$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/312BDD0AC34811EFA066ED69C4F9AE02.roa File: 312BDD0AC34811EFA066ED69C4F9AE02.roa (raw, json) Hash identifier: KBFfeEYrMQCn5WBgE03fCMEV8V/M6RM9TfvcdatK+6k= Subject key identifier: 74:91:1B:48:76:E4:BC:FC:A2:62:C9:8D:51:4C:68:76:96:DA:77:91 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E22 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/312BDD0AC34811EFA066ED69C4F9AE02.roa Signing time: Thu 08 May 2025 15:55:27 +0000 ROA not before: Thu 08 May 2025 15:55:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153290 IP address blocks: 161.248.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7714 (0x1e22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3ef-7ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dc:30:40:8f:cf:15:e6:76:12:ec:18:2b:49: 05:a6:8e:98:38:08:fe:f5:21:2d:ad:5b:db:6f:63: bc:32:55:a3:6f:1c:6a:56:45:c7:7e:b9:c8:4f:3d: 3e:eb:9b:bf:d5:a5:f1:36:f0:06:ed:9b:f0:ad:90: d5:a8:28:fa:49:57:b9:24:61:82:09:16:af:db:54: d5:d8:9f:b7:fa:97:54:fe:f7:71:79:c8:c8:c2:60: 44:e5:41:ac:51:ed:ac:ab:a3:95:60:53:c1:e2:84: fd:04:02:9d:2c:20:75:4f:84:05:cd:9c:bf:c5:80: 55:89:7a:c6:ca:1f:07:2b:c4:6f:20:8e:62:fc:ab: 82:ce:58:7e:f5:ec:3e:38:a6:26:a6:75:80:f9:0b: ec:94:a9:46:5f:57:d5:75:6d:5d:8b:02:d8:1f:76: 48:57:6f:97:6e:ce:d4:4b:5d:da:58:42:85:29:23: bc:e2:ba:d2:c2:fa:d1:6e:56:3c:41:39:4a:80:5f: f6:ba:12:ef:b3:18:5f:95:be:01:68:22:37:52:55: 46:48:c5:f8:2f:82:7d:56:8f:b8:b3:80:ff:78:ce: c8:8d:95:a6:bc:f1:8a:99:29:e7:9c:ef:27:a7:87: ca:b9:43:3f:52:cf:49:60:ba:0f:5a:e5:0c:2a:80: 38:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:91:1B:48:76:E4:BC:FC:A2:62:C9:8D:51:4C:68:76:96:DA:77:91 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/312BDD0AC34811EFA066ED69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.24.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:0c:7e:5b:77:52:d7:95:bd:f1:d0:2b:c3:05:ad:0f:c1:5b: 1d:42:47:27:c3:eb:98:1d:0f:6a:26:2c:b5:1e:13:3c:d3:89: 3c:86:81:00:14:d9:0e:6a:56:51:46:05:da:34:c3:50:29:53: 71:1d:96:f0:d5:6f:f6:42:c1:a5:1e:d4:07:0f:f3:c9:e9:45: ad:3a:c6:a5:b2:b7:4f:6f:08:ef:e1:b3:81:ef:d9:01:90:a0: a3:5e:a3:58:ae:73:e0:44:c8:6a:9e:ae:d4:13:83:3c:05:f7: dc:bf:a2:52:a6:0d:53:8c:d1:d7:0a:5f:3c:06:04:8b:03:12: e4:13:81:f0:83:51:f1:7b:42:87:0d:89:11:32:5f:52:d9:22: fa:b3:a1:0a:81:89:50:b0:89:67:24:42:65:bf:16:b9:b8:e1: c4:7a:95:e2:a4:71:e5:45:b4:78:9f:ae:36:09:4b:0f:3b:64: 95:8d:c5:64:94:18:25:ba:d9:56:41:72:7f:3a:87:eb:b3:07: 00:f3:a2:ae:cc:33:12:a6:10:af:f0:f5:ef:fe:f0:f2:29:a4: a4:c8:cf:d5:4b:e0:04:8a:be:2d:b7:0d:5f:aa:7c:0b:2f:bf: 17:bc:22:b4:87:45:38:e5:13:2c:bf:fe:f7:0b:cb:5b:7d:12: ff:f2:e8:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNlZi03ZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNwwQI/PFeZ2EuwYK0kFpo6YOAj+9SEtrVvbb2O8MlWjbxxqVkXHfrnITz0+ 65u/1aXxNvAG7ZvwrZDVqCj6SVe5JGGCCRav21TV2J+3+pdU/vdxecjIwmBE5UGs Ue2sq6OVYFPB4oT9BAKdLCB1T4QFzZy/xYBViXrGyh8HK8RvII5i/KuCzlh+9ew+ OKYmpnWA+QvslKlGX1fVdW1diwLYH3ZIV2+Xbs7US13aWEKFKSO84rrSwvrRblY8 QTlKgF/2uhLvsxhflb4BaCI3UlVGSMX4L4J9Vo+4s4D/eM7IjZWmvPGKmSnnnO8n p4fKuUM/Us9JYLoPWuUMKoA4eQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHSRG0h2 5Lz8omLJjVFMaHaW2neRMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzEyQkREMEFD MzQ4MTFFRkEwNjZFRDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACh+BgwDQYJKoZIhvcNAQELBQADggEBAF8Mflt3UteVvfHQ K8MFrQ/BWx1CRyfD65gdD2omLLUeEzzTiTyGgQAU2Q5qVlFGBdo0w1ApU3EdlvDV b/ZCwaUe1AcP88npRa06xqWyt09vCO/hs4Hv2QGQoKNeo1iuc+BEyGqertQTgzwF 99y/olKmDVOM0dcKXzwGBIsDEuQTgfCDUfF7QocNiREyX1LZIvqzoQqBiVCwiWck QmW/Frm44cR6leKkceVFtHifrjYJSw87ZJWNxWSUGCW62VZBcn86h+uzBwDzoq7M MxKmEK/w9e/+8PIppKTIz9VL4ASKvi23DV+qfAsvvxe8IrSHRTjlEyy//vcLy1t9 Ev/y6P0= -----END CERTIFICATE-----Generated at Sun May 11 19:01:55 2025 by rpki-client