$ rpki-client -vvf rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa File: E366C4B83B2611E9906E7B81C4F9AE02.roa (raw, json) Hash identifier: 0OKa5D8R5tqflMwj5WNvymkXFrzQXgwFV3RUnRL3aD8= Subject key identifier: 56:8E:52:EF:38:52:B1:CA:19:D8:D8:AF:B9:33:7A:69:6B:97:5A:89 Certificate issuer: /CN=A9187386/serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Certificate serial: 105B Authority key identifier: DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa Signing time: Sat 31 May 2025 17:39:29 +0000 ROA not before: Sat 31 May 2025 17:39:29 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 38229 IP address blocks: 192.248.0.0/17 maxlen: 17 192.248.0.0/22 maxlen: 22 192.248.4.0/22 maxlen: 22 192.248.8.0/21 maxlen: 21 192.248.16.0/20 maxlen: 20 192.248.32.0/19 maxlen: 19 192.248.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4187 (0x105b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187386, serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Validity Not Before: May 31 17:39:29 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683b3ed1-3e15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:62:21:a7:ef:06:a6:9a:26:d7:a5:97:d9:6b: 0b:75:bb:64:eb:bf:b3:f4:03:87:20:cd:ef:67:8a: 65:cf:f4:58:5e:60:ab:cf:91:92:75:61:cd:bc:8a: d7:ed:71:74:5e:15:2d:65:04:26:dd:d1:66:8c:79: 36:e0:a2:24:e1:b8:6f:e2:99:12:36:10:4a:12:70: 94:80:e8:00:ae:3a:a7:38:a4:b8:d0:57:d3:50:38: 1a:63:64:5a:08:52:15:42:63:d4:4e:8a:97:79:bc: 5d:a1:d6:f4:83:da:55:f9:2b:58:88:09:bb:11:b4: 78:17:1d:7d:bb:00:89:87:46:83:ec:34:43:c6:d0: a0:0c:19:54:1e:7f:28:c7:b2:6d:95:a7:1f:7d:a1: 86:b1:b4:53:d6:6f:b3:28:a7:e4:0f:1f:7e:87:f0: 9d:d6:a2:96:55:52:98:ec:55:22:02:43:57:b9:12: c8:4f:07:bb:29:bf:02:7d:48:0c:a9:fe:28:6f:da: 6b:de:ee:3d:bf:14:dd:f1:22:71:9f:93:a1:3f:e8: bf:4c:d0:9d:cc:0f:2d:20:fd:f9:ff:7d:90:69:70: ce:cd:b1:c7:6a:47:bf:48:40:b6:92:94:d2:48:60: e1:73:33:fd:c3:05:fc:22:37:85:e8:f9:b5:96:e0: 69:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8E:52:EF:38:52:B1:CA:19:D8:D8:AF:B9:33:7A:69:6B:97:5A:89 X509v3 Authority Key Identifier: keyid:DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.248.0.0/17 Signature Algorithm: sha256WithRSAEncryption d9:a6:41:d9:b8:ba:f1:63:a3:92:6b:ab:eb:2d:18:32:79:33: d3:bd:0e:4b:4c:f2:a2:50:31:4e:ca:51:85:7a:97:65:1f:94: 46:6c:60:f2:6d:e9:ab:12:e7:d4:9b:63:b6:33:d6:99:1b:10: 18:54:c7:94:2a:29:b9:07:1d:6a:68:23:7e:2d:50:5a:e1:76: c9:c0:f1:5e:69:94:bf:1d:81:0d:7d:3d:6c:17:ae:74:9d:0f: ab:7b:ac:ee:17:73:d7:64:70:6f:de:b3:a6:44:74:eb:ad:69: 63:1e:b5:6f:3e:88:af:08:49:92:e9:d6:ae:cd:d0:c4:25:cc: d5:fc:80:15:de:c5:7f:aa:c4:8a:46:87:e3:29:b3:f2:55:4c: 76:63:25:ea:e9:95:8d:33:6e:3f:3a:1a:37:d5:6d:21:10:ac: 41:63:06:3a:12:b0:9c:ca:5e:34:ff:68:e1:39:ec:cc:05:39: 96:ef:69:be:59:3c:86:18:95:24:71:9d:6a:8a:af:d4:47:27: 5e:38:79:20:74:bb:22:48:03:c4:34:e1:03:b5:2f:75:c9:27: 76:6d:f2:2f:12:4c:71:aa:62:59:10:16:80:81:87:c7:03:dc: aa:e0:5e:51:91:b2:ab:cd:54:c5:8f:1f:70:ad:0e:d3:84:43: 89:f3:eb:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczODYxMTAvBgNVBAUTKERFMEM4RjQyQkNBMDVCMkY1NTgxRTZCQ0NCNEMxNEE2 RTY3MUI2MTkwHhcNMjUwNTMxMTczOTI5WhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiM2VkMS0zZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWIhp+8Gppom16WX2WsLdbtk67+z9AOHIM3vZ4plz/RYXmCrz5GSdWHNvIrX 7XF0XhUtZQQm3dFmjHk24KIk4bhv4pkSNhBKEnCUgOgArjqnOKS40FfTUDgaY2Ra CFIVQmPUToqXebxdodb0g9pV+StYiAm7EbR4Fx19uwCJh0aD7DRDxtCgDBlUHn8o x7JtlacffaGGsbRT1m+zKKfkDx9+h/Cd1qKWVVKY7FUiAkNXuRLITwe7Kb8CfUgM qf4ob9pr3u49vxTd8SJxn5OhP+i/TNCdzA8tIP35/32QaXDOzbHHake/SEC2kpTS SGDhczP9wwX8IjeF6Pm1luBpcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFaOUu84 UrHKGdjYr7kzemlrl1qJMB8GA1UdIwQYMBaAFN4Mj0K8oFsvVYHmvMtMFKbmcbYZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzM4Ni80OUNENkEzQzNC MjYxMUU5QjIwRDI2ODFDNEY5QUUwMi8zZ3lQUXJ5Z1d5OVZnZWE4eTB3VXB1Wnh0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNneVBRcnlnV3k5VmdlYTh5MHdVcHVaeHRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczODYvNDlDRDZBM0MzQjI2MTFFOUIyMEQyNjgxQzRGOUFFMDIvRTM2NkM0Qjgz QjI2MTFFOTkwNkU3QjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAfA+AAwDQYJKoZIhvcNAQELBQADggEBANmmQdm4uvFjo5Jr q+stGDJ5M9O9DktM8qJQMU7KUYV6l2UflEZsYPJt6asS59SbY7Yz1pkbEBhUx5Qq KbkHHWpoI34tUFrhdsnA8V5plL8dgQ19PWwXrnSdD6t7rO4Xc9dkcG/es6ZEdOut aWMetW8+iK8ISZLp1q7N0MQlzNX8gBXexX+qxIpGh+Mps/JVTHZjJerplY0zbj86 GjfVbSEQrEFjBjoSsJzKXjT/aOE57MwFOZbvab5ZPIYYlSRxnWqKr9RHJ144eSB0 uyJIA8Q04QO1L3XJJ3Zt8i8STHGqYlkQFoCBh8cD3KrgXlGRsqvNVMWPH3CtDtOE Q4nz698= -----END CERTIFICATE-----Generated at Wed Jun 4 12:33:35 2025 by rpki-client