$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/05529B76F27B11EF93263D48C4F9AE02.roa File: 05529B76F27B11EF93263D48C4F9AE02.roa (raw, json) Hash identifier: kRLtngGTOsCzuYS1O2yQtlEqbqwRxLRqLXntU8vTVmA= Subject key identifier: AE:95:B6:22:28:F2:32:5E:31:5C:BF:08:13:B9:D6:9A:CF:86:DC:9A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D7B Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/05529B76F27B11EF93263D48C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:58 +0000 ROA not before: Thu 08 May 2025 15:52:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140171 IP address blocks: 160.30.214.0/23 maxlen: 24 160.187.82.0/24 maxlen: 24 160.187.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7547 (0x1d7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd359-1a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ea:fe:54:6c:79:21:02:f3:9c:dc:3c:52:c3: 9e:f7:85:c1:36:07:99:f3:d6:4a:01:05:05:d6:71: 16:62:7c:76:0d:52:21:fc:99:8e:2e:3a:e9:e6:1e: 00:78:2a:62:ea:2a:9c:00:a7:fc:eb:59:27:0c:67: 37:8c:70:8a:d9:ab:a6:5f:84:2f:4a:a4:34:56:ec: 58:3c:b9:9e:5b:7a:05:f5:09:05:86:b6:a1:43:43: d2:80:23:75:09:48:4f:11:df:ed:f4:3a:40:01:21: af:7d:b4:f3:65:c2:32:41:8a:54:c7:7c:c7:ae:cc: 27:da:05:fe:29:4b:c9:4a:16:52:43:47:e3:39:e5: 0f:37:52:16:e5:ad:db:5b:94:60:02:ef:b1:de:46: 3c:da:94:d7:ba:90:0d:e1:0a:ae:a5:64:1b:0a:da: 1f:33:6e:5c:bd:25:f6:c0:9d:4a:39:a2:a5:c8:d9: 80:b0:44:3f:97:76:9a:c8:02:70:bc:b6:68:57:ca: 7a:49:1d:71:ba:c1:4b:81:8b:48:9f:b4:06:96:42: bc:d0:21:32:b8:5b:7e:ae:65:5b:66:07:bc:d7:07: 55:1e:62:db:9d:9e:f5:81:85:e2:08:cb:48:02:03: b4:7f:d6:d6:bd:c2:be:a3:65:76:2b:ca:ef:74:ed: 39:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:95:B6:22:28:F2:32:5E:31:5C:BF:08:13:B9:D6:9A:CF:86:DC:9A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/05529B76F27B11EF93263D48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.214.0/23 160.187.82.0/23 Signature Algorithm: sha256WithRSAEncryption 81:3d:17:9b:35:1b:b7:36:91:5d:d3:31:82:8f:b2:7e:c0:73: 85:1d:5c:66:57:1c:d5:e2:d9:54:4c:dd:a4:9a:53:93:70:bf: f0:47:2e:e4:10:36:bc:a4:52:37:4e:44:84:e6:bb:1e:8c:55: 0a:13:3a:34:d2:42:8f:4b:4f:03:fe:0f:a4:99:ce:fe:34:d0: a6:51:5a:d4:20:d2:c7:bd:32:1b:32:fc:bf:12:47:ac:01:4d: d7:db:f1:2a:bf:f2:9e:07:aa:74:1b:89:fb:46:c5:5c:94:17: 1f:19:90:9f:b4:c0:0f:98:0a:39:e0:e4:5f:83:57:6a:6c:62: d8:91:c0:d2:1e:ce:0d:b5:30:72:86:d5:b2:e9:83:ab:fe:f6: 66:a8:87:12:64:79:ee:3c:78:7b:8c:e3:fe:7f:63:8c:57:2d: 67:6c:1a:d6:37:5c:1d:61:de:b8:f8:27:10:8d:a4:ad:e7:bb: 69:6f:41:12:0e:88:f3:42:ea:37:72:56:37:d5:ff:72:32:47: 92:d6:26:e8:04:bc:a6:68:4a:92:15:1c:9f:8e:78:db:05:23: 47:d7:e6:86:54:45:ac:1b:17:fc:17:c5:73:fc:ce:f7:ff:2c: c8:3b:69:69:b7:58:5c:ff:48:b9:54:e1:52:4b:d7:ae:0e:cc: a0:05:9e:5b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM1OS0xYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsur+VGx5IQLznNw8UsOe94XBNgeZ89ZKAQUF1nEWYnx2DVIh/JmOLjrp5h4A eCpi6iqcAKf861knDGc3jHCK2aumX4QvSqQ0VuxYPLmeW3oF9QkFhrahQ0PSgCN1 CUhPEd/t9DpAASGvfbTzZcIyQYpUx3zHrswn2gX+KUvJShZSQ0fjOeUPN1IW5a3b W5RgAu+x3kY82pTXupAN4QqupWQbCtofM25cvSX2wJ1KOaKlyNmAsEQ/l3aayAJw vLZoV8p6SR1xusFLgYtIn7QGlkK80CEyuFt+rmVbZge81wdVHmLbnZ71gYXiCMtI AgO0f9bWvcK+o2V2K8rvdO058QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFK6VtiIo 8jJeMVy/CBO51prPhtyaMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDU1MjlCNzZG MjdCMTFFRjkzMjYzRDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGgHtYDBAGgu1IwDQYJKoZIhvcNAQELBQADggEBAIE9F5s1 G7c2kV3TMYKPsn7Ac4UdXGZXHNXi2VRM3aSaU5Nwv/BHLuQQNrykUjdORITmux6M VQoTOjTSQo9LTwP+D6SZzv400KZRWtQg0se9Mhsy/L8SR6wBTdfb8Sq/8p4HqnQb iftGxVyUFx8ZkJ+0wA+YCjng5F+DV2psYtiRwNIezg21MHKG1bLpg6v+9maohxJk ee48eHuM4/5/Y4xXLWdsGtY3XB1h3rj4JxCNpK3nu2lvQRIOiPNC6jdyVjfV/3Iy R5LWJugEvKZoSpIVHJ+OeNsFI0fX5oZURawbF/wXxXP8zvf/LMg7aWm3WFz/SLlU 4VJL164OzKAFnls= -----END CERTIFICATE-----Generated at Sun May 11 17:10:49 2025 by rpki-client