$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa File: 74F996F62F2511EF8D78DC62C4F9AE02.roa (raw, json) Hash identifier: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54= Subject key identifier: 78:FE:7D:90:5A:31:D7:03:B1:97:16:F9:20:26:05:F4:4C:89:FE:37 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 010A Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa Signing time: Fri 28 Mar 2025 17:26:15 +0000 ROA not before: Fri 28 Mar 2025 17:26:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9411 IP address blocks: 158.108.0.0/16 maxlen: 16 158.108.0.0/20 maxlen: 20 158.108.16.0/20 maxlen: 20 158.108.32.0/20 maxlen: 20 158.108.48.0/20 maxlen: 20 158.108.64.0/20 maxlen: 20 158.108.80.0/20 maxlen: 20 158.108.96.0/20 maxlen: 20 158.108.112.0/20 maxlen: 20 158.108.128.0/20 maxlen: 20 158.108.144.0/20 maxlen: 20 158.108.160.0/20 maxlen: 20 158.108.176.0/20 maxlen: 20 158.108.192.0/20 maxlen: 20 158.108.208.0/20 maxlen: 20 158.108.224.0/20 maxlen: 20 158.108.240.0/20 maxlen: 20 192.102.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Mar 28 17:26:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e6dbb6-0dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:01:b8:0a:d8:cf:88:81:f3:49:a9:06:89:a3: 2e:3d:ef:ee:20:81:25:67:d6:b2:6c:53:86:7c:bf: 4e:f4:bb:55:7e:d7:ea:86:66:86:03:c3:4e:5b:65: 0c:ba:8a:48:8e:63:21:f8:16:a2:0d:0d:7c:85:2e: cc:e1:01:ff:72:af:77:b4:a0:18:a1:a8:09:8b:26: 55:bb:b7:c2:32:77:04:43:ea:02:c6:b0:a0:25:30: 76:6a:15:6c:2d:a9:34:0a:6b:49:88:e4:c5:64:78: ea:7c:d3:1b:cc:c4:fb:10:01:71:2f:51:00:9c:25: d7:bb:bc:20:2b:11:7e:08:94:7e:d8:cd:78:7f:57: 98:80:08:f6:73:c6:a6:d2:6e:da:a4:93:3c:bf:06: 76:84:1c:ec:04:dd:bf:ce:ec:5a:23:16:5f:2c:71: 57:02:69:07:c0:52:07:63:2a:61:5c:fa:17:38:0a: fa:58:e6:4c:6e:43:b2:c1:01:9c:d1:76:8e:69:51: 6b:33:d6:9d:af:6a:87:62:b4:a5:e3:37:8c:a7:7c: b3:33:d7:fc:a9:da:8e:4b:93:e8:62:7a:e3:c4:dc: f6:b9:c7:d8:b6:06:47:d2:2c:48:86:57:cf:f4:4c: 27:b4:13:9e:f1:15:c3:68:c6:5c:02:23:a8:75:12: e1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:FE:7D:90:5A:31:D7:03:B1:97:16:F9:20:26:05:F4:4C:89:FE:37 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.108.0.0/16 192.102.83.0/24 Signature Algorithm: sha256WithRSAEncryption 13:a9:9b:4d:c2:bf:e1:07:83:a6:42:f7:d2:d3:b9:a6:40:b0: 9d:72:9d:7e:4b:c0:01:3a:73:a6:2a:44:dd:70:20:92:af:d4: db:da:b2:86:a8:ae:a5:25:eb:ec:3f:4b:e4:bb:00:af:b9:36: 49:75:a7:95:33:2d:1b:7a:39:d1:c1:02:14:29:9b:7d:cf:7c: af:22:1c:93:de:d5:ef:47:a4:d4:a8:9a:2d:38:a1:08:4c:9c: c6:35:fd:eb:13:50:00:92:76:3d:44:c3:47:fb:20:96:90:e1: 19:2b:0e:ca:9d:91:ee:e3:f0:ea:4f:d4:a0:10:29:52:20:13: 16:cc:28:59:7a:e3:fb:bc:93:f9:df:b3:b5:24:dd:74:f9:86: c5:33:a7:82:40:81:c1:1d:0e:63:fb:2c:ef:18:09:04:97:b8: dd:4d:38:3b:16:a9:fe:4d:f4:e4:cf:81:05:a5:df:72:1b:cb: 75:86:11:68:7c:48:11:a7:84:3a:0b:f0:c0:77:98:8e:9d:d7: 11:10:fb:bb:97:a3:9d:3b:6c:87:5c:a6:54:c9:c7:68:32:ed: 2a:5b:b9:4d:09:bd:dd:65:e2:c1:97:aa:c8:96:ce:5e:9c:ea: c5:2f:a7:1c:c6:59:aa:4a:5a:e0:a2:45:b6:65:4b:76:1e:63: a0:8a:da:cb -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUwMzI4MTcyNjE1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U2ZGJiNi0wZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlQG4CtjPiIHzSakGiaMuPe/uIIElZ9aybFOGfL9O9LtVftfqhmaGA8NOW2UM uopIjmMh+BaiDQ18hS7M4QH/cq93tKAYoagJiyZVu7fCMncEQ+oCxrCgJTB2ahVs Lak0CmtJiOTFZHjqfNMbzMT7EAFxL1EAnCXXu7wgKxF+CJR+2M14f1eYgAj2c8am 0m7apJM8vwZ2hBzsBN2/zuxaIxZfLHFXAmkHwFIHYyphXPoXOAr6WOZMbkOywQGc 0XaOaVFrM9adr2qHYrSl4zeMp3yzM9f8qdqOS5PoYnrjxNz2ucfYtgZH0ixIhlfP 9EwntBOe8RXDaMZcAiOodRLhuwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFHj+fZBa MdcDsZcW+SAmBfRMif43MB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkZBNDkvQTRDMENBOTY5MDA5MTFFRTlFNTRBMDMzQzRGOUFFMDIvNzRGOTk2RjYy RjI1MTFFRjhENzhEQzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwCebAMEAMBmUzANBgkqhkiG9w0BAQsFAAOCAQEAE6mbTcK/ 4QeDpkL30tO5pkCwnXKdfkvAATpzpipE3XAgkq/U29qyhqiupSXr7D9L5LsAr7k2 SXWnlTMtG3o50cECFCmbfc98ryIck97V70ek1KiaLTihCEycxjX96xNQAJJ2PUTD R/sglpDhGSsOyp2R7uPw6k/UoBApUiATFswoWXrj+7yT+d+ztSTddPmGxTOngkCB wR0OY/ss7xgJBJe43U04Oxap/k305M+BBaXfchvLdYYRaHxIEaeEOgvwwHeYjp3X ERD7u5ejnTtsh1ymVMnHaDLtKlu5TQm93WXiwZeqyJbOXpzqxS+nHMZZqkpa4KJF tmVLdh5joIrayw== -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:18 2025 by rpki-client