$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/E0A4E5182A6011EB8DEF2641C4F9AE02.roa File: E0A4E5182A6011EB8DEF2641C4F9AE02.roa (raw, json) Hash identifier: LmiT/78vJYPXtCg/vYC5cyA6e51c5z/fGkAk3TxGErM= Subject key identifier: C9:5E:7F:FB:3E:D1:66:08:A6:32:6B:50:E5:10:99:21:B5:DC:A3:98 Certificate issuer: /CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Certificate serial: 0832 Authority key identifier: 07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/E0A4E5182A6011EB8DEF2641C4F9AE02.roa Signing time: Fri 02 May 2025 21:32:38 +0000 ROA not before: Fri 02 May 2025 21:32:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1221 IP address blocks: 149.234.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 21:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Validity Not Before: May 2 21:32:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681539f6-251f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:51:46:85:db:ab:70:1f:40:f7:6f:60:b6:86: 02:54:ee:00:bb:a7:51:93:38:3d:0e:d9:26:3e:24: e5:be:8b:44:b6:d9:68:3b:13:f3:61:d0:bd:c2:29: b0:3d:24:d6:bb:89:bc:10:42:6f:3a:33:bf:4d:69: c6:d9:cb:70:3d:dd:d6:72:4b:b5:bd:07:b1:fc:60: c3:ee:cf:1a:1c:83:34:ca:6e:5a:7e:0b:6b:dd:ba: 57:a0:04:1a:bc:ed:4b:62:7e:e0:6d:7c:3d:ea:ea: 22:73:aa:f3:d7:50:e3:f6:c5:39:ba:e1:34:73:e6: 77:d7:47:9a:e4:46:e3:68:b5:5a:c4:a1:20:db:30: ab:df:58:2d:85:cc:1e:7d:4e:c0:a9:98:53:bd:9b: 03:2c:b6:bc:ea:56:fa:00:0a:dc:2d:43:90:bf:dd: 98:23:34:28:b9:fd:95:d3:3e:8d:19:6a:28:a3:f2: c7:4e:67:32:4f:31:3c:aa:bf:cc:87:6b:0d:2a:71: 0a:97:5d:3f:00:d0:e6:96:85:9c:c3:a2:ef:0d:c5: 8e:57:d7:67:d1:cd:d7:23:5a:03:1e:7b:1a:d8:53: 4d:d3:66:e7:7f:fa:df:cb:20:22:0b:c6:69:99:c9: 9c:44:60:90:e6:04:42:3e:04:f4:66:73:3e:92:02: 4d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:5E:7F:FB:3E:D1:66:08:A6:32:6B:50:E5:10:99:21:B5:DC:A3:98 X509v3 Authority Key Identifier: keyid:07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/E0A4E5182A6011EB8DEF2641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.187.0/24 Signature Algorithm: sha256WithRSAEncryption 97:5f:14:0d:3a:70:1c:fd:54:c1:b0:24:a6:e2:fd:3e:b3:91: ff:13:3c:60:bf:dd:18:c6:62:03:32:f4:7b:23:5a:69:75:86: 25:1a:26:03:9e:97:46:ae:cf:03:28:47:4f:b1:8d:a0:fe:73: dd:48:48:33:df:34:35:46:68:f9:3f:a3:de:fc:c4:2c:7c:67: 2f:9f:8a:2e:90:d4:5f:1b:b6:2c:be:0c:ea:0d:a3:5a:66:ca: be:21:da:34:e9:4c:45:3f:ba:bd:97:52:d8:91:de:73:32:a2: 99:cf:4a:86:04:86:6f:37:a3:1e:5e:db:ed:02:60:cd:d7:0e: a7:15:e5:34:34:d6:67:8e:f2:51:45:20:4d:b3:f0:e9:e3:fc: 7f:22:64:a5:32:ef:77:e9:2a:8f:3b:57:86:a9:f8:30:4e:3a: 2a:da:ac:d0:69:ba:98:d5:09:7c:42:87:75:8c:6a:ed:ae:0c: 72:5d:e9:ce:10:36:10:6a:b5:5f:f1:d2:9b:39:05:c5:bf:4e: 6b:eb:98:76:a9:d2:b5:df:ee:60:da:c6:67:53:22:73:e5:3a: 27:86:a5:ee:1d:9c:c7:3e:26:f6:70:1b:a1:6c:0e:3a:85:d7: 14:c3:0b:3e:14:6f:a9:d0:33:69:bb:01:71:a7:4e:94:63:9d: 04:6c:09:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDA3MjdBQUM1QjhDRjdGRTY4Q0NENkRFNzdGNkM4QjQ2 RDU3NEZBQTcwHhcNMjUwNTAyMjEzMjM4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzlmNi0yNTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVFGhdurcB9A929gtoYCVO4Au6dRkzg9DtkmPiTlvotEttloOxPzYdC9wimw PSTWu4m8EEJvOjO/TWnG2ctwPd3Wcku1vQex/GDD7s8aHIM0ym5afgtr3bpXoAQa vO1LYn7gbXw96uoic6rz11Dj9sU5uuE0c+Z310ea5EbjaLVaxKEg2zCr31gthcwe fU7AqZhTvZsDLLa86lb6AArcLUOQv92YIzQouf2V0z6NGWooo/LHTmcyTzE8qr/M h2sNKnEKl10/ANDmloWcw6LvDcWOV9dn0c3XI1oDHnsa2FNN02bnf/rfyyAiC8Zp mcmcRGCQ5gRCPgT0ZnM+kgJNGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMlef/s+ 0WYIpjJrUOUQmSG13KOYMB8GA1UdIwQYMBaAFAcnqsW4z3/mjM1t539si0bVdPqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GNEJENTAwOEUw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9CeWVxeGJqUGYtYU16VzNuZjJ5TFJ0VjAt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5ZXF4YmpQZi1hTXpXM25mMnlMUnRWMC1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4M0IvRjRCRDUwMDhFMDIzMTFFQTk5MjJERTQyQzRGOUFFMDIvRTBBNEU1MTgy QTYwMTFFQjhERUYyNjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6rswDQYJKoZIhvcNAQELBQADggEBAJdfFA06cBz9VMGw JKbi/T6zkf8TPGC/3RjGYgMy9HsjWml1hiUaJgOel0auzwMoR0+xjaD+c91ISDPf NDVGaPk/o978xCx8Zy+fii6Q1F8btiy+DOoNo1pmyr4h2jTpTEU/ur2XUtiR3nMy opnPSoYEhm83ox5e2+0CYM3XDqcV5TQ01meO8lFFIE2z8Onj/H8iZKUy73fpKo87 V4ap+DBOOirarNBpupjVCXxCh3WMau2uDHJd6c4QNhBqtV/x0ps5BcW/TmvrmHap 0rXf7mDaxmdTInPlOieGpe4dnMc+JvZwG6FsDjqF1xTDCz4Ub6nQM2m7AXGnTpRj nQRsCZM= -----END CERTIFICATE-----Generated at Sun May 18 18:57:42 2025 by rpki-client