$ rpki-client -vvf rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/18CB29D4D42611EFAE000281C4F9AE02.roa File: 18CB29D4D42611EFAE000281C4F9AE02.roa (raw, json) Hash identifier: GuYqrGtWVlJyoBE0Sfpp3oNaKMeRtWzRn135dDFohmw= Subject key identifier: 7F:DF:E6:DD:AC:CA:23:BA:74:27:82:71:60:A5:F6:F8:7C:83:48:13 Certificate issuer: /CN=A918E308/serialNumber=D2536918C18B6BC2D91042808BCADFCDB7347531 Certificate serial: 0C20 Authority key identifier: D2:53:69:18:C1:8B:6B:C2:D9:10:42:80:8B:CA:DF:CD:B7:34:75:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0lNpGMGLa8LZEEKAi8rfzbc0dTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/18CB29D4D42611EFAE000281C4F9AE02.roa Signing time: Thu 16 Jan 2025 16:22:36 +0000 ROA not before: Thu 16 Jan 2025 16:22:36 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150001 IP address blocks: 202.53.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/0lNpGMGLa8LZEEKAi8rfzbc0dTE.crl rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/0lNpGMGLa8LZEEKAi8rfzbc0dTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0lNpGMGLa8LZEEKAi8rfzbc0dTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E308 Validity Not Before: Jan 16 16:22:36 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6789324c-fff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:da:04:e6:49:ad:1a:01:2e:27:2d:99:6c:dc: a5:39:61:59:7b:49:68:64:75:00:52:06:80:cb:7e: f9:f5:35:01:c5:31:71:04:1d:b0:85:40:74:fb:b1: 74:37:2f:e6:9a:99:61:b4:66:46:9c:08:58:32:5e: 5e:1b:5d:8f:18:1b:68:e7:9a:93:8a:08:b9:6e:98: 51:63:10:4f:64:07:29:e0:dd:c0:41:c5:42:eb:0f: 0e:87:30:cc:a1:4a:dc:c2:9a:25:1d:73:69:bd:c7: 97:ff:f3:7e:5a:be:fd:a5:c7:18:8b:c3:a7:ae:fb: 91:ff:40:6e:36:4b:ce:cc:59:5d:2c:c3:d4:53:1c: 12:0e:fc:56:49:27:47:e7:57:45:4d:74:59:69:0b: 82:d2:d7:80:45:08:71:82:1b:16:94:f3:54:dd:fc: 76:fb:62:88:60:2f:4f:e8:9b:d4:b0:b3:c8:de:64: c0:bd:f7:00:0d:4b:65:8f:11:ba:61:a7:e7:70:50: 56:4a:e9:77:55:5a:60:c0:b6:25:da:a6:a0:64:ac: b5:1c:db:cc:cd:84:d4:df:aa:bd:14:58:aa:08:db: 3b:a6:cc:2a:1c:ad:33:c3:cd:d6:30:b4:bd:fc:d2: 6d:44:6f:eb:46:d1:a6:eb:1d:c9:bf:44:54:95:f5: 0d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:DF:E6:DD:AC:CA:23:BA:74:27:82:71:60:A5:F6:F8:7C:83:48:13 X509v3 Authority Key Identifier: keyid:D2:53:69:18:C1:8B:6B:C2:D9:10:42:80:8B:CA:DF:CD:B7:34:75:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/0lNpGMGLa8LZEEKAi8rfzbc0dTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0lNpGMGLa8LZEEKAi8rfzbc0dTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/18CB29D4D42611EFAE000281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.53.132.0/24 Signature Algorithm: sha256WithRSAEncryption a8:b6:82:2b:71:2f:65:17:74:aa:37:f9:c8:3b:98:af:02:b5: 95:59:e5:64:d6:2e:f0:01:7f:58:1b:a6:f1:c5:aa:0b:80:2e: 0d:8a:a3:67:d6:85:be:8c:38:6a:7b:42:3b:ec:f6:11:f1:80: 3d:55:22:6e:32:c2:3e:a7:ec:9d:99:b0:26:d5:31:92:ed:b9: c9:3a:69:e8:7c:e6:b2:e2:f8:88:7e:2e:9a:01:45:c1:72:4a: 29:55:48:6f:6d:16:cd:f6:91:c8:a7:40:1a:09:8a:98:d2:b8: 4c:75:5a:92:d9:fc:77:07:ec:1c:1e:81:40:91:ac:e3:42:51: 25:c7:48:3b:e4:67:cb:30:3c:14:1d:9e:71:58:2f:49:fd:c1: b2:4d:9f:20:f9:26:a2:a9:a7:8e:f7:a9:11:2d:cb:08:c7:02: 2a:6f:85:09:0c:1d:32:2c:2b:23:25:f5:27:cc:c9:4e:b8:99: bf:e4:b3:31:66:58:cf:f6:bd:f0:70:38:e5:e6:a4:2c:3b:f6: d1:13:ba:a2:2f:b3:fb:2f:24:a3:83:b3:44:ab:c8:87:0f:8e: e1:f7:42:b3:f7:0d:d0:e9:e4:d1:b5:80:0e:58:a2:ad:2b:18: 3c:88:02:5d:9b:b9:c4:58:18:db:b7:2f:e0:e5:4b:56:d0:92: be:78:e9:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUzMDgxMTAvBgNVBAUTKEQyNTM2OTE4QzE4QjZCQzJEOTEwNDI4MDhCQ0FERkNE QjczNDc1MzEwHhcNMjUwMTE2MTYyMjM2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg5MzI0Yy1mZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdoE5kmtGgEuJy2ZbNylOWFZe0loZHUAUgaAy3759TUBxTFxBB2whUB0+7F0 Ny/mmplhtGZGnAhYMl5eG12PGBto55qTigi5bphRYxBPZAcp4N3AQcVC6w8OhzDM oUrcwpolHXNpvceX//N+Wr79pccYi8OnrvuR/0BuNkvOzFldLMPUUxwSDvxWSSdH 51dFTXRZaQuC0teARQhxghsWlPNU3fx2+2KIYC9P6JvUsLPI3mTAvfcADUtljxG6 YafncFBWSul3VVpgwLYl2qagZKy1HNvMzYTU36q9FFiqCNs7pswqHK0zw83WMLS9 /NJtRG/rRtGm6x3Jv0RUlfUNPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH/f5t2s yiO6dCeCcWCl9vh8g0gTMB8GA1UdIwQYMBaAFNJTaRjBi2vC2RBCgIvK3823NHUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTMwOC9DNzdGN0ExMjA2 RDUxMUVBOEE4OTdGNEZDNEY5QUUwMi8wbE5wR01HTGE4TFpFRUtBaThyZnpiYzBk VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBsTnBHTUdMYThMWkVFS0FpOHJmemJjMGRURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUzMDgvQzc3RjdBMTIwNkQ1MTFFQThBODk3RjRGQzRGOUFFMDIvMThDQjI5RDRE NDI2MTFFRkFFMDAwMjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKNYQwDQYJKoZIhvcNAQELBQADggEBAKi2gitxL2UXdKo3 +cg7mK8CtZVZ5WTWLvABf1gbpvHFqguALg2Ko2fWhb6MOGp7Qjvs9hHxgD1VIm4y wj6n7J2ZsCbVMZLtuck6aeh85rLi+Ih+LpoBRcFySilVSG9tFs32kcinQBoJipjS uEx1WpLZ/HcH7BwegUCRrONCUSXHSDvkZ8swPBQdnnFYL0n9wbJNnyD5JqKpp473 qREtywjHAipvhQkMHTIsKyMl9SfMyU64mb/kszFmWM/2vfBwOOXmpCw79tETuqIv s/svJKODs0SryIcPjuH3QrP3DdDp5NG1gA5Yoq0rGDyIAl2bucRYGNu3L+DlS1bQ kr546R4= -----END CERTIFICATE-----Generated at Sat Apr 5 23:00:08 2025 by rpki-client