$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/46F07DE2BECC11EF8B106213C4F9AE02.roa File: 46F07DE2BECC11EF8B106213C4F9AE02.roa (raw, json) Hash identifier: G0jMrMH21eAUA/cjp2WPKqbHaywt2Ep3opCnxDMVRXs= Subject key identifier: A2:61:2A:6D:11:0B:6A:BC:5B:8B:A8:6C:EF:F1:00:59:3C:F9:A4:13 Certificate issuer: /CN=A918C287/serialNumber=D8B1E2389BA591FD79B9A504AF5A44DAE0A6E828 Certificate serial: 26 Authority key identifier: D8:B1:E2:38:9B:A5:91:FD:79:B9:A5:04:AF:5A:44:DA:E0:A6:E8:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/46F07DE2BECC11EF8B106213C4F9AE02.roa Signing time: Fri 20 Dec 2024 12:16:44 +0000 ROA not before: Fri 20 Dec 2024 12:16:44 +0000 ROA not after: Sat 01 May 2038 00:00:00 +0000 asID: 55471 IP address blocks: 203.176.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.crl rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 08:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C287, serialNumber=D8B1E2389BA591FD79B9A504AF5A44DAE0A6E828 Validity Not Before: Dec 20 12:16:44 2024 GMT Not After : May 1 00:00:00 2038 GMT Subject: CN=6765602c-b635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e2:d0:ee:6c:21:93:92:cc:03:16:98:1d:7d: 08:61:71:c3:93:2c:d2:6c:6a:b9:a2:da:7f:d0:00: a9:59:35:a9:39:fb:6c:46:f4:0d:35:2d:f7:6a:41: 60:29:90:c6:01:2b:a7:b4:8d:c3:81:31:a0:2a:c4: 31:dc:58:16:5f:28:c4:58:1a:97:a8:ac:98:da:c6: 14:dd:29:5d:a1:59:b2:9e:44:df:4b:e5:ee:45:f1: bc:88:27:be:68:8f:84:bb:0e:0b:93:1e:e7:16:ec: 7c:d1:52:ac:18:38:5a:eb:6c:8c:16:fa:d4:a2:ba: d2:ea:97:36:88:04:31:b9:22:78:af:25:a4:04:b7: d5:97:39:63:71:26:43:c8:a6:75:1b:58:46:1e:90: 4a:cc:d9:3b:56:d6:29:f6:0a:ab:7c:15:cf:4e:c9: ff:ba:df:71:15:7a:9a:27:84:ff:99:a5:f4:9b:cd: 6c:b4:e0:86:71:0f:8a:fa:ee:08:ed:60:07:8f:f2: 7a:8c:a7:69:ca:c8:47:d1:f0:0e:33:30:0b:b1:71: 2a:19:85:a6:8a:b6:ea:3b:eb:38:a2:41:d9:00:dd: c9:f6:1f:52:d5:ea:c2:9a:7e:da:80:cd:d7:9c:c6: a4:e7:2d:c7:0b:e5:32:12:b3:4f:02:0c:91:bc:f9: 90:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:61:2A:6D:11:0B:6A:BC:5B:8B:A8:6C:EF:F1:00:59:3C:F9:A4:13 X509v3 Authority Key Identifier: keyid:D8:B1:E2:38:9B:A5:91:FD:79:B9:A5:04:AF:5A:44:DA:E0:A6:E8:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/46F07DE2BECC11EF8B106213C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.176.189.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e3:83:53:17:1b:68:eb:10:3d:df:3c:5f:7b:72:dd:da:d6: 70:16:a4:2a:3e:3b:7f:ae:dc:9b:0f:6d:07:65:54:08:7c:53: fa:5e:2b:68:20:51:1f:ff:b9:a6:0e:1a:86:5b:09:bc:52:01: 62:81:b4:68:5b:cb:a7:e1:2a:ae:4e:6b:b7:cb:c6:b4:97:7e: 09:db:35:fd:58:bf:24:da:67:83:96:cf:56:dd:47:76:83:1d: 6d:21:03:83:cf:61:12:c1:25:40:76:5b:04:6a:52:96:93:c7: d7:aa:d5:7f:a7:c2:b6:7e:7e:de:65:87:f0:a1:41:fb:fa:67: 23:82:1d:13:8c:3f:a9:d5:e7:f6:56:30:10:4c:57:52:c0:56: 2c:4a:c6:05:8f:2d:80:97:73:e7:b1:3c:07:75:cf:f3:64:b9: d9:07:1b:f4:d3:27:b5:46:42:88:c9:6c:c1:2b:35:8c:b3:37: 57:97:54:73:f3:8c:8a:62:3f:93:8a:54:96:92:a9:3b:6b:2c: e6:e5:ef:c2:ff:8c:c7:dd:c6:12:2e:e9:d2:9d:57:dc:f7:04: 30:ec:83:d8:ad:54:e6:54:0d:32:38:d2:52:53:53:fc:84:76: 9f:14:c6:ad:18:92:0b:51:88:db:91:1d:07:a5:b4:6d:7b:91: ea:a6:3a:64 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzI4NzExMC8GA1UEBRMoRDhCMUUyMzg5QkE1OTFGRDc5QjlBNTA0QUY1QTQ0REFF MEE2RTgyODAeFw0yNDEyMjAxMjE2NDRaFw0zODA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NjU2MDJjLWI2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN4tDubCGTkswDFpgdfQhhccOTLNJsarmi2n/QAKlZNak5+2xG9A01LfdqQWAp kMYBK6e0jcOBMaAqxDHcWBZfKMRYGpeorJjaxhTdKV2hWbKeRN9L5e5F8byIJ75o j4S7DguTHucW7HzRUqwYOFrrbIwW+tSiutLqlzaIBDG5InivJaQEt9WXOWNxJkPI pnUbWEYekErM2TtW1in2Cqt8Fc9Oyf+633EVeponhP+ZpfSbzWy04IZxD4r67gjt YAeP8nqMp2nKyEfR8A4zMAuxcSoZhaaKtuo76ziiQdkA3cn2H1LV6sKaftqAzdec xqTnLccL5TISs08CDJG8+ZDzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUomEqbREL arxbi6hs7/EAWTz5pBMwHwYDVR0jBBgwFoAU2LHiOJulkf15uaUEr1pE2uCm6Cgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMjg3LzMwN0NGRjFFQjM3 NzExRUZCOTE4NEQ3QUM0RjlBRTAyLzJMSGlPSnVsa2YxNXVhVUVyMXBFMnVDbTZD Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkxIaU9KdWxrZjE1dWFVRXIxcEUydUNtNkNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzI4Ny8zMDdDRkYxRUIzNzcxMUVGQjkxODREN0FDNEY5QUUwMi80NkYwN0RFMkJF Q0MxMUVGOEIxMDYyMTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMuwvTANBgkqhkiG9w0BAQsFAAOCAQEAm+ODUxcbaOsQPd88 X3ty3drWcBakKj47f67cmw9tB2VUCHxT+l4raCBRH/+5pg4ahlsJvFIBYoG0aFvL p+Eqrk5rt8vGtJd+Cds1/Vi/JNpng5bPVt1HdoMdbSEDg89hEsElQHZbBGpSlpPH 16rVf6fCtn5+3mWH8KFB+/pnI4IdE4w/qdXn9lYwEExXUsBWLErGBY8tgJdz57E8 B3XP82S52Qcb9NMntUZCiMlswSs1jLM3V5dUc/OMimI/k4pUlpKpO2ss5uXvwv+M x93GEi7p0p1X3PcEMOyD2K1U5lQNMjjSUlNT/IR2nxTGrRiSC1GI25EdB6W0bXuR 6qY6ZA== -----END CERTIFICATE-----Generated at Mon Oct 27 17:12:57 2025 by rpki-client