$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98AACDBCBB8511EF9C98260DC4F9AE02.roa File: 98AACDBCBB8511EF9C98260DC4F9AE02.roa (raw, json) Hash identifier: Zz+K4Ju7+RqPNpajOAKArxHrZMGhn4kIlRi8lnRk9+I= Subject key identifier: D9:76:98:0E:CC:F0:7E:1B:82:37:CA:22:5D:F7:78:22:E7:B3:8E:B4 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1C97 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98AACDBCBB8511EF9C98260DC4F9AE02.roa Signing time: Mon 27 Jan 2025 12:53:25 +0000 ROA not before: Mon 27 Jan 2025 12:53:25 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149020 IP address blocks: 160.30.84.0/23 maxlen: 24 160.191.77.0/24 maxlen: 24 161.248.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7319 (0x1c97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Jan 27 12:53:25 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=679781c4-b3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d7:0b:6f:0d:3f:7b:80:d9:9f:6a:57:86:9a: 0a:96:6c:c1:ca:7a:e3:49:4d:59:80:97:f3:df:7f: 1c:42:ce:30:c2:b2:18:62:db:9f:23:73:fb:0b:c5: 22:ec:45:dc:3b:24:48:69:6b:bc:2a:e3:97:29:7a: d2:1a:d5:dd:a1:ca:6c:cc:43:2a:2a:68:72:72:2a: cd:25:8e:5c:74:fe:1d:f0:76:cb:38:40:c8:6e:b3: 1c:79:86:e6:41:52:cf:84:4f:29:34:81:82:88:2d: db:a4:b9:0b:99:5a:c2:35:5b:84:60:ed:1b:21:99: f5:85:d1:96:b2:27:c7:86:90:ea:fe:f9:2e:64:21: f2:4f:82:4a:38:a4:4e:a1:99:7a:87:00:75:93:a9: 82:68:36:11:55:8e:7c:e9:8a:d3:69:57:a4:3f:ca: 34:98:7f:09:ee:54:8a:ef:e9:16:b0:4c:5d:8c:9f: 02:11:6c:cb:54:2a:8d:ab:34:6e:f7:3c:69:66:f7: 29:3c:6a:04:0d:3a:b0:bc:32:e7:1b:a4:ba:e0:af: 88:8e:9c:ee:af:c2:44:c6:29:84:0e:37:7c:34:5c: b8:60:b6:97:13:01:b8:97:d1:fe:00:ae:be:2d:82: 77:92:30:24:60:d5:c2:dc:e5:fe:d3:3c:ec:69:ad: 28:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:76:98:0E:CC:F0:7E:1B:82:37:CA:22:5D:F7:78:22:E7:B3:8E:B4 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/98AACDBCBB8511EF9C98260DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.84.0/23 160.191.77.0/24 161.248.242.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:91:65:8a:03:0e:c9:4d:b3:40:0b:32:86:05:23:43:88:b0: 02:a3:97:89:98:a4:51:bd:4d:cf:67:c1:3e:21:6d:c6:8b:1c: 96:7e:3b:2a:07:67:73:56:a0:22:32:73:f3:30:be:86:13:49: 76:ef:04:74:54:20:ba:5c:34:76:ed:6e:7d:dd:dd:05:5a:77: af:44:fa:09:8d:53:63:ae:d7:fb:8a:80:aa:a0:ff:42:c5:f9: fe:8d:48:d0:9d:8c:88:3b:ba:72:1f:c3:f4:b5:e6:2d:61:d0: 61:fb:c0:35:33:67:25:4e:b3:7c:61:41:f1:ef:38:b9:1c:69: 2e:14:e4:d8:02:08:08:91:75:d0:b2:8d:e5:26:6d:8a:15:3a: 61:6a:cb:8e:60:6f:0d:b0:df:20:7e:5e:dd:20:f8:97:1d:6b: 88:a3:f7:f8:3e:c4:60:da:db:b3:7f:9b:95:0f:d2:db:a2:04: 7c:ae:ba:b5:13:57:4d:19:f0:d7:6f:0f:0f:28:db:65:b1:14: 47:48:60:d4:5c:f7:2f:30:3d:74:2e:f2:13:f6:74:f1:a9:d5: 6f:67:42:fa:42:6d:1b:7c:eb:ea:f7:2c:54:3d:04:23:45:37: 53:40:63:67:20:46:16:9d:85:f1:87:0a:2d:02:a4:ea:9a:8b: f9:a6:cc:7f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICHJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwMTI3MTI1MzI1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk3ODFjNC1iM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdcLbw0/e4DZn2pXhpoKlmzBynrjSU1ZgJfz338cQs4wwrIYYtufI3P7C8Ui 7EXcOyRIaWu8KuOXKXrSGtXdocpszEMqKmhycirNJY5cdP4d8HbLOEDIbrMceYbm QVLPhE8pNIGCiC3bpLkLmVrCNVuEYO0bIZn1hdGWsifHhpDq/vkuZCHyT4JKOKRO oZl6hwB1k6mCaDYRVY586YrTaVekP8o0mH8J7lSK7+kWsExdjJ8CEWzLVCqNqzRu 9zxpZvcpPGoEDTqwvDLnG6S64K+Ijpzur8JEximEDjd8NFy4YLaXEwG4l9H+AK6+ LYJ3kjAkYNXC3OX+0zzsaa0oewIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNl2mA7M 8H4bgjfKIl33eCLns460MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOThBQUNEQkNC Qjg1MTFFRjlDOTgyNjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAGgHlQDBACgv00DBACh+PIwDQYJKoZIhvcNAQELBQADggEB AF+RZYoDDslNs0ALMoYFI0OIsAKjl4mYpFG9Tc9nwT4hbcaLHJZ+OyoHZ3NWoCIy c/MwvoYTSXbvBHRUILpcNHbtbn3d3QVad69E+gmNU2Ou1/uKgKqg/0LF+f6NSNCd jIg7unIfw/S15i1h0GH7wDUzZyVOs3xhQfHvOLkcaS4U5NgCCAiRddCyjeUmbYoV OmFqy45gbw2w3yB+Xt0g+Jcda4ij9/g+xGDa27N/m5UP0tuiBHyuurUTV00Z8Ndv Dw8o22WxFEdIYNRc9y8wPXQu8hP2dPGp1W9nQvpCbRt86+r3LFQ9BCNFN1NAY2cg RhadhfGHCi0CpOqai/mmzH8= -----END CERTIFICATE-----Generated at Sat Apr 5 19:32:30 2025 by rpki-client