$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa File: 1501E24625F511EF8F342F3EC4F9AE02.roa (raw, json) Hash identifier: nyb0dAzbvJzklMfthLLqpt+z0+HXJ9fgrE8gdxbb/So= Subject key identifier: 2D:1E:8A:3C:3E:7E:27:58:75:2D:05:88:3C:EE:79:A5:E1:C9:1B:3E Certificate issuer: /CN=A9188F77/serialNumber=16315A68A745080BDDB6C8F0156D043068931B57 Certificate serial: D3 Authority key identifier: 16:31:5A:68:A7:45:08:0B:DD:B6:C8:F0:15:6D:04:30:68:93:1B:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa Signing time: Tue 01 Jul 2025 06:44:21 +0000 ROA not before: Tue 01 Jul 2025 06:44:21 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136433 IP address blocks: 163.223.76.0/24 maxlen: 24 202.61.110.0/24 maxlen: 24 2001:df4:4a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.crl rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F77, serialNumber=16315A68A745080BDDB6C8F0156D043068931B57 Validity Not Before: Jul 1 06:44:21 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686383c5-8e18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cc:64:95:53:ad:78:c6:60:b7:bd:b3:8c:dd: a8:1f:38:2a:4c:23:42:21:5f:6a:50:04:f1:4b:66: 0d:c4:1f:0f:ce:40:67:1f:23:60:22:04:8f:8f:57: 10:3c:ce:98:76:d3:02:5d:8b:9c:75:9f:5f:24:9b: 5f:df:72:b1:65:52:e5:17:99:63:cf:fa:d7:b1:79: 8e:8c:21:2d:89:f1:80:60:87:5b:1b:92:ef:05:fd: 62:d4:f0:14:75:63:ce:da:c5:4d:44:8b:f3:04:f5: 88:c9:2b:d1:c0:c7:cb:e0:66:e0:42:4a:ca:d5:2e: 78:2e:5d:60:0b:9c:75:61:28:72:b3:ff:ae:92:7d: 3a:11:51:6a:51:a8:d4:d6:00:7a:d4:4e:80:58:12: 3c:54:1a:2d:00:67:0c:e5:df:2c:15:82:3d:1b:da: ae:7e:39:d3:44:51:75:c1:a8:e9:37:22:58:02:12: d9:f0:aa:34:5b:3a:a3:db:ef:6e:75:3b:4f:02:83: 7c:c5:b0:9a:ca:c7:ef:b0:ba:64:b4:59:fb:02:0b: 86:6f:f3:11:7c:7f:f7:1d:9d:0e:13:fb:99:14:4f: 28:bf:83:69:0b:6f:5c:c4:50:ea:b6:17:d2:61:00: 23:ed:b8:8c:22:7c:d0:2c:6d:e1:c7:7d:75:c0:cd: 62:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1E:8A:3C:3E:7E:27:58:75:2D:05:88:3C:EE:79:A5:E1:C9:1B:3E X509v3 Authority Key Identifier: keyid:16:31:5A:68:A7:45:08:0B:DD:B6:C8:F0:15:6D:04:30:68:93:1B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.76.0/24 202.61.110.0/24 IPv6: 2001:df4:4a40::/48 Signature Algorithm: sha256WithRSAEncryption 55:fa:d6:7c:03:ad:84:56:93:0c:c5:12:60:01:c5:68:d5:5b: 46:44:5f:f3:33:f9:56:c7:44:2d:9b:2a:fe:7e:2a:9b:9a:b2: 61:a0:d0:52:bc:58:57:8e:04:f6:0f:c8:09:82:4a:3b:96:da: 44:7a:a9:b5:68:38:09:27:78:31:30:8c:fe:85:41:99:3e:bb: 19:cc:00:57:10:57:2d:ec:c8:7a:db:d8:f6:2b:b1:39:53:b3: f4:f7:68:f4:9e:e0:23:a7:d1:b4:ab:0e:61:38:af:d7:23:80: 30:de:4e:93:2b:c7:86:05:c9:17:c0:f1:40:a8:04:14:58:0d: cf:b1:7e:3b:0b:29:95:ed:d8:c3:85:3c:86:c1:2d:06:2d:b9: 82:24:1d:e5:e0:47:6b:66:24:af:ee:81:e9:15:22:6c:e2:a9: 66:e9:69:74:64:94:62:8e:6b:9a:95:45:ae:99:9b:58:d5:0b: 60:17:9c:be:c0:83:64:dc:bc:41:4d:01:8d:61:de:dd:bd:a8: 7b:64:ee:48:5f:2f:8d:aa:2d:5c:90:be:7f:69:db:57:3d:1d: 0c:6b:00:0e:57:7e:d8:c4:88:fd:dd:5b:35:b8:e2:76:51:e8: 8a:b3:07:94:0a:7f:5d:d9:8f:ab:cb:8e:bd:84:9e:87:22:0a: 3e:39:b9:d7 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhGNzcxMTAvBgNVBAUTKDE2MzE1QTY4QTc0NTA4MEJEREI2QzhGMDE1NkQwNDMw Njg5MzFCNTcwHhcNMjUwNzAxMDY0NDIxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzODNjNS04ZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMxklVOteMZgt72zjN2oHzgqTCNCIV9qUATxS2YNxB8PzkBnHyNgIgSPj1cQ PM6YdtMCXYucdZ9fJJtf33KxZVLlF5ljz/rXsXmOjCEtifGAYIdbG5LvBf1i1PAU dWPO2sVNRIvzBPWIySvRwMfL4GbgQkrK1S54Ll1gC5x1YShys/+ukn06EVFqUajU 1gB61E6AWBI8VBotAGcM5d8sFYI9G9qufjnTRFF1wajpNyJYAhLZ8Ko0Wzqj2+9u dTtPAoN8xbCaysfvsLpktFn7AguGb/MRfH/3HZ0OE/uZFE8ov4NpC29cxFDqthfS YQAj7biMInzQLG3hx311wM1iwwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFC0eijw+ fidYdS0FiDzueaXhyRs+MB8GA1UdIwQYMBaAFBYxWminRQgL3bbI8BVtBDBokxtX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEY3Ny9DRDI4NzM4MjI1 QzExMUVGOTAwOTdGNUFDNEY5QUUwMi9GakZhYUtkRkNBdmR0c2p3RlcwRU1HaVRH MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZqRmFhS2RGQ0F2ZHRzandGVzBFTUdpVEcxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhGNzcvQ0QyODczODIyNUMxMTFFRjkwMDk3RjVBQzRGOUFFMDIvMTUwMUUyNDYy NUY1MTFFRjhGMzQyRjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBACj30wDBADKPW4wDwQCAAIwCQMHACABDfRKQDANBgkqhkiG 9w0BAQsFAAOCAQEAVfrWfAOthFaTDMUSYAHFaNVbRkRf8zP5VsdELZsq/n4qm5qy YaDQUrxYV44E9g/ICYJKO5baRHqptWg4CSd4MTCM/oVBmT67GcwAVxBXLezIetvY 9iuxOVOz9Pdo9J7gI6fRtKsOYTiv1yOAMN5OkyvHhgXJF8DxQKgEFFgNz7F+Owsp le3Yw4U8hsEtBi25giQd5eBHa2Ykr+6B6RUibOKpZulpdGSUYo5rmpVFrpmbWNUL YBecvsCDZNy8QU0BjWHe3b2oe2TuSF8vjaotXJC+f2nbVz0dDGsADld+2MSI/d1b NbjidlHoirMHlAp/XdmPq8uOvYSehyIKPjm51w== -----END CERTIFICATE-----Generated at Thu Jul 3 02:03:38 2025 by rpki-client