$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DA69F07EFF3311EFB7731121C4F9AE02.roa File: DA69F07EFF3311EFB7731121C4F9AE02.roa (raw, json) Hash identifier: wTwsrCEEapD9rUfC4+TH5iUXU9Gwf7C4V/MYbidN5Sc= Subject key identifier: 82:ED:EE:2F:F5:62:D7:53:AF:2A:34:07:74:86:EC:3B:CB:0B:C8:FF Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1CDF Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DA69F07EFF3311EFB7731121C4F9AE02.roa Signing time: Wed 12 Mar 2025 11:19:24 +0000 ROA not before: Wed 12 Mar 2025 11:19:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134375 IP address blocks: 161.248.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7391 (0x1cdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Mar 12 11:19:24 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67d16dbc-46c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:88:ac:4c:7e:1f:74:40:af:82:e9:e8:ff:8e: f6:af:24:8f:4a:a3:51:0d:2a:2b:a8:14:bf:9b:4e: 57:0e:43:e8:ef:2d:f5:f1:17:7e:db:de:0e:a7:42: 5e:b6:1d:2d:0a:83:c5:75:c6:0b:fc:b6:74:69:e3: 6e:49:37:eb:21:fc:b2:bf:61:fe:b0:fb:28:2f:79: d0:c8:d2:b1:81:be:50:a4:22:28:eb:9a:83:d3:41: fe:b0:fc:d5:57:c5:2b:96:da:b5:d4:14:2f:00:f6: be:9f:bd:6e:29:ee:85:1b:fe:d9:b0:af:22:7b:f5: 83:96:7e:05:62:17:00:a2:61:1d:b7:5a:47:b9:f3: b8:1d:67:c2:17:ef:2c:c6:42:d7:ee:a7:d7:1b:c2: 61:80:f4:02:68:99:77:36:76:d7:88:1f:1d:21:b1: c5:ed:de:02:84:5d:97:f8:91:22:28:7e:fe:73:d3: ec:86:04:58:67:00:42:0c:fa:d9:95:7d:7b:91:a8: 56:f4:e3:19:61:bb:a5:c1:1d:39:a8:ea:ac:44:0c: 78:7c:a7:29:fa:1f:29:7e:65:d4:0b:95:e3:9d:c6: 5b:3f:69:4a:61:d5:06:58:e8:0a:b8:34:05:7b:88: 2a:6b:1d:71:8d:b5:9b:46:b0:7d:d7:8a:67:6f:0c: 14:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:ED:EE:2F:F5:62:D7:53:AF:2A:34:07:74:86:EC:3B:CB:0B:C8:FF X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DA69F07EFF3311EFB7731121C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.174.0/23 Signature Algorithm: sha256WithRSAEncryption 25:ae:40:54:c2:85:59:ec:8b:0c:84:0b:5f:66:67:f1:1b:2d: 5e:89:7e:97:1c:40:49:88:9a:4b:20:d9:87:95:17:74:e7:9d: 90:6b:9c:49:6c:ea:24:a9:3b:06:04:e8:23:3a:bc:6a:5b:5d: c5:41:90:11:b6:7b:a2:41:a8:38:d0:1b:29:ba:e2:1b:66:13: 4b:36:d1:c6:4d:b5:00:59:a2:81:a9:dc:23:23:47:37:5e:eb: 19:6c:17:ce:44:94:12:48:f1:1a:d7:07:5e:8c:b2:42:17:0c: 53:b8:94:3a:11:11:3d:84:f4:5f:81:2e:62:82:57:05:ba:10: 33:79:1f:05:82:5f:2b:87:71:dc:83:ec:df:01:5c:03:42:9b: e7:a4:6c:6d:d5:93:9c:f4:7b:50:d3:4a:b1:48:40:f2:31:bc: bf:28:17:62:52:d6:13:fd:3d:03:dc:9e:59:aa:7d:a1:21:ca: 83:23:d2:02:fc:6e:d2:92:e0:27:6f:4d:45:f8:e0:0b:10:46: 2d:f9:1c:41:03:63:21:a0:c0:60:f1:b3:96:dc:a6:85:b3:b3: bd:70:30:0a:40:82:fe:60:2a:a4:f4:d3:ac:9f:45:74:2e:23: bd:e7:b5:9e:9c:d1:fc:9e:92:20:bc:4c:42:79:72:ac:ee:1c: 8b:42:32:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwMzEyMTExOTI0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QxNmRiYy00NmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYisTH4fdECvguno/472rySPSqNRDSorqBS/m05XDkPo7y318Rd+294Op0Je th0tCoPFdcYL/LZ0aeNuSTfrIfyyv2H+sPsoL3nQyNKxgb5QpCIo65qD00H+sPzV V8Urltq11BQvAPa+n71uKe6FG/7ZsK8ie/WDln4FYhcAomEdt1pHufO4HWfCF+8s xkLX7qfXG8JhgPQCaJl3NnbXiB8dIbHF7d4ChF2X+JEiKH7+c9PshgRYZwBCDPrZ lX17kahW9OMZYbulwR05qOqsRAx4fKcp+h8pfmXUC5XjncZbP2lKYdUGWOgKuDQF e4gqax1xjbWbRrB914pnbwwULwIDAQABo4IClTCCApEwHQYDVR0OBBYEFILt7i/1 YtdTryo0B3SG7DvLC8j/MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREE2OUYwN0VG RjMzMTFFRkI3NzMxMTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+K4wDQYJKoZIhvcNAQELBQADggEBACWuQFTChVnsiwyE C19mZ/EbLV6JfpccQEmImksg2YeVF3TnnZBrnEls6iSpOwYE6CM6vGpbXcVBkBG2 e6JBqDjQGym64htmE0s20cZNtQBZooGp3CMjRzde6xlsF85ElBJI8RrXB16MskIX DFO4lDoRET2E9F+BLmKCVwW6EDN5HwWCXyuHcdyD7N8BXANCm+ekbG3Vk5z0e1DT SrFIQPIxvL8oF2JS1hP9PQPcnlmqfaEhyoMj0gL8btKS4CdvTUX44AsQRi35HEED YyGgwGDxs5bcpoWzs71wMApAgv5gKqT006yfRXQuI73ntZ6c0fyekiC8TEJ5cqzu HItCMmE= -----END CERTIFICATE-----Generated at Sat Apr 5 07:06:57 2025 by rpki-client