$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/CCD092AE4E6411EF92C0EC3AC4F9AE02.roa File: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (raw, json) Hash identifier: UwXH1XygsxxIwL/5ppPhVWdo9CvnJPBBvjk5qqmH4lU= Subject key identifier: 38:27:23:58:72:37:6B:B6:E1:9F:E1:7F:A3:C2:57:96:9F:CC:91:02 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D26 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/CCD092AE4E6411EF92C0EC3AC4F9AE02.roa Signing time: Wed 30 Apr 2025 16:28:18 +0000 ROA not before: Wed 30 Apr 2025 16:28:18 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140900 IP address blocks: 111.119.167.0/24 maxlen: 24 118.103.228.0/24 maxlen: 24 118.103.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:07:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7462 (0x1d26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Apr 30 16:28:18 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68124fa2-684d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:30:3d:b0:af:93:01:f3:2f:7d:62:04:0f: 86:1a:87:19:cf:a1:a4:51:df:d5:c8:ac:c0:e0:41: 75:e6:0f:53:60:4e:c9:ae:cf:01:91:ac:2d:a4:ce: 46:82:a7:81:98:20:64:20:5d:10:9a:1b:ad:96:08: 59:ed:51:e5:08:94:cb:34:15:82:22:b8:0b:66:d5: 5b:41:97:78:1d:b0:4d:c3:bd:57:f3:fd:79:66:8e: 8b:1d:21:0e:51:88:67:b0:e2:ca:af:99:e4:d4:77: 62:56:24:d5:4c:c8:06:8e:68:17:62:bf:2f:95:62: 15:90:1f:43:32:e7:f3:fb:15:60:3e:20:3a:5a:82: fd:f0:1e:56:f4:af:47:4b:5c:b8:12:ff:db:a9:7b: fe:fe:3c:01:4d:76:ad:63:27:33:d2:f5:0c:86:4c: 33:96:92:91:e7:86:0c:50:ec:d3:af:d3:01:3f:a5: ef:b2:45:e1:62:f2:12:f9:0a:e8:93:25:f3:88:28: d5:bd:65:de:38:e5:3c:76:05:8e:a0:3a:fa:6a:ec: 05:07:ba:d4:b2:b0:51:93:c9:b5:29:69:49:7e:e8: 9e:53:b3:c2:cc:51:cb:bf:bd:a9:2f:23:60:b2:56: 15:6c:a1:a7:29:6b:86:74:2a:34:39:52:08:b0:6d: f1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:27:23:58:72:37:6B:B6:E1:9F:E1:7F:A3:C2:57:96:9F:CC:91:02 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/CCD092AE4E6411EF92C0EC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.119.167.0/24 118.103.228.0/23 Signature Algorithm: sha256WithRSAEncryption 72:9d:2d:b4:41:bd:e8:3d:c9:4f:60:cc:ca:c3:b5:fb:04:0b: cc:10:ff:d5:af:44:6d:11:db:64:aa:76:6c:96:f1:e3:7d:2f: f5:04:4e:bc:26:00:4f:66:14:a5:20:79:1f:3c:aa:92:72:7e: 9b:ba:03:cd:03:74:38:bf:fb:eb:5f:b2:12:aa:7e:7c:10:63: b1:0d:8e:f4:29:34:86:1b:09:88:62:92:72:1d:51:1a:89:6a: eb:d1:99:5d:0e:b3:75:5d:fe:17:78:44:36:f1:41:02:9d:18: 22:06:1d:69:bc:90:a8:2d:af:ee:b6:d8:f8:25:7c:c3:06:56: f9:97:c8:59:7a:0c:aa:2e:77:ae:f9:ab:8c:6f:d8:34:e3:1c: a3:91:3b:f7:cf:89:45:de:f8:0c:13:06:c9:74:39:b4:ff:36: 47:88:6f:f6:bc:68:c8:fe:3d:8d:b5:4f:9f:8d:7f:d2:50:1c: 87:f9:c8:89:2b:48:cb:37:fc:5f:c8:a4:f4:1a:ca:2f:a0:45: 9b:fe:83:fa:3a:e6:a1:fd:91:09:1d:35:42:37:d5:a3:12:1c: e6:03:59:43:d5:37:04:85:df:1b:f4:ec:5c:cc:6a:c4:b7:ac: 5a:e5:73:1a:6d:ce:3f:ac:6b:cf:40:f5:e0:bc:9b:75:d5:5f: 4a:fe:b9:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwNDMwMTYyODE4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNGZhMi02ODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0MwPbCvkwHzL31iBA+GGocZz6GkUd/VyKzA4EF15g9TYE7Jrs8BkawtpM5G gqeBmCBkIF0QmhutlghZ7VHlCJTLNBWCIrgLZtVbQZd4HbBNw71X8/15Zo6LHSEO UYhnsOLKr5nk1HdiViTVTMgGjmgXYr8vlWIVkB9DMufz+xVgPiA6WoL98B5W9K9H S1y4Ev/bqXv+/jwBTXatYycz0vUMhkwzlpKR54YMUOzTr9MBP6XvskXhYvIS+Qro kyXziCjVvWXeOOU8dgWOoDr6auwFB7rUsrBRk8m1KWlJfuieU7PCzFHLv72pLyNg slYVbKGnKWuGdCo0OVIIsG3xfQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDgnI1hy N2u24Z/hf6PCV5afzJECMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvQ0NEMDkyQUU0 RTY0MTFFRjkyQzBFQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABvd6cDBAF2Z+QwDQYJKoZIhvcNAQELBQADggEBAHKdLbRB veg9yU9gzMrDtfsEC8wQ/9WvRG0R22SqdmyW8eN9L/UETrwmAE9mFKUgeR88qpJy fpu6A80DdDi/++tfshKqfnwQY7ENjvQpNIYbCYhiknIdURqJauvRmV0Os3Vd/hd4 RDbxQQKdGCIGHWm8kKgtr+622PglfMMGVvmXyFl6DKoud675q4xv2DTjHKORO/fP iUXe+AwTBsl0ObT/NkeIb/a8aMj+PY21T5+Nf9JQHIf5yIkrSMs3/F/IpPQayi+g RZv+g/o65qH9kQkdNUI31aMSHOYDWUPVNwSF3xv07FzMasS3rFrlcxptzj+sa89A 9eC8m3XVX0r+uRg= -----END CERTIFICATE-----Generated at Sun May 11 04:48:22 2025 by rpki-client