$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa File: 989BBF70904F11EC8B118911C4F9AE02.roa (raw, json) Hash identifier: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro= Subject key identifier: 74:F8:07:53:CC:77:6F:3D:63:5A:F4:47:D5:7A:34:72:2F:E1:84:0A Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0396 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa Signing time: Sun 09 Feb 2025 00:42:48 +0000 ROA not before: Sun 09 Feb 2025 00:42:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4755 IP address blocks: 182.255.20.0/24 maxlen: 24 182.255.21.0/24 maxlen: 24 182.255.22.0/24 maxlen: 24 182.255.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 918 (0x396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B Validity Not Before: Feb 9 00:42:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67a7fa07-7487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c3:31:a8:a9:bf:39:b4:57:5f:b5:d5:90:46: b2:d9:08:6e:2a:a1:c6:94:4d:54:b2:b6:72:79:d5: cc:4c:ee:61:6f:d9:e4:4c:97:cc:bd:75:1c:84:47: 08:81:29:4e:ea:aa:de:c6:fa:9c:62:8a:e2:e7:ad: 4c:1b:13:22:0e:03:99:24:54:6e:4a:3f:b4:e7:1e: 67:18:d8:e2:b1:a9:55:6d:32:06:79:48:e3:90:4d: 70:a5:b5:cd:b7:d2:3e:17:ff:cd:3d:78:46:23:16: bd:03:da:52:68:64:6c:0f:ab:44:ee:42:2d:45:0a: 54:e3:62:a1:53:7b:c3:fb:8a:8d:61:ad:bf:ea:ca: e5:58:e7:03:bd:a6:af:b5:1f:71:00:ec:2d:15:33: e1:57:57:42:e1:4e:d8:c7:f9:7b:44:d6:f3:70:d4: 4a:99:32:0a:19:e9:e9:7c:cf:7f:2b:fb:e3:40:a7: 53:f0:db:15:b0:1b:b4:c3:b5:c9:44:56:19:de:8b: 59:04:bb:7a:b4:eb:d9:56:b2:5d:1d:a7:a0:ed:ef: b5:b4:ae:3b:15:6a:fd:75:ef:ab:a6:c7:12:e9:6e: 1b:12:a3:93:85:3e:3a:fd:b4:db:3c:5c:bf:18:25: a3:b8:c3:58:b8:08:a3:b7:ae:06:b1:57:da:f7:f8: db:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F8:07:53:CC:77:6F:3D:63:5A:F4:47:D5:7A:34:72:2F:E1:84:0A X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.255.20.0/22 Signature Algorithm: sha256WithRSAEncryption 93:ca:2b:ac:db:8e:83:74:85:5e:ca:b4:55:80:bc:63:d6:20: bd:d4:12:7f:f2:5e:18:f6:d0:c1:47:d4:b7:78:cb:a5:25:1f: e2:79:9f:34:b5:fb:a4:6d:8f:db:d8:11:33:a3:59:6c:83:4d: 80:69:90:f0:50:ad:eb:ab:3f:07:f0:f1:85:a6:dc:60:1e:cd: c6:dd:ce:1a:27:eb:7a:87:f1:b4:ca:fe:63:34:a5:31:cf:32: f2:00:de:2a:df:60:9b:8b:49:4c:27:11:28:11:65:47:1f:c8: 1e:08:de:c0:97:e2:37:1a:90:ec:4c:c6:d1:d2:75:c6:8c:3f: b4:39:1c:76:99:30:7e:17:8e:1e:36:a2:49:16:1b:67:6e:05: e5:3b:ce:a2:6b:e1:b4:1a:c0:cc:c8:3b:34:2c:88:69:d2:9b: 5b:87:e9:c5:4c:36:c4:33:63:a8:b8:04:e0:cb:6b:fc:f3:58: 8b:66:81:41:f3:57:11:61:64:1a:59:48:d1:13:77:38:6d:fb: 7f:dc:4a:76:00:e9:99:c1:d8:44:18:b5:cd:85:3e:ba:3a:b0: 90:ea:35:e0:44:4c:a3:ad:8b:3f:55:b7:1e:b1:15:dc:60:e6: 34:b3:52:58:b7:63:f5:69:17:f6:a1:09:fb:ee:77:92:53:97: 39:98:80:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUwMjA5MDA0MjQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2E3ZmEwNy03NDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6MMxqKm/ObRXX7XVkEay2QhuKqHGlE1UsrZyedXMTO5hb9nkTJfMvXUchEcI gSlO6qrexvqcYori561MGxMiDgOZJFRuSj+05x5nGNjisalVbTIGeUjjkE1wpbXN t9I+F//NPXhGIxa9A9pSaGRsD6tE7kItRQpU42KhU3vD+4qNYa2/6srlWOcDvaav tR9xAOwtFTPhV1dC4U7Yx/l7RNbzcNRKmTIKGenpfM9/K/vjQKdT8NsVsBu0w7XJ RFYZ3otZBLt6tOvZVrJdHaeg7e+1tK47FWr9de+rpscS6W4bEqOThT46/bTbPFy/ GCWjuMNYuAijt64GsVfa9/jb0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHT4B1PM d289Y1r0R9V6NHIv4YQKMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxNEIvOTRDODk4Q0M4RkUyMTFFQ0E4QUZFRTc4QzRGOUFFMDIvOTg5QkJGNzA5 MDRGMTFFQzhCMTE4OTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK2/xQwDQYJKoZIhvcNAQELBQADggEBAJPKK6zbjoN0hV7K tFWAvGPWIL3UEn/yXhj20MFH1Ld4y6UlH+J5nzS1+6Rtj9vYETOjWWyDTYBpkPBQ reurPwfw8YWm3GAezcbdzhon63qH8bTK/mM0pTHPMvIA3irfYJuLSUwnESgRZUcf yB4I3sCX4jcakOxMxtHSdcaMP7Q5HHaZMH4Xjh42okkWG2duBeU7zqJr4bQawMzI OzQsiGnSm1uH6cVMNsQzY6i4BODLa/zzWItmgUHzVxFhZBpZSNETdzht+3/cSnYA 6ZnB2EQYtc2FPro6sJDqNeBETKOtiz9Vtx6xFdxg5jSzUli3Y/VpF/ahCfvud5JT lzmYgPc= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:09 2025 by rpki-client