$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9E442C70DD3411EF80B4C820C4F9AE02.roa File: 9E442C70DD3411EF80B4C820C4F9AE02.roa (raw, json) Hash identifier: JuEDrN+q4xtdSy4XGpXcENbGsT34vOFYhSOI4TnM6aI= Subject key identifier: 28:61:9F:AA:39:1C:BC:B0:7B:FA:9B:8A:D5:C3:2C:78:92:F4:57:D7 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E1C Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9E442C70DD3411EF80B4C820C4F9AE02.roa Signing time: Thu 08 May 2025 15:55:22 +0000 ROA not before: Thu 08 May 2025 15:55:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153274 IP address blocks: 161.248.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 10:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7708 (0x1e1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3ea-6758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ce:01:57:73:58:a3:25:61:a6:71:40:ac:6e: b3:88:4f:d6:f6:3c:be:95:03:78:5e:aa:d1:c0:e7: af:53:4f:3f:79:e3:90:00:92:d5:a9:68:6f:00:58: d7:a8:0a:09:a3:40:b1:2c:0e:00:50:eb:c3:ad:7d: 25:9b:ac:46:8f:29:aa:31:67:0e:4a:a2:dc:9b:52: 07:a9:fb:e8:83:9d:2b:83:1c:ea:5f:48:ed:b8:0a: f6:d9:82:66:8e:44:fc:b2:c6:0a:fd:02:e5:c2:7c: 27:35:eb:4d:15:66:7e:f5:7d:1a:e1:15:6f:c3:8f: 37:a0:3a:05:8d:a8:a3:a7:0d:c2:8d:7a:2e:20:ab: 52:e8:a1:13:17:e4:80:cb:1d:d5:ad:eb:ae:19:0a: 90:6b:45:ff:0e:72:67:81:80:e4:ab:52:25:86:88: 8b:e5:7a:6b:97:05:50:4f:e1:c0:ae:01:08:33:d1: b5:ea:3b:3b:b3:a4:06:ec:83:2f:d3:8a:65:f5:10: 7a:a0:c5:46:b0:08:d7:b6:b3:57:89:11:42:ab:7f: 88:ca:b8:e7:4b:46:b3:90:28:df:67:f5:26:b1:e9: 5b:ad:2f:57:56:a3:87:2b:2c:c0:4e:16:03:32:43: 1c:cc:56:3b:88:10:89:bc:ae:69:db:85:bb:ce:81: a8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:61:9F:AA:39:1C:BC:B0:7B:FA:9B:8A:D5:C3:2C:78:92:F4:57:D7 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/9E442C70DD3411EF80B4C820C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.242.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:30:41:09:70:6f:17:df:45:1a:56:a7:23:02:64:d3:de:7b: 4b:f0:49:19:59:03:4d:47:b5:f5:ce:96:40:10:09:cf:1e:e8: 6c:6b:de:b4:35:63:9a:d0:42:4f:9e:c0:b7:4b:10:85:00:df: 06:27:e2:b4:c4:2c:7e:06:c1:61:1d:1a:e5:5c:fa:b3:39:1b: bb:d4:29:5d:9e:ea:4a:7b:5f:20:05:d9:66:e5:d6:8a:eb:aa: 78:0e:ea:53:62:ee:b6:2e:f3:5e:43:a3:2f:4a:cd:44:5c:78: 9f:54:e3:d9:26:5f:7d:94:65:82:80:1e:c1:0a:3d:fc:2d:31: 7c:68:81:a0:0d:ff:c9:74:4a:e0:bb:9e:3a:da:b6:cf:91:f6: eb:2e:cf:67:06:b7:46:d7:c4:07:9d:ba:24:fd:57:4e:fa:7d: 79:bb:50:4f:f8:d1:3b:1d:1a:45:4a:92:3c:ae:f9:0c:37:88: 51:df:cd:ab:69:78:bd:34:f7:bc:35:aa:8e:41:72:d6:cf:b1: b6:f8:d3:b4:e0:72:a6:b2:91:3d:c9:21:1e:92:86:b7:90:26: d5:a8:e8:a5:bf:a0:a1:1a:fd:b5:48:70:2c:33:66:c0:3e:39: cf:cb:2a:70:21:ec:99:4e:b1:3d:00:ea:b2:98:81:7f:d8:e7: d9:02:db:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNlYS02NzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApc4BV3NYoyVhpnFArG6ziE/W9jy+lQN4XqrRwOevU08/eeOQAJLVqWhvAFjX qAoJo0CxLA4AUOvDrX0lm6xGjymqMWcOSqLcm1IHqfvog50rgxzqX0jtuAr22YJm jkT8ssYK/QLlwnwnNetNFWZ+9X0a4RVvw483oDoFjaijpw3CjXouIKtS6KETF+SA yx3VreuuGQqQa0X/DnJngYDkq1IlhoiL5XprlwVQT+HArgEIM9G16js7s6QG7IMv 04pl9RB6oMVGsAjXtrNXiRFCq3+IyrjnS0azkCjfZ/UmselbrS9XVqOHKyzAThYD MkMczFY7iBCJvK5p24W7zoGoewIDAQABo4IClTCCApEwHQYDVR0OBBYEFChhn6o5 HLywe/qbitXDLHiS9FfXMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOUU0NDJDNzBE RDM0MTFFRjgwQjRDODIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+PIwDQYJKoZIhvcNAQELBQADggEBAG8wQQlwbxffRRpW pyMCZNPee0vwSRlZA01HtfXOlkAQCc8e6Gxr3rQ1Y5rQQk+ewLdLEIUA3wYn4rTE LH4GwWEdGuVc+rM5G7vUKV2e6kp7XyAF2Wbl1orrqngO6lNi7rYu815Doy9KzURc eJ9U49kmX32UZYKAHsEKPfwtMXxogaAN/8l0SuC7njrats+R9usuz2cGt0bXxAed uiT9V076fXm7UE/40TsdGkVKkjyu+Qw3iFHfzatpeL0097w1qo5BctbPsbb407Tg cqaykT3JIR6ShreQJtWo6KW/oKEa/bVIcCwzZsA+Oc/LKnAh7JlOsT0A6rKYgX/Y 59kC25c= -----END CERTIFICATE-----Generated at Tue May 13 22:51:52 2025 by rpki-client