$ rpki-client -vvf rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/9292865625AA11F0A63D1D85C4F9AE02.roa File: 9292865625AA11F0A63D1D85C4F9AE02.roa (raw, json) Hash identifier: 25OwR8XYdGuev6/l5HqM3nWw1IEfuwMcD9rJsTiO0fE= Subject key identifier: EE:69:CE:90:26:C2:9F:AC:E0:E8:00:41:E8:3E:64:3B:06:0E:D0:D4 Certificate issuer: /CN=A914EBB2/serialNumber=CD3DF53AA0E9A398595E957015155BCCAC568D15 Certificate serial: C6 Authority key identifier: CD:3D:F5:3A:A0:E9:A3:98:59:5E:95:70:15:15:5B:CC:AC:56:8D:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zT31OqDpo5hZXpVwFRVbzKxWjRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/9292865625AA11F0A63D1D85C4F9AE02.roa Signing time: Wed 30 Apr 2025 10:05:14 +0000 ROA not before: Wed 30 Apr 2025 10:05:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17476 IP address blocks: 183.90.185.0/24 maxlen: 24 202.36.160.0/23 maxlen: 24 2401:ada0::/32 maxlen: 40 2401:ada0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/zT31OqDpo5hZXpVwFRVbzKxWjRU.crl rsync://rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/zT31OqDpo5hZXpVwFRVbzKxWjRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zT31OqDpo5hZXpVwFRVbzKxWjRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EBB2, serialNumber=CD3DF53AA0E9A398595E957015155BCCAC568D15 Validity Not Before: Apr 30 10:05:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6811f5da-92c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ce:c0:8f:58:06:35:68:fc:44:6e:5d:b3:8a: 90:ce:1c:8c:50:50:78:b3:19:f2:4a:f0:24:cb:b5: e2:31:70:61:7a:e3:d9:25:0c:75:e2:75:f4:63:c4: e0:c1:49:69:37:d0:78:6a:8e:86:20:d9:7f:47:bb: 4e:1e:6a:90:ce:38:79:4c:e9:1d:10:bc:a9:f8:b9: b5:ba:4b:50:4c:3b:1b:95:c3:23:aa:3b:71:24:ac: 8d:e7:a5:70:40:e1:a6:74:33:3b:00:5b:3e:92:df: a6:11:ff:d9:55:d3:d0:72:4d:b2:8e:fc:78:2f:86: 06:c4:f6:f8:e3:d8:2a:20:7e:0d:81:4f:c4:9b:e0: 87:cc:a5:ee:75:36:b9:ff:55:af:41:f9:bf:8a:21: 59:cf:45:63:15:d4:e9:6b:cf:7e:00:3c:48:01:43: a2:c2:df:81:f3:dc:9e:08:b3:68:09:0f:37:e7:b0: 17:2d:b0:7b:28:cb:fd:1d:45:d6:6d:89:07:b8:9c: 2b:f1:9c:90:c0:3b:87:10:88:16:b5:a1:36:f3:17: 07:77:25:07:45:9e:fe:a9:da:99:3d:93:9f:59:d8: 27:21:1b:5b:93:ea:40:ba:98:2a:c9:1e:bf:62:56: 0f:e8:15:39:26:f8:c4:a1:83:cb:d3:b6:9f:19:d1: 80:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:69:CE:90:26:C2:9F:AC:E0:E8:00:41:E8:3E:64:3B:06:0E:D0:D4 X509v3 Authority Key Identifier: keyid:CD:3D:F5:3A:A0:E9:A3:98:59:5E:95:70:15:15:5B:CC:AC:56:8D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/zT31OqDpo5hZXpVwFRVbzKxWjRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zT31OqDpo5hZXpVwFRVbzKxWjRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EBB2/F37F246E329511EF9A482F55C4F9AE02/9292865625AA11F0A63D1D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.90.185.0/24 202.36.160.0/23 IPv6: 2401:ada0::/32 Signature Algorithm: sha256WithRSAEncryption 85:17:98:0b:05:32:da:36:92:b9:09:24:3d:e4:cb:c3:46:c2: e6:af:09:2f:43:27:6a:6d:46:2d:c0:37:74:2f:78:a7:da:fd: ff:65:5a:44:66:b3:58:0c:c6:25:57:64:4a:70:3c:e0:14:61: cd:06:38:f7:d4:76:ec:78:28:fa:40:2f:7f:36:e2:30:79:a6: 7f:b2:4c:3b:0f:43:1c:2c:02:5c:c4:2c:07:27:0e:4f:45:40: 6c:2f:27:29:46:58:9d:0b:50:4b:c2:3d:a6:cc:db:f2:60:8a: 72:ce:70:8f:2a:a5:a3:dd:7d:e4:b6:04:e3:70:21:63:e2:61: 1a:af:5a:2f:67:45:ab:62:d3:c9:53:f1:25:0e:55:b8:b8:f7: b4:26:e7:9e:3f:29:cf:fb:fd:62:5e:eb:9f:39:1d:61:57:10: 62:da:85:cd:d6:30:28:e1:69:5e:1d:25:0a:10:01:61:7f:08: 8a:03:48:9f:a7:f1:13:67:12:49:61:9d:11:b9:e2:2a:0e:a1: b8:33:a7:b2:03:a1:23:65:18:59:e5:68:d1:ce:c8:ba:93:c8: 48:44:cd:d4:0b:dd:f6:c1:8c:10:f4:e7:c9:e4:69:b8:72:32: b9:f1:7c:36:94:2c:d7:83:61:c3:3b:74:67:d8:bf:24:3f:03: 43:d7:06:c8 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCQjIxMTAvBgNVBAUTKENEM0RGNTNBQTBFOUEzOTg1OTVFOTU3MDE1MTU1QkND QUM1NjhEMTUwHhcNMjUwNDMwMTAwNTE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODExZjVkYS05MmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5s7Aj1gGNWj8RG5ds4qQzhyMUFB4sxnySvAky7XiMXBheuPZJQx14nX0Y8Tg wUlpN9B4ao6GINl/R7tOHmqQzjh5TOkdELyp+Lm1uktQTDsblcMjqjtxJKyN56Vw QOGmdDM7AFs+kt+mEf/ZVdPQck2yjvx4L4YGxPb449gqIH4NgU/Em+CHzKXudTa5 /1WvQfm/iiFZz0VjFdTpa89+ADxIAUOiwt+B89yeCLNoCQ8357AXLbB7KMv9HUXW bYkHuJwr8ZyQwDuHEIgWtaE28xcHdyUHRZ7+qdqZPZOfWdgnIRtbk+pAupgqyR6/ YlYP6BU5JvjEoYPL07afGdGA6QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFO5pzpAm wp+s4OgAQeg+ZDsGDtDUMB8GA1UdIwQYMBaAFM099Tqg6aOYWV6VcBUVW8ysVo0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUJCMi9GMzdGMjQ2RTMy OTUxMUVGOUE0ODJGNTVDNEY5QUUwMi96VDMxT3FEcG81aFpYcFZ3RlJWYnpLeFdq UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pUMzFPcURwbzVoWlhwVndGUlZiekt4V2pSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVCQjIvRjM3RjI0NkUzMjk1MTFFRjlBNDgyRjU1QzRGOUFFMDIvOTI5Mjg2NTYy NUFBMTFGMEE2M0QxRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAC3WrkDBAHKJKAwDQQCAAIwBwMFACQBraAwDQYJKoZIhvcN AQELBQADggEBAIUXmAsFMto2krkJJD3ky8NGwuavCS9DJ2ptRi3AN3QveKfa/f9l WkRms1gMxiVXZEpwPOAUYc0GOPfUdux4KPpAL3824jB5pn+yTDsPQxwsAlzELAcn Dk9FQGwvJylGWJ0LUEvCPabM2/JginLOcI8qpaPdfeS2BONwIWPiYRqvWi9nRati 08lT8SUOVbi497Qm554/Kc/7/WJe6585HWFXEGLahc3WMCjhaV4dJQoQAWF/CIoD SJ+n8RNnEklhnRG54ioOobgzp7IDoSNlGFnlaNHOyLqTyEhEzdQL3fbBjBD058nk abhyMrnxfDaULNeDYcM7dGfYvyQ/A0PXBsg= -----END CERTIFICATE-----Generated at Fri May 16 22:38:48 2025 by rpki-client