$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7D358234B0A911EFA429A522C4F9AE02.roa File: 7D358234B0A911EFA429A522C4F9AE02.roa (raw, json) Hash identifier: y1QRARrsKYbtPA9IXLCtpuutee+4mmZYQsa9hXSocEw= Subject key identifier: 71:D1:BC:29:26:B8:C5:FE:9A:4F:12:84:36:D6:C4:D2:FD:06:1A:A3 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E0F Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7D358234B0A911EFA429A522C4F9AE02.roa Signing time: Thu 08 May 2025 15:55:11 +0000 ROA not before: Thu 08 May 2025 15:55:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153251 IP address blocks: 160.250.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7695 (0x1e0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3df-ce68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:79:e3:cd:ff:c2:8d:e8:09:f2:a0:67:d3:01: 68:a6:99:9d:ee:c2:5e:c8:85:b8:92:74:c6:4f:68: 9d:3e:ca:d4:19:3a:be:4d:aa:3a:13:c0:da:0b:53: dc:9d:e1:74:26:c1:9f:d4:7a:45:74:fd:d1:1b:c1: da:9d:6d:76:55:f4:8b:30:22:ea:0a:bc:d2:76:7b: d5:82:cc:b1:dc:92:bf:ac:40:f5:18:78:9e:7d:68: 6a:0b:a4:54:e8:8b:7f:f2:31:22:91:d0:6c:eb:74: 1b:d2:2d:a7:a8:5c:0c:db:58:66:08:72:20:d1:9e: ca:00:e0:7c:9e:b7:6e:44:2a:70:c0:3e:b2:97:e6: 1d:75:64:83:e7:04:39:96:60:d1:4a:a7:7b:a4:54: cd:03:f1:f7:01:f6:97:17:8d:8f:93:c0:a9:6b:72: 7b:b0:cc:fb:6c:d1:d7:ac:14:33:18:ce:62:27:6c: 50:75:6a:45:1c:a9:83:49:60:65:4d:42:ac:97:71: aa:7d:0d:76:ae:15:f4:74:e9:04:21:cb:bc:40:ce: 63:3c:09:06:d0:1b:ba:2b:d9:1d:f4:17:66:a2:24: 7f:b1:6b:fe:7f:b1:f1:5b:9b:0d:83:b3:41:1d:39: dd:f3:2a:ea:34:76:20:ef:f1:48:57:87:a9:05:93: db:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D1:BC:29:26:B8:C5:FE:9A:4F:12:84:36:D6:C4:D2:FD:06:1A:A3 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7D358234B0A911EFA429A522C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.108.0/23 Signature Algorithm: sha256WithRSAEncryption 82:3b:07:7b:52:60:57:50:53:0a:a0:96:be:ff:cf:4a:f3:22: 1c:2b:a8:fe:c8:08:5b:cb:2a:c1:41:44:38:8c:f1:b4:52:32: 77:59:c6:4b:40:f1:ea:86:44:3d:da:f4:3c:54:06:3e:00:87: 7d:ed:1c:ad:12:53:44:76:9e:bf:0c:7c:d7:a7:e1:a5:dc:8e: c7:6f:6a:68:aa:0c:50:14:a9:78:08:46:a1:49:3a:43:c8:a3: e8:43:b6:c9:0f:6e:f8:9a:3e:0f:c6:9f:5a:f3:f5:af:23:41: 61:3c:dc:bf:3e:6d:03:1a:2a:d3:bf:89:13:f9:51:ef:f5:2e: 38:6f:5f:ec:53:bb:32:7a:c0:db:a7:00:94:9e:70:b8:a5:1c: 96:3a:57:d5:ef:47:cd:5f:72:ff:f2:8d:39:d1:4e:7f:20:5a: cb:15:b2:06:8a:c9:29:e9:9f:f0:8d:31:46:11:53:40:bd:20: 07:2b:82:f1:1a:dd:d1:50:ba:ee:36:e8:a5:7a:5a:2b:6c:69: 54:40:11:90:46:63:da:4d:f2:b5:22:33:c7:ad:29:f1:61:31: 5c:39:aa:79:5f:14:95:af:8f:f4:a3:a0:9c:3a:9e:67:d7:ae: 0a:94:f4:ec:05:30:c9:72:0c:dc:80:7e:ac:08:1d:11:06:8b: 00:17:0c:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNkZi1jZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Xnjzf/CjegJ8qBn0wFoppmd7sJeyIW4knTGT2idPsrUGTq+Tao6E8DaC1Pc neF0JsGf1HpFdP3RG8HanW12VfSLMCLqCrzSdnvVgsyx3JK/rED1GHiefWhqC6RU 6It/8jEikdBs63Qb0i2nqFwM21hmCHIg0Z7KAOB8nrduRCpwwD6yl+YddWSD5wQ5 lmDRSqd7pFTNA/H3AfaXF42Pk8Cpa3J7sMz7bNHXrBQzGM5iJ2xQdWpFHKmDSWBl TUKsl3GqfQ12rhX0dOkEIcu8QM5jPAkG0Bu6K9kd9BdmoiR/sWv+f7HxW5sNg7NB HTnd8yrqNHYg7/FIV4epBZPbSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHHRvCkm uMX+mk8ShDbWxNL9BhqjMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0QzNTgyMzRC MEE5MTFFRkE0MjlBNTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGg+mwwDQYJKoZIhvcNAQELBQADggEBAII7B3tSYFdQUwqg lr7/z0rzIhwrqP7ICFvLKsFBRDiM8bRSMndZxktA8eqGRD3a9DxUBj4Ah33tHK0S U0R2nr8MfNen4aXcjsdvamiqDFAUqXgIRqFJOkPIo+hDtskPbviaPg/Gn1rz9a8j QWE83L8+bQMaKtO/iRP5Ue/1LjhvX+xTuzJ6wNunAJSecLilHJY6V9XvR81fcv/y jTnRTn8gWssVsgaKySnpn/CNMUYRU0C9IAcrgvEa3dFQuu426KV6WitsaVRAEZBG Y9pN8rUiM8etKfFhMVw5qnlfFJWvj/SjoJw6nmfXrgqU9OwFMMlyDNyAfqwIHREG iwAXDFk= -----END CERTIFICATE-----Generated at Sun May 11 15:56:49 2025 by rpki-client