$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9B97B96023FC11F08333A921C4F9AE02.roa File: 9B97B96023FC11F08333A921C4F9AE02.roa (raw, json) Hash identifier: uVlzCpDv+ZeM+AJ/C0CC6Bk474l0ZSRm3PJTt6vTxlY= Subject key identifier: D0:11:8F:E8:8A:89:28:F7:9C:9F:AC:76:97:88:A0:9F:9C:01:FA:28 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E1E Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9B97B96023FC11F08333A921C4F9AE02.roa Signing time: Thu 08 May 2025 15:55:24 +0000 ROA not before: Thu 08 May 2025 15:55:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153282 IP address blocks: 161.248.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 10:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7710 (0x1e1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3ec-589f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7e:0e:28:72:f5:b4:53:a2:1d:70:15:8c:ec: 46:b9:95:6e:a5:94:cd:07:0f:ad:d7:aa:e4:2b:03: 82:5d:94:21:19:30:fd:26:60:b4:f2:55:de:d8:21: 8c:b8:5c:48:be:b5:7a:0f:da:b3:c3:4a:2a:1f:3d: f2:04:d5:a4:48:37:13:7c:16:a9:0c:54:55:d2:3a: d7:b8:b3:84:d6:aa:aa:fc:84:38:20:a4:9c:58:27: 0c:0c:a5:f9:01:df:5e:2c:84:af:e4:0d:1a:7e:35: 78:09:40:e8:ea:59:c2:16:90:53:c9:68:e9:40:1e: 8a:dc:de:79:88:eb:16:44:fe:c8:5c:0b:a8:b8:de: 48:95:a7:ab:ae:10:de:89:f2:c8:e3:24:8e:01:81: 3d:7a:49:40:60:df:7a:ae:be:06:0d:de:09:8e:7a: 4e:52:b6:fb:34:77:ff:ef:bb:d4:8d:9f:e0:b0:52: 52:9a:66:7e:48:fe:c5:5a:17:f7:5f:7e:7b:2e:ba: 96:0d:1a:6e:bd:7b:0a:75:b5:28:c8:c8:86:fa:cd: 9b:48:8c:92:5d:e9:10:f3:0f:96:c4:f4:db:2e:56: 28:12:ed:08:f1:6a:e2:89:0a:80:9e:64:91:96:db: c3:1f:9a:d2:82:d9:79:6d:0b:b2:52:82:5d:5c:63: 7d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:11:8F:E8:8A:89:28:F7:9C:9F:AC:76:97:88:A0:9F:9C:01:FA:28 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9B97B96023FC11F08333A921C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.26.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:73:29:ce:a1:c3:e4:22:54:dd:e5:93:e3:41:a3:8c:7d:39: 90:7f:77:5e:69:a2:f9:6a:3a:ee:89:f0:0f:81:7d:51:96:82: 8e:6a:d8:56:22:8a:1f:b5:b6:bc:d9:48:ac:1e:ee:d9:77:cd: c9:ea:99:98:4c:f4:e7:f1:90:ea:e1:be:8d:0e:8a:6f:e9:49: b4:aa:a9:ce:8a:37:6f:37:b0:85:cc:48:75:96:51:d6:37:ca: bc:c3:de:06:0c:fe:3c:1f:0e:ef:3a:1e:b9:c2:52:d8:eb:31: 45:fe:bd:60:86:2e:ee:95:f9:0c:fb:74:17:cf:9a:91:a8:dc: 50:fd:a6:dd:91:2c:1b:84:c5:2c:e4:b4:03:e1:c5:ad:0b:80: fe:5f:1e:51:35:f5:35:8c:17:a2:e2:4d:88:df:09:5a:3a:09: 1d:2a:ab:2f:5d:b5:aa:bd:cc:ad:82:44:1b:67:43:d9:2f:50: ac:6b:56:5a:a5:3c:ef:1e:30:1e:fe:f1:19:0e:fc:3b:ee:66: 8a:8f:e7:d1:a2:ad:51:32:e6:fa:c8:db:c1:f0:4d:09:42:e4: af:d3:d3:6c:a5:34:40:a9:71:e3:c8:d8:7d:93:39:a6:60:fa: c8:86:81:9a:34:1e:5f:76:2c:43:7b:33:1d:dd:e5:93:dc:f1: 78:a9:8c:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNlYy01ODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4H4OKHL1tFOiHXAVjOxGuZVupZTNBw+t16rkKwOCXZQhGTD9JmC08lXe2CGM uFxIvrV6D9qzw0oqHz3yBNWkSDcTfBapDFRV0jrXuLOE1qqq/IQ4IKScWCcMDKX5 Ad9eLISv5A0afjV4CUDo6lnCFpBTyWjpQB6K3N55iOsWRP7IXAuouN5IlaerrhDe ifLI4ySOAYE9eklAYN96rr4GDd4JjnpOUrb7NHf/77vUjZ/gsFJSmmZ+SP7FWhf3 X357LrqWDRpuvXsKdbUoyMiG+s2bSIySXekQ8w+WxPTbLlYoEu0I8WriiQqAnmSR ltvDH5rSgtl5bQuyUoJdXGN9nwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNARj+iK iSj3nJ+sdpeIoJ+cAfooMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOUI5N0I5NjAy M0ZDMTFGMDgzMzNBOTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+BowDQYJKoZIhvcNAQELBQADggEBAC9zKc6hw+QiVN3l k+NBo4x9OZB/d15povlqOu6J8A+BfVGWgo5q2FYiih+1trzZSKwe7tl3zcnqmZhM 9OfxkOrhvo0Oim/pSbSqqc6KN283sIXMSHWWUdY3yrzD3gYM/jwfDu86HrnCUtjr MUX+vWCGLu6V+Qz7dBfPmpGo3FD9pt2RLBuExSzktAPhxa0LgP5fHlE19TWMF6Li TYjfCVo6CR0qqy9dtaq9zK2CRBtnQ9kvUKxrVlqlPO8eMB7+8RkO/DvuZoqP59Gi rVEy5vrI28HwTQlC5K/T02ylNECpcePI2H2TOaZg+siGgZo0Hl92LEN7Mx3d5ZPc 8XipjHg= -----END CERTIFICATE-----Generated at Wed May 14 08:03:47 2025 by rpki-client