$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/4AFF817484EF11EFBDCD721DC4F9AE02.roa File: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (raw, json) Hash identifier: VYuqdxkeY8VDCaP9z9fc7NoqICt3B9Gb1p23SFkZpM0= Subject key identifier: DF:CA:5D:F4:0C:15:6B:21:5C:1A:C6:7B:C8:FB:E6:F2:50:CE:15:8B Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: 75 Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/4AFF817484EF11EFBDCD721DC4F9AE02.roa Signing time: Sat 03 May 2025 06:13:13 +0000 ROA not before: Sat 03 May 2025 06:13:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17542 IP address blocks: 192.111.102.0/24 maxlen: 24 192.150.218.0/24 maxlen: 24 192.150.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: May 3 06:13:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815b3f8-95a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8e:2a:4f:44:31:39:ef:44:80:3b:54:26:d5: 17:06:08:f0:42:9d:a6:f9:4b:c7:58:39:b8:a4:38: ce:ff:e0:c6:d4:78:53:51:a4:c1:bf:8d:96:f8:c0: f2:b5:fe:12:0c:ca:45:a8:a2:ce:a3:b4:42:77:cf: f7:29:35:f4:b2:23:e6:e3:ba:a7:ce:34:e3:29:2d: 77:cf:49:93:71:75:25:87:6b:28:97:47:5f:34:af: 25:bd:8a:e5:5b:1b:fb:e5:3b:81:64:39:52:d4:5f: 1d:c7:b8:1f:f7:6d:a2:99:6c:56:e6:3a:f4:29:5e: d4:b6:cb:c6:9c:30:90:c2:7b:0d:24:d9:57:4f:9b: de:ad:b6:e0:93:17:22:08:28:79:71:03:d5:4f:07: 02:e9:b3:e9:f7:83:ec:4f:ac:58:18:b8:d5:a9:d2: 6d:8a:b5:6f:4e:20:eb:dd:84:6d:89:33:52:87:62: 11:4d:ec:55:60:f7:54:ae:68:76:04:50:b0:f7:ea: 70:a0:97:cf:c9:38:e6:85:ee:21:b5:9b:cd:c9:fc: d6:e3:39:6e:d7:3d:9b:9b:d5:93:04:f9:ca:05:cb: b5:e8:68:75:43:da:84:af:da:47:52:7e:2f:2d:96: 70:45:c6:07:18:33:5f:b1:97:0c:f5:6a:9c:6d:ef: 2e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CA:5D:F4:0C:15:6B:21:5C:1A:C6:7B:C8:FB:E6:F2:50:CE:15:8B X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/4AFF817484EF11EFBDCD721DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.111.102.0/24 192.150.218.0/23 Signature Algorithm: sha256WithRSAEncryption 15:32:d6:af:30:7e:b1:bd:78:f9:bd:16:75:b6:0e:53:d7:04: 77:66:41:8b:01:20:55:13:35:3f:1e:c3:f7:d6:8b:e9:67:f8: ab:de:94:c5:ba:a8:1d:ed:ca:a8:b4:0b:d4:8e:d7:e9:88:ae: 54:f9:1c:fe:78:dd:81:fd:3c:a9:da:e3:bf:e5:f7:fd:2e:87: b9:4c:88:81:77:ca:74:33:a1:c9:89:7d:e6:2b:96:f1:a8:b9: 94:fb:7e:08:ab:bd:72:03:80:43:a2:83:24:51:ce:3c:06:63: ee:50:b8:9d:58:96:fc:79:19:d4:6f:10:40:8b:df:69:e9:60: c6:08:cc:f9:32:68:a8:24:b5:28:f9:75:15:85:87:c9:1e:9d: 10:62:6b:20:4a:8b:94:dc:c3:d5:21:f4:09:d9:28:52:42:41: 02:de:1d:72:95:dd:c9:50:2a:ed:13:8d:ab:38:22:75:b9:c5: cc:8c:28:48:65:f6:21:5e:5a:a8:86:cc:71:b0:d6:4e:99:05: 50:45:75:25:96:91:6e:bd:01:72:f7:33:da:1a:43:12:b0:91: 6a:ce:a4:04:5f:17:c7:e3:8e:d9:5b:d7:37:7e:d5:08:30:7c: be:f6:51:b5:d9:2e:a8:a6:ae:67:68:49:1c:f5:22:dc:61:35: 87:85:30:b3 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjUyNTExMC8GA1UEBRMoMkIzREI4NUVGOTUyMjM4RDE5MkRDRjE3MEVFNkJFQjFD OERCMDNBOTAeFw0yNTA1MDMwNjEzMTNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTViM2Y4LTk1YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDjipPRDE570SAO1Qm1RcGCPBCnab5S8dYObikOM7/4MbUeFNRpMG/jZb4wPK1 /hIMykWoos6jtEJ3z/cpNfSyI+bjuqfONOMpLXfPSZNxdSWHayiXR180ryW9iuVb G/vlO4FkOVLUXx3HuB/3baKZbFbmOvQpXtS2y8acMJDCew0k2VdPm96ttuCTFyII KHlxA9VPBwLps+n3g+xPrFgYuNWp0m2KtW9OIOvdhG2JM1KHYhFN7FVg91SuaHYE ULD36nCgl8/JOOaF7iG1m83J/NbjOW7XPZub1ZME+coFy7XoaHVD2oSv2kdSfi8t lnBFxgcYM1+xlwz1apxt7y4lAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU38pd9AwV ayFcGsZ7yPvm8lDOFYswHwYDVR0jBBgwFoAUKz24XvlSI40ZLc8XDua+scjbA6kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNTI1L0UxODcxNzc2ODRF RDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3oyNFh2bFNJNDBaTGM4WER1YS1zY2piQTZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUyNS9FMTg3MTc3Njg0RUQxMUVGQjlGRjJENUFDNEY5QUUwMi80QUZGODE3NDg0 RUYxMUVGQkRDRDcyMURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAMBvZgMEAcCW2jANBgkqhkiG9w0BAQsFAAOCAQEAFTLWrzB+ sb14+b0WdbYOU9cEd2ZBiwEgVRM1Px7D99aL6Wf4q96UxbqoHe3KqLQL1I7X6Yiu VPkc/njdgf08qdrjv+X3/S6HuUyIgXfKdDOhyYl95iuW8ai5lPt+CKu9cgOAQ6KD JFHOPAZj7lC4nViW/HkZ1G8QQIvfaelgxgjM+TJoqCS1KPl1FYWHyR6dEGJrIEqL lNzD1SH0CdkoUkJBAt4dcpXdyVAq7RONqzgidbnFzIwoSGX2IV5aqIbMcbDWTpkF UEV1JZaRbr0Bcvcz2hpDErCRas6kBF8Xx+OO2VvXN37VCDB8vvZRtdkuqKauZ2hJ HPUi3GE1h4Uwsw== -----END CERTIFICATE-----Generated at Mon May 12 19:32:33 2025 by rpki-client