$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2AE34094EF5A11EFBB428D63C4F9AE02.roa File: 2AE34094EF5A11EFBB428D63C4F9AE02.roa (raw, json) Hash identifier: FkmgYVPdYm4iPRF3W9xRCBTiVMfPoOmwxzeHTtcQzeA= Subject key identifier: 4B:84:C8:06:01:72:F3:F1:52:51:C5:14:CF:9E:D1:6E:E3:D1:51:5D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A6FF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2AE34094EF5A11EFBB428D63C4F9AE02.roa Signing time: Thu 20 Feb 2025 08:27:50 +0000 ROA not before: Thu 20 Feb 2025 08:27:50 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 45851 IP address blocks: 202.62.246.0/24 maxlen: 24 2001:df0:2c9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 15:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42751 (0xa6ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Feb 20 08:27:50 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67b6e785-7916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b0:65:ef:2c:44:0a:28:8f:dd:30:5f:8c:7f: ab:ca:04:7d:be:e6:94:63:a1:31:15:f5:f2:a1:72: 12:5a:c7:6c:80:7d:41:1e:69:a1:8e:04:88:49:e5: f5:07:90:43:0e:14:b7:56:17:71:68:1d:3d:61:f8: e6:af:e8:81:15:c6:71:4a:aa:ba:bc:95:59:24:a8: d1:9e:92:d9:56:8a:22:38:a8:39:21:bb:93:9a:22: 80:36:58:c2:ee:95:86:eb:b9:ac:f2:ef:ad:e7:06: f9:2b:8d:92:8e:79:b9:e0:df:3d:d4:d2:5d:66:bf: 96:38:ac:41:e6:08:b3:e2:1f:ca:d6:2f:e1:1b:88: f2:15:9c:e1:a7:2e:67:51:d9:93:84:88:8d:53:ec: 76:62:c9:99:6c:c5:5e:8d:93:db:92:8f:74:04:41: 00:66:eb:08:db:c1:6f:80:d7:92:8f:af:31:f6:11: 34:a8:6e:50:94:ff:6f:94:3a:0d:e9:29:c8:cd:ec: e0:3c:ef:2d:58:55:01:0d:b5:25:0e:a9:bb:b6:52: 95:60:c4:45:cf:c8:ed:7b:b6:84:10:d2:6b:72:6f: d5:50:81:8f:dc:46:ef:02:a7:a4:1c:0e:77:8b:d7: c3:df:ea:27:d9:c5:2a:d9:f9:95:ae:0e:44:00:b8: 44:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:84:C8:06:01:72:F3:F1:52:51:C5:14:CF:9E:D1:6E:E3:D1:51:5D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2AE34094EF5A11EFBB428D63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.62.246.0/24 IPv6: 2001:df0:2c9::/48 Signature Algorithm: sha256WithRSAEncryption 22:1b:22:74:bc:f8:38:b6:3c:11:c2:b7:c8:69:5a:e0:7f:e6: c2:21:da:66:2d:06:c9:c0:6c:a3:09:49:69:dc:65:03:8e:7e: 82:57:11:e7:c8:db:ea:49:ba:f0:f0:84:8f:a6:c2:45:0f:b6: 07:90:47:b2:72:0b:fb:c8:79:b5:3f:bb:46:84:d7:8a:eb:e4: 1d:38:ba:3e:1a:bb:bc:74:16:54:ae:c1:c3:9e:f3:e4:56:b5: 03:e5:39:6f:f1:95:a1:a0:55:76:8c:c8:f6:c7:5e:f5:b0:e4: 74:9c:31:06:78:7e:fd:a7:6e:62:9c:3b:a1:8b:9a:62:e7:42: 25:8b:f0:0a:19:0b:0b:ec:19:3b:a6:52:86:58:21:3e:0e:0f: 9a:80:24:69:07:6a:7b:21:d4:32:5e:e8:6b:8c:d7:d2:12:7d: 9b:ef:a7:f5:86:f7:ca:e9:b5:ce:82:0b:84:a9:a9:a4:ca:35: 08:d5:d0:83:6d:8c:d2:0a:5b:59:25:20:47:cd:50:92:f5:ba: cd:59:c6:34:d5:f8:b7:f2:27:51:62:87:d8:13:ab:83:9a:e9: 63:02:18:d0:9d:53:39:1e:2b:43:aa:89:03:a6:56:49:ca:ad: 32:45:70:7f:ce:cd:05:77:b7:2e:fc:b4:89:4b:74:88:54:d1: 26:f6:f2:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAKb/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDIyMDA4Mjc1MFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdiNmU3ODUtNzkxNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+wZe8sRAooj90wX4x/q8oEfb7mlGOhMRX18qFyElrHbIB9QR5poY4EiEnl 9QeQQw4Ut1YXcWgdPWH45q/ogRXGcUqquryVWSSo0Z6S2VaKIjioOSG7k5oigDZY wu6Vhuu5rPLvrecG+SuNko55ueDfPdTSXWa/ljisQeYIs+IfytYv4RuI8hWc4acu Z1HZk4SIjVPsdmLJmWzFXo2T25KPdARBAGbrCNvBb4DXko+vMfYRNKhuUJT/b5Q6 DekpyM3s4DzvLVhVAQ21JQ6pu7ZSlWDERc/I7Xu2hBDSa3Jv1VCBj9xG7wKnpBwO d4vXw9/qJ9nFKtn5la4ORAC4RFsCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBRLhMgG AXLz8VJRxRTPntFu49FRXTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJBRTM0MDk0 RUY1QTExRUZCQjQyOEQ2M0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAyj72MA8EAgACMAkDBwAgAQ3wAskwDQYJKoZIhvcNAQEL BQADggEBACIbInS8+Di2PBHCt8hpWuB/5sIh2mYtBsnAbKMJSWncZQOOfoJXEefI 2+pJuvDwhI+mwkUPtgeQR7JyC/vIebU/u0aE14rr5B04uj4au7x0FlSuwcOe8+RW tQPlOW/xlaGgVXaMyPbHXvWw5HScMQZ4fv2nbmKcO6GLmmLnQiWL8AoZCwvsGTum UoZYIT4OD5qAJGkHansh1DJe6GuM19ISfZvvp/WG98rptc6CC4SpqaTKNQjV0INt jNIKW1klIEfNUJL1us1ZxjTV+LfyJ1Fih9gTq4Oa6WMCGNCdUzkeK0OqiQOmVknK rTJFcH/OzQV3ty78tIlLdIhU0Sb28vk= -----END CERTIFICATE-----Generated at Fri Apr 4 10:54:41 2025 by rpki-client