$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/A8194A76E76311EF9504B020C4F9AE02.roa File: A8194A76E76311EF9504B020C4F9AE02.roa (raw, json) Hash identifier: PlKTXcch40UR/uH1qIcESAqBNNL+Txg6tGGnwFVISck= Subject key identifier: E7:D6:86:94:5D:10:A5:87:DB:54:FF:2C:66:0F:A3:14:A4:95:C1:DC Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 027E Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/A8194A76E76311EF9504B020C4F9AE02.roa Signing time: Mon 10 Feb 2025 04:02:14 +0000 ROA not before: Mon 10 Feb 2025 04:02:14 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9304 IP address blocks: 202.155.140.0/24 maxlen: 24 202.155.141.0/24 maxlen: 24 202.155.142.0/24 maxlen: 24 202.155.143.0/24 maxlen: 24 202.155.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18 Validity Not Before: Feb 10 04:02:14 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67a97a46-ba4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:45:cc:1b:f6:30:11:39:20:3a:c7:a4:66:8d: 96:7e:8d:4d:43:2f:55:d7:25:02:ca:fb:90:3d:e3: 4f:a6:51:00:42:32:05:4d:da:0b:4f:62:89:ec:d6: cb:e8:63:26:cf:9b:22:20:fa:72:ec:3f:ad:5e:40: f8:e4:7c:94:a9:5c:c5:44:a2:4f:df:af:43:1a:d5: d4:03:3a:5f:64:2d:47:db:39:99:70:04:b3:27:dc: 65:68:58:cd:cf:99:cf:b6:a4:b9:a2:07:b4:fa:bf: c3:f5:4f:2c:db:1b:e6:47:03:a2:26:27:67:30:50: bc:24:20:bb:15:da:1c:7f:86:6c:08:b6:80:db:8f: 20:e7:44:99:82:b9:9c:af:6a:7e:ed:a1:25:59:99: 90:d6:86:d9:fa:cf:2a:37:c6:b8:89:e3:24:dd:24: 57:f3:87:f2:bb:63:e2:fe:1a:bb:74:b1:ab:bd:df: 10:94:cf:00:e6:95:d7:b5:0b:79:63:19:61:91:15: b2:01:70:c2:75:e4:4f:c4:04:69:6b:56:8b:06:cc: cb:61:d8:9f:82:ae:c4:13:69:da:ad:0d:2f:9e:83: 8f:13:55:e4:57:a9:12:da:4a:8c:aa:aa:45:33:bd: c8:25:19:41:ec:49:3b:38:1e:4e:02:14:2d:4a:d2: 7d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D6:86:94:5D:10:A5:87:DB:54:FF:2C:66:0F:A3:14:A4:95:C1:DC X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/A8194A76E76311EF9504B020C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.140.0/22 202.155.152.0/22 Signature Algorithm: sha256WithRSAEncryption d4:c0:f8:08:ab:21:52:ae:9e:12:4a:6a:4b:07:05:a0:5e:92: 7f:bc:99:e6:73:3c:9d:a4:73:e7:2f:fd:da:62:a7:1d:da:f4: 25:3a:b8:ee:b5:4d:ef:a0:f6:23:92:de:1d:2d:2d:c5:2d:f1: c6:bd:b5:e6:c4:1d:98:ff:b8:38:91:1e:68:45:87:04:81:ad: 9d:68:ce:55:e6:58:a9:ac:d5:c1:e5:10:bd:04:e8:aa:68:52: e0:7b:99:a4:c7:5c:14:39:85:ac:26:20:67:83:a1:5e:5c:78: c1:82:38:20:56:2c:2c:fa:7c:8e:46:ff:d2:af:e2:d3:4a:e9: 2c:61:1a:84:08:cc:5e:07:0d:9e:25:ac:cf:d9:ae:f0:1f:96: a5:be:1a:d7:71:50:ae:ad:bd:00:2f:bd:7d:be:85:3b:3f:ed: 7b:22:6b:1d:cc:8b:ba:63:d1:86:58:99:79:7d:a8:ad:6b:d8: 6f:3b:34:f4:ff:56:10:8f:0b:2c:be:20:80:e7:92:5a:a9:29: 5f:e3:62:d2:14:06:a1:01:5c:ef:0b:1f:87:7b:b5:c0:8c:df: c0:e7:3c:94:88:81:ee:3a:b0:4e:6f:4b:1e:e5:2c:13:89:d1: 04:31:6b:48:cd:dd:8a:4e:84:c4:ba:50:d6:f6:83:20:21:c9: 17:b1:dc:f5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwMjEwMDQwMjE0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E5N2E0Ni1iYTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkXMG/YwETkgOsekZo2Wfo1NQy9V1yUCyvuQPeNPplEAQjIFTdoLT2KJ7NbL 6GMmz5siIPpy7D+tXkD45HyUqVzFRKJP369DGtXUAzpfZC1H2zmZcASzJ9xlaFjN z5nPtqS5oge0+r/D9U8s2xvmRwOiJidnMFC8JCC7Fdocf4ZsCLaA248g50SZgrmc r2p+7aElWZmQ1obZ+s8qN8a4ieMk3SRX84fyu2Pi/hq7dLGrvd8QlM8A5pXXtQt5 YxlhkRWyAXDCdeRPxARpa1aLBszLYdifgq7EE2narQ0vnoOPE1XkV6kS2kqMqqpF M73IJRlB7Ek7OB5OAhQtStJ9ywIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOfWhpRd EKWH21T/LGYPoxSklcHcMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvQTgxOTRBNzZF NzYzMTFFRjk1MDRCMDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALKm4wDBALKm5gwDQYJKoZIhvcNAQELBQADggEBANTA+Air IVKunhJKaksHBaBekn+8meZzPJ2kc+cv/dpipx3a9CU6uO61Te+g9iOS3h0tLcUt 8ca9tebEHZj/uDiRHmhFhwSBrZ1ozlXmWKms1cHlEL0E6KpoUuB7maTHXBQ5hawm IGeDoV5ceMGCOCBWLCz6fI5G/9Kv4tNK6SxhGoQIzF4HDZ4lrM/ZrvAflqW+Gtdx UK6tvQAvvX2+hTs/7Xsiax3Mi7pj0YZYmXl9qK1r2G87NPT/VhCPCyy+IIDnklqp KV/jYtIUBqEBXO8LH4d7tcCM38DnPJSIge46sE5vSx7lLBOJ0QQxa0jN3YpOhMS6 UNb2gyAhyRex3PU= -----END CERTIFICATE-----Generated at Sun Apr 6 05:28:29 2025 by rpki-client