$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7A0CAF6088C11F089AD0655C4F9AE02.roa File: B7A0CAF6088C11F089AD0655C4F9AE02.roa (raw, json) Hash identifier: wzrK5vvGAxnbIRuod/gIqX/ZrqTAmgPGEOAW/lVWv/A= Subject key identifier: 58:33:90:1E:72:84:8E:3C:C6:98:16:68:62:6A:6F:82:F6:A1:D9:3E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B9B9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7A0CAF6088C11F089AD0655C4F9AE02.roa Signing time: Thu 08 May 2025 16:29:31 +0000 ROA not before: Thu 08 May 2025 16:29:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153701 IP address blocks: 163.223.126.0/23 maxlen: 24 2401:f660::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47545 (0xb9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:29:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdbeb-7045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:af:e9:e9:ab:6b:b2:71:93:c8:dc:74:6f:ab: 7e:dc:0a:76:d1:63:97:3e:b3:39:0f:b4:b9:eb:37: 4e:d5:ed:c2:c4:54:19:b6:68:e5:df:91:df:7e:c3: ea:ae:21:78:82:b4:c6:c2:94:f3:de:b4:be:45:37: ba:2b:6f:c3:90:2b:8c:db:66:9e:7f:a5:61:ff:82: a3:35:44:c6:92:41:e9:88:4f:e9:b5:c2:1e:3b:32: 0b:c4:63:51:40:b1:f0:2e:e4:4e:be:de:b3:24:4e: 6b:51:7f:65:3d:e2:a8:90:7c:1a:d4:6b:b1:9a:60: e8:61:97:ac:74:93:7e:57:1f:59:a9:e4:b3:d3:26: 17:40:55:a7:57:2d:a2:06:fb:9d:5e:39:a9:ef:d7: 39:48:86:91:d8:6d:d3:b7:03:b7:af:a4:66:b4:3e: fc:89:70:d1:69:7a:24:61:be:05:85:16:c6:e8:7c: 4f:b8:28:02:e3:c4:c0:2c:f7:ce:bf:0a:67:ab:70: c3:69:3a:dc:ee:dc:04:e7:00:74:d5:4a:51:6b:96: 91:1c:a3:82:ba:e1:40:2e:fc:48:94:9b:08:d3:95: 73:07:db:34:7e:ef:8f:58:f2:0c:f9:e6:1f:42:64: 8e:fa:06:66:7f:2e:3b:1f:06:a1:59:af:37:ce:20: 53:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:33:90:1E:72:84:8E:3C:C6:98:16:68:62:6A:6F:82:F6:A1:D9:3E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B7A0CAF6088C11F089AD0655C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.126.0/23 IPv6: 2401:f660::/32 Signature Algorithm: sha256WithRSAEncryption 5a:10:58:a8:ec:56:81:c9:2a:32:59:cf:b8:4c:0c:44:a9:6a: 80:d6:f7:b9:b6:9e:0d:d1:12:41:b5:75:f3:ec:9c:ea:a6:66: 99:0b:97:be:a1:f6:ea:56:ab:e3:55:7d:e9:fb:02:1d:f7:5a: ad:af:23:4a:b1:c6:76:90:63:c1:03:93:6f:22:a9:f9:ff:b1: bd:c2:52:50:43:f7:e2:8e:a5:f4:91:47:bf:f6:9e:ee:af:07: ff:3b:96:db:94:91:46:37:85:9a:63:52:bc:19:f0:60:a6:a9: b5:30:96:f7:63:a8:63:78:f2:e4:a6:ee:68:28:58:fd:94:4d: 58:18:86:c6:44:66:97:78:d3:1d:f7:f7:d2:31:67:ad:df:49: 56:9a:db:03:fd:23:89:16:17:a5:fa:fa:89:17:1d:ef:20:5a: e8:fd:9e:32:ed:bd:19:c3:a6:89:db:38:2e:fc:5a:7a:b7:0a: cb:77:58:6e:b1:23:94:65:7c:62:1b:bd:c3:84:b9:b1:ba:f7: 7e:ba:d7:67:73:f6:97:e2:f3:62:fe:a0:9e:e2:0f:eb:9d:4a: 41:5d:d3:9c:c3:7d:17:15:fa:d8:d0:2d:f5:7e:fd:ab:33:13: f9:b9:04:91:df:25:05:53:0a:f3:df:4e:35:34:e8:ac:d9:58: 6f:b4:ad:14 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDALm5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjkzMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiZWItNzA0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+v6emra7Jxk8jcdG+rftwKdtFjlz6zOQ+0ues3TtXtwsRUGbZo5d+R337D 6q4heIK0xsKU8960vkU3uitvw5ArjNtmnn+lYf+CozVExpJB6YhP6bXCHjsyC8Rj UUCx8C7kTr7esyROa1F/ZT3iqJB8GtRrsZpg6GGXrHSTflcfWanks9MmF0BVp1ct ogb7nV45qe/XOUiGkdht07cDt6+kZrQ+/Ilw0Wl6JGG+BYUWxuh8T7goAuPEwCz3 zr8KZ6tww2k63O7cBOcAdNVKUWuWkRyjgrrhQC78SJSbCNOVcwfbNH7vj1jyDPnm H0JkjvoGZn8uOx8GoVmvN84gUz8CAwEAAaOCAqQwggKgMB0GA1UdDgQWBBRYM5Ae coSOPMaYFmhiam+C9qHZPjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I3QTBDQUY2 MDg4QzExRjA4OUFEMDY1NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQBo99+MA0EAgACMAcDBQAkAfZgMA0GCSqGSIb3DQEBCwUA A4IBAQBaEFio7FaBySoyWc+4TAxEqWqA1ve5tp4N0RJBtXXz7JzqpmaZC5e+ofbq VqvjVX3p+wId91qtryNKscZ2kGPBA5NvIqn5/7G9wlJQQ/fijqX0kUe/9p7urwf/ O5bblJFGN4WaY1K8GfBgpqm1MJb3Y6hjePLkpu5oKFj9lE1YGIbGRGaXeNMd9/fS MWet30lWmtsD/SOJFhel+vqJFx3vIFro/Z4y7b0Zw6aJ2zgu/Fp6twrLd1husSOU ZXxiG73DhLmxuvd+utdnc/aX4vNi/qCe4g/rnUpBXdOcw30XFfrY0C31fv2rMxP5 uQSR3yUFUwrz3041NOis2VhvtK0U -----END CERTIFICATE-----Generated at Tue May 13 01:53:03 2025 by rpki-client