JrfwsLDT094o= Subject key identifier: D1:35:CF:A5:3C:9F:00:47:4A:F7:FD:DC:DB:55:B6:64:34:14:45:24 Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 07 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3C0150CC25F711F0BA6BC461C4F9AE02.roa Signing time: Wed 30 Apr 2025 19:14:33 +0000 ROA not before: Wed 30 Apr 2025 19:14:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 29802 IP address blocks: 163.227.128.0/24 maxlen: 24 163.227.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Apr 30 19:14:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68127699-8e53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:45:78:35:75:6f:98:ba:46:4d:e5:71:a5:6e: 14:58:9a:fb:ef:37:e5:f1:e6:b0:10:7c:fb:b2:09: a4:33:8e:4f:d6:ad:00:78:24:da:fc:e3:39:ea:0c: f9:21:2e:05:b8:08:5a:83:9d:c3:82:c1:9f:7a:3b: ca:68:ad:06:08:6f:d7:68:49:ac:38:37:eb:c0:b4: 3a:0a:74:29:0d:4e:eb:d4:4a:cb:ed:a9:c1:1a:3b: 16:77:93:b2:d6:54:14:65:c4:36:9a:03:70:56:cb: 3a:64:13:76:e1:1a:f4:4d:8b:09:a1:cc:0a:9e:0f: 01:54:52:10:8f:66:da:92:f6:5b:b5:1b:d2:da:51: 87:4f:74:be:a5:3d:90:89:8f:ef:ee:fb:00:65:bd: c8:fc:84:6d:87:53:0f:b1:10:f8:bf:96:f5:b4:b9: 5f:59:b5:89:6e:f2:5e:42:5c:45:7a:b5:50:3e:94: fb:9c:f9:81:e5:45:d8:9f:f0:61:65:9e:08:92:5a: b9:ee:89:c7:82:cb:62:d7:45:0e:2a:ff:cb:f0:b2: e5:96:44:4c:da:4b:5a:48:b1:6c:3b:59:5e:af:00: c5:58:ec:25:7b:a7:dd:44:d2:36:eb:07:65:5e:60: 94:1e:c5:48:91:7f:b0:eb:bd:f7:92:57:cf:10:7a: d2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:35:CF:A5:3C:9F:00:47:4A:F7:FD:DC:DB:55:B6:64:34:14:45:24 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3C0150CC25F711F0BA6BC461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.128.0/23 Signature Algorithm: sha256WithRSAEncryption 89:18:ab:30:1c:5c:d9:34:d1:61:93:45:d9:cf:44:13:30:d8: eb:42:c7:30:8e:77:6e:fa:b6:9a:20:81:47:ae:70:29:cf:3a: f3:31:0f:fa:2d:73:4e:96:b8:70:e4:4e:19:a5:43:a3:9f:f6: 04:79:8b:e6:ba:09:e0:56:cc:a2:99:fe:4c:c2:fc:b0:e1:c6: 6d:44:4e:ba:0b:3f:4e:af:1e:a3:50:f6:8a:b9:5a:02:1f:ab: ed:9e:d8:71:e0:d1:cf:c1:1a:d5:e0:bd:39:1a:45:f0:4d:98: 2f:c0:c2:c5:5d:ca:08:b5:20:29:ab:d6:df:b2:8f:df:f3:a9: 46:7b:54:c5:43:a1:47:22:5a:72:4a:3f:50:92:38:29:a2:83: f2:e1:95:97:53:cf:c0:42:a2:ae:1b:08:2c:8a:66:9f:ed:b7: 50:57:06:1c:72:51:f1:e2:c1:24:e9:ac:9b:4a:3c:ee:5b:da: 19:46:8b:d8:4a:eb:c0:f7:92:66:69:b1:f6:56:70:81:5e:cc: 35:54:8c:ca:e8:d7:9c:74:38:b3:9a:9d:ab:db:ed:62:5c:b7: 1e:45:d3:f2:67:e3:e9:c8:3c:b2:11:d6:d8:81:e3:d9:08:86: 7e:95:6a:46:b3:58:94:b3:0f:9b:3f:e2:d1:b3:8a:b5:a4:d9: 0a:b3:0e:1a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTA0MzAxOTE0MzNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTI3Njk5LThlNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7RXg1dW+YukZN5XGlbhRYmvvvN+Xx5rAQfPuyCaQzjk/WrQB4JNr84znqDPkh LgW4CFqDncOCwZ96O8porQYIb9doSaw4N+vAtDoKdCkNTuvUSsvtqcEaOxZ3k7LW VBRlxDaaA3BWyzpkE3bhGvRNiwmhzAqeDwFUUhCPZtqS9lu1G9LaUYdPdL6lPZCJ j+/u+wBlvcj8hG2HUw+xEPi/lvW0uV9ZtYlu8l5CXEV6tVA+lPuc+YHlRdif8GFl ngiSWrnuiceCy2LXRQ4q/8vwsuWWREzaS1pIsWw7WV6vAMVY7CV7p91E0jbrB2Ve YJQexUiRf7DrvfeSV88QetIDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0TXPpTyf AEdK9/3c21W2ZDQURSQwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zQzAxNTBDQzI1 RjcxMUYwQkE2QkM0NjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPjgDANBgkqhkiG9w0BAQsFAAOCAQEAiRirMBxc2TTRYZNF 2c9EEzDY60LHMI53bvq2miCBR65wKc868zEP+i1zTpa4cOROGaVDo5/2BHmL5roJ 4FbMopn+TML8sOHGbUROugs/Tq8eo1D2irlaAh+r7Z7YceDRz8Ea1eC9ORpF8E2Y L8DCxV3KCLUgKavW37KP3/OpRntUxUOhRyJacko/UJI4KaKD8uGVl1PPwEKirhsI LIpmn+23UFcGHHJR8eLBJOmsm0o87lvaGUaL2ErrwPeSZmmx9lZwgV7MNVSMyujX nHQ4s5qdq9vtYly3HkXT8mfj6cg8shHW2IHj2QiGfpVqRrNYlLMPmz/i0bOKtaTZ CrMOGg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:26:09 2025 by rpki-client