$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0B842BCBDDE11EA9977C550C4F9AE02.roa File: B0B842BCBDDE11EA9977C550C4F9AE02.roa (raw, json) Hash identifier: kTCjHYcJvCe7JTLEB8yqe18aMctDssTAu9fKLH1MGyk= Subject key identifier: A2:B6:D7:33:B5:55:E9:68:34:6B:18:08:3A:E6:A0:7D:6F:44:9C:2F Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D49 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0B842BCBDDE11EA9977C550C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:14 +0000 ROA not before: Thu 08 May 2025 15:52:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134322 IP address blocks: 158.144.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 10:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7497 (0x1d49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd32e-29d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fb:bb:17:02:e5:f3:d3:e0:80:58:b4:d5:dd: bb:f7:fa:fe:35:15:5d:a8:bb:e7:56:58:07:f4:22: 60:f7:1b:c9:19:90:d4:fc:9d:d8:d6:e0:fc:cc:03: 61:4b:a0:4a:c4:17:53:ca:bb:4c:d6:52:bd:c7:4c: 6c:04:b9:b1:21:90:91:c8:fb:16:40:80:0c:1d:30: 93:0e:d3:f1:16:8c:6d:3c:a2:ea:9f:a2:47:dd:f7: 0f:3c:e5:56:76:1e:7a:e0:47:ce:1f:05:ce:ce:0f: 74:99:2e:b6:9e:3f:2c:93:bb:d4:56:f9:c3:03:f8: 0e:e5:c4:5a:e4:db:b4:0c:cf:87:0e:fd:f6:a8:c4: d6:9b:db:7a:e7:32:ce:ec:04:97:91:c5:75:1e:7d: c8:4c:d1:44:c4:42:64:c3:b2:85:7a:c2:4a:ad:59: cb:87:9b:c6:28:94:d5:3a:96:ac:91:72:a5:1e:ca: bf:c4:7f:a2:1b:da:7e:eb:40:44:52:8e:f5:e6:bd: 55:87:76:02:af:67:26:48:d5:58:6d:ff:95:01:f2: 10:86:44:4f:1a:6a:3e:48:00:dc:35:a7:0a:3e:90: 02:ef:74:ae:32:c8:ca:a8:ab:f2:23:10:fb:4c:02: 8b:2e:34:d1:9d:8c:f8:d9:12:21:bd:dd:b2:ad:28: da:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B6:D7:33:B5:55:E9:68:34:6B:18:08:3A:E6:A0:7D:6F:44:9C:2F X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B0B842BCBDDE11EA9977C550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.144.178.0/23 Signature Algorithm: sha256WithRSAEncryption c9:03:81:9b:36:93:99:66:dc:cd:f1:8f:e0:67:43:ce:3a:f8: 54:3a:43:7d:b4:53:af:80:1b:27:53:d8:79:b8:88:86:2c:49: e2:8c:f8:70:1f:6f:6f:f5:99:03:81:9f:06:fa:93:40:41:d1: 84:ed:fe:b6:31:11:59:1a:11:e6:78:94:94:b4:3b:28:b3:80: a3:47:d3:be:eb:3f:e0:2e:f6:ce:14:8f:e5:b5:93:09:5c:46: c7:37:1a:31:66:0f:bd:a7:e4:63:4f:21:77:d8:40:e7:0d:b6: 21:26:a6:37:62:e9:8e:39:28:93:a4:f0:15:ad:ec:06:49:5e: 49:e3:14:74:a6:26:6e:e3:a2:d0:19:b9:c2:98:e0:00:73:7f: 5f:3d:5a:b0:88:33:b7:e5:66:f7:95:e0:78:ad:d4:ed:54:0a: f4:7f:e8:a5:9f:62:a6:a5:d4:a4:d0:4c:e6:7f:cf:fd:b0:6b: b7:f2:6f:ee:9e:dd:b5:21:04:45:18:63:22:4d:00:d5:80:fc: 0c:e6:5c:58:56:46:59:ee:8a:06:3a:f2:0e:ef:bf:44:87:4e: 55:3e:f2:70:5d:c7:48:90:2f:c6:ea:4a:d2:e7:f9:c5:a3:72: 98:de:2b:4d:b1:37:0f:e9:5a:5a:fe:7d:11:fc:92:fb:c4:c8: 6a:68:6d:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDMyZS0yOWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Pu7FwLl89PggFi01d279/r+NRVdqLvnVlgH9CJg9xvJGZDU/J3Y1uD8zANh S6BKxBdTyrtM1lK9x0xsBLmxIZCRyPsWQIAMHTCTDtPxFoxtPKLqn6JH3fcPPOVW dh564EfOHwXOzg90mS62nj8sk7vUVvnDA/gO5cRa5Nu0DM+HDv32qMTWm9t65zLO 7ASXkcV1Hn3ITNFExEJkw7KFesJKrVnLh5vGKJTVOpaskXKlHsq/xH+iG9p+60BE Uo715r1Vh3YCr2cmSNVYbf+VAfIQhkRPGmo+SADcNacKPpAC73SuMsjKqKvyIxD7 TAKLLjTRnYz42RIhvd2yrSjaDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKK21zO1 VeloNGsYCDrmoH1vRJwvMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjBCODQyQkNC RERFMTFFQTk5NzdDNTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGekLIwDQYJKoZIhvcNAQELBQADggEBAMkDgZs2k5lm3M3x j+BnQ846+FQ6Q320U6+AGydT2Hm4iIYsSeKM+HAfb2/1mQOBnwb6k0BB0YTt/rYx EVkaEeZ4lJS0OyizgKNH077rP+Au9s4Uj+W1kwlcRsc3GjFmD72n5GNPIXfYQOcN tiEmpjdi6Y45KJOk8BWt7AZJXknjFHSmJm7jotAZucKY4ABzf189WrCIM7flZveV 4Hit1O1UCvR/6KWfYqal1KTQTOZ/z/2wa7fyb+6e3bUhBEUYYyJNANWA/AzmXFhW RlnuigY68g7vv0SHTlU+8nBdx0iQL8bqStLn+cWjcpjeK02xNw/pWlr+fRH8kvvE yGpobaI= -----END CERTIFICATE-----Generated at Wed May 14 16:55:28 2025 by rpki-client