$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/9EA66A9E737D11ECA0A3A018C4F9AE02.roa File: 9EA66A9E737D11ECA0A3A018C4F9AE02.roa (raw, json) Hash identifier: 6MugAT5WUA7wa54QdXsUcpbkyeNKtczQJ8hnMQYoyDw= Subject key identifier: 64:06:55:E9:41:85:21:75:9F:9B:F6:1F:E5:8F:DC:1F:82:55:CE:F2 Certificate issuer: /CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Certificate serial: 0836 Authority key identifier: 07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/9EA66A9E737D11ECA0A3A018C4F9AE02.roa Signing time: Fri 02 May 2025 21:32:42 +0000 ROA not before: Fri 02 May 2025 21:32:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141435 IP address blocks: 149.234.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 21:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Validity Not Before: May 2 21:32:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681539fa-1387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:26:d6:cf:37:b6:32:6a:db:5b:64:ff:59: 4c:9c:22:b4:4c:8e:3e:8d:4f:d0:5a:11:c7:bf:1a: a5:3f:5d:47:17:ac:1f:f7:65:e7:8d:b2:3e:53:84: 9f:48:bb:8f:b3:0d:d7:51:27:a9:c1:58:37:ea:c3: dc:19:95:e2:10:41:b6:f8:77:04:5b:f6:11:55:84: 58:06:9b:d3:42:4f:ba:80:de:5e:f5:2a:59:04:be: 9a:80:59:17:41:e1:5a:3a:fb:cb:c4:f3:78:ca:85: 17:bf:46:26:a3:f1:c6:52:23:78:da:be:60:69:a3: 6f:be:1e:54:54:d4:3e:b5:c5:63:4d:a0:49:66:64: cb:9d:23:22:17:ce:a2:73:0e:c9:b6:53:ce:8d:52: d4:13:83:53:a6:1f:61:39:80:60:1b:49:fc:84:f6: 39:3c:df:df:f5:7a:52:6a:18:1c:1c:2d:4a:5c:a7: 1e:29:a0:32:f0:cb:60:93:14:54:fc:9e:90:95:cb: 5f:b5:a7:c2:d8:bf:7f:34:09:90:54:2f:a2:b1:fb: 61:29:31:6f:4e:5c:33:61:2a:d0:45:12:3e:bc:9a: d9:e3:5c:fa:d3:19:86:8d:51:ed:0b:61:dc:46:0e: 54:31:dc:90:de:91:fa:31:e3:de:3e:d6:0d:11:8e: fe:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:06:55:E9:41:85:21:75:9F:9B:F6:1F:E5:8F:DC:1F:82:55:CE:F2 X509v3 Authority Key Identifier: keyid:07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/9EA66A9E737D11ECA0A3A018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.187.0/24 Signature Algorithm: sha256WithRSAEncryption 45:3e:fe:5b:80:43:bf:6c:6e:3e:d8:fd:75:80:9e:1b:00:92: f4:66:55:66:52:d8:ad:e6:80:e9:25:c8:25:2d:3b:37:3b:39: 31:6d:7f:be:b7:4d:43:c9:cb:eb:73:d9:75:3d:2a:33:8e:57: 82:0d:c3:e9:33:63:43:d6:a1:e6:a2:ba:4a:68:d5:a1:02:ae: eb:e1:79:65:b7:76:1c:eb:b1:3b:3d:2b:df:0e:b9:f2:1b:08: 9a:0d:00:51:c8:d7:cd:65:4f:63:a8:61:88:1b:51:41:74:7e: 4d:6b:91:2d:a0:9b:31:37:f6:2f:a2:d0:0d:b4:95:d5:6d:20: ff:8d:31:1c:66:ea:93:43:f7:72:0d:be:22:17:a0:30:ac:44: b6:73:7e:c4:a3:ad:a8:43:e2:f9:00:44:5a:dc:7b:26:f7:25: af:05:81:06:9d:b5:d4:9b:19:9e:be:ad:b9:d1:1a:dd:1c:bb: 8f:e9:7f:3e:93:96:00:1f:64:a4:c7:a6:d8:45:0b:e6:d1:be: d7:fe:3c:72:e2:82:6c:b1:9e:62:18:38:ce:cc:09:5d:02:e4: 3c:0b:6e:07:83:9c:d7:f0:94:ec:23:36:5b:aa:ff:a8:32:5d: 89:98:5e:76:35:b6:de:07:ff:5c:32:8f:c4:b2:e2:9b:17:78: 7d:20:d9:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDA3MjdBQUM1QjhDRjdGRTY4Q0NENkRFNzdGNkM4QjQ2 RDU3NEZBQTcwHhcNMjUwNTAyMjEzMjQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzlmYS0xMzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSwm1s83tjJq21tk/1lMnCK0TI4+jU/QWhHHvxqlP11HF6wf92XnjbI+U4Sf SLuPsw3XUSepwVg36sPcGZXiEEG2+HcEW/YRVYRYBpvTQk+6gN5e9SpZBL6agFkX QeFaOvvLxPN4yoUXv0Ymo/HGUiN42r5gaaNvvh5UVNQ+tcVjTaBJZmTLnSMiF86i cw7JtlPOjVLUE4NTph9hOYBgG0n8hPY5PN/f9XpSahgcHC1KXKceKaAy8MtgkxRU /J6QlctftafC2L9/NAmQVC+isfthKTFvTlwzYSrQRRI+vJrZ41z60xmGjVHtC2Hc Rg5UMdyQ3pH6MePePtYNEY7+hQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQGVelB hSF1n5v2H+WP3B+CVc7yMB8GA1UdIwQYMBaAFAcnqsW4z3/mjM1t539si0bVdPqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GNEJENTAwOEUw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9CeWVxeGJqUGYtYU16VzNuZjJ5TFJ0VjAt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5ZXF4YmpQZi1hTXpXM25mMnlMUnRWMC1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4M0IvRjRCRDUwMDhFMDIzMTFFQTk5MjJERTQyQzRGOUFFMDIvOUVBNjZBOUU3 MzdEMTFFQ0EwQTNBMDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6rswDQYJKoZIhvcNAQELBQADggEBAEU+/luAQ79sbj7Y /XWAnhsAkvRmVWZS2K3mgOklyCUtOzc7OTFtf763TUPJy+tz2XU9KjOOV4INw+kz Y0PWoeaiukpo1aECruvheWW3dhzrsTs9K98OufIbCJoNAFHI181lT2OoYYgbUUF0 fk1rkS2gmzE39i+i0A20ldVtIP+NMRxm6pND93INviIXoDCsRLZzfsSjrahD4vkA RFrceyb3Ja8FgQadtdSbGZ6+rbnRGt0cu4/pfz6TlgAfZKTHpthFC+bRvtf+PHLi gmyxnmIYOM7MCV0C5DwLbgeDnNfwlOwjNluq/6gyXYmYXnY1tt4H/1wyj8Sy4psX eH0g2Yk= -----END CERTIFICATE-----Generated at Sun May 18 20:38:07 2025 by rpki-client