$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa File: ECFCBBA4D8D711EF91AD5538C4F9AE02.roa (raw, json) Hash identifier: gZn16tC5XIxJq5Bd2o3GIG75y7iJRL5vU83vOQ97xII= Subject key identifier: D5:F7:0F:C6:01:1E:E5:6A:62:B2:75:DF:56:5B:61:42:FE:0A:E3:8D Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0336 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa Signing time: Tue 06 May 2025 09:31:12 +0000 ROA not before: Tue 06 May 2025 09:31:12 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138115 IP address blocks: 202.155.132.0/24 maxlen: 24 202.155.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 01:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: May 6 09:31:12 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6819d6e0-c933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ca:11:11:cb:87:bd:71:2b:86:69:eb:c6:65: e2:88:75:4e:47:9e:f2:9e:df:ef:52:61:c7:6e:a8: 4d:55:d2:6b:49:d6:03:64:66:3d:70:00:0d:22:d5: 03:aa:cc:38:e4:73:0d:d3:5d:f8:72:3c:24:fb:c6: 44:be:0b:d0:dd:fa:7c:b3:d8:32:98:24:39:63:ea: 03:21:e9:bc:2b:f2:c0:cb:7f:ff:a3:41:db:8d:cb: 38:ee:5e:68:3e:f3:4b:95:56:36:aa:0c:5d:d0:df: 84:56:dd:51:01:b7:47:e0:d1:71:91:81:d9:60:97: 98:b0:bc:cd:1e:c5:fd:42:d9:80:ab:27:a8:77:cd: 38:37:3c:f0:95:81:a8:bc:9d:9a:0b:dc:d5:2c:4e: bb:10:87:20:7e:c6:1c:24:f9:a7:54:02:e7:21:b9: ab:26:d1:71:c2:70:b3:40:8d:c2:63:ff:28:d9:5d: 46:5e:e3:62:c9:c8:bc:22:ed:34:8a:63:f0:cf:cd: 79:67:c9:e4:9c:68:68:c4:5d:eb:9a:1a:a7:1b:11: 6a:f7:0e:4e:80:3a:aa:63:fd:7a:d1:e8:c3:8c:5d: 91:ae:8b:e4:8c:c7:29:26:37:de:ce:54:ca:9a:6e: 3c:99:48:50:90:f0:2b:98:6b:55:67:0b:5d:39:08: 2b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F7:0F:C6:01:1E:E5:6A:62:B2:75:DF:56:5B:61:42:FE:0A:E3:8D X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.132.0/24 202.155.137.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:79:e9:ad:1d:a0:e3:53:bf:a1:da:da:f7:16:c6:de:99:15: bf:ff:2e:1a:db:49:cc:0b:28:34:78:bd:ad:18:4c:74:b7:f3: fc:bc:00:64:ae:56:88:c2:67:34:cd:5f:52:10:42:fe:f4:81: a4:be:94:6c:17:78:59:72:ad:4b:1b:46:4b:ed:03:04:4e:07: e3:eb:fd:31:37:ae:04:31:47:fd:50:5c:bb:cb:20:1f:ff:29: 89:09:70:88:da:9d:9b:af:53:a5:ab:d0:a8:b6:a7:62:38:aa: 66:ec:7b:70:c7:9d:91:8c:af:64:60:f2:7b:cd:48:b8:ea:9f: c5:df:6a:8e:a0:34:a3:72:b7:bd:36:29:04:03:35:d0:99:eb: 7c:80:bd:2d:e1:71:8c:b6:19:ed:6d:d5:b3:3b:93:2a:d3:20: 18:db:4e:ae:0f:09:8a:6f:a5:6a:9f:4c:b4:3c:a2:de:e7:fb: ba:81:11:3e:8d:2e:af:22:80:8c:77:0b:52:a1:86:50:fa:e4: 45:39:c1:b6:41:c9:8f:41:33:d3:eb:ee:e2:17:bc:76:a6:d7: 6b:4a:ab:6d:63:e0:30:45:aa:94:2b:b1:63:40:f7:5a:cf:a3: 5b:85:df:09:84:70:bd:c4:39:f5:42:02:1a:fa:14:e9:e5:6d: 72:47:6f:7b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwNTA2MDkzMTEyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE5ZDZlMC1jOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2coREcuHvXErhmnrxmXiiHVOR57ynt/vUmHHbqhNVdJrSdYDZGY9cAANItUD qsw45HMN0134cjwk+8ZEvgvQ3fp8s9gymCQ5Y+oDIem8K/LAy3//o0Hbjcs47l5o PvNLlVY2qgxd0N+EVt1RAbdH4NFxkYHZYJeYsLzNHsX9QtmAqyeod804NzzwlYGo vJ2aC9zVLE67EIcgfsYcJPmnVALnIbmrJtFxwnCzQI3CY/8o2V1GXuNiyci8Iu00 imPwz815Z8nknGhoxF3rmhqnGxFq9w5OgDqqY/160ejDjF2RrovkjMcpJjfezlTK mm48mUhQkPArmGtVZwtdOQgrJQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNX3D8YB HuVqYrJ131ZbYUL+CuONMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvRUNGQ0JCQTRE OEQ3MTFFRjkxQUQ1NTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKm4QDBADKm4kwDQYJKoZIhvcNAQELBQADggEBAE156a0d oONTv6Ha2vcWxt6ZFb//LhrbScwLKDR4va0YTHS38/y8AGSuVojCZzTNX1IQQv70 gaS+lGwXeFlyrUsbRkvtAwROB+Pr/TE3rgQxR/1QXLvLIB//KYkJcIjanZuvU6Wr 0Ki2p2I4qmbse3DHnZGMr2Rg8nvNSLjqn8Xfao6gNKNyt702KQQDNdCZ63yAvS3h cYy2Ge1t1bM7kyrTIBjbTq4PCYpvpWqfTLQ8ot7n+7qBET6NLq8igIx3C1KhhlD6 5EU5wbZByY9BM9Pr7uIXvHam12tKq21j4DBFqpQrsWNA91rPo1uF3wmEcL3EOfVC Ahr6FOnlbXJHb3s= -----END CERTIFICATE-----Generated at Thu May 8 05:16:19 2025 by rpki-client