$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/4F72C7AA33C411F0B8356486C4F9AE02.roa File: 4F72C7AA33C411F0B8356486C4F9AE02.roa (raw, json) Hash identifier: tOcCd19mJCPPiFoWg4m94bvWBWEGU041dFyGRGUoONg= Subject key identifier: D9:11:73:9F:E6:57:56:E6:D8:76:01:C2:E5:2E:86:E9:63:61:58:BB Certificate issuer: /CN=A915FDD9/serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Certificate serial: 57 Authority key identifier: 96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/4F72C7AA33C411F0B8356486C4F9AE02.roa Signing time: Sun 18 May 2025 08:44:58 +0000 ROA not before: Sun 18 May 2025 08:44:58 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 146943 IP address blocks: 161.248.218.0/24 maxlen: 24 161.248.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 06:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Validity Not Before: May 18 08:44:58 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68299e0a-777b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b2:99:8e:3a:70:6f:37:a1:f1:fc:44:3d:d9: 68:9d:fa:d3:8e:62:d5:6e:db:98:cc:99:bb:b9:4d: 3b:ce:3f:0d:e7:5b:2e:e8:7a:af:a7:93:ab:5d:b7: 75:f5:f8:cd:46:66:66:86:f5:e0:94:d8:b8:f9:26: bb:73:07:12:fb:e1:e5:12:51:d4:ed:57:1a:47:16: e5:48:20:32:58:39:b0:9f:0e:8e:22:c6:e3:a6:5f: 54:5b:5a:33:dc:7e:86:6b:43:9e:5e:48:e9:6b:64: 1a:d7:87:9a:3b:6c:0e:d3:b4:64:35:3a:d7:6a:1e: 64:4e:9e:81:ba:60:e5:1c:f2:35:c8:98:fc:d0:61: 19:92:64:88:50:de:f9:53:8c:f2:5d:eb:4f:ca:98: a7:1a:24:19:2d:58:d8:5f:d7:06:3a:25:a1:43:81: b0:45:13:8b:22:23:4c:59:97:82:28:07:86:41:22: 39:70:3c:69:44:6a:22:69:2d:d9:93:ec:01:3e:90: af:61:13:ed:b9:e3:61:37:e8:64:80:6a:e8:6d:7b: 6d:da:16:8d:e3:c3:5a:9f:36:c7:aa:1e:02:60:eb: 91:d2:42:93:3b:37:da:6e:c1:cc:5a:40:51:fd:08: 17:fa:0b:6f:a9:3f:5d:0a:0c:ec:e4:41:8c:a0:b8: dd:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:11:73:9F:E6:57:56:E6:D8:76:01:C2:E5:2E:86:E9:63:61:58:BB X509v3 Authority Key Identifier: keyid:96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/4F72C7AA33C411F0B8356486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.218.0/23 Signature Algorithm: sha256WithRSAEncryption 80:4d:f9:13:8c:51:38:9c:2a:27:cb:da:09:88:43:2f:7a:96: c0:a3:d5:89:8b:cd:ef:8f:35:09:dd:7f:52:b6:0a:54:76:f4: 6f:a0:59:e2:e2:6d:e9:a6:c1:06:7d:e8:e2:08:ba:89:fa:42: 03:85:78:5a:86:4b:6e:d3:16:7b:ad:6c:5f:3b:15:8b:cb:8a: 0b:07:5e:5f:d8:b2:cc:dc:fe:70:e5:48:0d:68:6f:ac:bf:f4: 45:17:ae:59:b0:5d:4a:c9:ea:3f:98:a9:53:3a:24:91:bb:2b: de:5c:e3:cc:f3:3b:a9:d2:81:c2:99:97:c7:cb:57:94:24:52: a3:39:e5:82:e9:ad:a0:28:b9:37:e9:0a:f2:77:8e:94:36:0d: 87:a6:d5:87:fa:2a:85:a4:9f:ae:6b:3e:28:5a:69:83:ac:22: a6:24:b6:51:e7:9a:f2:63:44:00:fb:ed:19:f9:52:17:3e:7c: a9:c5:23:98:ab:02:0e:df:d1:54:f8:81:30:15:e0:49:6c:32: 20:c4:8a:3f:5f:da:5b:bc:6b:7a:d0:26:08:f7:f6:e1:8a:08: ae:46:41:67:1a:4e:84:d1:94:0c:01:75:20:6d:5a:8f:08:b1: 04:76:b0:36:11:50:44:2f:d3:9c:fa:74:ae:18:85:6d:43:92: 62:cf:6f:3e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkREOTExMC8GA1UEBRMoOTY3Qjk3RDlFMzExMjUwRDgyOTQyRDI3RTRDNUY5MEQ5 ODEzODA1ODAeFw0yNTA1MTgwODQ0NThaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Mjk5ZTBhLTc3N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLspmOOnBvN6Hx/EQ92Wid+tOOYtVu25jMmbu5TTvOPw3nWy7oeq+nk6tdt3X1 +M1GZmaG9eCU2Lj5JrtzBxL74eUSUdTtVxpHFuVIIDJYObCfDo4ixuOmX1RbWjPc foZrQ55eSOlrZBrXh5o7bA7TtGQ1OtdqHmROnoG6YOUc8jXImPzQYRmSZIhQ3vlT jPJd60/KmKcaJBktWNhf1wY6JaFDgbBFE4siI0xZl4IoB4ZBIjlwPGlEaiJpLdmT 7AE+kK9hE+2542E36GSAauhte23aFo3jw1qfNseqHgJg65HSQpM7N9puwcxaQFH9 CBf6C2+pP10KDOzkQYyguN1DAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2RFzn+ZX VubYdgHC5S6G6WNhWLswHwYDVR0jBBgwFoAUlnuX2eMRJQ2ClC0n5MX5DZgTgFgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGREQ5L0I2MjJGQThBRDZE RTExRUZCMDQ3NEUxQkM0RjlBRTAyL2xudVgyZU1SSlEyQ2xDMG41TVg1RFpnVGdG Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbG51WDJlTVJKUTJDbEMwbjVNWDVEWmdUZ0ZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CNjIyRkE4QUQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi80RjcyQzdBQTMz QzQxMUYwQjgzNTY0ODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH42jANBgkqhkiG9w0BAQsFAAOCAQEAgE35E4xROJwqJ8va CYhDL3qWwKPViYvN7481Cd1/UrYKVHb0b6BZ4uJt6abBBn3o4gi6ifpCA4V4WoZL btMWe61sXzsVi8uKCwdeX9iyzNz+cOVIDWhvrL/0RReuWbBdSsnqP5ipUzokkbsr 3lzjzPM7qdKBwpmXx8tXlCRSoznlgumtoCi5N+kK8neOlDYNh6bVh/oqhaSfrms+ KFppg6wipiS2Ueea8mNEAPvtGflSFz58qcUjmKsCDt/RVPiBMBXgSWwyIMSKP1/a W7xretAmCPf24YoIrkZBZxpOhNGUDAF1IG1ajwixBHawNhFQRC/TnPp0rhiFbUOS Ys9vPg== -----END CERTIFICATE-----Generated at Thu Jun 5 19:14:06 2025 by rpki-client