$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/2D392D483B8D11F09468CF7BC4F9AE02.roa File: 2D392D483B8D11F09468CF7BC4F9AE02.roa (raw, json) Hash identifier: 3qGGrVLcHGyNXBjBxC/2DsjdY0M5cfUd+RZIo9JRQog= Subject key identifier: 64:DF:86:47:CC:C9:3B:63:35:C3:F0:62:B4:E5:E4:CC:C9:C0:9E:56 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: E9 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/2D392D483B8D11F09468CF7BC4F9AE02.roa Signing time: Wed 28 May 2025 06:29:58 +0000 ROA not before: Wed 28 May 2025 06:29:58 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152648 IP address blocks: 202.71.180.0/24 maxlen: 24 2001:df3:8e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: May 28 06:29:58 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6836ad66-2431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2e:1a:bf:6d:07:6b:9e:2e:c0:d2:2f:be:3d: 69:5e:20:ed:69:60:2c:be:16:c8:ed:ae:24:5e:9c: 06:ec:e3:14:7a:8a:c3:41:d0:b7:b5:9f:ad:2f:a9: be:30:eb:55:53:0a:dd:e2:71:87:2d:54:65:9c:f3: dc:46:5b:a8:8c:ce:3a:5d:00:ce:8d:f6:79:4c:f4: 8b:5b:d6:a8:91:fa:3a:ea:77:13:00:f8:72:f9:4f: 12:24:c8:2c:7a:56:b3:70:f4:86:c3:2b:6c:20:79: 5a:a6:3f:8f:f7:e7:61:0f:ce:43:ac:2c:e1:de:fd: 13:55:5b:32:cf:8e:fd:45:fd:4b:55:b6:f7:e0:b4: fd:e6:37:55:00:7a:e0:f2:05:d6:32:31:e1:11:98: 2b:1f:2a:12:09:05:9f:a2:3b:75:3b:b9:9b:bf:0b: 10:8e:38:0d:c2:78:e3:79:35:cd:ba:72:cb:b3:d7: f0:9a:0b:b3:65:09:7a:ea:a0:97:4e:68:c7:61:a4: b2:61:5f:3a:54:36:05:aa:f5:3d:f9:02:b1:b8:11: 59:bf:54:2f:69:98:94:68:3d:1c:a2:3e:32:91:78: f7:65:93:4a:9e:81:d9:08:d4:03:d8:df:44:13:93: ce:40:bc:16:eb:1d:98:ad:43:d1:72:16:c7:01:a3: 10:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DF:86:47:CC:C9:3B:63:35:C3:F0:62:B4:E5:E4:CC:C9:C0:9E:56 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/2D392D483B8D11F09468CF7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.71.180.0/24 IPv6: 2001:df3:8e40::/48 Signature Algorithm: sha256WithRSAEncryption 1b:ce:f3:0a:24:75:77:9a:d0:31:2a:53:a8:6a:09:ac:a9:17: be:18:b8:18:c1:e6:00:fd:72:0f:73:82:43:50:68:9b:f3:34: fb:58:51:75:d0:87:68:b1:e3:ec:83:77:ac:a2:3d:4b:58:1e: 47:2b:68:4a:2b:4d:5a:81:73:be:1b:53:e0:f8:b1:ae:ea:c5: be:99:c6:4d:e7:ea:13:1f:91:5b:e5:83:7d:86:77:a0:a0:57: ee:d6:af:e0:d6:da:b8:f0:35:b7:45:75:75:33:0e:03:7a:4d: 72:11:d0:51:31:bd:19:92:53:18:d8:aa:1c:19:5a:01:1e:dc: 0a:d4:0d:24:07:c2:51:50:2a:2d:c9:da:2a:9c:b9:8c:af:61: d5:8a:eb:d8:1e:90:b7:b3:d4:90:0c:2e:1c:9c:e2:ed:44:00: c6:91:94:2a:92:b9:66:01:ce:c0:4b:cb:6d:2b:8f:b4:70:8f: f6:97:e2:5f:26:12:cf:e6:89:b1:fc:ba:15:3d:75:0d:98:6b: e7:05:98:0e:c5:ba:d0:c6:37:ed:63:e5:4b:89:29:2a:0d:87: 1f:31:f7:77:16:68:a6:32:11:b7:76:c8:d2:58:c9:6f:cc:9d: ca:6a:a5:20:1f:b4:dc:45:94:d9:91:2b:70:86:91:30:2a:21: c7:ad:d1:36 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjUwNTI4MDYyOTU4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODM2YWQ2Ni0yNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6i4av20Ha54uwNIvvj1pXiDtaWAsvhbI7a4kXpwG7OMUeorDQdC3tZ+tL6m+ MOtVUwrd4nGHLVRlnPPcRluojM46XQDOjfZ5TPSLW9aokfo66ncTAPhy+U8SJMgs elazcPSGwytsIHlapj+P9+dhD85DrCzh3v0TVVsyz479Rf1LVbb34LT95jdVAHrg 8gXWMjHhEZgrHyoSCQWfojt1O7mbvwsQjjgNwnjjeTXNunLLs9fwmguzZQl66qCX TmjHYaSyYV86VDYFqvU9+QKxuBFZv1QvaZiUaD0coj4ykXj3ZZNKnoHZCNQD2N9E E5POQLwW6x2YrUPRchbHAaMQqQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGTfhkfM yTtjNcPwYrTl5MzJwJ5WMB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZBRkYvNDBDRDFCNTRFNTAyMTFFRTlBQkY3NjU1QzRGOUFFMDIvMkQzOTJENDgz QjhEMTFGMDk0NjhDRjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKR7QwDwQCAAIwCQMHACABDfOOQDANBgkqhkiG9w0BAQsF AAOCAQEAG87zCiR1d5rQMSpTqGoJrKkXvhi4GMHmAP1yD3OCQ1Bom/M0+1hRddCH aLHj7IN3rKI9S1geRytoSitNWoFzvhtT4PixrurFvpnGTefqEx+RW+WDfYZ3oKBX 7tav4NbauPA1t0V1dTMOA3pNchHQUTG9GZJTGNiqHBlaAR7cCtQNJAfCUVAqLcna Kpy5jK9h1Yrr2B6Qt7PUkAwuHJzi7UQAxpGUKpK5ZgHOwEvLbSuPtHCP9pfiXyYS z+aJsfy6FT11DZhr5wWYDsW60MY37WPlS4kpKg2HHzH3dxZopjIRt3bI0ljJb8yd ymqlIB+03EWU2ZErcIaRMCohx63RNg== -----END CERTIFICATE-----Generated at Mon Jun 2 05:15:50 2025 by rpki-client