$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E16B0EE689C611EEB959850BC4F9AE02.roa File: E16B0EE689C611EEB959850BC4F9AE02.roa (raw, json) Hash identifier: DcbR+lf7PK/8DtJe8w7klwWX+CBgzKOslu109hNVIOw= Subject key identifier: 97:20:8A:A2:DB:E0:E6:73:91:9A:26:6F:E6:A0:BC:4A:CC:84:E1:D7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B937 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E16B0EE689C611EEB959850BC4F9AE02.roa Signing time: Thu 08 May 2025 16:27:36 +0000 ROA not before: Thu 08 May 2025 16:27:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151711 IP address blocks: 116.199.204.0/24 maxlen: 24 2001:df3:1a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47415 (0xb937) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:27:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdb78-4614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:31:1f:ef:0f:13:6f:fe:d2:34:a1:ee:07:37: de:7e:ee:a5:59:3e:54:7f:94:a6:a6:20:d6:de:d6: d2:b9:c3:fe:c8:1e:88:9d:94:d9:a4:5e:8e:ec:7a: 16:13:be:43:7e:c6:db:f2:f7:ab:7a:60:85:32:23: fd:a1:c7:f0:8d:98:bd:31:17:cc:a9:13:3d:f5:e5: 8e:67:59:b8:a5:ab:fa:20:12:fe:0a:ea:2e:39:be: da:8c:91:49:e4:bc:35:01:6a:a0:5e:3c:fc:03:60: 5f:4b:19:5f:e2:75:99:88:27:f7:70:2f:b4:b6:4a: 7c:9c:0e:fb:c2:b4:13:b8:c0:dc:fb:da:6e:ba:46: d2:42:0f:f1:49:72:fb:a7:48:ba:1f:96:ae:a8:c5: ff:78:9c:54:a8:54:9f:f9:9c:01:07:f0:76:83:b7: 2d:04:8b:5d:f8:fd:85:08:51:f2:83:e0:2d:23:17: b9:e1:b0:a2:7c:3b:2d:f5:6f:d4:6b:74:d8:dd:fb: d3:f6:f2:38:48:3c:c3:d9:95:28:4c:c0:d6:e3:5f: c0:af:da:d5:28:a8:22:ed:fe:0c:fc:82:a0:4a:30: 15:c4:82:f2:6e:48:90:4d:b8:b4:da:96:e5:db:3f: 44:52:26:21:58:52:a6:43:a4:3f:72:c3:3e:f3:b6: 61:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:20:8A:A2:DB:E0:E6:73:91:9A:26:6F:E6:A0:BC:4A:CC:84:E1:D7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E16B0EE689C611EEB959850BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.199.204.0/24 IPv6: 2001:df3:1a40::/48 Signature Algorithm: sha256WithRSAEncryption 03:e1:2d:87:67:3a:14:77:07:2e:82:91:f9:04:fd:c2:c2:70: 76:09:5b:58:d1:f0:af:b4:cc:f8:87:3a:ea:20:95:e5:f6:6e: 9d:2e:80:cf:12:ff:28:53:bd:e4:46:36:48:f4:75:d5:7d:3c: fc:d7:9d:01:0a:85:58:57:47:69:c7:84:0d:e6:c6:37:72:c0: 6b:12:7e:56:e2:78:df:56:af:c4:96:cf:66:91:32:6a:7f:34: 33:b8:e5:4b:ef:27:79:c0:ce:c8:36:f6:90:2e:5a:ac:2b:1b: 83:8e:09:0c:f5:aa:dc:04:59:f1:2e:ed:a0:4a:e8:b1:49:c8: 84:7f:35:fc:d4:17:c3:33:5e:28:0d:6b:c5:65:04:18:99:62: ab:c9:7a:d6:54:c7:34:f6:53:8c:94:13:9d:f7:3b:ee:89:5b: 65:cb:53:66:d8:26:fd:95:b1:8e:27:d2:66:88:f9:1e:c4:2b: be:df:51:b6:27:25:24:b6:2c:00:16:b2:8f:bc:7c:9e:24:4b: 9e:a8:1f:fb:19:29:38:6f:73:ab:e5:f1:de:90:e3:de:f8:4c: ac:ee:26:76:9c:a2:e1:3e:0c:ed:81:8f:f5:83:c3:c5:5a:0a: 00:0a:90:45:73:5c:e5:07:86:94:35:3f:40:96:9b:59:fe:b1: e3:0e:d3:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALk3MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjczNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiNzgtNDYxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJUxH+8PE2/+0jSh7gc33n7upVk+VH+UpqYg1t7W0rnD/sgeiJ2U2aRejux6 FhO+Q37G2/L3q3pghTIj/aHH8I2YvTEXzKkTPfXljmdZuKWr+iAS/grqLjm+2oyR SeS8NQFqoF48/ANgX0sZX+J1mYgn93AvtLZKfJwO+8K0E7jA3PvabrpG0kIP8Uly +6dIuh+WrqjF/3icVKhUn/mcAQfwdoO3LQSLXfj9hQhR8oPgLSMXueGwonw7LfVv 1Gt02N370/byOEg8w9mVKEzA1uNfwK/a1SioIu3+DPyCoEowFcSC8m5IkE24tNqW 5ds/RFImIVhSpkOkP3LDPvO2YSMCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBSXIIqi 2+Dmc5GaJm/moLxKzITh1zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0UxNkIwRUU2 ODlDNjExRUVCOTU5ODUwQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAdMfMMA8EAgACMAkDBwAgAQ3zGkAwDQYJKoZIhvcNAQEL BQADggEBAAPhLYdnOhR3By6CkfkE/cLCcHYJW1jR8K+0zPiHOuogleX2bp0ugM8S /yhTveRGNkj0ddV9PPzXnQEKhVhXR2nHhA3mxjdywGsSflbieN9Wr8SWz2aRMmp/ NDO45UvvJ3nAzsg29pAuWqwrG4OOCQz1qtwEWfEu7aBK6LFJyIR/NfzUF8MzXigN a8VlBBiZYqvJetZUxzT2U4yUE533O+6JW2XLU2bYJv2VsY4n0maI+R7EK77fUbYn JSS2LAAWso+8fJ4kS56oH/sZKThvc6vl8d6Q4974TKzuJnacouE+DO2Bj/WDw8Va CgAKkEVzXOUHhpQ1P0CWm1n+seMO02o= -----END CERTIFICATE-----Generated at Fri Jun 6 20:00:51 2025 by rpki-client