$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/1AEC708A26EA11F0A1989F5AC4F9AE02.roa File: 1AEC708A26EA11F0A1989F5AC4F9AE02.roa (raw, json) Hash identifier: YepBoK1X+8vge+zixjpOIA9QTQNP/O9sE+tD/cL5L0I= Subject key identifier: 1C:03:C2:75:E1:2D:98:DD:E3:5C:D1:1D:1D:D6:1C:54:72:A5:DB:7B Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0330 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/1AEC708A26EA11F0A1989F5AC4F9AE02.roa Signing time: Fri 02 May 2025 00:12:16 +0000 ROA not before: Fri 02 May 2025 00:12:16 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138997 IP address blocks: 218.33.84.0/22 maxlen: 24 218.33.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 816 (0x330) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: May 2 00:12:16 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68140de0-ed63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:98:22:60:83:a4:89:19:28:29:45:9e:90:5d: a5:20:88:e0:2a:59:75:df:35:fb:4f:1b:eb:d4:da: f7:40:3c:ca:12:fe:6c:ab:f3:fc:2a:0e:f4:2f:30: c1:f5:bf:92:69:ca:2e:42:4c:9a:08:1d:cf:6c:89: 84:f0:b8:ff:7a:25:74:9d:b7:29:27:00:df:1d:52: e0:01:1a:bd:be:3e:9c:ff:83:ed:74:54:29:63:d7: ec:2e:43:2f:39:e4:fb:6d:7c:c2:c2:ac:b7:58:ec: 52:81:9f:08:6e:fa:0a:05:2a:a5:34:e8:d3:52:88: 3a:ca:27:46:db:b8:d1:f2:b0:01:65:1a:d9:5c:80: 5e:b3:96:71:69:92:78:5b:11:e5:b0:9a:fd:34:d8: dc:df:a9:d7:95:2d:54:ff:dd:ea:df:14:1d:23:8e: 44:c2:b8:62:65:ab:5b:50:bd:82:2a:52:dd:64:9d: 82:b8:e6:b0:32:bf:4c:cb:98:80:aa:dc:f8:72:e4: bc:f9:e2:9c:70:0d:35:2d:7a:8e:d7:f0:6e:5a:53: 50:57:4c:bb:e2:55:48:f8:14:fd:31:13:e6:68:3c: 13:42:1c:46:cf:7c:18:a0:1a:56:68:95:45:98:a6: fb:31:01:c9:d8:76:54:77:f4:7d:09:d8:2b:8f:6d: 84:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:03:C2:75:E1:2D:98:DD:E3:5C:D1:1D:1D:D6:1C:54:72:A5:DB:7B X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/1AEC708A26EA11F0A1989F5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.33.84.0-218.33.91.255 Signature Algorithm: sha256WithRSAEncryption ba:ba:2a:4f:01:e7:e0:ab:8e:c5:bf:1c:47:08:68:c2:7a:93: 47:43:2e:0c:fe:97:16:e2:48:d5:bf:0d:e8:20:0b:88:41:ef: 26:b9:c1:f1:91:e2:da:34:e1:ce:d9:d3:a6:a9:b9:e1:7a:1a: a7:fe:88:5c:db:67:53:40:e5:8b:01:c8:98:00:b0:2f:37:5a: fe:60:c0:a0:99:e5:a9:45:be:cd:05:2f:9f:09:cb:f4:36:83: 1e:ba:4d:19:9f:4b:60:f1:db:f8:83:fd:89:2c:ba:b4:6b:03: e8:08:9b:52:ed:c3:19:45:3a:2b:b0:38:93:c4:5b:d0:03:3e: 93:00:b3:92:c4:34:2e:33:09:ca:94:2e:5a:95:dc:37:ea:24: a8:1c:4f:f5:e2:a2:b3:a2:0c:50:37:3b:eb:96:83:1a:db:5c: 7a:ae:78:41:00:2f:e3:b1:8b:e4:78:74:3f:41:ef:cd:3f:45: 88:2f:27:71:97:40:80:e1:ed:8f:ee:c2:47:64:ec:ce:23:15: c3:46:be:fa:f3:de:bb:30:6b:b7:67:67:90:43:8b:58:1e:d1: 9d:c8:e2:c0:6c:13:d0:15:e3:95:db:ad:c4:dd:8a:65:3e:d8: a3:cb:c6:88:1c:30:47:71:ed:c7:f0:9d:32:c2:cf:78:26:a6: b6:91:c1:ca -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwNTAyMDAxMjE2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE0MGRlMC1lZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5giYIOkiRkoKUWekF2lIIjgKll13zX7Txvr1Nr3QDzKEv5sq/P8Kg70LzDB 9b+SacouQkyaCB3PbImE8Lj/eiV0nbcpJwDfHVLgARq9vj6c/4PtdFQpY9fsLkMv OeT7bXzCwqy3WOxSgZ8IbvoKBSqlNOjTUog6yidG27jR8rABZRrZXIBes5ZxaZJ4 WxHlsJr9NNjc36nXlS1U/93q3xQdI45EwrhiZatbUL2CKlLdZJ2CuOawMr9My5iA qtz4cuS8+eKccA01LXqO1/BuWlNQV0y74lVI+BT9MRPmaDwTQhxGz3wYoBpWaJVF mKb7MQHJ2HZUd/R9Cdgrj22EKwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBwDwnXh LZjd41zRHR3WHFRypdt7MB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvMUFFQzcwOEEy NkVBMTFGMEExOTg5RjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAtohVAMEAtohWDANBgkqhkiG9w0BAQsFAAOCAQEAuroq TwHn4KuOxb8cRwhownqTR0MuDP6XFuJI1b8N6CALiEHvJrnB8ZHi2jThztnTpqm5 4Xoap/6IXNtnU0DliwHImACwLzda/mDAoJnlqUW+zQUvnwnL9DaDHrpNGZ9LYPHb +IP9iSy6tGsD6AibUu3DGUU6K7A4k8Rb0AM+kwCzksQ0LjMJypQuWpXcN+okqBxP 9eKis6IMUDc765aDGttceq54QQAv47GL5Hh0P0HvzT9FiC8ncZdAgOHtj+7CR2Ts ziMVw0a++vPeuzBrt2dnkEOLWB7RncjiwGwT0BXjldutxN2KZT7Yo8vGiBwwR3Ht x/CdMsLPeCamtpHByg== -----END CERTIFICATE-----Generated at Mon May 12 19:07:10 2025 by rpki-client