$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D2677928DD9811EDB2BBBA09C4F9AE02.roa File: D2677928DD9811EDB2BBBA09C4F9AE02.roa (raw, json) Hash identifier: pVr+bUV7osuNpKcdEe2SU8B4kCWvORQSGGyqBngWkWY= Subject key identifier: 8E:C2:58:06:67:B0:C3:1A:F3:08:8E:09:C3:5B:89:9D:C5:B4:11:3F Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: 0197 Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D2677928DD9811EDB2BBBA09C4F9AE02.roa Signing time: Fri 09 May 2025 02:52:23 +0000 ROA not before: Fri 09 May 2025 02:52:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 116.197.148.0/24 maxlen: 24 116.197.150.0/24 maxlen: 24 116.197.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F, serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: May 9 02:52:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681d6de7-a8de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cc:fc:a0:fd:a8:8a:3a:5a:6b:a4:b8:e7:ba: 86:68:8b:19:59:be:dc:3e:7e:de:f1:b0:e8:f1:cc: 58:e3:8c:f8:80:a1:8a:f0:3f:cb:87:75:c8:77:26: cd:75:18:bd:5c:c6:ce:82:bf:80:e0:24:b9:90:b7: c9:86:d6:8b:cf:f5:f5:e5:0b:19:5c:b3:91:27:45: 5e:79:33:21:44:ce:d1:ba:d6:42:f3:4f:31:47:53: 4a:08:13:ea:10:3a:5a:3e:6c:7d:8b:7f:c0:8a:61: 02:e3:bf:0d:83:21:b7:1e:a0:09:bb:0f:2f:b0:36: ea:a5:29:64:00:cf:22:54:72:97:6f:13:f7:19:aa: 23:da:7c:df:a8:0c:98:f2:b6:97:d2:03:4b:33:82: 1e:66:af:a2:ad:a5:46:61:84:1a:9d:37:48:49:91: ed:59:57:2f:8a:b5:b6:4a:7b:a1:64:71:45:c9:96: ce:79:d9:b8:4a:dd:02:dd:f2:eb:cc:e7:6a:b9:39: 21:16:71:33:99:a3:bc:1c:40:40:9f:79:53:04:69: 72:9a:34:55:11:78:0d:17:20:2e:15:46:ef:15:4e: 6f:ce:6d:26:e7:74:85:94:61:f6:d4:38:bc:12:f4: 6c:20:c3:05:16:92:66:de:3b:38:54:85:07:d0:35: 0d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C2:58:06:67:B0:C3:1A:F3:08:8E:09:C3:5B:89:9D:C5:B4:11:3F X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D2677928DD9811EDB2BBBA09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.197.148.0/24 116.197.150.0/23 Signature Algorithm: sha256WithRSAEncryption 55:f2:7c:7d:a9:e1:dd:c2:90:dc:b8:f2:0c:04:cd:70:8d:f7: 5b:50:c7:aa:d1:aa:02:12:6d:c7:58:5e:e7:60:ff:b2:81:a1: d5:14:ac:52:4f:27:cc:eb:c8:91:c9:26:db:1c:01:65:0f:8f: 76:90:41:f9:5e:10:d7:0a:00:26:bc:6b:de:b8:71:9e:40:c4: 45:b0:36:a3:bb:e9:c0:2e:3d:b2:8e:e8:32:ee:d7:e3:82:20: 16:cf:1c:fc:8b:49:3e:bf:b9:3f:95:39:30:12:e2:5e:f8:75: b4:ec:49:0e:86:a3:85:43:84:80:ad:67:3b:9c:d1:78:07:ba: 35:fd:28:af:c0:07:ae:c3:1f:70:71:f6:5f:94:ad:79:0a:e9: 7a:c3:57:d4:4e:93:4e:c9:08:4c:ff:1e:78:59:7e:1b:29:41: 10:a5:ad:59:64:a9:56:35:57:17:ea:b9:30:fb:1a:5f:d2:0f: 4e:de:ea:9d:c5:da:5b:1d:90:48:6f:d6:10:1e:6b:3f:bf:ad: c9:e1:25:ef:aa:c4:b2:08:04:f6:fd:e0:f0:60:5a:2a:98:00: db:16:d7:13:27:15:31:a0:bd:82:c6:fd:ea:10:b2:27:9f:e0: 17:2f:7e:0e:ec:c1:8a:d5:b8:ae:12:c0:2d:6c:92:62:02:8f: 01:b2:17:01 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjUwNTA5MDI1MjIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNmRlNy1hOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7cz8oP2oijpaa6S457qGaIsZWb7cPn7e8bDo8cxY44z4gKGK8D/Lh3XIdybN dRi9XMbOgr+A4CS5kLfJhtaLz/X15QsZXLORJ0VeeTMhRM7RutZC808xR1NKCBPq EDpaPmx9i3/AimEC478NgyG3HqAJuw8vsDbqpSlkAM8iVHKXbxP3Gaoj2nzfqAyY 8raX0gNLM4IeZq+iraVGYYQanTdISZHtWVcvirW2SnuhZHFFyZbOedm4St0C3fLr zOdquTkhFnEzmaO8HEBAn3lTBGlymjRVEXgNFyAuFUbvFU5vzm0m53SFlGH21Di8 EvRsIMMFFpJm3js4VIUH0DUNEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI7CWAZn sMMa8wiOCcNbiZ3FtBE/MB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY2NEYvMUUwODU0QUVERDdEMTFFRDkxQTA0NjREQzRGOUFFMDIvRDI2Nzc5MjhE RDk4MTFFREIyQkJCQTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB0xZQDBAF0xZYwDQYJKoZIhvcNAQELBQADggEBAFXyfH2p 4d3CkNy48gwEzXCN91tQx6rRqgISbcdYXudg/7KBodUUrFJPJ8zryJHJJtscAWUP j3aQQfleENcKACa8a964cZ5AxEWwNqO76cAuPbKO6DLu1+OCIBbPHPyLST6/uT+V OTAS4l74dbTsSQ6Go4VDhICtZzuc0XgHujX9KK/AB67DH3Bx9l+UrXkK6XrDV9RO k07JCEz/HnhZfhspQRClrVlkqVY1VxfquTD7Gl/SD07e6p3F2lsdkEhv1hAeaz+/ rcnhJe+qxLIIBPb94PBgWiqYANsW1xMnFTGgvYLG/eoQsief4Bcvfg7swYrVuK4S wC1skmICjwGyFwE= -----END CERTIFICATE-----Generated at Thu May 15 03:38:40 2025 by rpki-client