$ rpki-client -vvf rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/9A54CDE2348011F086A8BD61C4F9AE02.roa File: 9A54CDE2348011F086A8BD61C4F9AE02.roa (raw, json) Hash identifier: pT72WIe4fU0R7+0/z831L5zLkhO5BiW0L+nGv2+Kvtc= Subject key identifier: 46:EA:1F:2D:EB:61:4D:AB:CC:49:9B:96:DB:E2:B9:F2:98:23:39:20 Certificate issuer: /CN=A919874A/serialNumber=D0480FF1075052FEFEE6C08E1DBF8E83E0012788 Certificate serial: 37 Authority key identifier: D0:48:0F:F1:07:50:52:FE:FE:E6:C0:8E:1D:BF:8E:83:E0:01:27:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/9A54CDE2348011F086A8BD61C4F9AE02.roa Signing time: Mon 19 May 2025 07:12:20 +0000 ROA not before: Mon 19 May 2025 07:12:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138096 IP address blocks: 161.248.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.crl rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 06:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919874A, serialNumber=D0480FF1075052FEFEE6C08E1DBF8E83E0012788 Validity Not Before: May 19 07:12:20 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=682ad9d4-8307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:12:ea:58:95:df:fd:bd:74:90:ba:a8:77:de: 44:ff:75:d4:55:43:1f:82:72:37:17:aa:6c:26:08: 32:42:6f:f6:a0:9a:85:65:48:80:e3:7d:ea:8c:61: 58:8d:81:d6:aa:77:0f:5a:11:d8:38:9b:ab:43:9e: 18:00:4f:ac:95:6d:38:e4:11:6a:3a:79:0e:b8:b7: 2b:99:9b:72:35:94:52:fa:c7:7c:14:81:64:3b:43: 8f:b3:41:72:f8:da:8d:f9:49:d8:1e:71:e4:de:6b: f6:5f:15:fd:66:e9:7d:19:91:e3:2e:d9:64:d3:bd: 2c:6e:91:a9:39:36:fc:e9:2d:48:4b:22:f3:fb:bc: bd:b7:5b:f0:30:0c:67:36:1e:5a:b3:d5:80:3a:6c: dc:14:ce:ee:2d:4a:58:47:10:e9:50:ea:68:e6:97: 42:7d:75:5c:1a:59:cb:9e:88:96:57:99:22:55:5f: 93:a2:a9:bc:75:97:2e:4c:f0:57:69:90:a5:bc:b5: b9:e2:63:bb:bb:8c:f4:59:a6:11:dc:01:b4:01:98: 47:44:fe:c1:38:c0:a6:a2:a0:0d:75:8d:b9:4f:0a: 3b:87:30:e5:9d:ab:84:1a:bf:df:92:5a:cf:96:94: b4:d3:f6:c3:90:a6:64:a1:09:86:1c:1f:91:ee:d3: 3c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EA:1F:2D:EB:61:4D:AB:CC:49:9B:96:DB:E2:B9:F2:98:23:39:20 X509v3 Authority Key Identifier: keyid:D0:48:0F:F1:07:50:52:FE:FE:E6:C0:8E:1D:BF:8E:83:E0:01:27:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/9A54CDE2348011F086A8BD61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.117.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:01:55:d6:96:e5:2d:36:2d:5c:bd:b2:df:12:2f:dd:54:b0: 6e:99:d9:88:49:d7:69:57:3d:77:5b:0c:e2:23:b9:3c:80:df: 95:0e:01:d3:f2:4d:10:d5:41:39:f4:1f:c3:fd:58:63:c1:e8: 8e:f5:9a:dd:48:e5:25:e5:81:d8:cd:f7:8a:6d:a8:89:5a:b1: 2a:7d:76:dd:05:ac:59:02:eb:0c:ab:7b:74:e5:29:ec:a7:95: 0a:bc:67:27:cc:a0:e1:05:3e:15:73:56:c7:0f:c4:be:48:49: e2:53:98:b4:92:16:8f:83:af:c7:49:58:f4:c2:f1:82:1a:7e: 7e:68:e7:6c:10:5c:e1:a4:b8:d5:63:ad:ea:7d:87:2b:c8:b3: 63:92:20:96:11:2c:58:bb:3d:aa:5a:78:9d:9b:dd:e5:87:f1: bc:f3:74:a6:88:90:f1:5c:d6:84:59:20:b1:cc:ce:4b:d6:fa: 15:58:d5:c6:5c:2e:67:30:f2:7b:a6:31:4c:7a:b4:8c:a0:d8: 81:68:3f:8d:33:f8:2b:94:33:e9:51:63:46:20:98:a2:59:13: 58:51:1f:de:50:1c:a9:48:69:09:7a:20:45:57:a5:15:56:5e: 48:b2:68:1d:09:d8:26:43:79:50:39:d7:88:d5:10:62:61:ba: 27:59:19:03 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODc0QTExMC8GA1UEBRMoRDA0ODBGRjEwNzUwNTJGRUZFRTZDMDhFMURCRjhFODNF MDAxMjc4ODAeFw0yNTA1MTkwNzEyMjBaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmFkOWQ0LTgzMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjEupYld/9vXSQuqh33kT/ddRVQx+CcjcXqmwmCDJCb/agmoVlSIDjfeqMYViN gdaqdw9aEdg4m6tDnhgAT6yVbTjkEWo6eQ64tyuZm3I1lFL6x3wUgWQ7Q4+zQXL4 2o35SdgeceTea/ZfFf1m6X0ZkeMu2WTTvSxukak5NvzpLUhLIvP7vL23W/AwDGc2 Hlqz1YA6bNwUzu4tSlhHEOlQ6mjml0J9dVwaWcueiJZXmSJVX5Oiqbx1ly5M8Fdp kKW8tbniY7u7jPRZphHcAbQBmEdE/sE4wKaioA11jblPCjuHMOWdq4Qav9+SWs+W lLTT9sOQpmShCYYcH5Hu0zyxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURuofLeth TavMSZuW2+K58pgjOSAwHwYDVR0jBBgwFoAU0EgP8QdQUv7+5sCOHb+Og+ABJ4gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NzRBL0VDRTE2NkQ0RUFE MzExRUZCMUM0Q0M1NUM0RjlBRTAyLzBFZ1A4UWRRVXY3LTVzQ09IYi1PZy1BQko0 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMEVnUDhRZFFVdjctNXNDT0hiLU9nLUFCSjRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc0QS9FQ0UxNjZENEVBRDMxMUVGQjFDNENDNTVDNEY5QUUwMi85QTU0Q0RFMjM0 ODAxMUYwODZBOEJENjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH4dTANBgkqhkiG9w0BAQsFAAOCAQEAOgFV1pblLTYtXL2y 3xIv3VSwbpnZiEnXaVc9d1sM4iO5PIDflQ4B0/JNENVBOfQfw/1YY8HojvWa3Ujl JeWB2M33im2oiVqxKn123QWsWQLrDKt7dOUp7KeVCrxnJ8yg4QU+FXNWxw/EvkhJ 4lOYtJIWj4Ovx0lY9MLxghp+fmjnbBBc4aS41WOt6n2HK8izY5IglhEsWLs9qlp4 nZvd5YfxvPN0poiQ8VzWhFkgsczOS9b6FVjVxlwuZzDye6YxTHq0jKDYgWg/jTP4 K5Qz6VFjRiCYolkTWFEf3lAcqUhpCXogRVelFVZeSLJoHQnYJkN5UDnXiNUQYmG6 J1kZAw== -----END CERTIFICATE-----Generated at Thu Jun 5 17:51:52 2025 by rpki-client