$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/1B8CEF10160F11F0BC8CF16EC4F9AE02.roa File: 1B8CEF10160F11F0BC8CF16EC4F9AE02.roa (raw, json) Hash identifier: OuS2K8hEGGiJsSbKfWvzsxp9MbMJXb+gJLT99X17QAM= Subject key identifier: A7:03:45:6B:9A:1C:45:78:19:41:4F:98:49:D7:BA:E8:FC:12:9C:48 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 37AF Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/1B8CEF10160F11F0BC8CF16EC4F9AE02.roa Signing time: Fri 18 Apr 2025 14:50:39 +0000 ROA not before: Fri 18 Apr 2025 14:50:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135660 IP address blocks: 111.88.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 16:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14255 (0x37af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Apr 18 14:50:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680266bf-63f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:5d:55:26:48:b4:d9:e0:c3:ab:a5:40:51:75: d9:54:9e:de:60:b0:32:69:9c:5d:7c:8d:de:cf:ac: 1d:91:5d:08:87:a5:d6:3e:9b:41:af:d2:f7:64:fc: ef:c8:ba:89:ea:6f:15:b3:93:b7:eb:bf:11:b3:61: 51:88:f5:50:7b:dd:1d:bb:8b:ee:3b:58:21:77:91: 9d:ed:f6:79:a7:0e:f9:7a:f7:67:be:0f:67:c6:f6: b0:45:e0:bb:cf:67:95:8a:c4:f5:31:45:88:d0:67: d3:c1:fe:33:2f:8a:2a:4b:d5:1a:d7:64:02:fd:4b: a1:6b:87:9e:ca:11:82:95:1d:bc:57:21:49:75:5e: 47:54:66:93:bd:52:b7:67:c8:1b:86:f8:00:cb:dc: ae:60:49:6a:6c:01:57:66:f5:af:f2:0a:9b:2e:df: 33:e0:e6:bf:7d:e3:6f:db:88:db:b2:3a:40:de:e3: b3:ce:55:e4:5f:37:a7:e2:8d:f5:18:99:7f:7d:30: 23:04:a3:d6:51:98:b2:eb:87:87:4d:7b:15:b5:51: 4d:2a:ac:2a:f0:9c:70:50:b6:22:c5:c7:7c:85:64: f2:32:06:df:32:cb:77:7c:5b:64:13:9c:91:7b:5d: 11:c2:58:50:51:d0:5b:57:78:ec:0a:0e:7e:27:bc: 4f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:03:45:6B:9A:1C:45:78:19:41:4F:98:49:D7:BA:E8:FC:12:9C:48 X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/1B8CEF10160F11F0BC8CF16EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.88.79.0/24 Signature Algorithm: sha256WithRSAEncryption 85:cf:fe:ef:d2:3c:27:95:83:bb:3f:92:73:f3:38:af:c4:d2: f5:1d:34:b8:70:92:0a:c4:cc:b8:3c:23:c3:7e:25:c7:c7:af: d8:8c:4a:28:bd:44:e0:27:3a:34:98:bb:d7:e5:e0:5e:74:47: fc:e6:22:0f:d0:1a:05:96:f1:c5:d9:fe:4a:41:75:86:27:99: 83:cc:34:ec:31:b3:45:91:1c:9d:03:9c:a7:b4:bf:9c:1f:24: 05:93:c6:3c:e7:88:79:67:7e:12:f6:29:44:49:05:aa:48:4f: 28:24:0c:89:eb:cb:73:68:20:19:66:8c:51:66:e9:58:f5:a0: 1f:9c:76:4b:b6:12:6e:9f:ee:75:d6:a3:6f:f6:ac:15:c9:6a: 8b:12:44:02:20:30:e4:6b:06:71:63:cb:ce:ef:5c:77:3e:26: a3:9f:6f:e5:f3:e4:1e:3a:6a:07:bd:4b:54:f0:e0:87:6d:e5: 3a:3f:c5:6f:6c:f4:3d:58:bd:d6:88:46:3b:6a:99:a9:97:54: 1a:75:15:a4:4d:b6:b7:d8:fc:bd:ec:56:ae:8f:91:1e:3d:63: 73:d9:c3:dc:16:cf:7e:9e:80:6c:0c:c7:86:df:c5:27:78:8f: e6:38:3e:f8:df:6b:e8:97:bc:d0:6c:2e:bc:32:22:13:2c:3e: b5:28:c7:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICN68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjUwNDE4MTQ1MDM5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAyNjZiZi02M2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+V1VJki02eDDq6VAUXXZVJ7eYLAyaZxdfI3ez6wdkV0Ih6XWPptBr9L3ZPzv yLqJ6m8Vs5O3678Rs2FRiPVQe90du4vuO1ghd5Gd7fZ5pw75evdnvg9nxvawReC7 z2eVisT1MUWI0GfTwf4zL4oqS9Ua12QC/Uuha4eeyhGClR28VyFJdV5HVGaTvVK3 Z8gbhvgAy9yuYElqbAFXZvWv8gqbLt8z4Oa/feNv24jbsjpA3uOzzlXkXzen4o31 GJl/fTAjBKPWUZiy64eHTXsVtVFNKqwq8JxwULYixcd8hWTyMgbfMst3fFtkE5yR e10RwlhQUdBbV3jsCg5+J7xPNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKcDRWua HEV4GUFPmEnXuuj8EpxIMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvMUI4Q0VGMTAx NjBGMTFGMEJDOENGMTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABvWE8wDQYJKoZIhvcNAQELBQADggEBAIXP/u/SPCeVg7s/ knPzOK/E0vUdNLhwkgrEzLg8I8N+JcfHr9iMSii9ROAnOjSYu9fl4F50R/zmIg/Q GgWW8cXZ/kpBdYYnmYPMNOwxs0WRHJ0DnKe0v5wfJAWTxjzniHlnfhL2KURJBapI TygkDInry3NoIBlmjFFm6Vj1oB+cdku2Em6f7nXWo2/2rBXJaosSRAIgMORrBnFj y87vXHc+JqOfb+Xz5B46age9S1Tw4Idt5To/xW9s9D1YvdaIRjtqmamXVBp1FaRN trfY/L3sVq6PkR49Y3PZw9wWz36egGwMx4bfxSd4j+Y4Pvjfa+iXvNBsLrwyIhMs PrUox8w= -----END CERTIFICATE-----Generated at Sat Apr 19 00:52:48 2025 by rpki-client