$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8649EB6CF30E11EDAD4C2045C4F9AE02.roa File: 8649EB6CF30E11EDAD4C2045C4F9AE02.roa (raw, json) Hash identifier: xHZZyhnb3qU5p7jUHXcF1RgYbesqg33c9k4a9zx9FFc= Subject key identifier: 99:A2:55:BC:36:FD:D8:78:6C:51:08:26:56:60:7A:08:E2:02:42:3E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B7A4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8649EB6CF30E11EDAD4C2045C4F9AE02.roa Signing time: Thu 08 May 2025 16:21:31 +0000 ROA not before: Thu 08 May 2025 16:21:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 148001 IP address blocks: 160.202.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47012 (0xb7a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:21:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cda0b-b45d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:13:69:da:97:ba:f2:fc:7c:b2:92:8b:02:03: 72:1d:b7:64:5c:ec:0f:d0:b1:12:28:c0:37:0f:b3: eb:80:2f:ad:79:4a:e4:d0:1d:14:d7:74:e1:ca:b2: a3:eb:ef:fa:9d:0c:82:29:39:d9:f2:7d:9c:30:7f: 52:c9:f0:44:dc:1b:03:2d:93:e3:44:f4:3d:c8:f7: 20:de:87:7c:e3:7c:f6:a9:ca:14:da:bd:ca:f1:11: 2f:65:3d:86:55:49:02:0e:19:2a:fd:27:3d:62:be: 99:2b:85:8f:22:37:19:9a:bc:93:5b:4f:6b:af:08: fd:04:b8:11:84:37:07:93:94:53:55:7b:7f:75:a1: 94:d4:67:2d:bd:9b:82:7a:de:09:62:25:36:70:7b: 0d:10:16:a8:77:69:ca:15:01:bf:2b:80:53:61:75: af:2e:42:db:07:38:c8:4b:da:fb:93:06:37:a3:c2: 4d:ed:2a:f0:ca:cd:c4:38:fa:37:c7:60:b9:da:12: c8:ee:ad:f2:47:33:e7:03:4f:90:bc:a5:22:6d:fb: 6a:cb:4e:8d:fd:5b:e3:9a:05:ec:78:f0:af:9f:d3: ad:93:95:b9:db:df:22:b7:34:1d:c4:e6:e8:b0:4c: c4:42:b8:d9:d9:1b:5d:88:b4:7c:a5:e2:cd:8c:91: 77:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A2:55:BC:36:FD:D8:78:6C:51:08:26:56:60:7A:08:E2:02:42:3E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8649EB6CF30E11EDAD4C2045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.202.192.0/20 Signature Algorithm: sha256WithRSAEncryption 90:88:c2:a2:3a:6d:e4:10:77:bb:a2:33:80:70:08:0b:47:00: 19:ff:f2:69:56:1c:a7:72:71:ab:ce:10:2c:96:ea:10:27:7a: 7c:ff:1b:f1:8d:41:9b:ac:54:12:a5:4a:a2:ea:31:eb:e9:46: be:88:e0:17:05:5f:c5:42:cb:33:fc:b7:d9:1b:c1:ca:a2:cb: 61:11:8d:a3:20:32:20:2e:83:5d:6d:dc:a6:81:19:53:8e:c2: 82:f0:6f:d5:d2:59:b1:24:25:3c:c0:f1:c3:f6:89:61:73:db: 8d:21:bb:00:c3:58:18:6d:ed:53:e0:41:e2:66:49:33:98:c4: 0a:c5:d5:f5:a8:3b:c8:bc:d5:d1:a2:a0:6c:4c:9b:6f:0b:f7: 26:76:93:f9:90:b2:ea:b3:1e:a7:f4:74:ba:69:ac:32:d3:60: 06:c0:12:79:2e:c0:08:bf:b9:4f:95:d1:f7:08:67:e9:d2:2e: 3e:fe:8a:c7:e9:a1:e4:f6:43:09:ea:d2:fa:01:11:82:f5:2e: e7:e0:d1:2f:4e:ac:6d:52:17:37:9f:19:c3:85:9a:71:c7:81: c0:2d:2a:f0:d7:90:d2:b7:c1:28:46:8b:8d:29:0b:4e:2b:94: c5:7b:0f:f8:2a:d6:34:fb:b4:f9:29:c4:ef:36:8f:32:55:b5: 8a:cf:76:39 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALekMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjEzMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RhMGItYjQ1ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKITadqXuvL8fLKSiwIDch23ZFzsD9CxEijANw+z64AvrXlK5NAdFNd04cqy o+vv+p0Mgik52fJ9nDB/UsnwRNwbAy2T40T0Pcj3IN6HfON89qnKFNq9yvERL2U9 hlVJAg4ZKv0nPWK+mSuFjyI3GZq8k1tPa68I/QS4EYQ3B5OUU1V7f3WhlNRnLb2b gnreCWIlNnB7DRAWqHdpyhUBvyuAU2F1ry5C2wc4yEva+5MGN6PCTe0q8MrNxDj6 N8dgudoSyO6t8kcz5wNPkLylIm37astOjf1b45oF7Hjwr5/TrZOVudvfIrc0HcTm 6LBMxEK42dkbXYi0fKXizYyRd9MCAwEAAaOCApUwggKRMB0GA1UdDgQWBBSZolW8 Nv3YeGxRCCZWYHoI4gJCPjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg2NDlFQjZD RjMwRTExRURBRDRDMjA0NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQEoMrAMA0GCSqGSIb3DQEBCwUAA4IBAQCQiMKiOm3kEHe7 ojOAcAgLRwAZ//JpVhyncnGrzhAsluoQJ3p8/xvxjUGbrFQSpUqi6jHr6Ua+iOAX BV/FQssz/LfZG8HKosthEY2jIDIgLoNdbdymgRlTjsKC8G/V0lmxJCU8wPHD9olh c9uNIbsAw1gYbe1T4EHiZkkzmMQKxdX1qDvIvNXRoqBsTJtvC/cmdpP5kLLqsx6n 9HS6aawy02AGwBJ5LsAIv7lPldH3CGfp0i4+/orH6aHk9kMJ6tL6ARGC9S7n4NEv TqxtUhc3nxnDhZpxx4HALSrw15DSt8EoRouNKQtOK5TFew/4KtY0+7T5KcTvNo8y VbWKz3Y5 -----END CERTIFICATE-----Generated at Mon May 12 23:59:27 2025 by rpki-client