$ rpki-client -vvf rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa File: E366C4B83B2611E9906E7B81C4F9AE02.roa (raw, json) Hash identifier: OXCPrFm+EsQzPLUI+MTG5d83HdT10aUJkR72TyytJ18= Subject key identifier: F7:61:F8:CF:8E:64:B9:C9:11:0B:79:23:49:C0:DB:78:EB:19:3B:06 Certificate issuer: /CN=A9187386/serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Certificate serial: 102B Authority key identifier: DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa Signing time: Sun 02 Mar 2025 18:05:55 +0000 ROA not before: Sun 02 Mar 2025 18:05:55 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 38229 IP address blocks: 192.248.0.0/17 maxlen: 17 192.248.0.0/22 maxlen: 22 192.248.4.0/22 maxlen: 22 192.248.8.0/21 maxlen: 21 192.248.16.0/20 maxlen: 20 192.248.32.0/19 maxlen: 19 192.248.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 22:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4139 (0x102b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187386, serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Validity Not Before: Mar 2 18:05:55 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67c49e03-a88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a3:ba:14:04:b9:b9:f9:a4:48:60:a3:a7:02: 17:a6:82:4b:e4:d8:48:38:40:31:15:d1:82:39:86: b6:af:65:d7:64:3a:0d:9c:74:c2:47:15:dc:cd:95: 99:1e:9f:9e:d8:3e:37:53:f9:65:89:1b:53:bc:7c: d7:78:fa:fb:f2:38:eb:ed:b4:b2:29:10:c9:55:de: ec:80:a5:05:51:90:48:01:9d:44:84:9d:87:d0:d1: 8b:2d:b0:c8:ea:c3:88:e9:a9:5c:63:a6:0f:1f:61: 3b:69:e6:03:56:c2:b6:34:fe:d8:3b:f6:37:51:07: a6:10:ed:32:45:96:82:6a:09:88:93:1f:8d:b2:12: 84:3f:ca:77:f2:ae:b8:cb:f7:d1:f3:3d:ab:0f:66: e3:68:0e:59:c4:f9:ec:35:15:21:80:ee:6c:35:14: 7f:86:d8:9c:0a:6f:e4:fa:63:7f:ec:e2:16:ae:ea: 99:6e:2c:a5:bf:27:1c:a3:14:f2:c5:6c:a0:fb:d9: bd:ec:50:bc:ea:35:0d:4c:71:f1:ae:1f:0d:11:6b: a4:3d:70:78:7d:98:89:04:cb:b5:8d:08:97:ab:7e: 6a:d0:47:6c:45:3f:0a:6b:28:c3:6a:15:8f:50:e8: 66:68:97:11:56:48:52:08:b1:44:ed:45:40:34:fd: 14:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:61:F8:CF:8E:64:B9:C9:11:0B:79:23:49:C0:DB:78:EB:19:3B:06 X509v3 Authority Key Identifier: keyid:DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.248.0.0/17 Signature Algorithm: sha256WithRSAEncryption 76:4d:e4:2a:b6:d0:f4:dc:75:f4:9f:3d:68:4b:2c:0d:10:64: 8d:39:94:4a:cd:aa:94:c2:04:b5:ad:fb:13:27:20:4c:e8:a9: 53:8f:22:9e:55:80:38:2f:93:a5:db:6f:b2:8c:3c:7d:9a:24: 14:d0:44:ca:bf:1f:4c:2d:45:02:36:28:2f:30:ad:65:49:b4: 47:f1:e2:45:04:cf:7b:15:62:88:1d:cc:2f:5e:48:41:28:38: b4:e1:eb:2d:06:7b:26:f6:fd:88:48:42:b4:25:f9:f5:d4:bd: b6:96:5b:ba:76:43:45:fa:a0:1e:65:6d:d4:1f:7b:b8:3d:1f: 6e:85:82:07:a3:12:eb:8a:91:e1:67:b5:c7:8d:8f:f1:db:35: b2:75:cf:cf:bc:af:19:88:09:fd:30:6d:97:9a:94:aa:35:0c: 98:05:cb:f4:08:6f:b3:fa:95:a2:23:27:f3:a3:3c:5e:51:76: 25:f6:7b:75:bb:94:e4:3f:66:13:bc:bb:e2:54:f7:38:6b:35: c0:46:ca:52:af:7d:3d:9b:b4:73:64:d0:08:37:fb:f9:92:b4: cd:4c:18:80:d1:6a:95:5c:c9:5f:b8:09:73:26:00:b6:40:d6: ff:dd:48:75:26:66:c0:d0:1e:98:45:b2:f2:b2:1b:c7:7a:cc: 67:33:4b:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICECswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczODYxMTAvBgNVBAUTKERFMEM4RjQyQkNBMDVCMkY1NTgxRTZCQ0NCNEMxNEE2 RTY3MUI2MTkwHhcNMjUwMzAyMTgwNTU1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M0OWUwMy1hODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKO6FAS5ufmkSGCjpwIXpoJL5NhIOEAxFdGCOYa2r2XXZDoNnHTCRxXczZWZ Hp+e2D43U/lliRtTvHzXePr78jjr7bSyKRDJVd7sgKUFUZBIAZ1EhJ2H0NGLLbDI 6sOI6alcY6YPH2E7aeYDVsK2NP7YO/Y3UQemEO0yRZaCagmIkx+NshKEP8p38q64 y/fR8z2rD2bjaA5ZxPnsNRUhgO5sNRR/hticCm/k+mN/7OIWruqZbiylvyccoxTy xWyg+9m97FC86jUNTHHxrh8NEWukPXB4fZiJBMu1jQiXq35q0EdsRT8KayjDahWP UOhmaJcRVkhSCLFE7UVANP0UcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPdh+M+O ZLnJEQt5I0nA23jrGTsGMB8GA1UdIwQYMBaAFN4Mj0K8oFsvVYHmvMtMFKbmcbYZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzM4Ni80OUNENkEzQzNC MjYxMUU5QjIwRDI2ODFDNEY5QUUwMi8zZ3lQUXJ5Z1d5OVZnZWE4eTB3VXB1Wnh0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNneVBRcnlnV3k5VmdlYTh5MHdVcHVaeHRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczODYvNDlDRDZBM0MzQjI2MTFFOUIyMEQyNjgxQzRGOUFFMDIvRTM2NkM0Qjgz QjI2MTFFOTkwNkU3QjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAfA+AAwDQYJKoZIhvcNAQELBQADggEBAHZN5Cq20PTcdfSf PWhLLA0QZI05lErNqpTCBLWt+xMnIEzoqVOPIp5VgDgvk6Xbb7KMPH2aJBTQRMq/ H0wtRQI2KC8wrWVJtEfx4kUEz3sVYogdzC9eSEEoOLTh6y0Geyb2/YhIQrQl+fXU vbaWW7p2Q0X6oB5lbdQfe7g9H26FggejEuuKkeFntceNj/HbNbJ1z8+8rxmICf0w bZealKo1DJgFy/QIb7P6laIjJ/OjPF5RdiX2e3W7lOQ/ZhO8u+JU9zhrNcBGylKv fT2btHNk0Ag3+/mStM1MGIDRapVcyV+4CXMmALZA1v/dSHUmZsDQHphFsvKyG8d6 zGczS64= -----END CERTIFICATE-----Generated at Tue Apr 15 05:24:28 2025 by rpki-client