$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/625724D45DEF11EF9DFCB731C4F9AE02.roa File: 625724D45DEF11EF9DFCB731C4F9AE02.roa (raw, json) Hash identifier: fDWWMTDPEt/suScSb1GFPcn7WFdVCLEWg4DJLW1sSN8= Subject key identifier: 20:7B:6A:8F:DF:2B:4B:86:E6:93:95:C6:ED:BB:DA:B5:16:E3:39:3F Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1DE7 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/625724D45DEF11EF9DFCB731C4F9AE02.roa Signing time: Thu 08 May 2025 15:54:34 +0000 ROA not before: Thu 08 May 2025 15:54:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152549 IP address blocks: 160.22.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7655 (0x1de7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:54:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3ba-9446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:61:34:8b:3a:7c:4e:6b:cb:f3:2f:de:90:83: 5c:7f:03:82:a7:af:39:09:1b:03:f5:01:af:58:d1: ae:9a:fc:29:e1:ff:91:d3:f2:d6:94:1c:2f:ea:d8: e0:9d:c8:b3:6d:92:fe:90:8c:e1:64:a3:73:2d:82: 30:4e:f0:a2:d4:77:16:a4:0c:0f:40:27:96:57:ee: 87:a0:81:5c:56:aa:af:33:21:52:bf:0a:94:2b:6e: 77:a8:e8:94:10:8a:48:89:11:0f:dd:51:c1:1b:3f: 4d:04:51:28:e3:19:72:fe:2c:08:66:7f:53:bb:42: 6e:16:4d:75:ec:8c:55:55:65:07:6f:5b:6c:57:cc: 2f:18:1f:79:12:83:c5:c3:77:cd:08:20:7a:96:c8: 1e:b9:9d:25:3b:4c:b3:f8:d7:37:1a:e7:ba:32:1b: 35:4a:98:e6:77:d1:27:2e:a2:00:94:04:84:64:2c: ba:73:ec:81:26:3e:7d:96:1f:0b:58:c6:a0:9f:db: 31:f1:29:58:80:df:05:3a:f2:0a:90:c9:61:38:58: 74:8c:78:57:e4:67:14:90:07:ec:f9:5a:e0:a3:60: 65:82:8a:5f:bd:9d:98:52:f6:bc:71:b2:11:94:c1: 51:28:c8:11:cb:e0:bc:ca:78:53:94:5d:15:ab:b9: f4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:7B:6A:8F:DF:2B:4B:86:E6:93:95:C6:ED:BB:DA:B5:16:E3:39:3F X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/625724D45DEF11EF9DFCB731C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.153.0/24 Signature Algorithm: sha256WithRSAEncryption 23:b4:9e:7a:ca:e3:89:66:0e:d9:4e:15:1b:46:4c:5c:63:20: d7:9e:e3:0b:d7:9e:b9:94:2e:12:5e:c0:4b:6f:ea:85:34:c2: be:5c:06:06:48:20:aa:91:d3:89:5f:ba:e6:2a:02:89:ac:50: 06:80:b5:f4:57:e4:2d:b9:bd:b4:a3:e0:20:8f:e9:a0:48:19: a2:9e:e5:d9:41:24:56:21:89:d7:a7:02:71:6d:fd:b7:0d:b9: 11:f8:f9:f7:50:96:f2:d5:c0:dd:01:ea:ba:68:b0:6c:52:26: 5f:e1:30:82:38:ae:07:32:cd:8a:c0:22:13:f9:a8:8c:bf:50: 2f:dd:56:48:56:a9:5a:74:2c:00:7d:aa:8c:a8:7a:ab:4e:0b: 4b:01:40:33:5f:70:ba:ce:80:fb:6a:60:f4:72:2b:67:60:61: cc:24:70:8f:b3:8b:8a:1a:94:21:b9:e1:38:3b:58:4d:f0:43: d0:e0:00:6a:e2:c0:11:14:f4:d1:7c:d9:16:a0:7d:d9:80:2b: 94:85:3b:f7:f1:d9:94:f4:2e:9b:30:cd:7c:d5:cc:29:7e:ab: 4b:39:01:05:c7:84:67:9b:4a:58:bd:1f:5b:7a:70:af:66:40: 03:e4:af:b1:28:1b:6d:4b:e6:21:c6:2f:6a:41:50:ec:f0:ae: 83:c5:0d:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NDM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNiYS05NDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WE0izp8TmvL8y/ekINcfwOCp685CRsD9QGvWNGumvwp4f+R0/LWlBwv6tjg ncizbZL+kIzhZKNzLYIwTvCi1HcWpAwPQCeWV+6HoIFcVqqvMyFSvwqUK253qOiU EIpIiREP3VHBGz9NBFEo4xly/iwIZn9Tu0JuFk117IxVVWUHb1tsV8wvGB95EoPF w3fNCCB6lsgeuZ0lO0yz+Nc3Gue6Mhs1Spjmd9EnLqIAlASEZCy6c+yBJj59lh8L WMagn9sx8SlYgN8FOvIKkMlhOFh0jHhX5GcUkAfs+Vrgo2BlgopfvZ2YUva8cbIR lMFRKMgRy+C8ynhTlF0Vq7n01QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCB7ao/f K0uG5pOVxu272rUW4zk/MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjI1NzI0RDQ1 REVGMTFFRjlERkNCNzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFpkwDQYJKoZIhvcNAQELBQADggEBACO0nnrK44lmDtlO FRtGTFxjINee4wvXnrmULhJewEtv6oU0wr5cBgZIIKqR04lfuuYqAomsUAaAtfRX 5C25vbSj4CCP6aBIGaKe5dlBJFYhidenAnFt/bcNuRH4+fdQlvLVwN0B6rposGxS Jl/hMII4rgcyzYrAIhP5qIy/UC/dVkhWqVp0LAB9qoyoeqtOC0sBQDNfcLrOgPtq YPRyK2dgYcwkcI+zi4oalCG54Tg7WE3wQ9DgAGriwBEU9NF82RagfdmAK5SFO/fx 2ZT0LpswzXzVzCl+q0s5AQXHhGebSli9H1t6cK9mQAPkr7EoG21L5iHGL2pBUOzw roPFDXg= -----END CERTIFICATE-----Generated at Sun May 11 15:57:57 2025 by rpki-client