$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7A567644B69B11EEB2602F10C4F9AE02.roa File: 7A567644B69B11EEB2602F10C4F9AE02.roa (raw, json) Hash identifier: pjW6QWCjNb90EAvnMZUzosVBB9TvTy5upZrOg3bba9s= Subject key identifier: 94:C6:4D:3C:CC:09:F4:36:A5:C1:B7:3D:E4:88:8A:45:54:34:66:FB Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D64 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7A567644B69B11EEB2602F10C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:38 +0000 ROA not before: Thu 08 May 2025 15:52:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137109 IP address blocks: 157.10.216.0/23 maxlen: 24 160.30.14.0/24 maxlen: 24 160.30.15.0/24 maxlen: 24 160.30.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7524 (0x1d64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd346-f817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:98:de:77:9d:ca:ee:3d:08:d5:96:87:57:e5: fd:4d:37:cc:ea:46:eb:38:9a:cc:16:14:e5:0e:ec: 57:d6:07:ee:1c:05:56:1e:95:fe:b3:8a:42:2e:66: 1f:a8:de:b8:c5:fc:6a:5f:ee:9a:5f:25:1c:6a:8a: 3d:2f:c4:4a:3a:d1:85:f3:b6:cb:17:66:89:df:bb: 53:26:34:6e:f1:2f:fa:8d:da:fc:7c:93:55:3f:6b: 03:fb:19:ef:2b:85:08:95:75:07:47:ac:f5:10:ad: a3:a8:a2:a4:f9:5c:83:5b:df:9c:9e:93:1b:ac:af: 34:98:26:07:eb:31:61:0b:1d:6f:b5:21:36:0e:56: bf:6d:cd:84:f6:a6:ee:99:31:74:a1:9b:26:58:a8: 58:07:f3:ba:06:c5:55:23:52:51:b9:bd:14:38:93: cd:8a:ed:cb:0f:5d:3b:1c:59:a2:3d:21:b5:f0:1f: 3c:af:90:7b:1b:ac:db:7d:74:e9:aa:e1:4a:c7:80: 82:e3:98:29:89:73:64:34:e9:e0:85:2c:e3:3a:43: 9f:41:28:c7:62:6d:4c:37:c1:af:82:22:2c:b6:06: 84:29:ee:84:8b:8f:18:8a:38:e7:d5:3f:22:78:93: 93:2e:ac:20:f7:01:d2:5a:fd:72:6c:bd:34:c9:2a: b2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C6:4D:3C:CC:09:F4:36:A5:C1:B7:3D:E4:88:8A:45:54:34:66:FB X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7A567644B69B11EEB2602F10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.216.0/23 160.30.14.0/23 160.30.74.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:95:9a:29:c5:4f:41:65:fc:09:ea:37:8a:99:d9:ff:39:22: 30:c0:5a:cf:ac:ad:c6:27:c1:0b:15:eb:78:a4:1e:ba:49:da: 35:2e:88:fb:82:b6:b6:68:85:25:5e:57:b4:af:dd:7e:bf:ae: a5:2c:15:72:13:dc:6f:e2:31:02:34:b9:f8:76:cf:3c:26:bf: 13:f4:31:3a:58:67:87:52:f9:dd:cc:77:4b:99:31:4d:e4:d6: d1:b2:7a:99:e9:58:9b:5b:32:55:a0:f5:2c:79:d4:dc:e9:1d: 6a:64:c3:0a:3f:53:a9:f7:98:d7:7a:e9:b8:37:a1:9c:ef:cc: 76:9a:e0:1f:e7:e6:43:b4:25:ac:50:98:88:1c:7a:12:2a:eb: 69:1c:5c:ba:ec:d9:95:45:03:47:c5:68:99:37:a6:c2:4f:44: 8a:d9:71:44:3c:4d:9c:71:01:72:fb:90:3e:6c:f7:c4:93:46: 46:08:b2:f5:68:b9:28:ca:ff:8b:73:5e:c6:be:25:d7:b9:d4: 74:4d:8d:a5:8d:a1:a9:cb:50:7a:c2:3f:1f:9e:8f:dc:74:53: 4d:a2:0e:75:9a:6c:45:6d:e2:3c:24:68:2d:39:da:55:79:47: f3:ce:0a:23:8d:62:db:d2:58:d6:57:89:a0:4c:b6:fa:ae:f8: e0:37:f0:8a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICHWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjM4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM0Ni1mODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Jjed53K7j0I1ZaHV+X9TTfM6kbrOJrMFhTlDuxX1gfuHAVWHpX+s4pCLmYf qN64xfxqX+6aXyUcaoo9L8RKOtGF87bLF2aJ37tTJjRu8S/6jdr8fJNVP2sD+xnv K4UIlXUHR6z1EK2jqKKk+VyDW9+cnpMbrK80mCYH6zFhCx1vtSE2Dla/bc2E9qbu mTF0oZsmWKhYB/O6BsVVI1JRub0UOJPNiu3LD107HFmiPSG18B88r5B7G6zbfXTp quFKx4CC45gpiXNkNOnghSzjOkOfQSjHYm1MN8GvgiIstgaEKe6Ei48Yijjn1T8i eJOTLqwg9wHSWv1ybL00ySqynQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJTGTTzM CfQ2pcG3PeSIikVUNGb7MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0E1Njc2NDRC NjlCMTFFRUIyNjAyRjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAGdCtgDBAGgHg4DBAGgHkowDQYJKoZIhvcNAQELBQADggEB ADuVminFT0Fl/AnqN4qZ2f85IjDAWs+srcYnwQsV63ikHrpJ2jUuiPuCtrZohSVe V7Sv3X6/rqUsFXIT3G/iMQI0ufh2zzwmvxP0MTpYZ4dS+d3Md0uZMU3k1tGyepnp WJtbMlWg9Sx51NzpHWpkwwo/U6n3mNd66bg3oZzvzHaa4B/n5kO0JaxQmIgcehIq 62kcXLrs2ZVFA0fFaJk3psJPRIrZcUQ8TZxxAXL7kD5s98STRkYIsvVouSjK/4tz Xsa+Jde51HRNjaWNoanLUHrCPx+ej9x0U02iDnWabEVt4jwkaC052lV5R/POCiON YtvSWNZXiaBMtvqu+OA38Io= -----END CERTIFICATE-----Generated at Tue May 13 08:18:17 2025 by rpki-client