$ rpki-client -vvf rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/2B1A3764302A11F0B211AD0BC4F9AE02.roa File: 2B1A3764302A11F0B211AD0BC4F9AE02.roa (raw, json) Hash identifier: 5PpNOEZEUrmc1vn5FvjeokwBWv9BOPfyJY3ybR1sQKs= Subject key identifier: D9:14:90:30:F5:CA:BB:F8:D4:41:3C:8A:DE:8E:B4:FA:24:E1:2C:38 Certificate issuer: /CN=A918E269/serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Certificate serial: 0A Authority key identifier: 4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/2B1A3764302A11F0B211AD0BC4F9AE02.roa Signing time: Tue 13 May 2025 18:43:32 +0000 ROA not before: Tue 13 May 2025 18:43:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150142 IP address blocks: 163.227.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:47:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E269, serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Validity Not Before: May 13 18:43:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=682392d4-bace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9b:6e:9d:f0:99:d8:50:2d:72:fb:fb:e0:22: d5:a2:e7:6d:37:e8:f1:95:d4:65:e3:f1:93:61:92: c6:62:88:1d:e5:b0:9c:a3:ef:74:2c:ae:f1:32:f8: 9e:77:63:e5:41:32:a0:fc:e6:57:b5:55:f5:40:e0: b4:c6:10:40:6d:b5:79:ac:4a:2a:28:7c:2a:23:b4: 64:9f:ce:e2:4b:66:9d:26:74:19:d4:f7:71:2c:95: b2:f2:dd:12:17:36:02:71:95:1d:af:f0:8a:c9:7b: ce:82:f1:61:96:b2:a0:04:10:1c:0e:82:fd:2f:46: 05:df:81:b6:9e:58:20:a5:d5:c7:15:c3:7f:a1:80: 5f:0f:f3:6c:92:7c:e3:9d:e1:61:1a:1b:87:07:0d: 4f:f7:51:36:05:c4:0d:71:f6:4c:90:7c:a6:69:f1: 64:21:c7:cd:5a:ea:a8:b8:93:ce:48:3f:ff:f1:64: db:ce:f9:8d:2a:ca:c4:3c:90:b4:1f:cc:a1:34:d3: c2:4b:6c:a3:b7:52:17:1c:75:81:93:ee:38:74:01: 74:39:40:12:12:31:50:66:f7:77:13:86:b0:3c:92: 17:ce:f9:03:e7:df:38:49:82:dd:de:ac:16:ba:41: 8d:10:29:50:7b:a6:90:b2:d6:cc:ce:80:0e:3f:65: 7f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:14:90:30:F5:CA:BB:F8:D4:41:3C:8A:DE:8E:B4:FA:24:E1:2C:38 X509v3 Authority Key Identifier: keyid:4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/2B1A3764302A11F0B211AD0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.238.0/24 Signature Algorithm: sha256WithRSAEncryption 15:1d:d5:19:39:8d:2a:97:00:48:ae:b1:73:8e:0e:8c:a4:f9: ff:d5:b7:01:94:20:a2:94:ef:c4:6d:a2:9d:78:40:27:ea:e5: 6d:cd:c5:90:fa:57:ff:62:fb:fc:44:13:c3:7c:b3:b9:b9:10: b0:b2:7f:ac:bc:92:6e:b1:8f:30:cb:1b:4a:77:aa:38:c9:61: 62:70:45:b5:c6:39:ff:9b:44:db:bf:2c:e8:4b:78:c3:9f:d8: ed:0f:40:7b:ad:72:c1:9c:e1:8b:dc:32:06:3b:97:28:f0:4b: 25:cd:0f:c9:3c:ec:4e:25:f7:19:07:b2:5f:17:b6:1d:8d:07: ef:e0:9a:c0:37:43:44:61:84:8a:0f:30:05:1e:a4:68:de:52: f9:3a:ac:90:ec:9b:8e:83:1e:fa:52:da:9f:18:fa:88:05:d1: 26:c3:64:37:c9:ca:f4:1d:d6:95:07:42:8c:36:21:67:53:fd: 29:3f:e0:35:09:ed:a3:4c:41:ed:66:a2:04:ca:ac:f1:a8:ef: 49:8a:85:1c:43:ee:93:cd:53:c1:0d:ab:8a:61:12:11:18:a3: 74:97:6c:e9:d6:41:fe:e2:75:b9:34:4c:a7:a2:ff:ec:60:fa: 47:74:55:28:37:8c:4d:c1:7e:87:82:94:7e:2f:9e:90:d1:2a: e3:cd:79:14 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI2OTExMC8GA1UEBRMoNEJFMTA3MzkzNjI1MkUzQ0YwNzJGOTg5RDdGREM0RTdF N0M2NjI3NDAeFw0yNTA1MTMxODQzMzJaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjM5MmQ0LWJhY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIm26d8JnYUC1y+/vgItWi52036PGV1GXj8ZNhksZiiB3lsJyj73QsrvEy+J53 Y+VBMqD85le1VfVA4LTGEEBttXmsSioofCojtGSfzuJLZp0mdBnU93EslbLy3RIX NgJxlR2v8IrJe86C8WGWsqAEEBwOgv0vRgXfgbaeWCCl1ccVw3+hgF8P82ySfOOd 4WEaG4cHDU/3UTYFxA1x9kyQfKZp8WQhx81a6qi4k85IP//xZNvO+Y0qysQ8kLQf zKE008JLbKO3UhccdYGT7jh0AXQ5QBISMVBm93cThrA8khfO+QPn3zhJgt3erBa6 QY0QKVB7ppCy1szOgA4/ZX8vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2RSQMPXK u/jUQTyK3o60+iThLDgwHwYDVR0jBBgwFoAUS+EHOTYlLjzwcvmJ1/3E5+fGYnQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjY5LzM5M0JBOENFMkI2 RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6d2N2bUoxXzNFNS1mR1lu US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUy1FSE9UWWxManp3Y3ZtSjFfM0U1LWZHWW5RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI2OS8zOTNCQThDRTJCNkYxMUYwODZBREU1NEVDNEY5QUUwMi8yQjFBMzc2NDMw MkExMUYwQjIxMUFEMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKPj7jANBgkqhkiG9w0BAQsFAAOCAQEAFR3VGTmNKpcASK6x c44OjKT5/9W3AZQgopTvxG2inXhAJ+rlbc3FkPpX/2L7/EQTw3yzubkQsLJ/rLyS brGPMMsbSneqOMlhYnBFtcY5/5tE278s6Et4w5/Y7Q9Ae61ywZzhi9wyBjuXKPBL Jc0PyTzsTiX3GQeyXxe2HY0H7+CawDdDRGGEig8wBR6kaN5S+TqskOybjoMe+lLa nxj6iAXRJsNkN8nK9B3WlQdCjDYhZ1P9KT/gNQnto0xB7WaiBMqs8ajvSYqFHEPu k81TwQ2rimESERijdJds6dZB/uJ1uTRMp6L/7GD6R3RVKDeMTcF+h4KUfi+ekNEq 4815FA== -----END CERTIFICATE-----Generated at Mon Jun 2 06:34:00 2025 by rpki-client