$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/E8118BFA022C11EBAC47A831C4F9AE02.roa File: E8118BFA022C11EBAC47A831C4F9AE02.roa (raw, json) Hash identifier: l9PAtv4FmfKEbsr39kSblkIdk4l36jBShaU/yhiu3EA= Subject key identifier: 41:35:91:F4:11:CA:EC:A0:2F:39:E7:DB:41:CB:17:3A:57:74:60:8B Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 17D0 Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/E8118BFA022C11EBAC47A831C4F9AE02.roa Signing time: Thu 08 May 2025 17:17:43 +0000 ROA not before: Thu 08 May 2025 17:17:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132585 IP address blocks: 203.198.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6096 (0x17d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: May 8 17:17:43 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ce736-bb9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:44:92:94:6a:a0:d9:26:70:39:3d:a0:59:45: 41:b4:42:54:64:1d:9f:ba:24:20:d5:20:5d:be:c5: 77:59:5a:3d:7a:84:d2:e8:b1:7d:82:2c:6a:34:48: ff:72:5c:57:e8:8a:6e:b7:ba:c6:d0:02:2b:87:bc: f5:13:7b:83:9c:ec:66:12:3b:4a:45:4f:c0:3d:35: fd:9a:38:39:d6:12:d3:8a:45:76:63:0b:86:87:ea: c2:83:c7:98:34:62:eb:26:c7:e7:f2:84:eb:30:a7: bb:c7:21:ea:dc:4f:a8:f7:7d:d2:b6:3d:18:44:17: 6f:aa:b8:72:17:87:2e:6b:8a:d5:04:d3:5f:03:67: c0:c7:0c:65:89:e8:1a:39:ca:01:a9:2e:8a:c8:78: 8f:36:e5:71:81:07:71:30:64:ea:0f:ec:34:bd:9a: bd:27:69:18:82:3b:0f:d9:9d:13:0a:b7:7c:63:db: 04:2b:a2:52:38:a9:ac:54:d4:9f:96:08:62:77:a5: 7c:3a:81:38:22:6f:4d:59:62:11:4e:c1:af:c2:7e: c1:9d:f5:a6:b4:64:61:7c:94:8d:50:75:09:7e:13: ac:6d:f1:ee:65:5e:f3:fd:75:2e:3e:e0:bf:26:4c: e7:d0:8c:80:21:7e:2b:51:a4:f7:d7:da:e6:70:8c: 2e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:35:91:F4:11:CA:EC:A0:2F:39:E7:DB:41:CB:17:3A:57:74:60:8B X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/E8118BFA022C11EBAC47A831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.198.168.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:f5:db:49:60:d3:33:51:9a:da:fc:5a:4b:6c:d3:dc:7c:c2: cc:8f:15:10:d3:b1:16:48:fd:1d:18:2e:02:54:df:41:0e:de: ae:48:fc:46:47:84:99:0b:d0:bb:49:39:d7:a4:ac:1f:be:d2: 2c:90:39:67:bb:35:ca:7e:b9:1e:83:19:cd:dd:a6:1c:d9:c6: 1c:7e:05:4f:1f:6d:a3:dc:17:43:b2:e5:7a:01:a6:db:97:ae: 68:76:8e:a9:39:a0:6c:0f:33:ba:1b:b0:d5:e1:e0:ed:3e:3d: ae:b7:33:8e:9e:6a:f0:94:5d:b9:5a:96:d4:49:8b:fb:fe:71: c8:87:ba:5d:45:66:ec:58:ba:cf:58:63:6a:cf:d1:ba:52:76: cf:a2:85:31:fc:95:dd:c6:6c:e0:1b:36:83:22:dd:e3:53:ac: 63:3a:93:63:89:90:ba:96:16:b1:ff:f5:69:83:d9:5d:30:51: e7:79:96:df:1b:94:00:42:a5:e5:e8:cf:ab:4b:ca:1f:e9:f1: 65:bb:e1:ce:a3:4d:c8:90:d2:04:8f:cc:61:1d:45:96:a9:dc: b8:74:8c:83:e8:e0:e6:61:17:aa:52:01:04:ee:50:2c:d4:5d: 92:62:d4:ff:33:86:37:f4:73:75:2d:ef:ec:3a:af:34:ce:71: fa:b1:50:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjUwNTA4MTcxNzQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZTczNi1iYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0SSlGqg2SZwOT2gWUVBtEJUZB2fuiQg1SBdvsV3WVo9eoTS6LF9gixqNEj/ clxX6Iput7rG0AIrh7z1E3uDnOxmEjtKRU/APTX9mjg51hLTikV2YwuGh+rCg8eY NGLrJsfn8oTrMKe7xyHq3E+o933Stj0YRBdvqrhyF4cua4rVBNNfA2fAxwxliega OcoBqS6KyHiPNuVxgQdxMGTqD+w0vZq9J2kYgjsP2Z0TCrd8Y9sEK6JSOKmsVNSf lghid6V8OoE4Im9NWWIRTsGvwn7BnfWmtGRhfJSNUHUJfhOsbfHuZV7z/XUuPuC/ Jkzn0IyAIX4rUaT319rmcIwucQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEE1kfQR yuygLznn20HLFzpXdGCLMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvRTgxMThCRkEw MjJDMTFFQkFDNDdBODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLxqgwDQYJKoZIhvcNAQELBQADggEBACz120lg0zNRmtr8 Wkts09x8wsyPFRDTsRZI/R0YLgJU30EO3q5I/EZHhJkL0LtJOdekrB++0iyQOWe7 Ncp+uR6DGc3dphzZxhx+BU8fbaPcF0Oy5XoBptuXrmh2jqk5oGwPM7obsNXh4O0+ Pa63M46eavCUXblaltRJi/v+cciHul1FZuxYus9YY2rP0bpSds+ihTH8ld3GbOAb NoMi3eNTrGM6k2OJkLqWFrH/9WmD2V0wUed5lt8blABCpeXoz6tLyh/p8WW74c6j TciQ0gSPzGEdRZap3Lh0jIPo4OZhF6pSAQTuUCzUXZJi1P8zhjf0c3Ut7+w6rzTO cfqxUPM= -----END CERTIFICATE-----Generated at Sun May 11 15:07:46 2025 by rpki-client