$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/676D2776AD4911EFB10AD13FC4F9AE02.roa File: 676D2776AD4911EFB10AD13FC4F9AE02.roa (raw, json) Hash identifier: 6OT6Kk0DAtqp3ZLp6zal/C1BIVH2LuIkMupWNmItsHY= Subject key identifier: 9B:FD:67:41:EF:C7:74:0D:6F:A6:88:B3:D7:58:C6:E9:D5:E4:D6:DC Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D58 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/676D2776AD4911EFB10AD13FC4F9AE02.roa Signing time: Thu 08 May 2025 15:52:27 +0000 ROA not before: Thu 08 May 2025 15:52:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135799 IP address blocks: 160.187.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7512 (0x1d58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd33b-664d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:18:67:06:a0:a4:38:66:4a:59:77:f8:59:64: 0e:b2:1c:3e:60:a7:6f:ee:2d:db:e3:3b:51:9a:61: 39:82:17:bb:62:c3:ba:0a:aa:49:0e:b9:3b:a2:1e: f2:f7:16:b1:78:4e:8f:49:e3:78:0c:7b:4d:a2:26: f1:94:b1:1d:78:d6:e8:f1:e4:87:24:41:b4:93:7a: b3:fe:46:53:0a:80:4e:e1:8f:c4:4f:6d:bf:fc:c6: e6:c0:d0:60:f8:20:86:14:09:c4:46:38:a6:23:26: 65:f3:04:a0:50:9c:16:6c:8f:53:fa:4e:2f:63:ec: ec:e3:5a:61:ba:44:11:47:f7:57:af:0c:80:d8:94: 3f:e6:ff:8a:69:ec:d3:52:90:ce:3a:83:0b:c6:1c: 01:fa:17:c1:e8:71:a2:0c:dd:15:e5:96:6f:a7:c1: 16:4f:c2:9a:de:0f:04:c3:1e:93:6f:94:43:40:39: 83:01:65:d3:03:16:9a:d9:4b:69:df:7a:eb:eb:0a: ba:37:1a:fe:0c:0d:fe:0f:9b:03:67:01:76:09:d6: 01:ac:d2:10:fa:0a:bd:5d:c1:14:58:a5:31:2c:f9: 58:87:ff:da:e8:93:69:f8:40:f9:e0:87:61:c1:ed: 06:04:2a:f0:d8:4e:85:58:1a:6c:01:d7:0e:9f:b5: d7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:FD:67:41:EF:C7:74:0D:6F:A6:88:B3:D7:58:C6:E9:D5:E4:D6:DC X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/676D2776AD4911EFB10AD13FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.178.0/23 Signature Algorithm: sha256WithRSAEncryption 52:f3:46:d7:76:06:d1:80:40:c3:db:75:4e:75:d2:50:4a:61: 8f:ae:7b:ce:71:32:b4:54:bf:8e:04:3b:f7:ae:0f:72:52:a1: 17:ec:ce:32:bc:ea:07:00:9b:9c:0a:85:44:10:a6:17:e0:d5: f6:09:37:74:e5:82:cb:7b:f4:c5:cf:7c:06:5f:7c:fd:f6:21: 4a:3f:63:75:9a:bd:ad:3b:28:b4:db:01:22:42:d1:aa:1a:2e: 0b:dc:ef:74:21:ce:9e:6e:3b:bf:18:85:7b:1a:08:d6:cf:4b: 9d:5d:db:67:c6:32:3d:01:03:90:3a:c6:20:b5:92:30:d9:bd: f9:5e:d0:4b:43:62:c5:a2:80:3b:59:23:0a:d9:24:9e:b6:2a: 4b:9e:d3:7f:46:bb:28:90:a6:57:f0:2e:9b:97:fc:98:fd:19: 44:d0:c1:cb:81:03:f0:9f:b3:c2:0d:9f:b0:ad:59:65:e9:e3: 66:dd:19:b0:d6:82:e8:7c:3c:7d:94:98:f8:8e:1f:0c:dd:44: 19:15:ae:f3:a5:71:8d:33:0b:57:51:8d:16:35:26:98:5c:ef: c8:5a:61:40:2d:04:9c:c6:ff:7f:63:d9:84:39:62:1d:c8:fd: 22:29:50:af:7d:08:72:8e:d3:38:4c:b3:33:30:5d:2f:ab:45: a2:a3:ec:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDMzYi02NjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxhnBqCkOGZKWXf4WWQOshw+YKdv7i3b4ztRmmE5ghe7YsO6CqpJDrk7oh7y 9xaxeE6PSeN4DHtNoibxlLEdeNbo8eSHJEG0k3qz/kZTCoBO4Y/ET22//MbmwNBg +CCGFAnERjimIyZl8wSgUJwWbI9T+k4vY+zs41phukQRR/dXrwyA2JQ/5v+KaezT UpDOOoMLxhwB+hfB6HGiDN0V5ZZvp8EWT8Ka3g8Ewx6Tb5RDQDmDAWXTAxaa2Utp 33rr6wq6Nxr+DA3+D5sDZwF2CdYBrNIQ+gq9XcEUWKUxLPlYh//a6JNp+ED54Idh we0GBCrw2E6FWBpsAdcOn7XX5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJv9Z0Hv x3QNb6aIs9dYxunV5NbcMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjc2RDI3NzZB RDQ5MTFFRkIxMEFEMTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu7IwDQYJKoZIhvcNAQELBQADggEBAFLzRtd2BtGAQMPb dU510lBKYY+ue85xMrRUv44EO/euD3JSoRfszjK86gcAm5wKhUQQphfg1fYJN3Tl gst79MXPfAZffP32IUo/Y3Wava07KLTbASJC0aoaLgvc73Qhzp5uO78YhXsaCNbP S51d22fGMj0BA5A6xiC1kjDZvfle0EtDYsWigDtZIwrZJJ62Kkue039GuyiQplfw LpuX/Jj9GUTQwcuBA/Cfs8INn7CtWWXp42bdGbDWguh8PH2UmPiOHwzdRBkVrvOl cY0zC1dRjRY1Jphc78haYUAtBJzG/39j2YQ5Yh3I/SIpUK99CHKO0zhMszMwXS+r RaKj7G8= -----END CERTIFICATE-----Generated at Sun May 11 09:42:34 2025 by rpki-client