$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FEB0FC60A33511EBA984863CC4F9AE02.roa File: FEB0FC60A33511EBA984863CC4F9AE02.roa (raw, json) Hash identifier: YlusDdL6GSsVTm6aqUoc8SPstBv7LDPsMKGOZ35QMHY= Subject key identifier: 52:BD:14:70:36:53:F0:54:C4:CC:90:50:31:E9:EC:08:87:43:EE:69 Certificate issuer: /CN=A918495F/serialNumber=0C5A542A1E9B3FB5C8E49686EBEBCFC050CCE4A5 Certificate serial: 1757 Authority key identifier: 0C:5A:54:2A:1E:9B:3F:B5:C8:E4:96:86:EB:EB:CF:C0:50:CC:E4:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FEB0FC60A33511EBA984863CC4F9AE02.roa Signing time: Thu 08 May 2025 17:17:42 +0000 ROA not before: Thu 08 May 2025 17:17:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4760 IP address blocks: 168.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.crl rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5975 (0x1757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=0C5A542A1E9B3FB5C8E49686EBEBCFC050CCE4A5 Validity Not Before: May 8 17:17:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ce735-bfc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ea:32:73:16:26:47:bc:fb:7a:60:f1:2f:cf: 5c:51:ee:b6:d9:f6:22:cb:0f:64:9c:8d:e9:10:73: b6:ca:bd:dc:e7:ee:63:db:5e:81:94:f8:b3:e2:8e: 58:2b:db:3f:d7:b8:2f:42:43:c7:47:74:3f:c4:d4: 13:0b:32:fa:4f:9b:a1:a2:87:43:6e:03:cd:d1:39: 8c:d3:5e:6e:86:c0:49:6d:ed:f8:ff:69:33:88:f9: b0:3e:b1:43:fc:4d:4b:3f:e9:60:02:02:c7:8e:41: b8:5e:89:c9:19:8a:77:3d:c0:01:80:12:a9:d9:9b: 11:2c:42:f8:55:51:e3:78:d7:fb:1f:b3:12:cf:75: 70:43:f9:23:01:fb:b5:12:73:c6:69:87:c9:2b:86: a0:8d:aa:a0:8a:76:64:b6:f8:d9:05:44:35:29:36: f1:b5:2b:fa:db:1f:85:c1:59:de:82:88:ac:6e:77: 18:d6:be:35:87:d0:66:ab:18:b6:92:97:3e:6f:e8: 78:f7:08:e4:a9:99:d7:87:d5:9a:89:d8:bb:37:3d: d5:d4:56:04:2a:80:58:09:a0:eb:2a:ec:8c:5b:c2: 80:d6:a3:a5:68:38:42:50:25:71:48:62:da:d3:42: 1b:c9:ef:d7:ce:29:ba:83:2f:d8:2c:3f:77:23:bc: 06:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BD:14:70:36:53:F0:54:C4:CC:90:50:31:E9:EC:08:87:43:EE:69 X509v3 Authority Key Identifier: keyid:0C:5A:54:2A:1E:9B:3F:B5:C8:E4:96:86:EB:EB:CF:C0:50:CC:E4:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/FEB0FC60A33511EBA984863CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption 46:1b:bc:11:07:35:34:4e:59:f5:5d:cf:de:70:49:2d:f5:18: cc:5e:8c:79:26:ee:9e:1a:e9:4c:a5:10:c7:ec:ac:ec:59:15: 64:a8:2e:03:af:8e:8d:2e:b8:36:55:08:a4:5e:e6:5d:c9:e0: ef:eb:03:aa:70:dc:84:32:e1:32:23:62:3a:46:26:de:06:1b: 64:85:bb:77:cb:30:27:f7:a4:7e:29:22:b7:14:9d:70:f3:3b: d5:f4:49:6e:07:bc:e5:13:d4:f8:a4:28:fc:91:d7:27:4d:12: 27:d4:3e:e4:98:92:a4:6e:db:f4:bf:3a:e8:c0:85:e7:84:a8: f3:fb:df:a1:3b:cf:e1:db:de:2c:43:df:02:6d:22:8c:86:62: f6:f6:82:f5:45:53:b3:b0:92:10:b0:90:62:d6:37:52:ed:60: be:d3:27:4a:8e:6f:e5:14:76:f6:14:17:1c:5c:36:f1:28:25: 51:3a:b5:56:a7:a9:f2:fa:f8:be:ea:2f:9a:bb:e8:d7:ae:bc: 94:ce:14:45:7d:c8:16:e2:4a:fe:f9:a0:1b:d3:e0:52:04:5f: 71:b7:aa:e5:39:dd:cd:8b:ac:04:e6:af:6c:6d:e3:6d:49:4b: e5:2f:c3:4e:98:4e:07:7c:06:aa:d0:36:43:e6:b7:d3:39:68: 62:8b:cc:ed -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICF1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDBDNUE1NDJBMUU5QjNGQjVDOEU0OTY4NkVCRUJDRkMw NTBDQ0U0QTUwHhcNMjUwNTA4MTcxNzQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZTczNS1iZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeoycxYmR7z7emDxL89cUe622fYiyw9knI3pEHO2yr3c5+5j216BlPiz4o5Y K9s/17gvQkPHR3Q/xNQTCzL6T5uhoodDbgPN0TmM015uhsBJbe34/2kziPmwPrFD /E1LP+lgAgLHjkG4XonJGYp3PcABgBKp2ZsRLEL4VVHjeNf7H7MSz3VwQ/kjAfu1 EnPGaYfJK4agjaqginZktvjZBUQ1KTbxtSv62x+FwVnegoisbncY1r41h9Bmqxi2 kpc+b+h49wjkqZnXh9Waidi7Nz3V1FYEKoBYCaDrKuyMW8KA1qOlaDhCUCVxSGLa 00Ibye/Xzim6gy/YLD93I7wGDQIDAQABo4IClDCCApAwHQYDVR0OBBYEFFK9FHA2 U/BUxMyQUDHp7AiHQ+5pMB8GA1UdIwQYMBaAFAxaVCoemz+1yOSWhuvrz8BQzOSl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri83OEQ1RDg5NkRG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9ERnBVS2g2YlA3WEk1SmFHNi12UHdGRE01 S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RGcFVLaDZiUDdYSTVKYUc2LXZQd0ZETTVLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvNzhENUQ4OTZERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvRkVCMEZDNjBB MzM1MTFFQkE5ODQ4NjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCoRjANBgkqhkiG9w0BAQsFAAOCAQEARhu8EQc1NE5Z9V3P 3nBJLfUYzF6MeSbunhrpTKUQx+ys7FkVZKguA6+OjS64NlUIpF7mXcng7+sDqnDc hDLhMiNiOkYm3gYbZIW7d8swJ/ekfikitxSdcPM71fRJbge85RPU+KQo/JHXJ00S J9Q+5JiSpG7b9L866MCF54So8/vfoTvP4dveLEPfAm0ijIZi9vaC9UVTs7CSELCQ YtY3Uu1gvtMnSo5v5RR29hQXHFw28SglUTq1Vqep8vr4vuovmrvo1668lM4URX3I FuJK/vmgG9PgUgRfcbeq5TndzYusBOavbG3jbUlL5S/DTphOB3wGqtA2Q+a30zlo YovM7Q== -----END CERTIFICATE-----Generated at Mon May 12 12:33:02 2025 by rpki-client