$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/ED1B4B5044D511EFA9F8D371C4F9AE02.roa File: ED1B4B5044D511EFA9F8D371C4F9AE02.roa (raw, json) Hash identifier: YTz0nkpTSpDIbIN/6QOaLRoBD585JI9myq5pTJYHn5E= Subject key identifier: 81:18:C7:B3:F3:C5:D5:6C:4B:A2:74:D9:4E:82:E3:F8:CA:7F:81:69 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D5B Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/ED1B4B5044D511EFA9F8D371C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:30 +0000 ROA not before: Thu 08 May 2025 15:52:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135823 IP address blocks: 160.25.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7515 (0x1d5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd33e-abfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e9:6a:2a:4a:57:b7:01:8a:75:4d:f4:df:41: e0:f2:8e:65:0e:7b:af:31:e7:22:99:68:1c:56:e9: f0:7a:ae:53:a8:b2:4d:b1:48:b3:af:66:15:b8:ba: 4f:8c:1f:33:f4:d2:a8:e9:2d:6f:5e:30:8f:3e:07: 4e:26:d9:65:89:53:1e:d3:41:a9:dc:6e:78:d8:7a: a2:41:f5:f9:d8:86:44:01:f0:1a:fb:e4:20:a2:a6: 0c:97:7e:83:cd:5f:a6:5e:a9:db:29:b3:11:07:5f: 73:22:8c:9b:cd:35:bc:89:74:bf:45:7d:40:79:a6: cc:96:84:0b:ba:24:98:1b:92:b0:3b:3b:ab:f0:46: 1a:ad:be:0b:ac:85:1f:b3:c5:78:2d:8e:1a:ea:f2: 5a:c4:dd:80:a4:b0:a6:d7:c8:49:3f:af:b2:60:12: a5:16:ae:5a:7a:60:4f:c2:ff:c0:e4:2f:be:de:e1: c7:82:4d:b3:3d:da:52:67:13:fd:9c:b9:cc:ce:3e: a2:b5:79:b5:fc:cc:44:98:d4:2d:6a:29:ca:25:61: c5:7e:4c:27:75:2b:7c:e2:93:33:05:2c:73:c9:42: b5:5b:4c:70:fa:14:11:5f:75:48:ea:12:fd:3f:76: ca:d4:13:14:fa:11:60:b7:5b:81:4a:f4:7e:85:91: 73:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:18:C7:B3:F3:C5:D5:6C:4B:A2:74:D9:4E:82:E3:F8:CA:7F:81:69 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/ED1B4B5044D511EFA9F8D371C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.100.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:be:7b:8b:74:f2:e5:61:05:0e:f0:46:65:2d:49:16:10:8f: 09:53:f8:d1:4f:89:f3:84:0a:75:44:41:41:9b:12:9a:df:59: 38:fc:d0:b9:39:57:54:83:ad:1f:9b:66:22:a7:31:aa:d7:a8: 7f:e6:ec:47:91:3e:54:0a:cc:34:74:e3:9d:8c:da:7b:da:81: 46:f3:86:81:ec:9a:4f:07:14:03:f5:4a:5d:f3:42:38:e6:bc: a6:ed:2f:cf:e9:c5:b3:4e:f1:99:60:43:8f:35:32:2c:1f:2e: 6d:25:58:2d:87:70:4f:9b:61:ab:33:67:be:ce:83:f0:09:01: f2:c9:12:5c:61:06:83:ea:51:d3:07:0c:3f:ff:b7:69:9d:0e: 36:59:b6:0d:c7:39:26:49:06:d7:61:42:cb:c1:62:99:c9:5b: 15:17:ca:be:b0:f9:ea:34:83:cc:51:04:0b:0d:2b:2f:2c:a9: 0f:58:38:f5:61:e4:01:b7:f0:30:2d:b3:98:bd:e7:46:ff:24: f9:f5:01:d9:ca:f5:47:a0:d7:86:4f:81:ce:22:cc:38:50:a6: 14:5e:b0:94:c6:a7:ef:73:b2:9c:c9:ef:2d:a8:6c:30:71:e8: 0d:55:46:bb:0e:cd:70:d9:c0:24:33:60:fe:18:ca:d6:29:b4: 93:2f:da:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDMzZS1hYmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ulqKkpXtwGKdU3030Hg8o5lDnuvMecimWgcVunweq5TqLJNsUizr2YVuLpP jB8z9NKo6S1vXjCPPgdOJtlliVMe00Gp3G542HqiQfX52IZEAfAa++QgoqYMl36D zV+mXqnbKbMRB19zIoybzTW8iXS/RX1AeabMloQLuiSYG5KwOzur8EYarb4LrIUf s8V4LY4a6vJaxN2ApLCm18hJP6+yYBKlFq5aemBPwv/A5C++3uHHgk2zPdpSZxP9 nLnMzj6itXm1/MxEmNQtainKJWHFfkwndSt84pMzBSxzyUK1W0xw+hQRX3VI6hL9 P3bK1BMU+hFgt1uBSvR+hZFz0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIEYx7Pz xdVsS6J02U6C4/jKf4FpMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRUQxQjRCNTA0 NEQ1MTFFRkE5RjhEMzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGWQwDQYJKoZIhvcNAQELBQADggEBAA++e4t08uVhBQ7w RmUtSRYQjwlT+NFPifOECnVEQUGbEprfWTj80Lk5V1SDrR+bZiKnMarXqH/m7EeR PlQKzDR0452M2nvagUbzhoHsmk8HFAP1Sl3zQjjmvKbtL8/pxbNO8ZlgQ481Miwf Lm0lWC2HcE+bYaszZ77Og/AJAfLJElxhBoPqUdMHDD//t2mdDjZZtg3HOSZJBtdh QsvBYpnJWxUXyr6w+eo0g8xRBAsNKy8sqQ9YOPVh5AG38DAts5i950b/JPn1AdnK 9Ueg14ZPgc4izDhQphResJTGp+9zspzJ7y2obDBx6A1VRrsOzXDZwCQzYP4YytYp tJMv2n8= -----END CERTIFICATE-----Generated at Sun May 11 06:28:03 2025 by rpki-client