$ rpki-client -vvf rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/7F09FC70323611F0AB3FA70BC4F9AE02.roa File: 7F09FC70323611F0AB3FA70BC4F9AE02.roa (raw, json) Hash identifier: e5UjmqUjbahnofPOK94PTOrYf4VsadI2aqpgREwVS7Y= Subject key identifier: 59:1F:2C:CC:1E:70:6B:E2:E7:04:53:D5:16:C4:FB:6C:EE:14:A9:9B Certificate issuer: /CN=A9189D9B/serialNumber=7F0397C6A94E525976834BBFD5802F15B795FB8E Certificate serial: 0E Authority key identifier: 7F:03:97:C6:A9:4E:52:59:76:83:4B:BF:D5:80:2F:15:B7:95:FB:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fwOXxqlOUll2g0u_1YAvFbeV-44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/7F09FC70323611F0AB3FA70BC4F9AE02.roa Signing time: Fri 16 May 2025 09:16:49 +0000 ROA not before: Fri 16 May 2025 09:16:49 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133159 IP address blocks: 163.227.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/fwOXxqlOUll2g0u_1YAvFbeV-44.crl rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/fwOXxqlOUll2g0u_1YAvFbeV-44.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fwOXxqlOUll2g0u_1YAvFbeV-44.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189D9B, serialNumber=7F0397C6A94E525976834BBFD5802F15B795FB8E Validity Not Before: May 16 09:16:49 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68270281-257e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:fc:12:74:2d:3c:8b:39:c1:0b:a5:7c:ed: 07:00:f3:3b:71:a5:66:a3:60:8a:13:8c:2b:5e:29: 9e:d4:67:1c:5d:83:4d:dd:a0:fb:58:0c:08:c8:ad: 0c:66:cf:ab:b9:c3:cb:56:a2:57:ae:8b:d0:b6:58: 7d:01:ae:b9:ff:42:57:4d:fc:4c:54:a5:95:bc:00: 42:ad:43:94:ff:03:78:50:f7:d7:67:a2:94:c3:7a: 42:7e:51:62:84:b1:da:a5:01:26:19:8f:33:24:e6: 61:7d:3d:a6:99:71:ee:db:37:b6:12:53:36:24:da: 1c:65:8b:83:d5:08:db:6b:4e:f8:b2:6f:8c:73:25: ca:31:bd:1c:f0:d1:13:8c:22:6c:3e:0e:72:d5:b1: e7:e0:73:81:8b:f5:50:63:e1:f2:11:20:9f:ec:4b: de:35:1e:94:f9:a7:1e:4b:29:cf:ce:72:16:75:05: 7a:41:f3:82:8e:73:1f:37:26:90:83:e1:11:80:f3: 0b:eb:b4:64:0b:d3:50:cc:ec:43:81:79:12:35:c1: f8:ce:89:b3:1b:9e:ff:51:99:dc:4b:3b:a6:53:df: d3:d5:fb:07:26:49:f5:aa:55:ba:15:46:7d:88:85: f3:c1:a5:cb:21:cf:55:b6:0b:3e:05:88:a0:d1:2d: 74:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1F:2C:CC:1E:70:6B:E2:E7:04:53:D5:16:C4:FB:6C:EE:14:A9:9B X509v3 Authority Key Identifier: keyid:7F:03:97:C6:A9:4E:52:59:76:83:4B:BF:D5:80:2F:15:B7:95:FB:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/fwOXxqlOUll2g0u_1YAvFbeV-44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fwOXxqlOUll2g0u_1YAvFbeV-44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/7F09FC70323611F0AB3FA70BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.185.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:71:52:db:ac:df:ff:47:61:40:0d:ad:55:b1:66:a7:eb:05: 7b:fa:17:a2:dd:93:8d:33:3b:7c:26:b9:07:27:10:21:7f:e1: a1:92:80:09:19:5b:e6:f5:5f:be:39:e5:66:4e:cd:b8:53:70: 9b:fd:a6:a9:66:d2:df:0a:72:70:ba:32:a7:4b:72:e6:ee:fa: 66:ef:cf:d1:e4:54:8a:20:41:e4:d6:ef:f4:b0:ec:23:77:f5: d9:c7:26:75:af:26:68:d2:28:52:ab:fe:41:32:a6:53:69:81: 2b:d0:ac:29:01:de:36:76:5c:d3:de:d1:20:9c:fa:e2:fc:c3: be:80:63:34:fd:72:73:6b:bb:26:87:63:38:df:1a:fa:9b:30: e3:92:e8:dc:2b:55:a5:1b:2b:4a:82:9a:db:ca:92:9b:38:9c: d6:f8:a5:d5:ae:e2:f0:13:07:a9:57:e7:c8:14:ec:21:16:01: db:d0:ee:e2:31:a6:81:c5:23:b7:f1:a7:2d:5f:82:24:04:4d: 83:91:d6:d1:7e:ef:04:be:14:71:d8:d6:c3:2f:d3:17:bf:e4: 9a:33:ac:cd:8f:7d:c7:32:48:15:db:58:10:c4:d6:0d:4c:50: 57:2d:5e:56:51:d3:25:fb:b1:23:80:62:2f:0d:11:7e:20:75: 26:79:8f:07 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUQ5QjExMC8GA1UEBRMoN0YwMzk3QzZBOTRFNTI1OTc2ODM0QkJGRDU4MDJGMTVC Nzk1RkI4RTAeFw0yNTA1MTYwOTE2NDlaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjcwMjgxLTI1N2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9z/wSdC08iznBC6V87QcA8ztxpWajYIoTjCteKZ7UZxxdg03doPtYDAjIrQxm z6u5w8tWoleui9C2WH0Brrn/QldN/ExUpZW8AEKtQ5T/A3hQ99dnopTDekJ+UWKE sdqlASYZjzMk5mF9PaaZce7bN7YSUzYk2hxli4PVCNtrTviyb4xzJcoxvRzw0ROM Imw+DnLVsefgc4GL9VBj4fIRIJ/sS941HpT5px5LKc/OchZ1BXpB84KOcx83JpCD 4RGA8wvrtGQL01DM7EOBeRI1wfjOibMbnv9RmdxLO6ZT39PV+wcmSfWqVboVRn2I hfPBpcshz1W2Cz4FiKDRLXTdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWR8szB5w a+LnBFPVFsT7bO4UqZswHwYDVR0jBBgwFoAUfwOXxqlOUll2g0u/1YAvFbeV+44w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5RDlCL0IyQTU3N0MyMjc0 NTExRjBBRUQyQjQ2OUM0RjlBRTAyL2Z3T1h4cWxPVWxsMmcwdV8xWUF2RmJlVi00 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZndPWHhxbE9VbGwyZzB1XzFZQXZGYmVWLTQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUQ5Qi9CMkE1NzdDMjI3NDUxMUYwQUVEMkI0NjlDNEY5QUUwMi83RjA5RkM3MDMy MzYxMUYwQUIzRkE3MEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKPjuTANBgkqhkiG9w0BAQsFAAOCAQEAKnFS26zf/0dhQA2t VbFmp+sFe/oXot2TjTM7fCa5BycQIX/hoZKACRlb5vVfvjnlZk7NuFNwm/2mqWbS 3wpycLoyp0ty5u76Zu/P0eRUiiBB5Nbv9LDsI3f12ccmda8maNIoUqv+QTKmU2mB K9CsKQHeNnZc097RIJz64vzDvoBjNP1yc2u7JodjON8a+psw45Lo3CtVpRsrSoKa 28qSmzic1vil1a7i8BMHqVfnyBTsIRYB29Du4jGmgcUjt/GnLV+CJARNg5HW0X7v BL4UcdjWwy/TF7/kmjOszY99xzJIFdtYEMTWDUxQVy1eVlHTJfuxI4BiLw0RfiB1 JnmPBw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:49 2025 by rpki-client