$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/DE9F2C2ED15F11EF9CF2E487C4F9AE02.roa File: DE9F2C2ED15F11EF9CF2E487C4F9AE02.roa (raw, json) Hash identifier: VMeQDXbH6tmw6cGjZPVIaCzOLiXDpUktsNNQU9oToT8= Subject key identifier: D6:7A:4A:B7:09:6F:8C:DC:50:30:D4:8E:E5:25:09:69:E7:5F:63:AE Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0241 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/DE9F2C2ED15F11EF9CF2E487C4F9AE02.roa Signing time: Mon 13 Jan 2025 03:38:36 +0000 ROA not before: Mon 13 Jan 2025 03:38:36 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 10103 IP address blocks: 202.155.140.0/24 maxlen: 24 202.155.141.0/24 maxlen: 24 202.155.142.0/24 maxlen: 24 202.155.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18 Validity Not Before: Jan 13 03:38:36 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67848abc-9c9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e7:96:88:25:13:2d:3b:21:7b:9f:60:a7:47: 13:c0:d2:14:3b:54:ec:32:48:0f:68:41:df:ac:20: 77:fc:51:24:ff:3d:4e:20:25:e1:7b:1e:e1:b9:85: 19:34:98:6a:be:52:eb:e8:75:81:39:03:fa:c0:78: 80:86:57:e4:12:58:d9:44:9f:50:cd:50:c2:3b:c0: 89:bd:e8:78:13:2b:ea:c5:f8:bb:a2:4a:d8:34:65: bb:f3:1a:a9:7c:b8:de:fb:a7:c6:90:0a:ec:bc:40: 7f:50:36:00:d5:a2:5d:54:0f:da:cf:e6:70:6e:44: e0:0d:ec:c4:4f:22:3a:95:15:00:02:16:0f:a4:8a: c8:e4:7a:e1:2a:c9:1c:99:ad:f5:b8:fe:29:44:0d: 16:a3:1a:58:ea:03:a4:b9:e3:c9:97:65:05:97:6c: e1:5b:b2:51:08:53:51:6e:b0:c3:28:0c:88:c1:fe: 4c:29:df:29:89:2c:fd:b3:90:11:8c:d9:a7:88:79: cc:2a:e9:f7:e2:75:b1:6e:c0:96:44:d5:7d:54:b6: c2:f2:71:49:1b:97:3b:06:5f:35:ed:1a:e8:56:a1: 9e:cb:f1:eb:f9:55:84:09:f6:88:16:5b:b0:0e:7d: 1f:7e:5b:63:dd:15:1c:9a:d3:07:ec:f3:91:df:c1: bc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:7A:4A:B7:09:6F:8C:DC:50:30:D4:8E:E5:25:09:69:E7:5F:63:AE X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/DE9F2C2ED15F11EF9CF2E487C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.140.0/22 Signature Algorithm: sha256WithRSAEncryption 23:54:f2:1c:f4:e7:44:c3:5e:82:0a:f3:16:e2:31:47:9c:02: 0a:75:49:34:d8:d8:39:ca:4c:bd:70:5c:6b:32:c5:6e:8b:de: 28:06:83:09:50:53:31:d6:aa:a5:77:c4:aa:9f:b7:fe:1f:31: 88:01:b5:41:f3:73:06:4b:76:ab:ad:8d:3c:10:f8:a8:92:40: 98:fb:88:01:84:53:06:a4:ab:35:9a:3f:32:ed:03:62:74:6f: 11:f8:b5:fe:90:ea:d5:4d:46:ec:a8:1c:68:cc:66:0c:06:de: 0f:6e:c7:80:60:19:67:4a:6c:f5:8a:17:36:d3:0d:74:a3:5c: 96:b5:ab:f6:b5:7b:27:b2:7d:e7:eb:fa:b7:4c:a9:0c:f3:9f: 47:2f:eb:cc:47:77:91:1e:59:c9:96:e8:bb:b4:04:ea:00:a0: df:a8:e7:90:7f:1d:d4:dc:35:53:5f:cb:ee:27:c8:af:7e:2c: 37:17:25:6f:39:06:4e:8a:5e:4b:1d:04:bd:f3:e0:15:ee:42: 60:d5:5f:7d:f5:e6:79:7e:5c:14:a5:1f:69:f8:43:dc:67:96: 33:d1:cd:fe:fe:fb:74:3e:96:19:b4:9b:76:ba:99:5a:27:04: 06:f6:6a:fa:e3:35:eb:21:e3:f3:b3:49:ba:8d:81:2c:93:7f: f7:fc:c1:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwMTEzMDMzODM2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg0OGFiYy05YzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+eWiCUTLTshe59gp0cTwNIUO1TsMkgPaEHfrCB3/FEk/z1OICXhex7huYUZ NJhqvlLr6HWBOQP6wHiAhlfkEljZRJ9QzVDCO8CJveh4Eyvqxfi7okrYNGW78xqp fLje+6fGkArsvEB/UDYA1aJdVA/az+ZwbkTgDezETyI6lRUAAhYPpIrI5HrhKskc ma31uP4pRA0WoxpY6gOkuePJl2UFl2zhW7JRCFNRbrDDKAyIwf5MKd8piSz9s5AR jNmniHnMKun34nWxbsCWRNV9VLbC8nFJG5c7Bl817RroVqGey/Hr+VWECfaIFluw Dn0ffltj3RUcmtMH7POR38G8IwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNZ6SrcJ b4zcUDDUjuUlCWnnX2OuMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvREU5RjJDMkVE MTVGMTFFRjlDRjJFNDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKm4wwDQYJKoZIhvcNAQELBQADggEBACNU8hz050TDXoIK 8xbiMUecAgp1STTY2DnKTL1wXGsyxW6L3igGgwlQUzHWqqV3xKqft/4fMYgBtUHz cwZLdqutjTwQ+KiSQJj7iAGEUwakqzWaPzLtA2J0bxH4tf6Q6tVNRuyoHGjMZgwG 3g9ux4BgGWdKbPWKFzbTDXSjXJa1q/a1eyeyfefr+rdMqQzzn0cv68xHd5EeWcmW 6Lu0BOoAoN+o55B/HdTcNVNfy+4nyK9+LDcXJW85Bk6KXksdBL3z4BXuQmDVX331 5nl+XBSlH2n4Q9xnljPRzf7++3Q+lhm0m3a6mVonBAb2avrjNesh4/OzSbqNgSyT f/f8wV4= -----END CERTIFICATE-----Generated at Sun Apr 6 02:32:25 2025 by rpki-client