$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3930C7CE7FE411EF91A46F21C4F9AE02.roa File: 3930C7CE7FE411EF91A46F21C4F9AE02.roa (raw, json) Hash identifier: 9T2zBzqLz5XX6ua68RgM2H5tR2sFV0uMn8JX6fHkXwI= Subject key identifier: 5C:ED:F9:81:AB:4B:B8:9F:CF:82:AE:2C:F5:59:4A:FA:B6:8D:D7:56 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1DFF Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3930C7CE7FE411EF91A46F21C4F9AE02.roa Signing time: Thu 08 May 2025 15:54:54 +0000 ROA not before: Thu 08 May 2025 15:54:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153221 IP address blocks: 160.187.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7679 (0x1dff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:54:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3ce-5e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:71:03:57:49:c4:e2:d4:40:81:a8:44:cf:f5: 58:e7:7d:d8:e8:5e:e7:dc:9d:31:42:62:10:1e:31: 80:f9:a4:60:10:a7:15:bc:17:07:56:2d:74:9a:7f: a8:ca:ec:d1:69:d0:5e:3b:01:39:af:5b:ad:87:3f: 00:93:7f:69:ce:a5:a3:a8:7a:fc:45:e2:3b:93:29: cb:7c:fb:9b:11:c4:d8:62:ca:b8:43:be:35:56:f8: 49:c8:9a:e0:69:0a:b7:f3:17:2e:82:40:5d:73:c2: 12:ee:10:81:78:57:ef:0a:95:16:f4:c3:22:e0:b6: 1c:48:7b:be:ed:c6:be:82:7a:98:4d:44:53:b5:8c: 76:c3:67:86:a9:34:3b:c9:ff:be:fd:a6:e9:be:ce: c4:5b:6b:5d:f9:bc:3f:b8:a0:c5:03:d5:39:99:82: 1c:c9:47:d8:01:ec:e9:d1:d6:f6:fe:9d:f7:b1:1a: 06:d7:0d:c4:82:22:68:62:75:fc:a1:6a:64:bc:fa: 28:ee:2f:9d:70:ee:d9:89:6b:cc:ee:ef:dc:76:7b: e9:c8:b4:82:39:ce:5f:ba:cc:80:34:e2:98:26:b7: a7:f9:39:aa:3e:aa:76:fa:31:ed:78:67:db:80:bd: 09:2a:7c:c2:69:be:3c:8e:ef:65:d4:a5:c2:23:49: 7d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:ED:F9:81:AB:4B:B8:9F:CF:82:AE:2C:F5:59:4A:FA:B6:8D:D7:56 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3930C7CE7FE411EF91A46F21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.68.0/23 Signature Algorithm: sha256WithRSAEncryption 59:8a:a6:9d:20:07:28:bf:97:ed:05:f4:67:6b:ec:8f:26:a9: 19:14:1b:dd:bb:4b:c0:d2:87:94:6c:73:15:13:9f:3f:e1:7e: 07:5d:f3:b0:e4:1d:88:96:20:75:9a:70:ab:86:69:18:87:16: 35:f0:65:8c:b2:10:bd:d8:d9:83:10:71:8c:25:ac:84:5d:b5: 89:d8:bb:4e:44:de:02:e1:cd:f6:1e:a4:ad:f7:89:f2:8b:6e: 4f:c5:1e:e1:6b:6a:b9:13:71:ae:5a:fd:2d:3c:af:5f:85:63: 1b:65:ab:a3:80:c7:da:24:5f:18:7e:bf:88:10:2c:f4:b3:79: 21:ac:d2:bc:65:79:2f:04:cf:5a:a9:7a:10:b6:15:35:ad:27: b0:cc:de:12:0c:98:a9:53:0a:7b:5c:19:25:2e:69:34:26:40: 03:95:35:61:a9:e5:b0:f8:7a:48:5e:19:69:43:05:9f:2a:bd: cc:d8:6c:69:91:fa:8d:72:aa:85:0e:ae:3e:2a:46:74:96:0c: e7:20:83:b8:28:0c:65:22:98:41:f6:9d:6d:30:6a:33:43:67: 8d:0b:ad:e2:6b:21:c3:3b:1c:51:fd:96:4e:85:a8:a5:f2:47: 74:ac:6e:84:b1:e6:cc:53:98:43:75:d4:11:e4:28:32:6d:ea: a0:e5:a5:1d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NDU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNjZS01ZTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHEDV0nE4tRAgahEz/VY533Y6F7n3J0xQmIQHjGA+aRgEKcVvBcHVi10mn+o yuzRadBeOwE5r1uthz8Ak39pzqWjqHr8ReI7kynLfPubEcTYYsq4Q741VvhJyJrg aQq38xcugkBdc8IS7hCBeFfvCpUW9MMi4LYcSHu+7ca+gnqYTURTtYx2w2eGqTQ7 yf++/abpvs7EW2td+bw/uKDFA9U5mYIcyUfYAezp0db2/p33sRoG1w3EgiJoYnX8 oWpkvPoo7i+dcO7ZiWvM7u/cdnvpyLSCOc5fusyANOKYJren+TmqPqp2+jHteGfb gL0JKnzCab48ju9l1KXCI0l9+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFzt+YGr S7ifz4KuLPVZSvq2jddWMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzkzMEM3Q0U3 RkU0MTFFRjkxQTQ2RjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu0QwDQYJKoZIhvcNAQELBQADggEBAFmKpp0gByi/l+0F 9Gdr7I8mqRkUG927S8DSh5RscxUTnz/hfgdd87DkHYiWIHWacKuGaRiHFjXwZYyy EL3Y2YMQcYwlrIRdtYnYu05E3gLhzfYepK33ifKLbk/FHuFrarkTca5a/S08r1+F Yxtlq6OAx9okXxh+v4gQLPSzeSGs0rxleS8Ez1qpehC2FTWtJ7DM3hIMmKlTCntc GSUuaTQmQAOVNWGp5bD4ekheGWlDBZ8qvczYbGmR+o1yqoUOrj4qRnSWDOcgg7go DGUimEH2nW0wajNDZ40LreJrIcM7HFH9lk6FqKXyR3SsboSx5sxTmEN11BHkKDJt 6qDlpR0= -----END CERTIFICATE-----Generated at Mon May 12 22:00:37 2025 by rpki-client