$ rpki-client -vvf rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/7D2C0290103011F08606D714C4F9AE02.roa File: 7D2C0290103011F08606D714C4F9AE02.roa (raw, json) Hash identifier: YeIsqC2yZDriIQzhHfDUg79mV40ujoQQFn6HZz5y+Bg= Subject key identifier: 92:6D:FB:AE:1B:4A:8D:37:C0:60:5E:A0:AB:0B:61:1E:40:44:87:2D Certificate issuer: /CN=A9189396/serialNumber=EF85AEFC7B0814DF3F410DA01CA34BE4D66BB1A3 Certificate serial: 03 Authority key identifier: EF:85:AE:FC:7B:08:14:DF:3F:41:0D:A0:1C:A3:4B:E4:D6:6B:B1:A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/7D2C0290103011F08606D714C4F9AE02.roa Signing time: Thu 03 Apr 2025 02:08:09 +0000 ROA not before: Thu 03 Apr 2025 02:08:09 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7575 IP address blocks: 152.98.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.crl rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189396, serialNumber=EF85AEFC7B0814DF3F410DA01CA34BE4D66BB1A3 Validity Not Before: Apr 3 02:08:09 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67eded89-c8b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b4:06:fb:30:f5:e7:27:49:57:a0:84:17:79: 6d:6d:90:98:a6:1e:87:4e:00:49:f1:9e:aa:b7:64: d7:1f:fa:29:a1:45:0d:d0:80:12:70:52:87:30:a1: 58:91:92:44:cb:05:de:c6:e9:73:e5:cf:14:c7:a5: c2:5e:ff:f3:fa:7d:63:6a:00:60:d0:df:ce:86:1a: a7:bf:d1:45:07:25:14:9a:c4:a5:11:24:fc:c0:cf: 33:f1:27:7c:4e:b9:32:ba:8e:9d:8e:b2:3c:d1:fe: 8d:1a:90:fa:43:08:10:0b:68:e8:b7:22:e4:8d:c6: 76:f8:9b:50:44:a5:d7:12:20:3e:19:70:10:a2:26: f0:db:11:5b:0d:07:66:b3:6b:2b:65:52:1c:f1:27: c4:f0:6d:1a:ef:94:b5:14:04:3d:0e:81:04:29:74: 4d:4b:e9:a4:f4:f7:d4:72:f5:d0:07:92:a9:da:4f: 7c:6f:14:08:c4:4e:1f:7e:03:ec:0b:df:2b:df:57: 90:e1:cc:6d:7d:7b:c5:49:03:a8:0b:51:56:d5:d9: 5c:a9:41:d9:88:91:da:68:40:ad:d2:60:2c:2a:83: ee:7e:48:8f:73:44:f4:0d:7a:f9:1c:99:5d:58:4c: 08:b8:b8:e3:4d:6d:8f:3c:8a:13:69:9d:8c:76:32: cf:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6D:FB:AE:1B:4A:8D:37:C0:60:5E:A0:AB:0B:61:1E:40:44:87:2D X509v3 Authority Key Identifier: keyid:EF:85:AE:FC:7B:08:14:DF:3F:41:0D:A0:1C:A3:4B:E4:D6:6B:B1:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74Wu_HsIFN8_QQ2gHKNL5NZrsaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189396/3B8D7488102911F09022263DC4F9AE02/7D2C0290103011F08606D714C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.98.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:8b:3f:3c:65:f6:28:b4:b0:28:cd:17:9f:b6:5a:6e:94:6e: 3c:0b:5d:15:6f:ca:c8:dd:eb:c1:70:44:47:0e:64:e7:e6:88: 0f:8c:ef:f4:73:b4:0e:24:25:d9:f0:79:8f:03:4f:e3:a0:c5: 16:aa:bd:65:dc:ff:a0:7a:40:d9:5f:00:e7:75:be:c1:65:76: 6a:17:bb:ef:88:f0:f2:10:e0:61:43:25:f5:95:83:85:49:56: f1:7e:2e:68:c2:2c:6f:09:05:b5:de:7f:cb:a6:4e:6d:a8:3d: aa:e5:aa:1d:86:4a:b7:10:78:d8:a0:d4:d9:eb:82:ee:90:b6: e0:19:f1:e9:a1:ab:e7:50:cc:25:32:7c:5b:f9:c0:e4:bf:23: cf:16:d6:ce:54:cc:51:01:cf:4b:cd:b4:1a:b6:51:89:3e:f8: 38:83:c5:24:f2:75:ed:a4:ff:03:e2:b0:12:ea:db:19:70:9f: a6:d4:dd:8b:2e:15:73:2a:bd:38:42:0f:2d:33:93:85:cd:c0: 1b:b9:4c:8c:61:4b:dd:46:72:7f:1b:09:82:2f:a8:d1:2c:0e: 34:6f:5b:1b:3f:57:05:f8:ce:34:ed:25:53:e7:e8:2e:08:07: 54:d5:c5:07:40:4f:d6:55:5f:d9:fd:a6:85:61:0a:f0:2f:d1: 5d:1c:50:e2 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OTM5NjExMC8GA1UEBRMoRUY4NUFFRkM3QjA4MTRERjNGNDEwREEwMUNBMzRCRTRE NjZCQjFBMzAeFw0yNTA0MDMwMjA4MDlaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWRlZDg5LWM4YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKtAb7MPXnJ0lXoIQXeW1tkJimHodOAEnxnqq3ZNcf+imhRQ3QgBJwUocwoViR kkTLBd7G6XPlzxTHpcJe//P6fWNqAGDQ386GGqe/0UUHJRSaxKURJPzAzzPxJ3xO uTK6jp2OsjzR/o0akPpDCBALaOi3IuSNxnb4m1BEpdcSID4ZcBCiJvDbEVsNB2az aytlUhzxJ8TwbRrvlLUUBD0OgQQpdE1L6aT099Ry9dAHkqnaT3xvFAjETh9+A+wL 3yvfV5DhzG19e8VJA6gLUVbV2VypQdmIkdpoQK3SYCwqg+5+SI9zRPQNevkcmV1Y TAi4uONNbY88ihNpnYx2Ms8XAgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUkm37rhtK jTfAYF6gqwthHkBEhy0wHwYDVR0jBBgwFoAU74Wu/HsIFN8/QQ2gHKNL5NZrsaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5Mzk2LzNCOEQ3NDg4MTAy OTExRjA5MDIyMjYzREM0RjlBRTAyLzc0V3VfSHNJRk44X1FRMmdIS05MNU5acnNh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNzRXdV9Ic0lGTjhfUVEyZ0hLTkw1Tlpyc2FNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTM5Ni8zQjhENzQ4ODEwMjkxMUYwOTAyMjI2M0RDNEY5QUUwMi83RDJDMDI5MDEw MzAxMUYwODYwNkQ3MTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAJhiMA0GCSqGSIb3DQEBCwUAA4IBAQBViz88ZfYotLAozRef tlpulG48C10Vb8rI3evBcERHDmTn5ogPjO/0c7QOJCXZ8HmPA0/joMUWqr1l3P+g ekDZXwDndb7BZXZqF7vviPDyEOBhQyX1lYOFSVbxfi5owixvCQW13n/Lpk5tqD2q 5aodhkq3EHjYoNTZ64LukLbgGfHpoavnUMwlMnxb+cDkvyPPFtbOVMxRAc9LzbQa tlGJPvg4g8Uk8nXtpP8D4rAS6tsZcJ+m1N2LLhVzKr04Qg8tM5OFzcAbuUyMYUvd RnJ/GwmCL6jRLA40b1sbP1cF+M407SVT5+guCAdU1cUHQE/WVV/Z/aaFYQrwL9Fd HFDi -----END CERTIFICATE-----Generated at Sat May 17 04:25:51 2025 by rpki-client