$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BDE8D4DCDE0F11EF86254166C4F9AE02.roa File: BDE8D4DCDE0F11EF86254166C4F9AE02.roa (raw, json) Hash identifier: /W7qrBn3GmHTMUjStsoVyVHegdO9W6Uj1GVdI1pa5n4= Subject key identifier: 43:70:2D:75:81:AC:1E:05:63:92:52:4C:29:2C:5E:46:8B:25:99:24 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D4A Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BDE8D4DCDE0F11EF86254166C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:15 +0000 ROA not before: Thu 08 May 2025 15:52:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134331 IP address blocks: 161.248.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7498 (0x1d4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd32f-a9a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a7:21:9b:68:74:bf:62:9b:74:30:bd:1b:ad: 36:da:66:c9:d2:62:56:49:8e:a2:ee:35:14:fc:b0: 32:8a:11:af:75:88:49:cd:4e:04:ed:90:9b:15:8f: 0b:eb:42:ed:d1:4c:d6:7b:dd:ea:72:a8:1c:b3:e6: 39:38:ef:9e:71:80:c5:b0:e1:56:6a:86:01:e3:8b: 26:bf:f3:d6:3d:6e:a5:22:c9:24:01:87:e3:a6:5d: 14:8e:72:2e:02:f6:7d:46:c8:74:f1:d5:e3:68:a8: ec:9b:36:3a:69:d5:30:9f:99:e1:20:ef:9d:4c:bd: 34:de:6d:d9:aa:ac:61:6f:cf:29:fa:50:b5:1a:d8: 5c:22:a3:6e:7e:71:af:38:9c:51:c1:6b:28:bd:f8: ef:8b:9b:04:7d:7d:ff:2a:7c:47:91:3e:2b:a8:84: 4c:6b:25:89:fb:8d:3a:e3:d2:11:47:06:5e:f8:84: bf:b7:ab:63:6c:5b:46:66:6b:c5:85:65:bb:3f:cd: b1:de:1f:38:1e:f3:9d:7d:7c:97:35:a4:55:3b:11: e3:38:8c:79:06:de:06:06:87:83:a8:11:38:96:46: 26:f4:8a:8c:b5:93:5d:e7:32:ce:0f:4c:38:9b:4b: c5:e5:52:58:90:61:08:ee:79:09:20:33:38:14:24: 3f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:70:2D:75:81:AC:1E:05:63:92:52:4C:29:2C:5E:46:8B:25:99:24 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BDE8D4DCDE0F11EF86254166C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.64.0/23 Signature Algorithm: sha256WithRSAEncryption 34:c5:fe:18:67:da:ba:82:98:27:1e:76:24:b5:20:ea:a1:a9: 85:17:a1:eb:9a:9d:8b:2f:a2:f1:f5:c8:b5:65:e2:10:7d:c1: b5:53:27:9f:0f:4f:3e:0f:b7:ab:5a:9b:cd:09:c1:c0:7f:8d: 14:1b:90:bc:bd:ff:a0:1b:7c:49:76:a2:68:89:46:87:76:74: c2:b3:8a:41:10:a5:db:1e:f4:18:79:45:fd:9b:8c:83:66:d4: 10:70:76:d8:dc:3d:1d:79:17:ed:9a:79:e5:db:f8:68:33:d1: 41:78:3d:b5:66:e7:56:be:cd:3e:bb:0f:06:19:24:ca:92:1e: a2:6e:24:b1:32:43:b8:92:51:d1:89:2d:b9:57:a0:b4:04:a1: c5:7a:fd:08:d8:8c:26:c1:15:8a:65:39:67:88:5e:52:a7:d8: 53:c9:c1:be:9b:7d:4f:dd:13:3e:c4:80:f1:0e:4e:d7:bd:1b: 01:2d:b2:2f:6f:88:02:1e:8c:67:6e:3d:fe:43:6d:73:00:01: 5d:ce:72:95:73:97:f9:88:46:22:83:86:e9:51:f8:5e:13:28: a2:7c:75:2a:cb:9b:6b:2c:d7:93:a1:b1:76:8d:a9:4a:aa:99: d5:ea:98:2f:92:38:87:f6:c8:2b:a1:ce:21:5b:91:99:6f:d2: fc:ae:4e:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDMyZi1hOWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKchm2h0v2KbdDC9G6022mbJ0mJWSY6i7jUU/LAyihGvdYhJzU4E7ZCbFY8L 60Lt0UzWe93qcqgcs+Y5OO+ecYDFsOFWaoYB44smv/PWPW6lIskkAYfjpl0UjnIu AvZ9Rsh08dXjaKjsmzY6adUwn5nhIO+dTL003m3Zqqxhb88p+lC1GthcIqNufnGv OJxRwWsovfjvi5sEfX3/KnxHkT4rqIRMayWJ+40649IRRwZe+IS/t6tjbFtGZmvF hWW7P82x3h84HvOdfXyXNaRVOxHjOIx5Bt4GBoeDqBE4lkYm9IqMtZNd5zLOD0w4 m0vF5VJYkGEI7nkJIDM4FCQ/FQIDAQABo4IClTCCApEwHQYDVR0OBBYEFENwLXWB rB4FY5JSTCksXkaLJZkkMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkRFOEQ0RENE RTBGMTFFRjg2MjU0MTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+EAwDQYJKoZIhvcNAQELBQADggEBADTF/hhn2rqCmCce diS1IOqhqYUXoeuanYsvovH1yLVl4hB9wbVTJ58PTz4Pt6tam80JwcB/jRQbkLy9 /6AbfEl2omiJRod2dMKzikEQpdse9Bh5Rf2bjINm1BBwdtjcPR15F+2aeeXb+Ggz 0UF4PbVm51a+zT67DwYZJMqSHqJuJLEyQ7iSUdGJLblXoLQEocV6/QjYjCbBFYpl OWeIXlKn2FPJwb6bfU/dEz7EgPEOTte9GwEtsi9viAIejGduPf5DbXMAAV3OcpVz l/mIRiKDhulR+F4TKKJ8dSrLm2ss15OhsXaNqUqqmdXqmC+SOIf2yCuhziFbkZlv 0vyuTog= -----END CERTIFICATE-----Generated at Mon May 12 19:58:11 2025 by rpki-client