$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/A368B23623C411EFB7164123C4F9AE02.roa File: A368B23623C411EFB7164123C4F9AE02.roa (raw, json) Hash identifier: xksJk5Cwcy8+0Thge3EVjB2r6Pp+L19aLaysM6rp0MI= Subject key identifier: 0C:D6:22:02:41:05:6B:A7:F2:74:A2:D6:F5:B4:2C:68:6C:2F:49:37 Certificate issuer: /CN=A914EB9A/serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Certificate serial: 93 Authority key identifier: 83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/A368B23623C411EFB7164123C4F9AE02.roa Signing time: Thu 13 Mar 2025 04:31:44 +0000 ROA not before: Thu 13 Mar 2025 04:31:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 396982 IP address blocks: 203.0.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB9A Validity Not Before: Mar 13 04:31:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d25fb0-9acb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:13:8c:cb:7e:17:a7:7b:aa:3d:6d:68:14: 72:b7:be:bf:8c:fc:5d:1c:5a:2e:51:a5:b2:6f:d9: de:72:ee:16:5f:05:27:be:9a:82:72:4b:f2:35:a0: a6:57:52:5e:48:cc:22:ce:b8:e4:0b:e9:cb:84:93: e1:a6:96:c0:30:e4:3d:d7:70:50:d8:f0:8c:58:86: de:8f:73:68:49:a5:06:ff:a6:20:0b:4b:85:16:a8: 9f:a7:81:aa:64:16:b6:54:30:31:d6:76:3d:8b:89: 59:da:c4:6f:df:14:e4:c5:5d:06:3e:76:9c:31:1d: 3f:14:48:e0:c5:77:0d:f4:76:0d:1f:05:4d:a1:f5: 5b:60:0b:2a:ff:02:70:94:06:28:df:ab:18:55:2c: c5:e1:a3:b0:5e:36:b6:ce:39:38:0a:48:5e:bd:22: c6:4c:1d:11:0b:0e:45:4d:63:e2:be:c4:5e:9a:74: f0:9f:1a:4f:cb:97:7a:25:a6:b0:c9:5e:bc:a2:b5: cf:6c:d4:f7:62:ca:d8:80:43:2f:c6:8f:c3:f4:ff: 41:df:c7:70:c2:c0:5f:e1:6f:91:16:ff:3c:53:da: 00:a8:d9:88:c0:16:b6:b8:85:41:8f:b7:b1:16:54: 77:57:6d:ab:b1:4e:09:a6:0f:ad:ee:75:2b:14:ce: e1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D6:22:02:41:05:6B:A7:F2:74:A2:D6:F5:B4:2C:68:6C:2F:49:37 X509v3 Authority Key Identifier: keyid:83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/A368B23623C411EFB7164123C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.0.168.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:28:67:aa:17:98:33:3a:c4:4d:cb:8d:82:55:60:e4:91:17: b7:8d:36:c2:35:08:50:b2:1f:0c:b6:4c:e1:ba:79:f0:4f:a3: 6f:20:c4:f4:b4:63:67:4e:f4:79:a0:ef:55:91:e2:a2:28:d3: 15:57:44:81:a1:90:23:07:51:07:ca:17:a3:3d:87:51:ff:90: 36:0a:45:60:1e:cf:33:48:83:41:33:59:9b:1f:1f:8d:ce:82: 99:0b:e5:d5:8a:42:59:f2:4a:c2:3b:71:96:70:01:b5:32:c5: af:28:92:62:98:1b:8a:5d:d3:92:f2:4a:bc:3d:01:2c:ba:d2: 32:e7:18:a0:e2:bf:2f:d9:6f:00:5b:8d:5a:21:a5:aa:3f:01: bc:a6:72:f4:f7:a3:de:e7:43:ff:27:ad:aa:03:2d:5d:81:90: a0:4e:45:a0:03:11:cb:ed:bf:1c:6f:5e:71:d0:04:7e:25:9c: 7c:45:43:36:aa:f5:d7:8d:1c:f2:4e:14:d9:29:5b:47:9f:d1: e2:12:26:ea:bb:5a:01:9b:4e:7f:2a:5e:62:da:e8:af:21:18: 20:3a:4a:62:05:e1:44:28:df:ca:df:a9:52:4c:59:b5:27:5e: 9b:e4:94:46:a2:c1:75:fc:3a:e2:d0:16:4f:8d:83:7c:5d:93: eb:e9:f2:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCOUExMTAvBgNVBAUTKDgzRUY4RkU5RUU0ODY5RjBCOTRBOTVGNzQ2RjU4OTRC QTFGQjMwRjAwHhcNMjUwMzEzMDQzMTQ0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QyNWZiMC05YWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYoTjMt+F6d7qj1taBRyt76/jPxdHFouUaWyb9necu4WXwUnvpqCckvyNaCm V1JeSMwizrjkC+nLhJPhppbAMOQ913BQ2PCMWIbej3NoSaUG/6YgC0uFFqifp4Gq ZBa2VDAx1nY9i4lZ2sRv3xTkxV0GPnacMR0/FEjgxXcN9HYNHwVNofVbYAsq/wJw lAYo36sYVSzF4aOwXja2zjk4CkhevSLGTB0RCw5FTWPivsRemnTwnxpPy5d6Jaaw yV68orXPbNT3YsrYgEMvxo/D9P9B38dwwsBf4W+RFv88U9oAqNmIwBa2uIVBj7ex FlR3V22rsU4Jpg+t7nUrFM7hLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAzWIgJB BWun8nSi1vW0LGhsL0k3MB8GA1UdIwQYMBaAFIPvj+nuSGnwuUqV90b1iUuh+zDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUI5QS9FNEE2NUVERTIz QzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFmQzVTcFgzUnZXSlM2SDdN UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ctLVA2ZTVJYWZDNVNwWDNSdldKUzZIN01QQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVCOUEvRTRBNjVFREUyM0MzMTFFRjg5MkRFQjIxQzRGOUFFMDIvQTM2OEIyMzYy M0M0MTFFRkI3MTY0MTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLAKgwDQYJKoZIhvcNAQELBQADggEBAAwoZ6oXmDM6xE3L jYJVYOSRF7eNNsI1CFCyHwy2TOG6efBPo28gxPS0Y2dO9Hmg71WR4qIo0xVXRIGh kCMHUQfKF6M9h1H/kDYKRWAezzNIg0EzWZsfH43OgpkL5dWKQlnySsI7cZZwAbUy xa8okmKYG4pd05LySrw9ASy60jLnGKDivy/ZbwBbjVohpao/AbymcvT3o97nQ/8n raoDLV2BkKBORaADEcvtvxxvXnHQBH4lnHxFQzaq9deNHPJOFNkpW0ef0eISJuq7 WgGbTn8qXmLa6K8hGCA6SmIF4UQo38rfqVJMWbUnXpvklEaiwXX8OuLQFk+Ng3xd k+vp8vc= -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:42 2025 by rpki-client