$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3E3DC8C06EA511EF821CAA1CC4F9AE02.roa File: 3E3DC8C06EA511EF821CAA1CC4F9AE02.roa (raw, json) Hash identifier: 5QThk8SYHbdU2VKI1IiLRyf4R63POSaUKK+LMpO8SPY= Subject key identifier: 90:17:01:D1:A3:83:52:66:86:92:11:15:A7:E3:A3:AE:F4:B9:05:47 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D57 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3E3DC8C06EA511EF821CAA1CC4F9AE02.roa Signing time: Thu 08 May 2025 15:52:27 +0000 ROA not before: Thu 08 May 2025 15:52:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135778 IP address blocks: 160.30.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7511 (0x1d57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd33a-91ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4f:d2:bf:d8:e1:17:4f:ea:80:3e:1f:4b:06: ec:af:c7:ca:51:f0:36:af:2a:15:76:87:c4:d9:06: ec:37:1f:2e:16:49:0b:1e:a3:0f:12:27:08:1f:42: 3f:7a:8c:de:4f:15:e2:5b:81:56:61:82:be:32:d7: a0:2e:8a:84:1d:a3:b0:bb:8f:5c:47:23:c7:50:0e: 88:f5:53:99:dd:f9:66:04:fa:25:42:a7:28:d0:94: 26:8d:f4:de:02:8b:4c:38:73:a2:63:1e:8f:80:3b: 25:d0:f6:67:fa:5e:9a:41:6d:b3:37:e9:f0:5e:0d: 9e:8e:59:7a:93:4e:61:b4:2d:de:1f:d0:20:4e:1a: 34:2b:d1:c5:e1:ee:23:68:0c:15:81:06:f2:31:bd: 2c:28:19:17:11:3d:b2:df:ef:b3:93:0c:f9:c8:c7: e7:e6:88:a2:a9:8a:6c:0b:54:88:9b:23:49:1a:31: 17:1f:c7:52:ae:22:73:56:a2:d6:82:08:a6:94:c3: ab:f9:70:cd:1e:d7:cb:8a:fb:b6:4f:3b:b5:20:bc: 05:60:5d:55:94:e4:06:05:96:d7:e0:e8:f0:36:f1: 3b:c9:a1:13:86:7b:6c:1f:47:8f:d5:60:2e:e0:80: d3:dc:db:8e:a6:7c:00:98:17:91:de:2d:b1:6c:21: bc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:17:01:D1:A3:83:52:66:86:92:11:15:A7:E3:A3:AE:F4:B9:05:47 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3E3DC8C06EA511EF821CAA1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.28.0/23 Signature Algorithm: sha256WithRSAEncryption 76:db:f5:a1:63:45:ca:1a:83:4c:50:7a:78:e4:49:6a:1d:c3: 7d:74:cb:b6:ba:30:e3:10:1d:21:9f:20:f5:1c:ec:98:5a:5e: b9:93:83:fc:bd:8a:b6:f2:9a:5e:ec:59:4c:03:99:68:40:87: 5e:52:93:82:0e:8b:b1:05:fd:65:6a:cf:0c:4c:08:4e:c9:a5: ef:85:6f:70:62:39:9e:15:13:69:9a:92:8f:4b:7a:38:66:03: ee:23:78:bb:56:3b:7a:db:f0:88:1c:ad:ac:af:39:05:df:da: 08:1f:80:11:05:30:e0:0a:fc:e3:ee:16:ff:e1:51:7f:30:37: e0:ff:7d:9b:e7:47:e6:81:3e:b8:d8:8a:b4:9d:62:90:b5:ef: 82:e3:8c:8d:74:82:8a:cc:70:7f:b3:bb:e4:de:6e:f8:87:18: 17:7c:9a:13:99:de:f1:64:9b:67:63:39:b7:af:a6:57:ef:05: be:da:d6:64:6f:04:bc:27:e6:c2:2a:80:df:7b:2c:4f:73:0f: 17:04:a3:44:2f:d8:17:95:cb:b7:88:e1:41:e4:4b:a7:06:74: 1f:11:03:85:19:07:a5:58:04:df:4b:c4:17:6d:66:ee:39:11: 28:69:66:f0:2a:45:9b:e9:4e:63:7b:88:16:17:59:01:36:31: 4a:89:a3:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDMzYS05MWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1E/Sv9jhF0/qgD4fSwbsr8fKUfA2ryoVdofE2QbsNx8uFkkLHqMPEicIH0I/ eozeTxXiW4FWYYK+MtegLoqEHaOwu49cRyPHUA6I9VOZ3flmBPolQqco0JQmjfTe AotMOHOiYx6PgDsl0PZn+l6aQW2zN+nwXg2ejll6k05htC3eH9AgTho0K9HF4e4j aAwVgQbyMb0sKBkXET2y3++zkwz5yMfn5oiiqYpsC1SImyNJGjEXH8dSriJzVqLW ggimlMOr+XDNHtfLivu2Tzu1ILwFYF1VlOQGBZbX4OjwNvE7yaEThntsH0eP1WAu 4IDT3NuOpnwAmBeR3i2xbCG8iQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJAXAdGj g1JmhpIRFafjo670uQVHMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0UzREM4QzA2 RUE1MTFFRjgyMUNBQTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHhwwDQYJKoZIhvcNAQELBQADggEBAHbb9aFjRcoag0xQ enjkSWodw310y7a6MOMQHSGfIPUc7JhaXrmTg/y9irbyml7sWUwDmWhAh15Sk4IO i7EF/WVqzwxMCE7Jpe+Fb3BiOZ4VE2mako9LejhmA+4jeLtWO3rb8IgcrayvOQXf 2ggfgBEFMOAK/OPuFv/hUX8wN+D/fZvnR+aBPrjYirSdYpC174LjjI10gorMcH+z u+TebviHGBd8mhOZ3vFkm2djObevplfvBb7a1mRvBLwn5sIqgN97LE9zDxcEo0Qv 2BeVy7eI4UHkS6cGdB8RA4UZB6VYBN9LxBdtZu45EShpZvAqRZvpTmN7iBYXWQE2 MUqJo8w= -----END CERTIFICATE-----Generated at Sat May 10 23:13:46 2025 by rpki-client