$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/04D83F063CF111EF8D221412C4F9AE02.roa File: 04D83F063CF111EF8D221412C4F9AE02.roa (raw, json) Hash identifier: 55d/iBcwvTcby0PzMKtwxWW5u+UKc/sO5BYawyYy20k= Subject key identifier: 80:B8:89:69:BC:EF:64:28:B7:A8:B6:EB:7D:D1:B7:9C:4E:CC:02:7D Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1DE1 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/04D83F063CF111EF8D221412C4F9AE02.roa Signing time: Thu 08 May 2025 15:54:29 +0000 ROA not before: Thu 08 May 2025 15:54:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152539 IP address blocks: 160.25.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7649 (0x1de1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:54:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3b5-b2bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:1f:af:0c:f3:b0:b3:4a:f8:a9:0d:97:a3:18: eb:ea:b2:18:23:69:77:2f:70:33:95:08:2c:2e:5e: 24:09:1a:65:95:75:76:77:c0:3d:99:02:2c:25:dc: 9b:6e:cc:4c:f1:a9:c1:f0:a8:86:e0:86:e0:78:84: 63:8b:4b:e3:8f:14:f2:65:7c:45:3e:48:ad:12:dd: 58:fb:92:73:6f:75:a6:58:54:40:27:81:e8:9c:91: e4:4c:9e:d4:1f:70:52:5b:64:ff:ec:d1:25:43:eb: 9d:b1:d1:56:7c:07:af:a9:32:73:3f:8d:90:40:9a: 8e:7c:1a:16:3d:fa:61:52:36:ea:a0:a2:3e:c1:41: ba:c3:98:15:23:f0:47:74:ba:c6:78:3b:44:96:e0: 9a:8b:90:74:ce:c4:7c:18:68:bc:14:f1:f1:fd:71: 39:ce:59:b4:3c:ad:21:ab:b6:31:64:3e:62:81:48: 0d:28:32:2b:a8:93:f5:e4:22:4b:e4:a8:0c:58:d6: 31:e5:23:44:e1:0d:36:0e:8d:5e:0c:80:07:eb:85: cb:e5:f5:54:d4:e7:60:f9:1a:f4:99:34:d8:1d:33: 31:1e:d0:69:c9:fc:a9:6b:08:1f:03:c2:f4:e9:c9: fa:06:23:bb:f6:31:c8:34:49:6b:7c:1b:56:58:d7: 3d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B8:89:69:BC:EF:64:28:B7:A8:B6:EB:7D:D1:B7:9C:4E:CC:02:7D X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/04D83F063CF111EF8D221412C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.26.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:c4:27:f6:87:87:a3:16:35:dd:23:b1:b9:90:f7:f7:96:fa: 7f:2e:d3:ac:d3:29:30:49:7d:8e:28:9f:83:ec:07:5a:e4:f0: aa:df:48:84:fe:fc:e6:16:e7:f8:14:46:ff:0e:bd:94:b7:62: 85:01:a2:1f:46:1e:32:1a:74:e4:af:14:0a:fe:13:ed:0f:c0: 3a:c3:96:e7:dd:96:46:34:95:f1:a2:09:10:ef:c6:02:ba:cc: 4e:f2:fa:5b:0e:b7:c2:0a:ef:de:78:fe:80:77:51:79:b6:1d: 66:35:5e:de:14:52:90:93:92:35:7e:15:84:54:2e:6e:e3:4f: 11:1b:e9:11:9e:e7:d6:6b:bf:83:c6:0b:c2:15:54:89:3f:5b: b4:7a:4c:89:28:b0:25:79:a4:00:f0:6f:43:4a:78:a5:b1:0a: 8d:24:8e:62:d0:47:7e:de:b0:9d:68:80:8f:5e:14:64:db:1d: 15:9b:37:df:7d:80:d3:c2:7e:06:8d:c3:68:c6:d8:75:59:24: 4c:b8:93:23:f8:79:0b:2a:6c:0e:31:fa:4f:a9:4c:d0:7f:37: b3:01:5e:6c:20:21:fd:ad:f1:c6:49:d0:18:8e:9f:e3:e8:60: a2:ed:b5:5c:fc:55:bb:bd:ba:7a:7f:3f:12:53:63:a1:94:75: 9d:b6:7f:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NDI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNiNS1iMmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+B+vDPOws0r4qQ2Xoxjr6rIYI2l3L3AzlQgsLl4kCRpllXV2d8A9mQIsJdyb bsxM8anB8KiG4IbgeIRji0vjjxTyZXxFPkitEt1Y+5Jzb3WmWFRAJ4HonJHkTJ7U H3BSW2T/7NElQ+udsdFWfAevqTJzP42QQJqOfBoWPfphUjbqoKI+wUG6w5gVI/BH dLrGeDtEluCai5B0zsR8GGi8FPHx/XE5zlm0PK0hq7YxZD5igUgNKDIrqJP15CJL 5KgMWNYx5SNE4Q02Do1eDIAH64XL5fVU1Odg+Rr0mTTYHTMxHtBpyfypawgfA8L0 6cn6BiO79jHINElrfBtWWNc97QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIC4iWm8 72Qot6i2633Rt5xOzAJ9MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDREODNGMDYz Q0YxMTFFRjhEMjIxNDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGRowDQYJKoZIhvcNAQELBQADggEBAI/EJ/aHh6MWNd0j sbmQ9/eW+n8u06zTKTBJfY4on4PsB1rk8KrfSIT+/OYW5/gURv8OvZS3YoUBoh9G HjIadOSvFAr+E+0PwDrDlufdlkY0lfGiCRDvxgK6zE7y+lsOt8IK7954/oB3UXm2 HWY1Xt4UUpCTkjV+FYRULm7jTxEb6RGe59Zrv4PGC8IVVIk/W7R6TIkosCV5pADw b0NKeKWxCo0kjmLQR37esJ1ogI9eFGTbHRWbN999gNPCfgaNw2jG2HVZJEy4kyP4 eQsqbA4x+k+pTNB/N7MBXmwgIf2t8cZJ0BiOn+PoYKLttVz8Vbu9unp/PxJTY6GU dZ22f7o= -----END CERTIFICATE-----Generated at Sun May 11 09:29:27 2025 by rpki-client