$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa File: 653B503C5C3C11ED9B4FAB0BC4F9AE02.roa (raw, json) Hash identifier: 1mD7CDJ8DRk+lM8vtNVrHgkyHQbdyBW6ydIVEiLBivE= Subject key identifier: 88:D1:47:31:16:06:86:E9:BE:7C:B4:B9:C5:DA:2A:13:85:1C:87:27 Certificate issuer: /CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Certificate serial: 0838 Authority key identifier: 07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa Signing time: Fri 02 May 2025 21:32:43 +0000 ROA not before: Fri 02 May 2025 21:32:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 149.234.185.0/24 maxlen: 24 149.234.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 20:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2104 (0x838) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Validity Not Before: May 2 21:32:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681539fb-1ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:01:59:d0:7b:e1:05:d4:da:e5:c9:71:d4:3a: 7d:3a:43:4b:c1:da:61:d8:69:15:cf:21:4c:59:c6: 34:fc:73:2d:91:bd:69:67:ed:84:2a:8f:d4:96:55: 20:76:de:e7:3b:49:dd:35:94:5a:90:37:96:1d:3b: 9c:1c:0c:eb:11:3b:86:4e:77:59:25:f0:c3:b1:c4: 69:ed:52:d5:6c:50:47:24:a3:c6:22:2e:f7:96:1d: 85:22:44:99:c1:24:bb:c1:53:a5:41:ab:20:23:03: 36:a2:ec:b8:ac:b1:d3:3f:d9:e8:74:be:d7:b4:51: 2d:1c:f3:2c:b5:0f:c1:65:72:4c:76:aa:ed:26:d2: 6a:02:a6:b2:66:17:00:52:cd:61:0f:94:ab:6c:da: 57:41:6f:08:c0:50:1b:bd:51:8f:d7:37:29:bc:1c: 0e:11:29:14:63:8c:88:0d:96:7b:f6:4d:52:45:3d: dc:f1:f7:00:1d:7a:f7:48:46:77:d9:ba:f3:df:67: d4:cd:d2:a2:92:fe:56:d3:bc:5d:ba:e7:1b:f2:4b: 75:fe:6c:4f:55:67:b7:d8:38:13:fd:40:bd:f7:50: 75:b9:2b:15:91:1d:5f:40:b7:13:dc:f7:1c:f6:f7: e6:7a:37:67:42:1c:e6:f2:c7:51:39:46:20:cb:e1: 04:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D1:47:31:16:06:86:E9:BE:7C:B4:B9:C5:DA:2A:13:85:1C:87:27 X509v3 Authority Key Identifier: keyid:07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.185.0/24 149.234.187.0/24 Signature Algorithm: sha256WithRSAEncryption cc:d5:73:41:ea:ad:69:0f:c5:0b:fc:05:13:94:39:f1:13:8a: 3c:c0:81:b2:84:9a:61:08:73:c6:36:6b:3c:a3:e4:5a:64:de: 7d:90:b5:cb:c9:29:37:32:02:14:b5:14:24:77:cd:20:d4:08: ca:e9:d0:2a:ec:90:4f:78:d1:3f:15:c4:28:91:d1:40:06:69: 79:02:11:dd:60:f9:c8:19:f5:6b:e5:3e:5d:8e:d6:33:5d:4d: 10:38:38:a6:21:d3:87:30:d6:51:b8:88:41:ce:7c:94:70:3e: 12:26:57:10:58:2b:ab:45:04:1a:65:03:18:3b:7f:d5:f6:d3: b5:48:68:1d:96:9c:44:1f:fe:cf:f7:10:d3:24:a3:94:60:dd: 19:14:5c:40:15:ca:10:23:ba:ae:11:f8:c4:54:1e:f2:f0:8c: df:63:b3:36:8c:79:13:b2:46:1a:14:e4:ea:ba:80:4a:e3:29: 34:92:89:c2:ee:6c:a1:ff:03:8f:c3:88:b8:82:56:77:c4:72: 49:04:0f:ba:94:6f:eb:40:55:7f:5b:c1:7c:1e:54:aa:13:92: 5d:a4:2e:fc:36:68:83:b0:97:3d:76:65:3b:e1:4e:c1:36:02: 67:44:44:ed:08:11:1d:84:33:b5:8a:a1:89:f6:ee:cf:f8:b6: d6:e0:f6:4d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDA3MjdBQUM1QjhDRjdGRTY4Q0NENkRFNzdGNkM4QjQ2 RDU3NEZBQTcwHhcNMjUwNTAyMjEzMjQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzlmYi0xZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QFZ0HvhBdTa5clx1Dp9OkNLwdph2GkVzyFMWcY0/HMtkb1pZ+2EKo/UllUg dt7nO0ndNZRakDeWHTucHAzrETuGTndZJfDDscRp7VLVbFBHJKPGIi73lh2FIkSZ wSS7wVOlQasgIwM2ouy4rLHTP9nodL7XtFEtHPMstQ/BZXJMdqrtJtJqAqayZhcA Us1hD5SrbNpXQW8IwFAbvVGP1zcpvBwOESkUY4yIDZZ79k1SRT3c8fcAHXr3SEZ3 2brz32fUzdKikv5W07xduucb8kt1/mxPVWe32DgT/UC991B1uSsVkR1fQLcT3Pcc 9vfmejdnQhzm8sdROUYgy+EEkQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIjRRzEW Bobpvny0ucXaKhOFHIcnMB8GA1UdIwQYMBaAFAcnqsW4z3/mjM1t539si0bVdPqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GNEJENTAwOEUw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9CeWVxeGJqUGYtYU16VzNuZjJ5TFJ0VjAt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5ZXF4YmpQZi1hTXpXM25mMnlMUnRWMC1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4M0IvRjRCRDUwMDhFMDIzMTFFQTk5MjJERTQyQzRGOUFFMDIvNjUzQjUwM0M1 QzNDMTFFRDlCNEZBQjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACV6rkDBACV6rswDQYJKoZIhvcNAQELBQADggEBAMzVc0Hq rWkPxQv8BROUOfETijzAgbKEmmEIc8Y2azyj5Fpk3n2QtcvJKTcyAhS1FCR3zSDU CMrp0CrskE940T8VxCiR0UAGaXkCEd1g+cgZ9WvlPl2O1jNdTRA4OKYh04cw1lG4 iEHOfJRwPhImVxBYK6tFBBplAxg7f9X207VIaB2WnEQf/s/3ENMko5Rg3RkUXEAV yhAjuq4R+MRUHvLwjN9jszaMeROyRhoU5Oq6gErjKTSSicLubKH/A4/DiLiCVnfE ckkED7qUb+tAVX9bwXweVKoTkl2kLvw2aIOwlz12ZTvhTsE2AmdERO0IER2EM7WK oYn27s/4ttbg9k0= -----END CERTIFICATE-----Generated at Wed May 7 16:25:23 2025 by rpki-client