$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa File: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (raw, json) Hash identifier: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8= Subject key identifier: C3:62:FE:89:F4:DC:7D:71:8F:DF:26:E5:39:14:62:38:AA:62:25:B2 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0397 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa Signing time: Sun 09 Feb 2025 00:42:48 +0000 ROA not before: Sun 09 Feb 2025 00:42:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55520 IP address blocks: 182.255.20.0/24 maxlen: 24 182.255.21.0/24 maxlen: 24 182.255.22.0/24 maxlen: 24 182.255.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 919 (0x397) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B Validity Not Before: Feb 9 00:42:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67a7fa08-8150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:21:e2:80:b3:ab:22:11:55:77:9f:c9:14:d0: 72:d7:18:4a:16:70:75:88:26:f2:57:c1:02:da:d6: ca:9d:34:6f:c3:21:f8:20:a7:e2:29:dd:b1:1b:6a: 41:72:65:77:37:78:97:f6:56:51:35:15:66:c8:7e: f1:db:26:6c:9e:26:e3:3a:f2:e3:75:db:fe:6e:18: ab:d5:71:73:bb:3e:7a:95:fe:ac:89:60:a3:2e:43: 10:da:99:89:16:0b:7e:00:7a:f7:67:47:b1:7f:9a: 39:0c:eb:64:14:42:ad:4e:2e:0e:d7:7c:7d:7a:7e: ec:c2:8c:6d:9a:ef:77:50:10:2f:cb:62:7e:4e:7f: ec:27:8c:79:28:0b:16:f9:7b:8e:23:07:9a:a8:08: e5:75:de:3f:ae:43:2c:df:92:05:c1:75:67:5f:75: b0:a1:d6:d1:d4:b4:ed:23:95:b3:fb:6c:a0:7c:51: 08:1e:63:a6:68:32:2d:1e:8e:c5:9a:4d:1d:57:5c: c6:0a:24:86:3b:5e:a5:80:cb:84:10:88:99:ee:f6: 05:1a:19:82:18:d0:88:25:e8:ac:1d:7d:64:de:c0: fe:f1:ae:4f:d8:ea:4e:8b:ed:8a:e8:ae:16:2a:ff: 80:8c:13:6a:83:99:94:00:53:2a:95:33:40:b9:9d: 1c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:62:FE:89:F4:DC:7D:71:8F:DF:26:E5:39:14:62:38:AA:62:25:B2 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/7E8442B68FE511EC94D98C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.255.20.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:44:39:ac:36:a3:f6:ca:c4:ba:98:a8:5b:52:a6:e5:b8:ee: d0:14:70:8e:51:9f:cc:ac:21:6e:5e:f7:a7:c2:ba:f9:1d:e2: ab:45:ca:ac:a2:2e:43:e1:8e:55:78:f5:96:51:2d:10:34:98: 95:33:61:45:e5:32:46:33:ed:95:5c:63:e3:c3:58:25:dc:8a: 55:2a:24:da:4d:51:87:30:23:e5:8b:f3:7e:3b:38:33:ee:33: f0:e5:ce:fb:35:1a:11:bb:60:3f:e4:3c:f9:e3:fd:2a:22:69: 7a:0e:fe:3d:68:2c:2a:12:b5:75:4c:19:5e:29:57:45:3e:83: 5a:3c:c4:2c:8e:5b:66:a5:ee:ba:7e:7d:28:98:db:27:73:c5: ad:2a:07:12:55:e4:de:90:47:06:79:e7:ab:86:63:88:b6:d1: a7:94:22:ba:7c:38:d4:ab:38:43:08:bd:28:65:7a:04:6a:6e: b9:22:49:18:a3:d3:7e:47:f6:9a:52:48:d0:72:79:35:a0:09: 71:18:7a:85:82:a2:0f:fa:d6:9e:85:89:4b:1d:4c:3b:a0:10: 16:44:83:fe:ac:f9:64:ce:de:9d:ba:03:bb:35:c8:0f:81:eb: 5e:88:ea:3f:d9:13:29:ce:8e:ef:c8:27:ab:f9:46:50:c9:6e: 1d:70:db:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUwMjA5MDA0MjQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2E3ZmEwOC04MTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2iHigLOrIhFVd5/JFNBy1xhKFnB1iCbyV8EC2tbKnTRvwyH4IKfiKd2xG2pB cmV3N3iX9lZRNRVmyH7x2yZsnibjOvLjddv+bhir1XFzuz56lf6siWCjLkMQ2pmJ Fgt+AHr3Z0exf5o5DOtkFEKtTi4O13x9en7swoxtmu93UBAvy2J+Tn/sJ4x5KAsW +XuOIweaqAjldd4/rkMs35IFwXVnX3WwodbR1LTtI5Wz+2ygfFEIHmOmaDItHo7F mk0dV1zGCiSGO16lgMuEEIiZ7vYFGhmCGNCIJeisHX1k3sD+8a5P2OpOi+2K6K4W Kv+AjBNqg5mUAFMqlTNAuZ0cbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMNi/on0 3H1xj98m5TkUYjiqYiWyMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxNEIvOTRDODk4Q0M4RkUyMTFFQ0E4QUZFRTc4QzRGOUFFMDIvN0U4NDQyQjY4 RkU1MTFFQzk0RDk4QzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK2/xQwDQYJKoZIhvcNAQELBQADggEBAI9EOaw2o/bKxLqY qFtSpuW47tAUcI5Rn8ysIW5e96fCuvkd4qtFyqyiLkPhjlV49ZZRLRA0mJUzYUXl MkYz7ZVcY+PDWCXcilUqJNpNUYcwI+WL8347ODPuM/Dlzvs1GhG7YD/kPPnj/Soi aXoO/j1oLCoStXVMGV4pV0U+g1o8xCyOW2al7rp+fSiY2ydzxa0qBxJV5N6QRwZ5 56uGY4i20aeUIrp8ONSrOEMIvShlegRqbrkiSRij035H9ppSSNByeTWgCXEYeoWC og/61p6FiUsdTDugEBZEg/6s+WTO3p26A7s1yA+B616I6j/ZEynOju/IJ6v5RlDJ bh1w2wY= -----END CERTIFICATE-----Generated at Sat Apr 5 01:34:54 2025 by rpki-client