$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/BE9BADE02B4011F0BA1FF282C4F9AE02.roa File: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (raw, json) Hash identifier: tuJy1jz8I76zoSkWOckZshXRuwxgYv1SGerZsew2KCo= Subject key identifier: 67:E3:DB:BA:40:4D:A5:CC:7A:06:E5:AB:B6:E3:81:2A:A9:0A:4B:0E Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2AA5 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/BE9BADE02B4011F0BA1FF282C4F9AE02.roa Signing time: Wed 07 May 2025 12:42:32 +0000 ROA not before: Wed 07 May 2025 12:42:32 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152842 IP address blocks: 160.22.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10917 (0x2aa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: May 7 12:42:32 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=681b5538-43e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:08:bc:43:52:5c:ad:c9:90:3c:64:3a:2b:0c: 4c:3c:7c:12:e1:79:cd:80:86:a3:3a:9e:f8:e4:a9: 1f:d0:9f:4f:22:b6:54:0f:5a:bb:5a:62:cd:e0:20: 7a:68:64:1b:3a:71:81:f1:27:60:86:75:b5:ca:7f: f7:c2:8b:1e:12:37:79:3b:53:f8:f1:df:65:50:73: 05:3b:a7:a9:8c:c6:af:a6:77:14:f6:82:f9:67:82: 70:bc:86:03:29:2e:ae:cc:2d:b1:7b:04:8c:b3:94: 9b:98:25:36:73:2e:5e:25:5f:33:1d:cf:b9:38:4b: e9:c3:6e:84:7e:f8:77:b5:d3:d8:62:eb:f5:e3:a9: 51:31:b9:ab:4b:8d:9f:dd:5a:f2:3d:e1:f3:07:54: 40:d2:1f:10:17:be:4e:73:51:0e:0e:a4:2a:32:1e: f2:ed:d6:4c:30:42:a4:c9:5d:c6:8a:35:fd:f3:ba: da:14:c8:20:35:b8:66:52:fe:54:ad:6e:ed:d3:a2: 83:0a:75:90:fc:59:b9:22:66:fa:27:47:82:5d:18: 0e:9f:3d:6a:4d:f9:23:e3:25:ce:08:5a:f6:36:43: b9:75:ff:13:9e:3f:8d:88:ef:db:ea:96:47:ad:35: b0:c2:53:04:bc:71:33:7b:37:73:ff:50:88:b0:53: 36:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E3:DB:BA:40:4D:A5:CC:7A:06:E5:AB:B6:E3:81:2A:A9:0A:4B:0E X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/BE9BADE02B4011F0BA1FF282C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.238.0/23 Signature Algorithm: sha256WithRSAEncryption 73:ee:a6:db:2a:6b:f0:92:bd:f4:d9:50:7c:b1:3a:9b:5e:25: 9c:19:5c:97:f3:95:c8:2d:0c:bc:ac:80:24:6b:76:29:dc:9e: 27:87:2f:af:2c:64:42:6b:f8:be:eb:07:ff:b2:86:00:a2:97: ea:bf:fc:a0:5c:07:90:cb:dd:fb:da:6c:52:28:a2:07:fd:5e: 65:30:6c:ab:84:97:39:0a:cf:98:40:be:bf:ed:e1:e0:14:ad: 93:c8:8e:6a:ca:88:02:fe:26:f3:6b:c5:f4:e6:92:31:49:f7: cd:7e:4c:40:4a:ed:5a:74:0b:10:1c:b7:75:46:cc:76:0d:42: 42:4e:7e:0e:bc:d9:f7:79:30:dd:fd:7d:3d:5c:1c:95:49:f0: 3d:8a:18:e7:42:f6:c9:1c:19:3c:02:b7:bd:25:83:be:4a:73: 69:60:0a:84:f4:7b:e4:10:12:41:6e:38:8c:72:76:d3:44:55: 87:97:81:01:c9:34:36:a9:4e:1e:7f:3f:21:9e:d5:d9:57:98: 9c:26:22:ce:a3:01:17:68:47:95:4a:57:8a:45:de:0b:88:87: 28:fb:50:58:69:7e:83:9b:ea:61:b3:e2:37:71:95:51:b5:04: 62:d0:02:f7:4e:bf:69:f8:a1:b3:99:92:d1:63:61:ac:fe:c9: 0e:c1:e9:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUwNTA3MTI0MjMyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFiNTUzOC00M2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowi8Q1JcrcmQPGQ6KwxMPHwS4XnNgIajOp745Kkf0J9PIrZUD1q7WmLN4CB6 aGQbOnGB8SdghnW1yn/3woseEjd5O1P48d9lUHMFO6epjMavpncU9oL5Z4JwvIYD KS6uzC2xewSMs5SbmCU2cy5eJV8zHc+5OEvpw26Efvh3tdPYYuv146lRMbmrS42f 3VryPeHzB1RA0h8QF75Oc1EODqQqMh7y7dZMMEKkyV3GijX987raFMggNbhmUv5U rW7t06KDCnWQ/Fm5Imb6J0eCXRgOnz1qTfkj4yXOCFr2NkO5df8Tnj+NiO/b6pZH rTWwwlMEvHEzezdz/1CIsFM2QQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGfj27pA TaXMegblq7bjgSqpCksOMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQjdGODE5NTgzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQkU5QkFERTAy QjQwMTFGMEJBMUZGMjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgFu4wDQYJKoZIhvcNAQELBQADggEBAHPuptsqa/CSvfTZ UHyxOpteJZwZXJfzlcgtDLysgCRrdincnieHL68sZEJr+L7rB/+yhgCil+q//KBc B5DL3fvabFIoogf9XmUwbKuElzkKz5hAvr/t4eAUrZPIjmrKiAL+JvNrxfTmkjFJ 981+TEBK7Vp0CxAct3VGzHYNQkJOfg682fd5MN39fT1cHJVJ8D2KGOdC9skcGTwC t70lg75Kc2lgCoT0e+QQEkFuOIxydtNEVYeXgQHJNDapTh5/PyGe1dlXmJwmIs6j ARdoR5VKV4pF3guIhyj7UFhpfoOb6mGz4jdxlVG1BGLQAvdOv2n4obOZktFjYaz+ yQ7B6Ro= -----END CERTIFICATE-----Generated at Sun May 11 03:13:21 2025 by rpki-client