$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/E586278C29A111F0BA1F4E63C4F9AE02.roa File: E586278C29A111F0BA1F4E63C4F9AE02.roa (raw, json) Hash identifier: iMx1ZiX9rWmGz4A0kr/IlO0X/88Oa+zlLaNS0YVQidY= Subject key identifier: DC:C9:F1:DC:4B:44:D3:22:6C:EC:71:2E:43:2E:C5:09:C3:13:55:9F Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: 012B Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/E586278C29A111F0BA1F4E63C4F9AE02.roa Signing time: Mon 05 May 2025 11:12:57 +0000 ROA not before: Mon 05 May 2025 11:12:57 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151848 IP address blocks: 202.77.138.0/24 maxlen: 24 2001:df3:3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79, serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Validity Not Before: May 5 11:12:57 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68189d38-5d5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b7:e9:99:9f:6c:8f:69:b7:72:89:03:0b:ea: 7e:ef:bc:f8:97:94:d6:50:ad:04:93:25:b2:44:c2: bf:33:22:09:50:7d:e0:07:b2:ca:86:1d:c6:d9:2c: 55:7d:09:90:17:c5:1e:d4:d9:a1:f2:0d:b7:54:c3: 50:4f:3d:9f:12:2e:7f:0d:c3:9c:20:de:2c:a2:d1: 80:7b:d8:f9:54:27:cc:eb:e3:48:e7:80:ff:f2:5b: 65:97:54:03:c2:21:63:fc:a0:c0:df:36:5e:a5:f5: da:d8:d4:d1:2b:46:d2:95:f5:95:fd:d2:c7:8e:08: cb:e3:43:5e:a5:34:54:41:25:35:8b:9d:10:0f:ff: 46:c1:12:7e:c1:9c:d0:ec:08:f3:fd:d3:79:b4:8d: 93:9c:ff:83:7f:d9:0b:ee:59:45:2a:a5:c7:bc:97: 00:b8:ba:44:72:6f:0e:00:23:08:9c:69:fb:5f:be: 94:57:c7:b7:d3:02:53:ac:d9:f7:46:b2:55:d2:41: cd:4e:dc:5c:e9:2e:ec:fa:16:07:87:e4:1a:9e:5f: 43:bc:e7:f0:10:eb:c8:24:15:61:31:16:5c:82:b0: 5d:d5:56:fd:61:64:1e:92:d3:a0:23:30:dc:14:f2: 23:ac:49:da:49:c4:c3:d5:44:0e:02:da:88:0c:8f: 5a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C9:F1:DC:4B:44:D3:22:6C:EC:71:2E:43:2E:C5:09:C3:13:55:9F X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/E586278C29A111F0BA1F4E63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.77.138.0/24 IPv6: 2001:df3:3c0::/48 Signature Algorithm: sha256WithRSAEncryption 20:bb:97:51:a2:37:80:5b:59:31:b2:72:92:4a:92:d8:4a:9f: e6:14:4f:b5:ce:52:23:fa:de:05:61:c6:4f:b8:23:bd:c1:90: c4:86:7c:dd:d2:20:22:fd:92:8a:b9:71:f6:c6:e4:14:24:cf: 2d:9f:5a:8b:ac:8b:68:f7:8c:e6:b0:09:55:0e:51:5d:ba:9f: e2:8d:7a:c4:bd:72:e4:42:8a:63:30:e0:5b:34:fc:6d:92:62: 30:1a:ae:a7:f3:7c:97:08:c4:17:00:c6:c4:b8:8a:60:4c:9c: 1d:fa:ed:8a:5e:19:5b:7c:b4:4a:93:49:f1:c7:ca:a1:e8:00: e3:67:f9:80:d4:c4:9f:f5:58:20:a1:e9:6e:64:ab:21:4a:45: 92:b3:c2:cc:37:89:2d:95:27:d6:47:f6:78:fd:4d:39:08:c1: e6:b0:2e:89:4d:ea:88:ca:dc:1d:ef:85:12:c2:90:b1:16:e8: 22:2b:a9:d0:01:25:ea:08:98:e3:30:67:7f:38:87:2c:e4:f3: bd:a0:b7:e4:97:02:64:5e:cb:78:23:90:01:41:ce:cb:05:cf: f3:bc:31:e6:5f:be:1e:18:56:38:b0:74:f1:d9:ad:a5:58:82: e5:25:0a:d0:c1:ba:a8:d1:63:a5:ba:8f:dc:6e:0d:88:b4:1a: c6:f2:f4:c4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBENzkxMTAvBgNVBAUTKDRFMjFGNUFBOEM5MjhDMEI2NzU3QzAzRTU1QjBBNTky M0M0RTQ4QUIwHhcNMjUwNTA1MTExMjU3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4OWQzOC01ZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7fpmZ9sj2m3cokDC+p+77z4l5TWUK0EkyWyRMK/MyIJUH3gB7LKhh3G2SxV fQmQF8Ue1Nmh8g23VMNQTz2fEi5/DcOcIN4sotGAe9j5VCfM6+NI54D/8ltll1QD wiFj/KDA3zZepfXa2NTRK0bSlfWV/dLHjgjL40NepTRUQSU1i50QD/9GwRJ+wZzQ 7Ajz/dN5tI2TnP+Df9kL7llFKqXHvJcAuLpEcm8OACMInGn7X76UV8e30wJTrNn3 RrJV0kHNTtxc6S7s+hYHh+Qanl9DvOfwEOvIJBVhMRZcgrBd1Vb9YWQektOgIzDc FPIjrEnaScTD1UQOAtqIDI9a6QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNzJ8dxL RNMibOxxLkMuxQnDE1WfMB8GA1UdIwQYMBaAFE4h9aqMkowLZ1fAPlWwpZI8Tkir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MEQ3OS9FMTgyMDhCQzZE OUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pBdG5WOEEtVmJDbGtqeE9T S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODBENzkvRTE4MjA4QkM2RDlDMTFFRUEwMkJCQjBFQzRGOUFFMDIvRTU4NjI3OEMy OUExMTFGMEJBMUY0RTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKTYowDwQCAAIwCQMHACABDfMDwDANBgkqhkiG9w0BAQsF AAOCAQEAILuXUaI3gFtZMbJykkqS2Eqf5hRPtc5SI/reBWHGT7gjvcGQxIZ83dIg Iv2Sirlx9sbkFCTPLZ9ai6yLaPeM5rAJVQ5RXbqf4o16xL1y5EKKYzDgWzT8bZJi MBqup/N8lwjEFwDGxLiKYEycHfrtil4ZW3y0SpNJ8cfKoegA42f5gNTEn/VYIKHp bmSrIUpFkrPCzDeJLZUn1kf2eP1NOQjB5rAuiU3qiMrcHe+FEsKQsRboIiup0AEl 6giY4zBnfziHLOTzvaC35JcCZF7LeCOQAUHOywXP87wx5l++HhhWOLB08dmtpViC 5SUK0MG6qNFjpbqP3G4NiLQaxvL0xA== -----END CERTIFICATE-----Generated at Sun May 11 22:12:42 2025 by rpki-client