$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/CF6343DE295D11F0B3C33614C4F9AE02.roa File: CF6343DE295D11F0B3C33614C4F9AE02.roa (raw, json) Hash identifier: u4HP0rAc9OJ4yrGzZJUJfmamAqusvJcVWc3Rh5qqJHA= Subject key identifier: CA:32:7E:CC:B5:0E:B8:41:85:8F:62:4D:F4:1F:CA:47:BF:BE:95:8B Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0472 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/CF6343DE295D11F0B3C33614C4F9AE02.roa Signing time: Mon 05 May 2025 03:05:34 +0000 ROA not before: Mon 05 May 2025 03:05:34 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149026 IP address blocks: 203.32.7.0/24 maxlen: 24 203.32.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1138 (0x472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: May 5 03:05:34 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=68182afd-18a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9b:4a:5c:ca:11:57:a4:96:bf:76:49:ca:b7: 4b:1e:e7:e9:c0:f0:04:b9:69:a1:f5:bc:59:17:c2: 75:1e:8c:53:81:0b:f0:a7:9a:ca:cc:57:3b:10:50: ec:a1:d1:1f:e9:68:a7:8d:08:36:4e:74:c7:80:76: 1a:c2:05:07:bf:bb:b6:c4:99:5b:e9:a1:35:3a:1a: b4:d1:ca:8f:9b:12:ac:93:50:e3:01:59:7c:bb:35: dc:59:ca:73:94:13:cc:6a:7a:e6:76:37:30:e5:d6: d0:7c:4c:e6:09:3e:bb:8a:09:36:25:a0:00:c7:2a: 03:f4:02:04:79:e9:d0:e0:cf:6a:d6:fe:22:c6:35: c4:f6:df:91:f3:11:ff:8d:aa:ad:63:bc:e6:8c:73: a8:be:8a:00:f2:b3:19:22:64:4a:8b:1c:f7:6d:c3: 77:19:6d:a0:e2:81:33:94:dc:d7:1d:fb:55:7f:d4: b7:ce:a3:08:e9:41:df:9b:a1:8f:b5:5d:e7:bc:4f: 0e:8c:40:01:82:93:ad:44:c9:af:f9:6a:d2:38:41: 0a:79:17:41:0e:06:bc:96:05:80:ca:3a:37:aa:de: f4:7b:3f:32:f8:50:de:d1:68:a6:0c:d1:d2:70:1a: 37:9b:6d:6f:2f:48:4c:f9:a9:bf:79:ad:63:4f:17: 7c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:32:7E:CC:B5:0E:B8:41:85:8F:62:4D:F4:1F:CA:47:BF:BE:95:8B X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/CF6343DE295D11F0B3C33614C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.7.0/24 203.32.38.0/24 Signature Algorithm: sha256WithRSAEncryption 77:a4:32:d2:ad:81:1a:f1:7d:01:21:c7:b8:0c:58:44:84:4b: 82:57:f1:21:88:cc:c6:70:ed:c1:e4:7b:91:20:29:51:0d:21: 3e:a0:6e:0b:6c:10:0d:93:72:8a:d6:08:33:c8:fe:f4:46:42: 88:37:f7:dd:ff:3c:1a:11:81:96:a8:52:4c:33:24:70:14:38: 82:11:bc:f5:99:5f:1e:22:ec:34:37:6e:99:ca:67:0c:7e:dd: f4:2d:bd:82:26:d2:98:d1:fe:c1:c3:0d:71:6b:28:f7:e6:7e: 96:c2:4f:b3:cf:c0:d6:e1:dd:75:0e:1d:8f:54:3a:38:3c:e3: 57:6d:3e:75:b5:e7:e1:0c:32:da:1f:fb:d6:1d:c9:82:d4:78: 6e:4c:22:20:2d:62:51:aa:c9:4f:87:6d:c0:0e:9a:f2:f4:83: 0c:94:29:32:6a:b6:53:cf:fb:df:5c:2a:89:76:64:77:86:10: 28:18:0b:31:dc:79:b6:1e:67:5f:79:91:28:b9:87:a5:2b:70: fe:9d:7d:0e:ff:d4:ec:60:df:e7:f6:e9:3c:95:91:59:4b:99: 14:65:45:e9:6f:9f:ad:18:85:ed:2f:52:d0:03:fd:f0:e7:1e: c8:a1:91:fd:ae:ce:e9:45:57:c8:7b:11:1a:24:81:4c:44:92: b5:23:b1:19 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUwNTA1MDMwNTM0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MmFmZC0xOGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJtKXMoRV6SWv3ZJyrdLHufpwPAEuWmh9bxZF8J1HoxTgQvwp5rKzFc7EFDs odEf6WinjQg2TnTHgHYawgUHv7u2xJlb6aE1Ohq00cqPmxKsk1DjAVl8uzXcWcpz lBPManrmdjcw5dbQfEzmCT67igk2JaAAxyoD9AIEeenQ4M9q1v4ixjXE9t+R8xH/ jaqtY7zmjHOovooA8rMZImRKixz3bcN3GW2g4oEzlNzXHftVf9S3zqMI6UHfm6GP tV3nvE8OjEABgpOtRMmv+WrSOEEKeRdBDga8lgWAyjo3qt70ez8y+FDe0WimDNHS cBo3m21vL0hM+am/ea1jTxd8SwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMoyfsy1 DrhBhY9iTfQfyke/vpWLMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvQ0Y2MzQzREUy OTVEMTFGMEIzQzMzNjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLIAcDBADLICYwDQYJKoZIhvcNAQELBQADggEBAHekMtKt gRrxfQEhx7gMWESES4JX8SGIzMZw7cHke5EgKVENIT6gbgtsEA2TcorWCDPI/vRG Qog3993/PBoRgZaoUkwzJHAUOIIRvPWZXx4i7DQ3bpnKZwx+3fQtvYIm0pjR/sHD DXFrKPfmfpbCT7PPwNbh3XUOHY9UOjg841dtPnW15+EMMtof+9YdyYLUeG5MIiAt YlGqyU+HbcAOmvL0gwyUKTJqtlPP+99cKol2ZHeGECgYCzHcebYeZ195kSi5h6Ur cP6dfQ7/1Oxg3+f26TyVkVlLmRRlRelvn60Yhe0vUtAD/fDnHsihkf2uzulFV8h7 ERokgUxEkrUjsRk= -----END CERTIFICATE-----Generated at Thu May 15 19:17:49 2025 by rpki-client