$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4301E624169911F089E45657C4F9AE02.roa File: 4301E624169911F089E45657C4F9AE02.roa (raw, json) Hash identifier: gWWYYQbvFHEaDNhRaREjK7Res0/zON9ZmJRCQ9H3KPk= Subject key identifier: 10:34:70:14:F5:F0:7D:DB:B5:2E:F9:34:C0:4F:09:F4:61:AD:16:C3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BF09 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4301E624169911F089E45657C4F9AE02.roa Signing time: Fri 27 Jun 2025 12:15:43 +0000 ROA not before: Fri 27 Jun 2025 12:15:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133996 IP address blocks: 163.227.36.0/24 maxlen: 24 2001:df5:c940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48905 (0xbf09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 27 12:15:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=685e8b6f-7973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7e:fa:0a:c2:be:dd:ab:61:d1:62:84:68:8c: ec:f7:be:19:cf:55:14:60:1e:bf:65:f9:66:87:9b: c1:e6:87:75:73:92:25:ea:cb:2d:49:5c:a1:09:b3: 70:bb:2b:68:9f:c2:cd:c6:3c:55:43:0b:36:18:c5: be:45:07:a5:96:e1:e3:a6:a9:46:8d:5c:af:72:61: d3:4b:35:fd:ea:88:a1:e3:f8:b7:1d:8d:56:4b:22: e7:73:e5:fa:0a:69:53:88:35:bd:d0:1d:90:9e:8d: c1:12:49:7d:bd:6f:ca:da:d3:f1:0e:8a:0b:f6:94: 29:e1:ae:a5:c9:4e:74:38:00:c4:a0:03:37:f8:78: 51:52:a1:74:b9:b5:50:38:f2:12:b7:39:15:1f:05: d7:b9:05:c0:21:28:0b:ee:b7:aa:b8:b1:38:1e:53: d9:cf:b8:54:97:de:c1:3a:fc:db:46:91:e8:8d:13: 41:86:4f:32:ae:70:59:19:77:f9:ba:4f:fc:4c:50: 3b:b1:76:96:30:da:de:6f:85:07:80:40:45:73:d7: 65:90:f5:d5:3f:c5:42:03:88:e7:ae:c5:69:3a:59: bd:b2:56:bb:d4:5b:93:f0:01:a7:41:04:74:29:ca: 26:5d:c7:9e:28:6f:cf:4e:5d:59:b1:7f:b0:21:24: 98:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:34:70:14:F5:F0:7D:DB:B5:2E:F9:34:C0:4F:09:F4:61:AD:16:C3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4301E624169911F089E45657C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.36.0/24 IPv6: 2001:df5:c940::/48 Signature Algorithm: sha256WithRSAEncryption 01:37:68:cf:54:dd:8c:fa:b6:8c:3e:25:2e:76:60:8e:f7:44: 97:af:d0:05:a9:92:1c:3e:0d:69:38:e1:34:d3:dc:99:6d:a8: 14:ef:00:0a:3e:2b:e3:3c:b9:94:b5:95:9d:9d:6e:e2:80:ea: 9c:05:1c:9b:ae:de:07:1d:59:f8:c9:e2:c1:e6:f9:1d:bf:99: 42:bc:65:61:dd:30:5a:ef:59:f8:e8:8e:8c:c6:f9:06:7f:3d: eb:1d:16:24:ea:a2:46:aa:82:8b:7a:c1:2b:b0:3f:47:5d:0c: d3:47:00:82:6d:00:e5:f9:b8:f8:c0:d7:e7:bc:ad:4b:e4:ab: 4c:ce:16:09:ff:d9:25:71:8a:bd:15:6b:d4:ef:19:bf:c6:9c: 5b:70:e3:59:89:7c:99:ff:e2:22:52:4e:74:c2:ab:f3:65:0d: c9:57:4d:54:24:23:b6:49:f3:92:3b:af:33:41:b8:4c:ea:ae: 10:c2:bd:26:d3:2c:f1:53:38:96:1e:0a:ad:7d:fc:70:cb:61: 44:37:d0:dd:e9:14:77:05:26:8b:d7:57:81:c5:64:0b:da:ff: d7:7b:a5:1f:76:93:9d:8d:66:78:8e:43:02:54:33:50:4b:3f: 16:2b:e8:52:9d:fd:b9:d5:13:9d:ce:a4:01:45:67:d8:9f:59: 4d:8f:26:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAL8JMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDYyNzEyMTU0M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg1ZThiNmYtNzk3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMt++grCvt2rYdFihGiM7Pe+Gc9VFGAev2X5ZoebweaHdXOSJerLLUlcoQmz cLsraJ/CzcY8VUMLNhjFvkUHpZbh46apRo1cr3Jh00s1/eqIoeP4tx2NVksi53Pl +gppU4g1vdAdkJ6NwRJJfb1vytrT8Q6KC/aUKeGupclOdDgAxKADN/h4UVKhdLm1 UDjyErc5FR8F17kFwCEoC+63qrixOB5T2c+4VJfewTr820aR6I0TQYZPMq5wWRl3 +bpP/ExQO7F2ljDa3m+FB4BARXPXZZD11T/FQgOI567FaTpZvbJWu9Rbk/ABp0EE dCnKJl3Hnihvz05dWbF/sCEkmCECAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQQNHAU 9fB927Uu+TTATwn0Ya0WwzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQzMDFFNjI0 MTY5OTExRjA4OUU0NTY1N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAo+MkMA8EAgACMAkDBwAgAQ31yUAwDQYJKoZIhvcNAQEL BQADggEBAAE3aM9U3Yz6tow+JS52YI73RJev0AWpkhw+DWk44TTT3JltqBTvAAo+ K+M8uZS1lZ2dbuKA6pwFHJuu3gcdWfjJ4sHm+R2/mUK8ZWHdMFrvWfjojozG+QZ/ PesdFiTqokaqgot6wSuwP0ddDNNHAIJtAOX5uPjA1+e8rUvkq0zOFgn/2SVxir0V a9TvGb/GnFtw41mJfJn/4iJSTnTCq/NlDclXTVQkI7ZJ85I7rzNBuEzqrhDCvSbT LPFTOJYeCq19/HDLYUQ30N3pFHcFJovXV4HFZAva/9d7pR92k52NZniOQwJUM1BL PxYr6FKd/bnVE53OpAFFZ9ifWU2PJjY= -----END CERTIFICATE-----Generated at Thu Jul 3 10:32:41 2025 by rpki-client