$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C585A87A3AAC11EFB29D2473C4F9AE02.roa File: C585A87A3AAC11EFB29D2473C4F9AE02.roa (raw, json) Hash identifier: eXV7dYkAdN/1UWjY6QBPke2xFR+GwHeUNSaEgylhLtE= Subject key identifier: F4:73:B0:E1:6E:34:03:E8:DB:81:B6:03:6B:58:0C:4E:07:3E:35:1E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D99 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C585A87A3AAC11EFB29D2473C4F9AE02.roa Signing time: Thu 08 May 2025 15:53:25 +0000 ROA not before: Thu 08 May 2025 15:53:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150588 IP address blocks: 160.25.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7577 (0x1d99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:53:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd375-c70d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3c:15:b3:03:d0:67:44:57:dd:48:94:2f:1a: da:73:f6:f2:0a:d1:1c:0f:c3:01:10:ad:71:ee:cb: 2e:7f:ff:66:a6:99:33:da:78:70:e5:dd:b9:85:a5: 0c:ef:89:02:29:99:37:9d:01:c8:64:dc:13:99:b3: 8e:2d:81:9b:d9:d9:1b:c5:86:b2:27:31:f2:ed:c4: 66:01:d1:69:86:99:e2:8e:d6:64:57:f9:dd:c8:35: 4e:99:f4:b9:94:a8:3c:21:ff:fb:0b:4d:ec:06:b1: 94:24:41:ce:f1:d6:b1:42:2f:fc:3d:8a:ff:d7:83: e7:81:14:53:0e:f6:17:5c:2f:b4:cb:af:35:0c:d0: a1:84:d0:e9:63:9e:72:cf:ac:24:43:b9:46:d7:34: 3f:4f:3e:57:3c:f2:c3:19:fb:d7:55:48:17:c5:fc: a7:08:c8:aa:45:b5:b2:fa:29:88:49:f6:44:42:3b: 19:24:c1:46:01:4f:56:a8:d2:b7:4a:20:8e:8e:61: e8:6e:e9:20:c0:58:c1:65:70:e0:98:13:4a:3e:86: b4:c1:56:7d:98:62:f9:e1:30:8f:39:f1:5e:60:02: bf:d9:ed:91:f0:c4:19:a5:42:f0:cd:86:1a:c4:4a: e7:a4:33:3b:31:1d:d4:99:ee:cd:2b:15:16:e3:b8: e7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:73:B0:E1:6E:34:03:E8:DB:81:B6:03:6B:58:0C:4E:07:3E:35:1E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C585A87A3AAC11EFB29D2473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.63.0/24 Signature Algorithm: sha256WithRSAEncryption 52:cd:01:8c:8c:ca:5b:d2:76:4d:bd:86:a6:db:2b:5e:80:03: f1:04:a1:99:6b:67:4c:87:4e:3f:7e:73:55:b8:45:27:03:1c: a8:f2:a1:5c:8f:da:92:27:71:75:c5:69:04:bd:d6:f7:b9:cf: ef:c8:c3:93:36:09:e5:f1:0b:01:6d:2c:c8:cd:8a:ae:e6:bd: fe:99:7f:6e:9e:c7:5c:21:3a:46:40:54:e5:73:7d:76:77:2c: 07:f2:fa:05:91:66:39:58:36:4b:8d:7c:48:73:e5:ec:98:02: 90:45:b3:d0:1d:d7:49:28:c7:9d:4a:33:62:fc:08:ee:45:31: e0:92:c1:66:4a:7c:d5:41:47:a8:23:8b:c4:89:50:6f:e3:3f: 76:6c:3a:c8:94:de:67:1d:f2:31:28:f0:f4:b7:03:84:86:40: 74:9b:48:d1:09:ea:0d:e3:d9:57:50:6a:99:46:62:84:2d:c6: b5:37:a7:c1:ed:c0:f5:95:13:a8:02:14:fc:37:43:ba:ef:af: d7:cf:3e:0f:4d:65:d0:a9:75:16:ac:c5:4f:a4:72:73:bd:8d: 92:a2:b9:ae:01:5d:86:05:81:d0:77:2a:98:89:70:b9:4d:7d: 8a:17:9e:e1:7c:6c:45:21:e5:ba:4e:7a:2f:6a:a1:19:06:ce: 86:c1:cd:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MzI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM3NS1jNzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzwVswPQZ0RX3UiULxrac/byCtEcD8MBEK1x7ssuf/9mppkz2nhw5d25haUM 74kCKZk3nQHIZNwTmbOOLYGb2dkbxYayJzHy7cRmAdFphpnijtZkV/ndyDVOmfS5 lKg8If/7C03sBrGUJEHO8daxQi/8PYr/14PngRRTDvYXXC+0y681DNChhNDpY55y z6wkQ7lG1zQ/Tz5XPPLDGfvXVUgXxfynCMiqRbWy+imISfZEQjsZJMFGAU9WqNK3 SiCOjmHobukgwFjBZXDgmBNKPoa0wVZ9mGL54TCPOfFeYAK/2e2R8MQZpULwzYYa xErnpDM7MR3Ume7NKxUW47jniQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPRzsOFu NAPo24G2A2tYDE4HPjUeMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzU4NUE4N0Ez QUFDMTFFRkIyOUQyNDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgGT8wDQYJKoZIhvcNAQELBQADggEBAFLNAYyMylvSdk29 hqbbK16AA/EEoZlrZ0yHTj9+c1W4RScDHKjyoVyP2pIncXXFaQS91ve5z+/Iw5M2 CeXxCwFtLMjNiq7mvf6Zf26ex1whOkZAVOVzfXZ3LAfy+gWRZjlYNkuNfEhz5eyY ApBFs9Ad10kox51KM2L8CO5FMeCSwWZKfNVBR6gji8SJUG/jP3ZsOsiU3mcd8jEo 8PS3A4SGQHSbSNEJ6g3j2VdQaplGYoQtxrU3p8HtwPWVE6gCFPw3Q7rvr9fPPg9N ZdCpdRasxU+kcnO9jZKiua4BXYYFgdB3KpiJcLlNfYoXnuF8bEUh5bpOei9qoRkG zobBzak= -----END CERTIFICATE-----Generated at Mon May 12 04:04:16 2025 by rpki-client