$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8C25812AE2E211EFB16A2977C4F9AE02.roa File: 8C25812AE2E211EFB16A2977C4F9AE02.roa (raw, json) Hash identifier: CH+dkX58EyqVkYXt2PqalmYXdXsY6uRRel0iFFaXNMI= Subject key identifier: 57:09:E7:87:CF:F8:1E:F2:96:73:01:D4:97:2D:F1:A0:92:DE:A2:D4 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1CB0 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8C25812AE2E211EFB16A2977C4F9AE02.roa Signing time: Tue 04 Feb 2025 10:26:52 +0000 ROA not before: Tue 04 Feb 2025 10:26:52 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134341 IP address blocks: 161.248.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7344 (0x1cb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Feb 4 10:26:52 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67a1eb6b-4a97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:32:a8:24:aa:1d:ac:cc:4c:9d:9d:66:cb:c7: e3:3e:f9:d7:d8:20:96:9d:b0:d3:7e:7e:09:2c:52: c9:dd:dc:a9:c7:d3:13:21:fc:68:e6:15:a1:dc:49: 94:80:bf:94:82:0e:3b:9c:9f:33:6f:25:60:8c:8c: ae:79:3b:4b:55:5a:9d:3c:ec:07:ab:1a:f9:e1:71: ec:89:3b:09:ba:e8:2e:13:08:e7:60:54:97:0b:ba: 48:cf:c5:b8:e4:42:d3:9a:c2:21:9f:80:1a:5e:82: 2d:7a:45:92:39:f7:a5:73:e8:bf:41:3b:06:3a:16: ad:16:94:56:61:e2:ed:89:e6:7c:91:b9:98:79:bb: 79:bf:e7:20:4c:b9:35:f1:0f:18:cd:d8:5f:fb:d5: ba:2f:4a:60:e8:84:34:60:56:6f:54:ac:3d:d3:40: bb:10:19:17:ef:bc:f5:42:2e:69:2b:56:d7:a8:56: 79:bc:b0:82:db:9d:08:83:00:32:68:9f:94:bd:6f: 19:1c:d9:ce:63:cf:b1:90:6f:fd:b1:3e:2b:5e:6e: cb:d2:72:0b:34:85:8e:b5:54:86:69:68:c9:7d:f9: 03:6a:10:d8:d3:f9:36:5a:39:52:b9:66:13:18:92: e9:88:f5:69:37:4b:de:2a:0d:7a:69:72:11:c5:b6: b8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:09:E7:87:CF:F8:1E:F2:96:73:01:D4:97:2D:F1:A0:92:DE:A2:D4 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8C25812AE2E211EFB16A2977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.166.0/23 Signature Algorithm: sha256WithRSAEncryption 19:e8:6b:a8:09:d1:61:7e:28:76:6a:70:6e:e5:75:9d:47:78: 7d:e0:93:d2:84:2a:74:da:c8:3c:e1:b5:ff:35:7d:fd:9e:f6: 4a:f3:65:9c:fa:24:e7:1f:d5:87:ea:0d:ef:67:e2:3b:af:58: 43:7b:f7:45:5a:2e:d1:b8:49:ce:23:41:a2:fe:91:46:56:8a: 09:ab:42:62:14:83:66:c8:a6:96:41:21:8c:f3:c4:3b:66:68: d9:77:da:f9:7d:62:3a:d2:b0:e8:04:7d:ff:6e:43:6d:23:d2: c4:82:1f:e0:34:66:5f:69:90:27:df:aa:11:73:09:a1:a2:3b: ea:bf:6e:74:d6:61:71:7f:73:99:29:f6:a7:ea:b9:5e:02:7c: 7c:32:26:02:b3:4f:0b:e3:bb:70:5b:f9:41:6c:81:a8:1d:e3: 24:24:2d:cc:9c:72:fb:9a:ba:93:b6:ad:ee:16:d2:93:44:48: 50:d1:09:72:0c:22:c9:f3:ec:bc:7a:ac:a9:ad:d6:6e:32:d0: fd:7d:bb:c5:96:cc:a3:7f:7d:12:f8:3d:0e:be:59:2f:c6:4e: 40:fe:03:08:13:40:e3:c2:99:79:23:46:93:84:5c:3a:18:9b: cf:d5:2d:c0:d3:e7:1a:7e:47:f8:2f:e6:32:2a:8d:ab:2e:e7: 72:56:7d:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwMjA0MTAyNjUyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ExZWI2Yi00YTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zKoJKodrMxMnZ1my8fjPvnX2CCWnbDTfn4JLFLJ3dypx9MTIfxo5hWh3EmU gL+Ugg47nJ8zbyVgjIyueTtLVVqdPOwHqxr54XHsiTsJuuguEwjnYFSXC7pIz8W4 5ELTmsIhn4AaXoItekWSOfelc+i/QTsGOhatFpRWYeLtieZ8kbmYebt5v+cgTLk1 8Q8Yzdhf+9W6L0pg6IQ0YFZvVKw900C7EBkX77z1Qi5pK1bXqFZ5vLCC250IgwAy aJ+UvW8ZHNnOY8+xkG/9sT4rXm7L0nILNIWOtVSGaWjJffkDahDY0/k2WjlSuWYT GJLpiPVpN0veKg16aXIRxba4rwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFcJ54fP +B7ylnMB1Jct8aCS3qLUMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOEMyNTgxMkFF MkUyMTFFRkIxNkEyOTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+KYwDQYJKoZIhvcNAQELBQADggEBABnoa6gJ0WF+KHZq cG7ldZ1HeH3gk9KEKnTayDzhtf81ff2e9krzZZz6JOcf1YfqDe9n4juvWEN790Va LtG4Sc4jQaL+kUZWigmrQmIUg2bIppZBIYzzxDtmaNl32vl9YjrSsOgEff9uQ20j 0sSCH+A0Zl9pkCffqhFzCaGiO+q/bnTWYXF/c5kp9qfquV4CfHwyJgKzTwvju3Bb +UFsgagd4yQkLcyccvuaupO2re4W0pNESFDRCXIMIsnz7Lx6rKmt1m4y0P19u8WW zKN/fRL4PQ6+WS/GTkD+AwgTQOPCmXkjRpOEXDoYm8/VLcDT5xp+R/gv5jIqjasu 53JWfec= -----END CERTIFICATE-----Generated at Sun Apr 6 10:09:19 2025 by rpki-client