$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/7E10232C1F3411F0BFBD616EC4F9AE02.roa File: 7E10232C1F3411F0BFBD616EC4F9AE02.roa (raw, json) Hash identifier: ziKAkTq8TDHqlAMGRhZZxal4YT5BAAI3FkEOnc8uPao= Subject key identifier: 2A:7D:28:F4:4C:1A:21:2D:AB:F3:92:23:C7:C7:B1:AE:7C:07:74:88 Certificate issuer: /CN=A914DA9E/serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Certificate serial: 04 Authority key identifier: 66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/7E10232C1F3411F0BFBD616EC4F9AE02.roa Signing time: Tue 22 Apr 2025 04:48:54 +0000 ROA not before: Tue 22 Apr 2025 04:48:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137193 IP address blocks: 163.227.118.0/23 maxlen: 24 2401:ff20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA9E, serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Validity Not Before: Apr 22 04:48:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68071fb6-d6ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f1:f8:39:c7:0b:b8:a1:f3:13:47:f9:4b:3a: 36:e9:07:44:be:55:3c:7d:8b:91:de:3a:e5:fc:f4: 34:c8:73:83:e0:47:7a:4b:7e:a3:c5:b3:fb:2b:07: 8f:b3:12:e3:22:c9:a3:bb:6e:b5:a0:12:b7:5b:59: c7:e2:0e:7d:b4:8b:5e:ca:61:49:4f:75:48:38:a8: 9e:82:b4:61:8f:e7:8f:11:d1:e5:37:04:6a:9f:c7: 3c:78:b3:b3:bd:c7:1c:13:ce:e3:8a:2c:1d:a4:8e: 10:c9:6e:25:1a:0e:2a:2c:1d:65:00:1e:48:4f:ea: b7:c7:2d:e3:32:ff:ba:dd:8b:d9:66:a2:40:97:b2: 66:52:96:12:5e:c7:aa:6b:b2:8d:f4:64:43:85:83: 84:00:dd:5d:13:89:a0:91:8e:eb:20:e4:41:81:b3: dc:12:60:1c:23:1e:c8:2b:b4:f2:ea:cd:81:a3:d3: 54:7a:a9:00:27:f5:b1:a4:70:d0:3d:e7:1d:24:28: 29:25:3c:44:4f:6a:33:8c:80:85:8d:ac:fb:0e:45: 17:3a:d1:39:82:25:3f:5b:15:6b:42:0a:85:e8:03: 1a:35:14:06:09:50:71:54:98:e3:a4:68:1e:cd:d7: df:09:e9:a2:35:a8:5a:77:af:c4:1f:1e:b4:aa:11: 73:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7D:28:F4:4C:1A:21:2D:AB:F3:92:23:C7:C7:B1:AE:7C:07:74:88 X509v3 Authority Key Identifier: keyid:66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/7E10232C1F3411F0BFBD616EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.118.0/23 IPv6: 2401:ff20::/32 Signature Algorithm: sha256WithRSAEncryption b1:8a:f1:a6:95:bf:69:e3:25:bf:10:ee:a6:87:8e:2d:ea:60: 24:f1:93:aa:39:9b:73:0a:58:0b:05:eb:7c:5d:ac:da:27:c1: 5a:60:37:c9:79:2f:b0:b7:d0:0c:87:dc:25:f8:85:39:99:be: c7:ff:a4:61:c7:64:86:cf:a7:55:27:0f:09:64:0c:38:f1:64: ae:c4:f4:1f:21:df:9f:c7:c1:f4:9c:07:36:32:8e:b3:3a:8a: 71:44:f7:59:42:4c:00:79:62:ae:a8:1d:fa:ab:f6:43:05:e9: 40:78:89:19:39:60:4b:e8:10:d2:20:97:f9:da:ab:e8:be:9f: 65:b7:6c:6e:f0:e0:c8:6b:45:5c:5a:c1:da:9e:9f:94:d3:bf: 35:a0:45:2f:e1:9d:8a:14:c9:e1:ff:3d:8f:3c:7e:e7:1d:1c: 1a:e2:18:f9:bd:d4:ff:78:89:9c:1e:8b:e5:2f:d0:ad:78:88: 9b:af:ca:c3:18:7c:cb:b0:cc:d5:89:bc:77:c0:c9:cf:8c:56: e2:3c:f1:43:55:f1:bd:2a:06:e6:62:43:44:b2:3b:5c:c6:ab: 59:fd:ed:b0:50:d7:ca:7c:94:c3:63:43:88:91:76:24:7f:2c: ab:c5:21:8a:f2:7e:fb:ff:c5:e5:40:d4:07:a1:a4:32:14:40: 3e:55:53:d9 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 REE5RTExMC8GA1UEBRMoNjZDMzA2RDIzRjhCRkVBQUE0NENDQ0M1NTczOTY5NTFG OTg2QzZCRDAeFw0yNTA0MjIwNDQ4NTRaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDcxZmI2LWQ2YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK8fg5xwu4ofMTR/lLOjbpB0S+VTx9i5HeOuX89DTIc4PgR3pLfqPFs/srB4+z EuMiyaO7brWgErdbWcfiDn20i17KYUlPdUg4qJ6CtGGP548R0eU3BGqfxzx4s7O9 xxwTzuOKLB2kjhDJbiUaDiosHWUAHkhP6rfHLeMy/7rdi9lmokCXsmZSlhJex6pr so30ZEOFg4QA3V0TiaCRjusg5EGBs9wSYBwjHsgrtPLqzYGj01R6qQAn9bGkcNA9 5x0kKCklPERPajOMgIWNrPsORRc60TmCJT9bFWtCCoXoAxo1FAYJUHFUmOOkaB7N 198J6aI1qFp3r8QfHrSqEXP9AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUKn0o9Ewa IS2r85Ijx8exrnwHdIgwHwYDVR0jBBgwFoAUZsMG0j+L/qqkTMzFVzlpUfmGxr0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQTlFL0QxQkU4MDlDMUYz MjExRjBCRDIyQkE2OEM0RjlBRTAyL1pzTUcwai1MX3Fxa1RNekZWemxwVWZtR3hy MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNNRzBqLUxfcXFrVE16RlZ6bHBVZm1HeHIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REE5RS9EMUJFODA5QzFGMzIxMUYwQkQyMkJBNjhDNEY5QUUwMi83RTEwMjMyQzFG MzQxMUYwQkZCRDYxNkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAaPjdjANBAIAAjAHAwUAJAH/IDANBgkqhkiG9w0BAQsFAAOC AQEAsYrxppW/aeMlvxDupoeOLepgJPGTqjmbcwpYCwXrfF2s2ifBWmA3yXkvsLfQ DIfcJfiFOZm+x/+kYcdkhs+nVScPCWQMOPFkrsT0HyHfn8fB9JwHNjKOszqKcUT3 WUJMAHlirqgd+qv2QwXpQHiJGTlgS+gQ0iCX+dqr6L6fZbdsbvDgyGtFXFrB2p6f lNO/NaBFL+GdihTJ4f89jzx+5x0cGuIY+b3U/3iJnB6L5S/QrXiIm6/Kwxh8y7DM 1Ym8d8DJz4xW4jzxQ1XxvSoG5mJDRLI7XMarWf3tsFDXynyUw2NDiJF2JH8sq8Uh ivJ++//F5UDUB6GkMhRAPlVT2Q== -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:51 2025 by rpki-client