$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/7D0D2FCA28CF11F0B4341346C4F9AE02.roa File: 7D0D2FCA28CF11F0B4341346C4F9AE02.roa (raw, json) Hash identifier: g7xVQYCNjaK/RZPD6CLpdC1v04D2i9MLXYqSInLLiJI= Subject key identifier: C1:C3:57:06:F0:08:10:A2:47:C5:65:6C:8A:44:1C:7B:58:71:E5:F9 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D41 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/7D0D2FCA28CF11F0B4341346C4F9AE02.roa Signing time: Sun 04 May 2025 10:06:47 +0000 ROA not before: Sun 04 May 2025 10:06:47 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55154 IP address blocks: 14.192.152.0/24 maxlen: 24 111.92.140.0/24 maxlen: 24 111.92.150.0/24 maxlen: 24 111.92.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 13:16:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3393 (0xd41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: May 4 10:06:47 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68173c37-8a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:9e:d7:0c:df:c7:a5:5d:33:92:e0:67:0c:0a: 1b:05:83:1a:e6:ce:e4:cd:64:d5:89:8c:39:fa:28: 66:08:5a:59:65:14:25:9c:1a:02:59:fa:cf:f5:9d: ea:83:75:fb:f6:f5:18:ec:fb:bd:3f:e7:26:4a:7a: f3:f2:20:88:1b:18:c9:cc:96:e7:22:af:8d:03:25: 2b:8a:fb:84:10:ca:30:6a:a4:ff:fe:0e:ed:fd:81: f6:55:e5:d7:cc:31:5d:12:17:51:a2:e6:23:a6:82: 46:08:6a:c1:82:7c:e5:a2:d0:07:e2:b1:37:fc:21: 00:eb:83:f4:2b:04:93:4c:3b:26:93:1d:c1:3f:c7: d3:69:ed:e7:a9:4c:02:bc:e7:d0:df:67:88:4b:16: 07:32:09:76:09:7e:47:4d:35:59:48:43:6b:d6:ca: fb:36:56:14:7e:8c:ee:e4:98:37:b5:38:80:b7:d8: 9d:85:87:59:21:64:f4:ed:8d:98:8f:a1:e3:a1:b7: b7:bf:80:e4:af:89:f0:95:6a:b9:f3:3c:28:39:ff: 9d:e5:4e:2e:6f:f4:83:d3:6b:0d:36:fb:fb:bc:05: 47:c4:bb:3c:47:00:fc:eb:7d:d6:1e:b4:4f:05:ac: 29:b2:ff:ba:1e:ad:21:77:fa:a5:8e:c5:95:4d:a6: e5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C3:57:06:F0:08:10:A2:47:C5:65:6C:8A:44:1C:7B:58:71:E5:F9 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/7D0D2FCA28CF11F0B4341346C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.152.0/24 111.92.140.0/24 111.92.150.0/24 111.92.152.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:e2:88:bc:8a:19:f0:c4:ed:56:c0:f7:2b:0e:ba:7e:bd:1a: 1a:6f:85:5b:ea:b2:62:0f:f5:5e:4e:d6:ec:76:25:41:b9:9b: 4e:ab:22:3c:63:98:b8:cd:30:1a:07:1e:31:d0:23:79:fb:cd: 13:72:97:92:94:8f:fd:4e:c7:ea:57:4e:2b:b8:df:0f:d6:17: 78:b2:15:1c:27:1c:df:75:ab:2a:48:a3:ab:bc:50:60:dc:55: 9c:02:19:a5:5d:23:b0:1f:37:86:dd:76:b5:57:e2:a1:3e:d9: f6:6f:82:8b:0c:9f:24:40:9c:2f:7d:2e:85:65:83:65:fa:2f: c2:21:70:1a:eb:27:b6:2e:da:af:d8:ff:4e:14:70:d9:79:a1: 87:88:04:b2:64:05:63:2d:cf:ea:38:7b:31:90:83:e2:af:b7: dd:87:d7:21:9e:5c:08:2e:b8:d8:5e:84:68:f9:93:a8:95:47: 1d:9e:ce:30:29:12:39:33:d1:83:38:c1:42:3e:5b:d2:00:0b: 37:17:f7:42:a7:81:ed:73:28:82:6a:51:f0:42:5a:8d:61:b2: f2:a4:28:b4:7e:04:e0:c8:56:03:93:9c:68:d6:25:ba:71:f7: a8:87:6c:11:f8:a8:e9:7e:4f:05:84:45:ca:fd:a5:9a:17:57: e2:28:25:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICDUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNTA0MTAwNjQ3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3M2MzNy04YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9p7XDN/HpV0zkuBnDAobBYMa5s7kzWTViYw5+ihmCFpZZRQlnBoCWfrP9Z3q g3X79vUY7Pu9P+cmSnrz8iCIGxjJzJbnIq+NAyUrivuEEMowaqT//g7t/YH2VeXX zDFdEhdRouYjpoJGCGrBgnzlotAH4rE3/CEA64P0KwSTTDsmkx3BP8fTae3nqUwC vOfQ32eISxYHMgl2CX5HTTVZSENr1sr7NlYUfozu5Jg3tTiAt9idhYdZIWT07Y2Y j6Hjobe3v4Dkr4nwlWq58zwoOf+d5U4ub/SD02sNNvv7vAVHxLs8RwD8633WHrRP Bawpsv+6Hq0hd/qljsWVTablnwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFMHDVwbw CBCiR8VlbIpEHHtYceX5MB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvN0QwRDJGQ0Ey OENGMTFGMEI0MzQxMzQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAOwJgDBABvXIwDBABvXJYDBABvXJgwDQYJKoZIhvcNAQEL BQADggEBAIriiLyKGfDE7VbA9ysOun69GhpvhVvqsmIP9V5O1ux2JUG5m06rIjxj mLjNMBoHHjHQI3n7zRNyl5KUj/1Ox+pXTiu43w/WF3iyFRwnHN91qypIo6u8UGDc VZwCGaVdI7AfN4bddrVX4qE+2fZvgosMnyRAnC99LoVlg2X6L8IhcBrrJ7Yu2q/Y /04UcNl5oYeIBLJkBWMtz+o4ezGQg+Kvt92H1yGeXAguuNhehGj5k6iVRx2ezjAp Ejkz0YM4wUI+W9IACzcX90Knge1zKIJqUfBCWo1hsvKkKLR+BODIVgOTnGjWJbpx 96iHbBH4qOl+TwWERcr9pZoXV+IoJUQ= -----END CERTIFICATE-----Generated at Mon May 12 19:32:45 2025 by rpki-client