$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/24CD77AA968211EF8D4B2A1CC4F9AE02.roa File: 24CD77AA968211EF8D4B2A1CC4F9AE02.roa (raw, json) Hash identifier: TTmEZDdwqNOnWpc0C69ZssaYS6l4vEs2bfZa+oehjyA= Subject key identifier: 54:66:08:97:CF:E2:25:54:B0:65:BB:32:AB:6A:D3:7C:D1:61:A7:1A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E09 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/24CD77AA968211EF8D4B2A1CC4F9AE02.roa Signing time: Thu 08 May 2025 15:55:06 +0000 ROA not before: Thu 08 May 2025 15:55:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153240 IP address blocks: 160.191.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7689 (0x1e09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3d9-5d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:46:59:83:0d:12:70:f9:28:e7:e4:c1:2d:4c: 18:97:4f:2c:6d:40:1a:8f:73:8b:b1:ed:aa:08:45: 4d:45:00:7f:86:42:9d:e3:b2:9f:e1:fe:1c:4e:de: c2:21:49:cf:69:81:ef:83:4a:61:f8:bd:cf:95:41: c3:54:8f:5b:d4:d6:3f:ad:bb:e2:de:87:7c:95:a4: 9c:23:db:dc:fd:26:56:3e:a5:5f:d6:58:26:94:d0: cd:9b:9f:f2:49:df:f6:88:3b:bb:6f:64:ad:19:9c: 7a:29:5f:14:6d:e7:a9:35:5e:d2:a1:35:66:f2:52: 01:15:8f:9b:12:5b:3d:c4:bf:df:3d:f4:9b:57:3d: 35:1e:b0:22:bf:c7:33:8e:d8:cc:ae:d5:ee:54:bb: 10:02:a3:8a:87:98:c9:21:5d:97:78:cd:0b:90:31: d0:86:cc:63:f6:d7:81:19:d0:8d:e3:13:03:51:9f: b6:5a:b1:8e:a9:61:af:82:d9:61:96:99:8e:b0:19: ff:6b:a6:94:f1:b4:29:50:34:8a:ee:32:26:16:6a: 11:c9:fc:0a:8f:42:5d:6b:c3:46:b4:2d:f0:59:5f: dc:0d:8d:27:c8:67:ae:ee:bf:84:9a:bc:ca:1a:e2: 6b:3b:63:ba:a7:18:c9:5d:cb:7c:85:51:06:ee:3a: 0a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:66:08:97:CF:E2:25:54:B0:65:BB:32:AB:6A:D3:7C:D1:61:A7:1A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/24CD77AA968211EF8D4B2A1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.120.0/23 Signature Algorithm: sha256WithRSAEncryption 62:1f:cd:4e:d9:2f:e2:6a:0b:66:3a:1b:ea:91:dd:b8:85:e2: 2a:20:d7:1e:e1:e2:f1:54:3e:19:c6:f9:d8:97:d7:8e:f2:88: d4:52:bc:ac:12:7a:a8:e8:66:6d:b9:80:35:66:9d:92:02:bf: ff:93:03:6e:11:de:a5:54:6a:44:41:d5:e4:17:61:8a:54:6f: 32:7a:a3:78:07:d5:1b:5e:6d:83:f5:08:88:8f:cc:33:1d:6b: ce:51:82:c2:e9:f2:5a:4a:5a:9d:1c:23:cc:c0:27:c7:7a:ab: d5:44:52:5e:93:c5:7e:d0:5c:0d:63:e7:c2:b1:75:95:24:de: b9:da:f2:02:07:26:d6:50:c6:c3:29:9c:40:16:23:3b:e4:23: d4:f0:f1:0d:be:36:49:aa:cf:ed:72:80:41:3c:bf:d4:8f:96: 7b:69:ef:62:7f:1c:8b:b7:a0:b9:d3:78:98:b3:af:40:33:40: 86:1c:f2:5d:db:c1:6e:5b:91:c3:fb:63:da:00:7f:d8:44:12: bf:ea:50:4d:40:a0:ab:3e:8d:b9:7c:94:08:4a:31:3c:e8:72: d3:fc:b8:71:e9:15:c2:1e:52:10:9a:42:c8:89:7c:b3:33:45: f4:ca:c0:88:cf:16:5a:af:4e:2f:34:d0:a7:ea:4e:52:94:49: 47:9e:99:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTA2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNkOS01ZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40ZZgw0ScPko5+TBLUwYl08sbUAaj3OLse2qCEVNRQB/hkKd47Kf4f4cTt7C IUnPaYHvg0ph+L3PlUHDVI9b1NY/rbvi3od8laScI9vc/SZWPqVf1lgmlNDNm5/y Sd/2iDu7b2StGZx6KV8UbeepNV7SoTVm8lIBFY+bEls9xL/fPfSbVz01HrAiv8cz jtjMrtXuVLsQAqOKh5jJIV2XeM0LkDHQhsxj9teBGdCN4xMDUZ+2WrGOqWGvgtlh lpmOsBn/a6aU8bQpUDSK7jImFmoRyfwKj0Jda8NGtC3wWV/cDY0nyGeu7r+EmrzK GuJrO2O6pxjJXct8hVEG7joK0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFRmCJfP 4iVUsGW7Mqtq03zRYacaMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjRDRDc3QUE5 NjgyMTFFRjhENEIyQTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv3gwDQYJKoZIhvcNAQELBQADggEBAGIfzU7ZL+JqC2Y6 G+qR3biF4iog1x7h4vFUPhnG+diX147yiNRSvKwSeqjoZm25gDVmnZICv/+TA24R 3qVUakRB1eQXYYpUbzJ6o3gH1RtebYP1CIiPzDMda85RgsLp8lpKWp0cI8zAJ8d6 q9VEUl6TxX7QXA1j58KxdZUk3rna8gIHJtZQxsMpnEAWIzvkI9Tw8Q2+Nkmqz+1y gEE8v9SPlntp72J/HIu3oLnTeJizr0AzQIYc8l3bwW5bkcP7Y9oAf9hEEr/qUE1A oKs+jbl8lAhKMTzoctP8uHHpFcIeUhCaQsiJfLMzRfTKwIjPFlqvTi800KfqTlKU SUeemUk= -----END CERTIFICATE-----Generated at Sun May 11 07:51:02 2025 by rpki-client