$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/7C487C522AD711F0889A9C4CC4F9AE02.roa File: 7C487C522AD711F0889A9C4CC4F9AE02.roa (raw, json) Hash identifier: i3SSpb1Cthad3ua7didgYcv0s4weTT24AcNiu2w0kbw= Subject key identifier: 71:0F:50:E8:5F:5E:68:B1:59:F7:9C:A0:9C:0E:8E:F7:6D:20:45:87 Certificate issuer: /CN=A9157B93/serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913 Certificate serial: 03 Authority key identifier: 7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/7C487C522AD711F0889A9C4CC4F9AE02.roa Signing time: Wed 07 May 2025 00:09:04 +0000 ROA not before: Wed 07 May 2025 00:09:04 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152681 IP address blocks: 202.36.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B93, serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913 Validity Not Before: May 7 00:09:04 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=681aa4a0-561d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:91:13:f2:71:be:dd:0b:6b:70:dc:bf:df:0d: 1a:df:7c:81:88:84:2d:a2:b4:b5:4f:90:4a:44:ce: b5:b0:96:73:f7:75:dc:37:1f:49:41:59:fb:c8:f4: 70:b2:cc:56:76:e3:0d:af:d9:cb:09:89:e6:77:b9: 7b:11:9a:bb:1a:96:7c:e9:65:be:51:74:58:f3:73: a3:b6:1f:1b:4e:f7:27:79:29:16:f9:d1:8c:25:c0: 8e:5b:73:4a:2b:68:94:3c:77:86:be:13:57:c9:50: 46:d0:18:9a:e0:3e:b0:a4:7e:c5:8d:51:6d:ab:e5: fb:49:38:51:0c:c4:49:6f:fd:f3:8f:82:7c:aa:bb: c4:a9:11:3b:77:43:51:a3:f9:51:30:d6:7b:12:ad: db:58:fa:f0:39:b1:e4:94:86:7c:22:02:38:c2:5b: 6d:e4:be:32:c7:69:3d:14:d3:1b:bd:f8:29:b7:93: be:b1:e5:7f:10:6a:71:c0:d6:9f:68:a2:83:cb:d5: 8d:12:a8:91:ad:ba:03:ec:7d:e3:ed:da:4e:1b:57: 8a:54:bb:50:4c:1e:4a:14:6b:22:42:cb:24:95:71: 5d:7d:bb:c4:44:ad:53:94:d8:a6:bd:37:d1:7d:bc: 65:70:17:14:2d:f5:ff:fd:cd:76:f5:2c:40:cc:98: aa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:0F:50:E8:5F:5E:68:B1:59:F7:9C:A0:9C:0E:8E:F7:6D:20:45:87 X509v3 Authority Key Identifier: keyid:7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/7C487C522AD711F0889A9C4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.28.0/24 Signature Algorithm: sha256WithRSAEncryption 81:cf:d0:ac:b4:88:10:ec:49:dd:35:dc:2a:66:8f:63:a9:3e: 56:24:f6:42:5c:64:1a:68:6f:5a:53:a8:6e:23:ab:6c:86:c8: 84:58:85:cf:8f:1e:5f:19:63:f3:af:1b:77:21:ed:a6:0a:30: cc:b1:12:ed:f8:56:65:73:b9:5d:3e:bb:b4:95:8c:5a:93:af: ce:32:f0:da:a1:2d:91:e5:e8:87:b8:a4:08:98:52:32:b7:59: e3:29:e4:d7:4a:fa:30:16:6b:44:e6:6d:da:50:eb:3b:7d:0c: 99:9d:8a:10:ac:74:81:19:e4:c3:37:75:c1:3f:6d:07:5c:e8: 47:df:d0:6f:fc:c2:79:34:77:b9:d4:cf:e2:a2:91:f9:76:6f: f2:0f:77:26:5b:84:7b:9d:d1:1f:ec:4f:e7:f1:f5:72:9d:32: b2:92:60:b6:f4:77:d5:93:bf:33:59:5e:8a:7e:1c:a7:3c:c8: c0:34:49:26:87:b3:4f:29:90:e5:8c:b5:23:20:18:9f:ee:7e: c9:9c:dd:92:49:4b:4d:ef:48:4d:57:37:16:ae:ec:67:7f:63: 72:f7:c6:9e:01:dc:69:fc:07:ab:91:54:56:9f:1e:19:fa:17: 8a:c6:08:a8:b9:cb:5c:f3:be:cd:92:58:09:7b:74:a1:fd:7b: de:e4:af:ae -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I5MzExMC8GA1UEBRMoN0IzRjYxNTdFOTk3RUYxN0NBNTA3RTY2MTA3RkM4OUU4 RTNFMzkxMzAeFw0yNTA1MDcwMDA5MDRaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MWFhNGEwLTU2MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdkRPycb7dC2tw3L/fDRrffIGIhC2itLVPkEpEzrWwlnP3ddw3H0lBWfvI9HCy zFZ24w2v2csJieZ3uXsRmrsalnzpZb5RdFjzc6O2HxtO9yd5KRb50YwlwI5bc0or aJQ8d4a+E1fJUEbQGJrgPrCkfsWNUW2r5ftJOFEMxElv/fOPgnyqu8SpETt3Q1Gj +VEw1nsSrdtY+vA5seSUhnwiAjjCW23kvjLHaT0U0xu9+Cm3k76x5X8QanHA1p9o ooPL1Y0SqJGtugPsfePt2k4bV4pUu1BMHkoUayJCyySVcV19u8RErVOU2Ka9N9F9 vGVwFxQt9f/9zXb1LEDMmKpFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcQ9Q6F9e aLFZ95ygnA6O920gRYcwHwYDVR0jBBgwFoAUez9hV+mX7xfKUH5mEH/Ino4+ORMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjkzLzc3M0RGQjcyMjlG RDExRjBCRDU1MjAzM0M0RjlBRTAyL2V6OWhWLW1YN3hmS1VINW1FSF9Jbm80LU9S TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXo5aFYtbVg3eGZLVUg1bUVIX0lubzQtT1JNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I5My83NzNERkI3MjI5RkQxMUYwQkQ1NTIwMzNDNEY5QUUwMi83QzQ4N0M1MjJB RDcxMUYwODg5QTlDNENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMokHDANBgkqhkiG9w0BAQsFAAOCAQEAgc/QrLSIEOxJ3TXc KmaPY6k+ViT2QlxkGmhvWlOobiOrbIbIhFiFz48eXxlj868bdyHtpgowzLES7fhW ZXO5XT67tJWMWpOvzjLw2qEtkeXoh7ikCJhSMrdZ4ynk10r6MBZrROZt2lDrO30M mZ2KEKx0gRnkwzd1wT9tB1zoR9/Qb/zCeTR3udTP4qKR+XZv8g93JluEe53RH+xP 5/H1cp0yspJgtvR31ZO/M1lein4cpzzIwDRJJoezTymQ5Yy1IyAYn+5+yZzdkklL Te9ITVc3Fq7sZ39jcvfGngHcafwHq5FUVp8eGfoXisYIqLnLXPO+zZJYCXt0of17 3uSvrg== -----END CERTIFICATE-----Generated at Sun May 11 19:23:08 2025 by rpki-client