$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/7C487C522AD711F0889A9C4CC4F9AE02.roa File: 7C487C522AD711F0889A9C4CC4F9AE02.roa (raw, json) Hash identifier: dcosUg556kia3puig3z/Vay8g6P730lM2nj6N4MJmoE= Subject key identifier: 17:61:6D:9F:D8:E5:1D:68:9C:60:20:52:E0:0B:49:34:83:C5:E5:C5 Certificate issuer: /CN=A9157B93/serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913 Certificate serial: 1F Authority key identifier: 7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/7C487C522AD711F0889A9C4CC4F9AE02.roa Signing time: Fri 27 Jun 2025 08:12:22 +0000 ROA not before: Fri 27 Jun 2025 08:12:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152681 IP address blocks: 202.36.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B93, serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913 Validity Not Before: Jun 27 08:12:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685e5266-246b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4a:d3:60:73:75:b8:66:5c:5c:2f:e8:99:f9: 89:ff:5e:ee:4c:37:42:3e:36:64:34:57:6a:c5:1f: 75:c7:ee:01:9c:c0:d2:d7:1a:a8:7e:f5:5e:15:aa: 65:60:b9:d1:97:20:f3:14:0c:b6:54:dc:1e:5c:c8: a3:a1:81:11:ae:c7:07:09:04:b8:bf:e0:8f:73:bb: be:a5:c9:f6:21:2c:42:6c:25:2c:3f:ed:d5:ce:2a: 9b:16:31:d0:6a:e9:59:0e:12:e1:2b:1c:13:02:d1: ae:aa:ed:82:24:11:89:e0:69:dc:c6:3d:37:72:7a: 76:08:89:75:62:51:1b:c9:70:bd:73:d7:91:a4:d4: 89:62:6f:16:dd:1a:84:07:10:07:a9:79:c0:bc:8e: 54:62:0e:1b:bb:b4:73:ec:a3:0d:a4:00:55:20:81: 8f:93:d1:59:cb:57:6e:2e:51:8b:7b:a6:f1:33:6d: 54:ec:75:6b:67:db:0a:63:04:c6:a8:7b:63:90:8f: ee:fa:b8:42:15:de:23:b1:36:e8:b0:56:5b:7a:dc: 5e:75:41:f2:4e:f0:09:5b:dc:3d:c9:cc:e7:09:b6: 94:b8:ec:e3:d9:0e:28:96:46:34:0f:8e:33:90:c6: 7e:99:c0:86:25:d8:65:07:a0:99:2d:a5:ef:1b:5e: 3b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:61:6D:9F:D8:E5:1D:68:9C:60:20:52:E0:0B:49:34:83:C5:E5:C5 X509v3 Authority Key Identifier: keyid:7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/7C487C522AD711F0889A9C4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.28.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:10:85:60:3e:2a:ae:cf:4d:53:c8:b9:59:39:7e:9a:c9:55: eb:bb:11:05:2a:17:81:20:36:41:6c:c5:0f:ac:25:9d:ea:d3: 9d:a5:a1:98:9c:82:94:ab:ae:e9:07:2f:f0:1a:d1:a3:3d:9a: 99:9c:eb:b2:73:a5:0d:9e:06:85:5c:e0:3d:18:53:3a:1d:ff: 0c:2e:cb:66:2c:1d:70:e7:81:55:67:33:72:1c:08:d1:fd:4b: c9:b1:27:f3:9c:dc:92:35:e4:1a:26:06:f3:32:b1:f7:0a:82: db:f4:65:f7:d3:f6:75:6b:b2:f6:3e:a3:9d:d0:82:3b:2c:6a: cd:32:2f:a1:37:ed:54:f3:dd:44:68:ec:e2:74:cf:ca:fa:73: 14:70:5e:8f:b1:10:1a:41:cb:80:fb:08:41:39:fb:79:3e:2b: 76:e7:a3:1c:23:60:8e:50:e4:d8:31:ff:57:f5:7e:3d:46:95: c2:d4:0b:1f:d3:63:db:fa:c7:cd:64:57:49:e9:21:53:fb:d4: 46:15:4b:27:d6:e6:7f:5f:96:7a:81:43:72:c8:1b:d6:11:c4: 3f:83:c8:98:b3:af:ff:d0:82:f2:8e:ad:f3:85:5d:91:22:f3: 20:27:5e:81:77:b3:51:e7:e1:6e:d3:6e:95:98:56:ba:b0:dc: ff:f2:47:de -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I5MzExMC8GA1UEBRMoN0IzRjYxNTdFOTk3RUYxN0NBNTA3RTY2MTA3RkM4OUU4 RTNFMzkxMzAeFw0yNTA2MjcwODEyMjJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWU1MjY2LTI0NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUStNgc3W4ZlxcL+iZ+Yn/Xu5MN0I+NmQ0V2rFH3XH7gGcwNLXGqh+9V4VqmVg udGXIPMUDLZU3B5cyKOhgRGuxwcJBLi/4I9zu76lyfYhLEJsJSw/7dXOKpsWMdBq 6VkOEuErHBMC0a6q7YIkEYngadzGPTdyenYIiXViURvJcL1z15Gk1IlibxbdGoQH EAepecC8jlRiDhu7tHPsow2kAFUggY+T0VnLV24uUYt7pvEzbVTsdWtn2wpjBMao e2OQj+76uEIV3iOxNuiwVlt63F51QfJO8Alb3D3JzOcJtpS47OPZDiiWRjQPjjOQ xn6ZwIYl2GUHoJktpe8bXjuXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUF2Ftn9jl HWicYCBS4AtJNIPF5cUwHwYDVR0jBBgwFoAUez9hV+mX7xfKUH5mEH/Ino4+ORMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjkzLzc3M0RGQjcyMjlG RDExRjBCRDU1MjAzM0M0RjlBRTAyL2V6OWhWLW1YN3hmS1VINW1FSF9Jbm80LU9S TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXo5aFYtbVg3eGZLVUg1bUVIX0lubzQtT1JNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I5My83NzNERkI3MjI5RkQxMUYwQkQ1NTIwMzNDNEY5QUUwMi83QzQ4N0M1MjJB RDcxMUYwODg5QTlDNENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMokHDANBgkqhkiG9w0BAQsFAAOCAQEAGhCFYD4qrs9NU8i5 WTl+mslV67sRBSoXgSA2QWzFD6wlnerTnaWhmJyClKuu6Qcv8BrRoz2amZzrsnOl DZ4GhVzgPRhTOh3/DC7LZiwdcOeBVWczchwI0f1LybEn85zckjXkGiYG8zKx9wqC 2/Rl99P2dWuy9j6jndCCOyxqzTIvoTftVPPdRGjs4nTPyvpzFHBej7EQGkHLgPsI QTn7eT4rduejHCNgjlDk2DH/V/V+PUaVwtQLH9Nj2/rHzWRXSekhU/vURhVLJ9bm f1+WeoFDcsgb1hHEP4PImLOv/9CC8o6t84VdkSLzICdegXezUefhbtNulZhWurDc //JH3g== -----END CERTIFICATE-----Generated at Thu Jul 3 10:03:22 2025 by rpki-client