$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/47E1F234B45111EEA556091EC4F9AE02.roa File: 47E1F234B45111EEA556091EC4F9AE02.roa (raw, json) Hash identifier: MUgpGvnpkewn251zM5+9m0/+F8vMSfuS6+jNZpfHvgc= Subject key identifier: B9:D3:48:CD:63:38:30:F7:5C:76:C4:EC:7A:25:9C:75:CA:96:AD:EE Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 3496 Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/47E1F234B45111EEA556091EC4F9AE02.roa Signing time: Thu 20 Mar 2025 15:21:16 +0000 ROA not before: Thu 20 Mar 2025 15:21:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 56176 IP address blocks: 118.188.0.0/20 maxlen: 20 118.188.16.0/23 maxlen: 23 118.188.26.0/23 maxlen: 23 118.188.28.0/23 maxlen: 23 118.188.30.0/23 maxlen: 23 118.188.32.0/19 maxlen: 19 118.188.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F Validity Not Before: Mar 20 15:21:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dc326c-3254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c9:0a:1e:cc:71:bb:9e:1c:1f:c0:27:81:34: f6:6f:6a:ee:5c:51:c0:a2:96:ed:52:50:fc:8c:2e: 19:fb:f9:42:01:fe:da:8c:60:83:17:55:18:0d:be: d8:eb:fc:ce:67:15:96:c8:e6:6e:e3:b9:41:25:23: 98:f8:e8:9c:13:f2:15:7f:a3:0f:ba:bd:53:fd:53: da:fd:ca:7b:73:83:62:d8:e9:dd:41:79:22:c3:18: d5:8e:c5:e4:be:8a:48:a0:64:84:57:54:ab:14:1b: 68:34:d5:97:63:4d:ca:a0:21:aa:24:c7:83:83:a4: 39:b1:8c:54:fd:c8:f6:4f:da:7d:07:a8:bc:06:b2: 5c:f8:0f:c7:11:ab:90:cd:6e:60:c2:5b:14:9d:37: 19:55:0c:4d:9f:04:0f:bf:7d:71:df:47:98:7c:ff: 36:3e:51:01:3b:07:bd:4d:be:7e:ff:dc:36:c0:47: e0:3d:d1:3f:7c:bf:8e:7d:51:55:1a:99:3a:86:ae: 1c:18:45:ea:bd:b6:e7:5c:ed:f2:35:d7:e7:25:c0: 46:33:c4:10:c5:90:96:45:e0:7c:33:4e:a9:0c:b2: 84:73:70:a7:42:72:50:53:2e:9f:84:a8:e9:60:eb: 05:59:2d:af:af:c7:b2:71:cd:26:bd:37:00:51:3f: c9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D3:48:CD:63:38:30:F7:5C:76:C4:EC:7A:25:9C:75:CA:96:AD:EE X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/47E1F234B45111EEA556091EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.188.0.0-118.188.17.255 118.188.26.0-118.188.127.255 Signature Algorithm: sha256WithRSAEncryption 3d:6b:d4:82:82:78:51:9f:3c:ac:ef:17:76:4a:1f:ae:48:1f: d8:4a:ef:5f:fb:47:36:12:73:a6:37:ce:aa:7e:14:0a:71:4e: a0:48:87:cc:73:a0:c3:30:d8:65:f0:d3:ae:e8:63:22:e8:65: ad:23:e9:c5:fe:e5:f7:78:30:7e:b7:4a:45:10:c0:7a:00:8e: 22:a2:75:26:73:00:c7:0c:16:f0:0f:4f:51:dd:8f:7d:ee:c1: ae:ed:4b:0c:0e:1b:56:42:d7:95:94:a9:59:c9:0e:42:ff:12: d4:34:53:11:ab:a7:e5:51:cc:7e:e9:de:61:e2:65:12:fb:70: 30:81:c1:68:aa:fc:d3:c6:70:d6:28:ec:1b:0d:61:44:85:0e: 8a:35:8d:2a:bd:cd:cb:77:9d:93:58:b8:72:33:6b:e7:da:96: 1a:c8:9f:d4:4b:95:76:cd:c3:0e:6f:d8:ea:fa:f1:85:da:c4: 3a:67:08:de:31:b7:ac:98:46:25:88:fa:79:fb:4a:4d:44:1f: 4e:e5:cd:40:36:6b:18:63:7a:ff:29:1a:b9:18:76:af:60:b1: c8:ad:42:b3:36:9c:72:63:72:e8:42:83:af:33:58:73:28:05: 4b:a2:c4:73:e3:8b:ab:da:4b:f7:22:0f:d5:8a:1f:a4:78:e7: 41:a2:d4:42 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjUwMzIwMTUyMTE2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjMzI2Yy0zMjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAockKHsxxu54cH8AngTT2b2ruXFHAopbtUlD8jC4Z+/lCAf7ajGCDF1UYDb7Y 6/zOZxWWyOZu47lBJSOY+OicE/IVf6MPur1T/VPa/cp7c4Ni2OndQXkiwxjVjsXk vopIoGSEV1SrFBtoNNWXY03KoCGqJMeDg6Q5sYxU/cj2T9p9B6i8BrJc+A/HEauQ zW5gwlsUnTcZVQxNnwQPv31x30eYfP82PlEBOwe9Tb5+/9w2wEfgPdE/fL+OfVFV Gpk6hq4cGEXqvbbnXO3yNdfnJcBGM8QQxZCWReB8M06pDLKEc3CnQnJQUy6fhKjp YOsFWS2vr8eycc0mvTcAUT/JuQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLnTSM1j ODD3XHbE7HolnHXKlq3uMB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM3MEYvNzM0NkU4QTI2MDQ5MTFFMkEzMDc1NzhEMjk3OUJCMjAvNDdFMUYyMzRC NDUxMTFFRUE1NTYwOTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgABMBswCwMDAna8AwQBdrwQMAwDBAF2vBoDBAd2vAAwDQYJKoZIhvcN AQELBQADggEBAD1r1IKCeFGfPKzvF3ZKH65IH9hK71/7RzYSc6Y3zqp+FApxTqBI h8xzoMMw2GXw067oYyLoZa0j6cX+5fd4MH63SkUQwHoAjiKidSZzAMcMFvAPT1Hd j33uwa7tSwwOG1ZC15WUqVnJDkL/EtQ0UxGrp+VRzH7p3mHiZRL7cDCBwWiq/NPG cNYo7BsNYUSFDoo1jSq9zct3nZNYuHIza+falhrIn9RLlXbNww5v2Or68YXaxDpn CN4xt6yYRiWI+nn7Sk1EH07lzUA2axhjev8pGrkYdq9gscitQrM2nHJjcuhCg68z WHMoBUuixHPji6vaS/ciD9WKH6R450Gi1EI= -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:28 2025 by rpki-client