$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D2D33C94D97711EF8509CD86C4F9AE02.roa File: D2D33C94D97711EF8509CD86C4F9AE02.roa (raw, json) Hash identifier: X+SL2hfrh9C/LY0DziLTwt8CHZIlEhqz58ONEly2RQ4= Subject key identifier: A2:C1:B6:72:4C:96:48:8A:89:A8:EC:C2:E4:8A:EF:4F:3A:20:21:9E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E20 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D2D33C94D97711EF8509CD86C4F9AE02.roa Signing time: Thu 08 May 2025 15:55:26 +0000 ROA not before: Thu 08 May 2025 15:55:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153288 IP address blocks: 161.248.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7712 (0x1e20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3ed-98b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:40:44:53:26:e4:0a:c4:21:9e:92:3c:c8:20: 65:9d:f5:b1:b8:56:78:2b:aa:32:32:d3:a5:4b:f8: 47:57:ed:00:5b:47:11:82:d6:c1:70:dd:96:89:65: 36:01:da:0a:13:be:e2:58:19:6c:25:c2:63:aa:9d: 13:c4:d8:40:f6:fe:70:1c:2c:42:2b:3f:30:83:82: 0a:7f:28:d1:e5:52:d7:9e:63:a0:7d:6e:54:8a:c7: 58:da:3d:c1:e6:0a:6b:48:07:a6:a0:48:31:ad:88: 4b:0a:53:1b:3d:f0:c8:b4:2d:7b:a3:55:3c:a4:38: b4:61:c7:a1:52:53:dc:78:8f:24:fe:7f:04:e4:20: ec:e1:45:5c:23:43:ac:21:ef:b8:0e:62:e1:06:cc: af:9c:1b:8c:79:93:7e:26:b0:a5:28:4d:8d:83:91: a5:dc:3d:ee:d1:73:a9:c4:19:51:c3:c0:f5:60:2b: ce:cd:b3:ef:55:bd:5e:17:7b:c8:ec:ea:11:a6:72: c7:2b:e9:83:2d:52:28:e5:ac:74:ea:0b:4f:b8:99: aa:3c:65:3b:78:75:32:10:56:bb:cb:71:16:f7:34: 6c:bd:c6:fd:06:ea:b4:cb:fd:9a:b4:64:2c:54:46: c7:e5:04:77:fa:7f:d9:ba:9f:61:89:80:d7:e1:e1: 06:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C1:B6:72:4C:96:48:8A:89:A8:EC:C2:E4:8A:EF:4F:3A:20:21:9E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D2D33C94D97711EF8509CD86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.105.0/24 Signature Algorithm: sha256WithRSAEncryption 19:2d:28:8b:1e:30:84:d6:2e:52:c8:cb:dc:f1:ad:5a:39:51: 1d:e3:0e:b5:f3:3d:b5:68:fe:c9:c2:6d:f3:c5:f5:9a:08:fc: d7:1e:51:fe:3f:ff:89:5b:bc:11:e9:86:c5:f2:0f:07:57:a8: 42:12:26:cc:b4:1b:48:f7:7d:d3:60:7d:ad:81:33:95:a3:fe: dd:8d:40:13:86:9b:39:f0:09:8f:00:2f:67:ce:6b:4c:db:ba: 0d:eb:a1:62:c7:1e:06:73:3f:bc:12:aa:43:e0:6c:1e:69:99: fb:60:5f:e9:27:68:5a:43:33:7d:16:8b:21:12:87:9f:80:cf: 60:3e:7d:93:b5:4a:a5:11:b4:a6:61:e3:2d:f7:f1:ef:65:2e: f3:ae:08:b0:4d:8c:a1:f8:45:6e:4e:76:ca:d6:b4:11:ba:b7: 9d:31:3c:a5:f5:c6:64:23:b5:f7:0a:46:aa:9a:8b:40:be:a5: d4:ce:67:e4:07:16:a7:96:56:65:13:44:14:80:c5:be:2e:8f: 41:52:46:37:10:b6:1c:6f:ee:5a:d2:d3:e0:fb:06:76:63:c1: e8:11:6d:ad:11:6b:39:60:6e:62:ff:92:bb:cd:4d:db:4d:17: cd:8e:f3:cb:05:33:b5:80:b1:a5:b8:96:81:12:c9:9c:c2:26: 23:a2:fe:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNlZC05OGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykBEUybkCsQhnpI8yCBlnfWxuFZ4K6oyMtOlS/hHV+0AW0cRgtbBcN2WiWU2 AdoKE77iWBlsJcJjqp0TxNhA9v5wHCxCKz8wg4IKfyjR5VLXnmOgfW5UisdY2j3B 5gprSAemoEgxrYhLClMbPfDItC17o1U8pDi0YcehUlPceI8k/n8E5CDs4UVcI0Os Ie+4DmLhBsyvnBuMeZN+JrClKE2Ng5Gl3D3u0XOpxBlRw8D1YCvOzbPvVb1eF3vI 7OoRpnLHK+mDLVIo5ax06gtPuJmqPGU7eHUyEFa7y3EW9zRsvcb9Buq0y/2atGQs VEbH5QR3+n/Zup9hiYDX4eEGqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKLBtnJM lkiKiajswuSK7086ICGeMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDJEMzNDOTRE OTc3MTFFRjg1MDlDRDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACh+GkwDQYJKoZIhvcNAQELBQADggEBABktKIseMITWLlLI y9zxrVo5UR3jDrXzPbVo/snCbfPF9ZoI/NceUf4//4lbvBHphsXyDwdXqEISJsy0 G0j3fdNgfa2BM5Wj/t2NQBOGmznwCY8AL2fOa0zbug3roWLHHgZzP7wSqkPgbB5p mftgX+knaFpDM30WiyESh5+Az2A+fZO1SqURtKZh4y338e9lLvOuCLBNjKH4RW5O dsrWtBG6t50xPKX1xmQjtfcKRqqai0C+pdTOZ+QHFqeWVmUTRBSAxb4uj0FSRjcQ thxv7lrS0+D7BnZjwegRba0RazlgbmL/krvNTdtNF82O88sFM7WAsaW4loESyZzC JiOi/gc= -----END CERTIFICATE-----Generated at Sat May 10 23:38:10 2025 by rpki-client