$ rpki-client -vvf rpki.apnic.net/member_repository/A918922D/F9118D7CFFC211EF9B295E46C4F9AE02/BF7A92E2FFC311EF9131D04AC4F9AE02.roa File: BF7A92E2FFC311EF9131D04AC4F9AE02.roa (raw, json) Hash identifier: tVDbnB/oVjQqBCd2UeAI1BWWN7K0TVLfW0PjLHaDZvQ= Subject key identifier: 18:5D:9A:63:7D:B9:B4:E7:06:F5:4A:44:FA:44:CB:D0:D8:E9:0F:F6 Certificate issuer: /CN=A918922D/serialNumber=456C60836584E90A28A29D028B5B27601A93D446 Certificate serial: 02 Authority key identifier: 45:6C:60:83:65:84:E9:0A:28:A2:9D:02:8B:5B:27:60:1A:93:D4:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWxgg2WE6Qooop0Ci1snYBqT1EY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918922D/F9118D7CFFC211EF9B295E46C4F9AE02/BF7A92E2FFC311EF9131D04AC4F9AE02.roa Signing time: Thu 13 Mar 2025 04:29:27 +0000 ROA not before: Thu 13 Mar 2025 04:29:27 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153688 IP address blocks: 163.223.74.0/23 maxlen: 24 2001:df5:36c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918922D/F9118D7CFFC211EF9B295E46C4F9AE02/RWxgg2WE6Qooop0Ci1snYBqT1EY.crl rsync://rpki.apnic.net/member_repository/A918922D/F9118D7CFFC211EF9B295E46C4F9AE02/RWxgg2WE6Qooop0Ci1snYBqT1EY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWxgg2WE6Qooop0Ci1snYBqT1EY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918922D Validity Not Before: Mar 13 04:29:27 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d25f27-7aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:08:3d:27:a7:9d:55:b6:53:2f:50:3a:ed:db: a1:f6:52:4a:3f:97:ba:16:c5:63:5b:d4:5f:f0:4f: 15:64:82:01:64:23:4d:9f:73:de:ae:f1:73:85:74: c0:e1:c7:13:6c:0b:a5:0d:cd:3a:62:45:16:02:12: 39:82:5c:8a:97:0d:06:55:5a:8e:7c:b6:07:73:cc: fc:8d:f6:9e:80:f9:59:36:4b:89:f3:a0:59:ba:0b: c8:18:64:b9:57:09:c5:ab:42:7d:a9:91:43:e5:a3: 99:42:43:83:da:09:f0:ac:2f:12:2f:7a:7b:81:bd: 66:6a:e2:e8:bb:0d:4e:6a:21:ea:c5:9b:c1:37:f3: b3:22:74:b0:b8:81:d8:e6:da:eb:34:3d:54:e5:c8: 39:7c:67:71:65:96:df:c5:4e:4f:cd:38:3b:d4:f3: 31:50:00:8a:f6:ef:48:12:8d:91:b8:2a:8d:38:5d: e0:3b:5a:01:6d:e1:8d:8c:87:72:6d:85:23:e4:4c: 02:fb:3b:ce:e2:69:db:b4:be:10:e6:8d:7c:34:3c: 6b:25:a7:3d:d4:c8:48:ee:99:9d:66:29:73:18:b8: 85:da:7e:25:28:7a:3e:57:17:11:c1:59:a3:3d:28: 36:1d:42:df:e3:40:c7:3b:0c:89:f5:46:f9:3d:2d: 41:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:5D:9A:63:7D:B9:B4:E7:06:F5:4A:44:FA:44:CB:D0:D8:E9:0F:F6 X509v3 Authority Key Identifier: keyid:45:6C:60:83:65:84:E9:0A:28:A2:9D:02:8B:5B:27:60:1A:93:D4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918922D/F9118D7CFFC211EF9B295E46C4F9AE02/RWxgg2WE6Qooop0Ci1snYBqT1EY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWxgg2WE6Qooop0Ci1snYBqT1EY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918922D/F9118D7CFFC211EF9B295E46C4F9AE02/BF7A92E2FFC311EF9131D04AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.74.0/23 IPv6: 2001:df5:36c0::/48 Signature Algorithm: sha256WithRSAEncryption 3e:41:98:cb:d1:bd:1d:44:70:e4:f9:d6:36:ef:c4:01:8a:f8: 45:56:a1:4d:70:19:46:5a:fa:b3:3c:38:c8:a1:ad:c2:ef:5f: d4:84:57:29:95:90:67:df:28:73:27:3b:77:8b:1f:56:b4:e5: c8:c8:59:18:1e:d5:70:e9:95:d6:3f:bc:56:49:0c:99:2d:54: 4a:4a:e0:92:42:ed:66:f7:6b:34:68:eb:ba:b9:81:92:1d:9e: 7d:20:b0:78:26:d7:2e:47:d3:42:fd:b5:01:88:52:28:bc:c9: 4b:42:3f:9a:1b:0f:e7:f4:68:2d:d7:83:2b:ea:94:a1:0a:c2: 31:bd:b8:0b:27:34:af:3d:d9:e0:38:55:3a:95:d3:a2:f6:da: 41:2d:17:68:53:ef:40:64:cc:b8:5c:ed:85:28:91:ba:4b:e4: 2b:53:31:e3:50:f1:ba:cd:63:a2:cc:a6:8b:3c:14:1d:94:13: 50:ab:19:17:f9:37:93:cb:28:44:ce:8a:fe:21:fc:19:94:63: 74:1e:64:a8:13:97:00:5a:21:c0:11:13:6f:08:94:50:ec:95: ec:0f:7a:96:5d:4e:36:2e:82:6e:b7:42:87:cd:bc:64:b3:c9: f7:ba:7e:83:44:a9:63:9d:61:44:ca:5e:72:cf:9e:1b:aa:21: 1c:c3:f4:af -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OTIyRDExMC8GA1UEBRMoNDU2QzYwODM2NTg0RTkwQTI4QTI5RDAyOEI1QjI3NjAx QTkzRDQ0NjAeFw0yNTAzMTMwNDI5MjdaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDI1ZjI3LTdhZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJCD0np51VtlMvUDrt26H2Uko/l7oWxWNb1F/wTxVkggFkI02fc96u8XOFdMDh xxNsC6UNzTpiRRYCEjmCXIqXDQZVWo58tgdzzPyN9p6A+Vk2S4nzoFm6C8gYZLlX CcWrQn2pkUPlo5lCQ4PaCfCsLxIvenuBvWZq4ui7DU5qIerFm8E387MidLC4gdjm 2us0PVTlyDl8Z3Fllt/FTk/NODvU8zFQAIr270gSjZG4Ko04XeA7WgFt4Y2Mh3Jt hSPkTAL7O87iadu0vhDmjXw0PGslpz3UyEjumZ1mKXMYuIXafiUoej5XFxHBWaM9 KDYdQt/jQMc7DIn1Rvk9LUEhAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUGF2aY325 tOcG9UpE+kTL0NjpD/YwHwYDVR0jBBgwFoAURWxgg2WE6Qooop0Ci1snYBqT1EYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5MjJEL0Y5MTE4RDdDRkZD MjExRUY5QjI5NUU0NkM0RjlBRTAyL1JXeGdnMldFNlFvb29wMENpMXNuWUJxVDFF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUld4Z2cyV0U2UW9vb3AwQ2kxc25ZQnFUMUVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIyRC9GOTExOEQ3Q0ZGQzIxMUVGOUIyOTVFNDZDNEY5QUUwMi9CRjdBOTJFMkZG QzMxMUVGOTEzMUQwNEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaPfSjAPBAIAAjAJAwcAIAEN9TbAMA0GCSqGSIb3DQEBCwUA A4IBAQA+QZjL0b0dRHDk+dY278QBivhFVqFNcBlGWvqzPDjIoa3C71/UhFcplZBn 3yhzJzt3ix9WtOXIyFkYHtVw6ZXWP7xWSQyZLVRKSuCSQu1m92s0aOu6uYGSHZ59 ILB4JtcuR9NC/bUBiFIovMlLQj+aGw/n9Ggt14Mr6pShCsIxvbgLJzSvPdngOFU6 ldOi9tpBLRdoU+9AZMy4XO2FKJG6S+QrUzHjUPG6zWOizKaLPBQdlBNQqxkX+TeT yyhEzor+IfwZlGN0HmSoE5cAWiHAERNvCJRQ7JXsD3qWXU42LoJut0KHzbxks8n3 un6DRKljnWFEyl5yz54bqiEcw/Sv -----END CERTIFICATE-----Generated at Sat Apr 5 04:13:52 2025 by rpki-client