$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B49C0F52093911F0B5B63A64C4F9AE02.roa File: B49C0F52093911F0B5B63A64C4F9AE02.roa (raw, json) Hash identifier: 3veexbbP17tH+uD7XN3YDd3FvrwiTdJAW0ORX2/K7PM= Subject key identifier: A7:78:34:53:45:8E:C7:28:43:6E:C7:F0:FC:D0:69:E5:DA:3B:F0:B0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AC4A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B49C0F52093911F0B5B63A64C4F9AE02.roa Signing time: Tue 25 Mar 2025 05:26:30 +0000 ROA not before: Tue 25 Mar 2025 05:26:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153723 IP address blocks: 163.223.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 07:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44106 (0xac4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Mar 25 05:26:30 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67e23e85-76c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:29:83:8d:d3:59:33:6f:39:1d:6b:31:9d:3d: 8b:9e:8d:11:3f:8f:b8:c3:b4:d9:b3:06:7d:12:3d: 47:ae:e8:13:e3:bd:c9:f8:fe:5f:03:64:c5:72:6c: 2c:b8:77:7c:b0:97:40:3e:ab:7c:c0:99:38:ac:ef: a4:36:4e:ef:e0:03:10:b5:27:de:b8:ad:21:04:2c: 67:3b:31:1a:3a:b0:50:ee:00:94:3a:4a:4b:8b:5a: ae:fc:d1:bd:f3:22:98:7a:cd:66:2d:d8:5e:5d:f6: 7c:08:b7:17:ec:a4:87:0c:b2:77:12:6a:c6:55:e6: 7d:48:08:21:13:01:2c:01:3a:9c:a8:c7:5e:86:fe: bd:f0:bc:dc:f2:11:1e:fa:0f:d4:65:2b:5e:d4:c1: 2c:70:68:7f:c6:59:0c:af:be:48:08:11:f3:a1:37: 3a:64:f9:c3:f1:59:83:d5:c3:13:92:dd:72:09:7e: f6:43:c0:3a:9e:2e:32:90:e6:cd:2e:5b:b3:26:97: 08:c1:75:55:4c:da:59:17:a9:07:ab:72:72:0f:db: b5:ec:e7:b1:80:3f:a9:34:95:6a:03:e1:fc:12:3c: bc:1c:ee:08:13:05:83:17:fe:a1:d7:0a:a7:1b:1e: f6:32:1c:b5:c9:13:f6:70:9e:1f:77:87:c2:7a:16: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:78:34:53:45:8E:C7:28:43:6E:C7:F0:FC:D0:69:E5:DA:3B:F0:B0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B49C0F52093911F0B5B63A64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.166.0/23 Signature Algorithm: sha256WithRSAEncryption b1:93:e4:99:0b:5b:3e:00:89:bd:be:71:7a:81:a7:94:cc:10: da:f0:3e:25:a2:99:64:b0:c0:fe:57:8c:1d:30:6d:08:35:7d: 80:46:da:13:f4:90:f7:b8:75:56:08:7d:02:f1:08:85:67:91: c3:32:01:5e:73:c6:82:26:0b:65:01:18:70:09:29:3c:f1:5e: 99:39:d8:bb:46:d6:ff:37:0f:ff:f0:53:3c:c0:fc:42:30:1e: 38:14:a6:78:1a:39:58:55:c6:15:10:6f:19:25:ef:e5:14:e6: 3a:4b:f8:e9:20:51:f4:cd:56:02:b6:39:5a:47:e6:ea:91:d6: 34:d2:ef:65:43:4e:12:2f:ca:80:e9:ab:8a:f7:42:c6:ab:66: 56:b8:1a:f8:b2:4f:07:0f:00:3b:97:4e:50:b0:1b:09:b8:0f: 73:8b:3a:f8:1c:f8:c4:f5:7b:4d:7a:6d:3b:d0:e0:c4:29:89: 4c:b2:66:0a:a6:71:e8:bd:be:60:0b:a9:1b:05:bc:1a:d4:94: 69:aa:7c:45:de:35:02:65:ba:1a:86:38:d9:37:99:aa:82:fa: ff:f0:a9:24:6f:9d:3d:9b:10:9d:8e:90:9f:1a:76:b3:55:ad: 2a:cc:36:63:c3:74:ee:cf:a4:c7:d0:13:e8:3e:65:25:9f:11: b9:27:80:b4 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAKxKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDMyNTA1MjYzMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdlMjNlODUtNzZjMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8pg43TWTNvOR1rMZ09i56NET+PuMO02bMGfRI9R67oE+O9yfj+XwNkxXJs LLh3fLCXQD6rfMCZOKzvpDZO7+ADELUn3ritIQQsZzsxGjqwUO4AlDpKS4tarvzR vfMimHrNZi3YXl32fAi3F+ykhwyydxJqxlXmfUgIIRMBLAE6nKjHXob+vfC83PIR HvoP1GUrXtTBLHBof8ZZDK++SAgR86E3OmT5w/FZg9XDE5Ldcgl+9kPAOp4uMpDm zS5bsyaXCMF1VUzaWRepB6tycg/bteznsYA/qTSVagPh/BI8vBzuCBMFgxf+odcK pxse9jIctckT9nCeH3eHwnoW740CAwEAAaOCApUwggKRMB0GA1UdDgQWBBSneDRT RY7HKENux/D80Gnl2jvwsDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I0OUMwRjUy MDkzOTExRjBCNUI2M0E2NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBo9+mMA0GCSqGSIb3DQEBCwUAA4IBAQCxk+SZC1s+AIm9 vnF6gaeUzBDa8D4loplksMD+V4wdMG0INX2ARtoT9JD3uHVWCH0C8QiFZ5HDMgFe c8aCJgtlARhwCSk88V6ZOdi7Rtb/Nw//8FM8wPxCMB44FKZ4GjlYVcYVEG8ZJe/l FOY6S/jpIFH0zVYCtjlaR+bqkdY00u9lQ04SL8qA6auK90LGq2ZWuBr4sk8HDwA7 l05QsBsJuA9zizr4HPjE9XtNem070ODEKYlMsmYKpnHovb5gC6kbBbwa1JRpqnxF 3jUCZboahjjZN5mqgvr/8Kkkb509mxCdjpCfGnazVa0qzDZjw3Tuz6TH0BPoPmUl nxG5J4C0 -----END CERTIFICATE-----Generated at Fri Apr 4 10:54:45 2025 by rpki-client