$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/4BA5EC4293D911EE86212B1DC4F9AE02.roa File: 4BA5EC4293D911EE86212B1DC4F9AE02.roa (raw, json) Hash identifier: KJiTJQnlya7yc1gVeGhk9f8wqpXCXgsDbpb8Ndl9Q5Q= Subject key identifier: EC:84:91:5B:6F:FE:D2:B2:85:37:95:97:DF:1E:F5:65:5D:AF:BE:CC Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0C43 Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/4BA5EC4293D911EE86212B1DC4F9AE02.roa Signing time: Tue 07 Jan 2025 08:44:54 +0000 ROA not before: Tue 07 Jan 2025 08:44:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 38556 IP address blocks: 116.212.184.0/23 maxlen: 23 116.212.184.0/24 maxlen: 24 116.212.186.0/24 maxlen: 24 2401:e6a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3139 (0xc43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D Validity Not Before: Jan 7 08:44:54 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677ce986-b9e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0a:8b:ee:5f:d3:16:70:0f:65:8b:2e:a7:b7: 74:57:c3:0b:47:c3:af:cb:cf:ec:52:8e:48:6d:b0: e5:05:ed:6c:fb:c5:1a:fa:15:dc:42:f8:1b:64:37: b9:be:df:9f:2c:b6:b7:11:c9:75:ab:2a:34:c0:32: f9:cf:19:ed:c4:61:83:64:33:aa:5f:ee:9b:a1:58: c4:65:c4:e9:f4:30:43:17:b0:02:3a:cf:bf:03:55: d9:76:22:e7:af:d9:4c:90:9e:49:50:a7:8d:5f:6a: 3c:f4:2b:13:2e:ad:a7:70:61:fb:fc:90:57:43:bb: dc:b2:29:4e:76:38:27:ae:24:b3:ec:23:e9:ae:aa: 8d:21:09:8a:27:26:21:35:ad:c2:97:45:7d:5b:b8: 9b:aa:f5:19:31:6b:47:7a:01:c6:a7:2c:47:e8:6b: dd:c2:3f:77:ba:48:1b:d7:ef:10:2f:85:82:67:d0: d1:1d:c0:dd:03:81:0e:2b:b0:38:14:01:a9:86:1d: 24:cd:4e:73:33:7e:aa:19:8b:5f:42:fd:a5:7d:db: 10:73:08:89:a4:6c:46:c1:5e:d4:f6:54:c5:05:bd: 2b:cb:03:37:98:5e:c3:8f:6b:90:53:31:63:78:06: ea:b4:39:b2:cf:a7:64:25:f9:ae:af:f2:64:3b:c2: 92:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:84:91:5B:6F:FE:D2:B2:85:37:95:97:DF:1E:F5:65:5D:AF:BE:CC X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/4BA5EC4293D911EE86212B1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.212.184.0-116.212.186.255 IPv6: 2401:e6a0::/32 Signature Algorithm: sha256WithRSAEncryption c8:07:3f:26:74:b5:9e:bc:d9:c1:16:5e:0f:09:20:61:73:8c: 66:23:f6:45:5f:59:ca:0e:e7:e9:87:04:66:98:f9:0c:08:3a: 17:c4:25:0e:9b:35:fe:c7:d4:16:db:78:b1:22:bb:20:da:6f: 13:30:10:3c:1f:2a:ca:46:a9:cb:a8:0c:bf:dc:db:7b:2b:c4: b3:03:32:22:f1:42:7c:00:23:95:7e:99:b6:1c:45:29:f0:16: bb:d2:8d:90:7b:00:39:84:6c:74:28:cf:bb:fc:eb:e0:7c:5f: f0:95:77:88:bd:21:01:d1:8a:c7:0e:79:b9:06:10:1b:7a:9c: d4:59:10:da:0d:39:8f:1f:4e:84:e4:2f:2b:65:36:eb:ee:6e: 1c:06:63:95:77:ba:fc:06:fd:b2:f3:1b:f2:6c:d7:87:2a:3e: 71:69:71:5b:06:d9:73:44:55:f3:85:3b:10:de:73:93:e6:38: 83:3e:55:51:46:99:08:3f:45:e3:a8:5c:4d:10:5c:aa:cf:87: b3:4d:d6:73:d2:eb:a8:5e:6a:6e:5b:0b:cd:9d:5b:de:b6:ab: 67:b3:b1:98:ef:d5:4e:32:e1:8f:64:84:10:58:14:81:45:eb: fb:fd:d1:15:1e:76:a1:ba:61:d5:22:82:43:3f:3f:15:97:f4: 4d:eb:a6:6d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjUwMTA3MDg0NDU0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjZTk4Ni1iOWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAqL7l/TFnAPZYsup7d0V8MLR8Ovy8/sUo5IbbDlBe1s+8Ua+hXcQvgbZDe5 vt+fLLa3Ecl1qyo0wDL5zxntxGGDZDOqX+6boVjEZcTp9DBDF7ACOs+/A1XZdiLn r9lMkJ5JUKeNX2o89CsTLq2ncGH7/JBXQ7vcsilOdjgnriSz7CPprqqNIQmKJyYh Na3Cl0V9W7ibqvUZMWtHegHGpyxH6Gvdwj93ukgb1+8QL4WCZ9DRHcDdA4EOK7A4 FAGphh0kzU5zM36qGYtfQv2lfdsQcwiJpGxGwV7U9lTFBb0rywM3mF7Dj2uQUzFj eAbqtDmyz6dkJfmur/JkO8KSyQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOyEkVtv /tKyhTeVl98e9WVdr77MMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY4OEQvMkExNEJFMDgwMDVBMTFFQThGRENBMTMwQzRGOUFFMDIvNEJBNUVDNDI5 M0Q5MTFFRTg2MjEyQjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEA3TUuAMEAHTUujANBAIAAjAHAwUAJAHmoDANBgkqhkiG 9w0BAQsFAAOCAQEAyAc/JnS1nrzZwRZeDwkgYXOMZiP2RV9Zyg7n6YcEZpj5DAg6 F8QlDps1/sfUFtt4sSK7INpvEzAQPB8qykapy6gMv9zbeyvEswMyIvFCfAAjlX6Z thxFKfAWu9KNkHsAOYRsdCjPu/zr4Hxf8JV3iL0hAdGKxw55uQYQG3qc1FkQ2g05 jx9OhOQvK2U26+5uHAZjlXe6/Ab9svMb8mzXhyo+cWlxWwbZc0RV84U7EN5zk+Y4 gz5VUUaZCD9F46hcTRBcqs+Hs03Wc9LrqF5qblsLzZ1b3rarZ7OxmO/VTjLhj2SE EFgUgUXr+/3RFR52obph1SKCQz8/FZf0TeumbQ== -----END CERTIFICATE-----Generated at Sat Apr 5 07:19:21 2025 by rpki-client