$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/5DE5F5603D2311F0BC3F7332C4F9AE02.roa File: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (raw, json) Hash identifier: FFTz06zJWJ6iZpeQ1wgw2MSgfSJo5OaRNASidfTNms8= Subject key identifier: 4B:A2:C9:CB:F9:5B:D5:CF:82:3D:B3:4E:96:55:8F:BF:D6:08:B6:D6 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2ABE Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/5DE5F5603D2311F0BC3F7332C4F9AE02.roa Signing time: Fri 30 May 2025 06:57:36 +0000 ROA not before: Fri 30 May 2025 06:57:36 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138077 IP address blocks: 160.250.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 15:38:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10942 (0x2abe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: May 30 06:57:36 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=683956df-e9b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9f:fb:c8:b5:cd:20:8f:f6:21:e8:5d:c0:37: 9f:21:c8:0c:92:27:61:87:78:1e:6f:12:94:ff:7d: ce:0f:16:ea:ef:9a:4c:cb:f5:1b:2d:74:f3:77:a4: e7:c9:b5:83:0b:f9:a8:6e:03:9c:a6:f3:b4:4d:f6: d4:5d:b3:d7:32:3c:81:f1:9f:8c:a9:8a:c0:f5:9a: 0f:9c:13:27:aa:28:cf:78:a7:e2:0b:a9:4e:d8:e3: 02:f3:cf:db:8a:78:3a:67:6d:4c:01:d2:e5:2e:a2: ac:66:a8:80:6f:81:d1:f4:b2:bb:b2:a6:ee:80:b9: ec:e0:5b:34:f7:0e:8b:f0:74:19:9a:c0:f7:bd:10: 22:d2:0d:6d:f3:b0:4c:b4:49:3e:b5:ba:d2:cf:5a: 79:28:d2:12:f9:59:95:09:6a:73:46:ca:ff:fb:93: a8:18:b6:da:8a:26:68:96:27:f0:78:cf:1f:39:6b: 91:45:b0:58:e2:e7:e9:d0:f0:ef:8b:1a:e4:73:86: 04:6a:f7:65:d3:b1:66:e9:0d:ae:46:0a:49:c1:83: 99:b1:e5:2f:e5:0f:c1:98:f1:9f:a8:b7:c4:27:2b: 21:7b:5c:cb:bb:e0:bb:a3:04:07:10:45:c5:45:62: 00:18:84:67:29:93:0d:b5:b7:cf:5f:d9:d4:fb:b8: 99:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A2:C9:CB:F9:5B:D5:CF:82:3D:B3:4E:96:55:8F:BF:D6:08:B6:D6 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/5DE5F5603D2311F0BC3F7332C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.198.0/23 Signature Algorithm: sha256WithRSAEncryption 33:68:99:d0:f4:2e:32:87:1b:68:a4:c7:71:53:f3:13:e4:e4: 0c:0b:d3:cb:ca:65:d9:ce:76:56:84:c4:32:3c:87:97:d0:6a: 03:ee:7b:d6:ec:22:df:27:b6:96:c6:cc:1a:38:0f:a6:15:55: d7:f8:3e:7c:35:3b:dd:fb:a5:ee:9a:b3:2b:a0:50:08:e2:7c: 70:c2:b3:00:53:79:39:be:c2:71:6d:c6:25:4c:0a:c1:9b:d0: 24:e1:42:9b:15:fe:63:1c:46:21:37:3a:e8:10:83:8c:48:be: f6:8c:11:49:39:7d:b6:a3:33:93:56:d9:14:79:a1:0d:87:4f: 91:bc:f5:1d:dc:a4:10:38:3f:ba:b6:5c:9c:dd:18:d7:5c:93: 5c:6e:4e:1a:d7:6c:cf:ec:e4:75:68:2b:0d:90:bb:2b:da:fe: ef:2d:4b:b8:35:39:9c:00:fd:4b:3a:07:bc:d0:b2:f6:fa:db: 47:a7:5f:45:d9:1a:4b:95:ea:df:3f:26:68:bb:fa:43:fb:af: 1e:48:70:30:f1:ff:c9:04:8c:f8:ee:5e:f3:94:cf:b4:20:c2: 50:c2:60:6a:5e:b6:ab:e7:c9:71:2c:bb:cf:1a:4f:06:85:8a: d1:e3:95:7b:a2:19:28:f7:38:71:b5:c3:76:68:d6:c7:0d:56: 6a:e5:65:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUwNTMwMDY1NzM2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM5NTZkZi1lOWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3J/7yLXNII/2IehdwDefIcgMkidhh3gebxKU/33ODxbq75pMy/UbLXTzd6Tn ybWDC/mobgOcpvO0TfbUXbPXMjyB8Z+MqYrA9ZoPnBMnqijPeKfiC6lO2OMC88/b ing6Z21MAdLlLqKsZqiAb4HR9LK7sqbugLns4Fs09w6L8HQZmsD3vRAi0g1t87BM tEk+tbrSz1p5KNIS+VmVCWpzRsr/+5OoGLbaiiZolifweM8fOWuRRbBY4ufp0PDv ixrkc4YEavdl07Fm6Q2uRgpJwYOZseUv5Q/BmPGfqLfEJyshe1zLu+C7owQHEEXF RWIAGIRnKZMNtbfPX9nU+7iZjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEuiycv5 W9XPgj2zTpZVj7/WCLbWMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQjdGODE5NTgzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNURFNUY1NjAz RDIzMTFGMEJDM0Y3MzMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGg+sYwDQYJKoZIhvcNAQELBQADggEBADNomdD0LjKHG2ik x3FT8xPk5AwL08vKZdnOdlaExDI8h5fQagPue9bsIt8ntpbGzBo4D6YVVdf4Pnw1 O937pe6asyugUAjifHDCswBTeTm+wnFtxiVMCsGb0CThQpsV/mMcRiE3OugQg4xI vvaMEUk5fbajM5NW2RR5oQ2HT5G89R3cpBA4P7q2XJzdGNdck1xuThrXbM/s5HVo Kw2Quyva/u8tS7g1OZwA/Us6B7zQsvb620enX0XZGkuV6t8/Jmi7+kP7rx5IcDDx /8kEjPjuXvOUz7QgwlDCYGpetqvnyXEsu88aTwaFitHjlXuiGSj3OHG1w3Zo1scN VmrlZbk= -----END CERTIFICATE-----Generated at Thu Jun 5 19:18:39 2025 by rpki-client