$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa File: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (raw, json) Hash identifier: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8= Subject key identifier: 40:E9:95:DA:F0:C0:63:11:35:31:50:E2:37:38:8C:62:5E:28:18:1E Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 02 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa Signing time: Mon 24 Mar 2025 07:33:11 +0000 ROA not before: Mon 24 Mar 2025 07:33:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152672 IP address blocks: 163.223.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Mar 24 07:33:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67e10ab7-3ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:44:56:71:97:c7:24:b5:2a:a5:b2:f6:6b:d4: db:7d:71:d2:74:ce:c4:59:61:91:a7:d1:1c:fa:d5: 1d:77:7c:a2:a4:b0:63:eb:3e:ee:20:bb:6a:81:93: 84:34:f5:b1:af:e4:be:a8:c7:cc:4c:73:84:8b:46: 74:0c:7e:b8:84:41:3d:2b:cc:cb:4b:86:d6:df:c0: 82:f6:12:8c:db:b8:88:e9:d9:88:56:50:40:15:ef: c1:75:2d:11:cf:0d:8e:f2:08:c7:8e:0e:5d:87:5d: f9:37:e1:d9:f2:21:40:ff:e1:2b:16:2d:fe:5e:ec: 27:11:35:66:6a:ee:96:53:12:30:47:c5:ff:0e:15: 80:6d:5f:ed:df:10:63:e8:bf:3b:bd:1c:c4:df:c2: 78:57:43:9a:ba:b8:99:36:05:ba:e7:b6:df:aa:c5: ec:df:33:14:35:4a:f7:46:18:33:51:6e:55:df:7c: 16:ea:57:4a:e5:d5:ce:b5:8f:dc:b5:4b:41:9a:b1: e0:8b:95:e8:d4:1a:b7:c2:be:c6:19:50:a4:d8:eb: 0b:55:47:67:4c:bc:b4:e7:3a:b1:dd:1e:92:e8:41: 5c:f6:e7:aa:86:9d:25:71:c3:c6:60:d4:5b:98:5f: 58:4d:4b:d7:f8:73:10:4e:94:e7:19:2e:fa:0e:c2: a0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E9:95:DA:F0:C0:63:11:35:31:50:E2:37:38:8C:62:5E:28:18:1E X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/3CF5A86C088211F0BB90C23EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.182.0/23 Signature Algorithm: sha256WithRSAEncryption b9:e1:68:54:2f:41:5c:24:f1:c4:c5:37:d8:2b:68:62:00:f3: f0:a6:55:a6:28:92:9d:ce:cc:90:2b:ec:05:d8:e6:2e:9d:87: e0:a0:0b:32:59:61:c9:c5:43:2b:fb:09:34:c7:7b:5c:a6:db: 99:e7:30:17:ad:4d:fe:fb:08:8c:46:41:92:f4:32:97:f6:5e: 47:4e:09:8d:c8:5a:63:e4:6f:b4:c6:fa:46:e5:a4:0a:14:28: e0:cf:2d:13:b6:4c:4e:b0:fd:d2:7d:d3:af:29:c7:f7:25:22: c8:f3:24:0a:a0:32:d6:a9:4e:d9:84:90:74:8c:3b:37:11:64: 77:a5:2e:b7:4b:74:be:a6:4f:39:db:53:1b:f5:32:0d:31:1d: 5c:91:68:1b:b1:7f:c1:5f:4d:91:bf:2e:a2:b7:e6:f5:88:24: 40:e9:da:20:69:91:d4:83:fe:03:9e:72:5e:88:c4:d1:56:8a: 99:fa:cc:e6:93:91:90:0c:43:a9:c8:bf:c9:55:82:77:19:37: d7:1d:19:30:aa:7d:93:90:be:2b:9a:88:45:3c:9e:38:84:8f: 79:b8:0f:37:a6:3b:18:12:f2:dd:80:f9:9d:2a:f2:e6:02:18: 14:0e:5f:6e:af:8d:2a:96:d2:2c:b5:86:ea:07:39:39:54:71: 18:88:6a:1d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTAzMjQwNzMzMTFaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTEwYWI3LTNlZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMRFZxl8cktSqlsvZr1Nt9cdJ0zsRZYZGn0Rz61R13fKKksGPrPu4gu2qBk4Q0 9bGv5L6ox8xMc4SLRnQMfriEQT0rzMtLhtbfwIL2EozbuIjp2YhWUEAV78F1LRHP DY7yCMeODl2HXfk34dnyIUD/4SsWLf5e7CcRNWZq7pZTEjBHxf8OFYBtX+3fEGPo vzu9HMTfwnhXQ5q6uJk2Bbrntt+qxezfMxQ1SvdGGDNRblXffBbqV0rl1c61j9y1 S0GaseCLlejUGrfCvsYZUKTY6wtVR2dMvLTnOrHdHpLoQVz256qGnSVxw8Zg1FuY X1hNS9f4cxBOlOcZLvoOwqCpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQOmV2vDA YxE1MVDiNziMYl4oGB4wHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUI3RS9GNzU5Nzk2RTA4ODExMUYwQkFDMzQxM0VDNEY5QUUwMi8zQ0Y1QTg2QzA4 ODIxMUYwQkI5MEMyM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPftjANBgkqhkiG9w0BAQsFAAOCAQEAueFoVC9BXCTxxMU3 2CtoYgDz8KZVpiiSnc7MkCvsBdjmLp2H4KALMllhycVDK/sJNMd7XKbbmecwF61N /vsIjEZBkvQyl/ZeR04JjchaY+RvtMb6RuWkChQo4M8tE7ZMTrD90n3TrynH9yUi yPMkCqAy1qlO2YSQdIw7NxFkd6Uut0t0vqZPOdtTG/UyDTEdXJFoG7F/wV9Nkb8u orfm9YgkQOnaIGmR1IP+A55yXojE0VaKmfrM5pORkAxDqci/yVWCdxk31x0ZMKp9 k5C+K5qIRTyeOISPebgPN6Y7GBLy3YD5nSry5gIYFA5fbq+NKpbSLLWG6gc5OVRx GIhqHQ== -----END CERTIFICATE-----Generated at Tue Nov 4 19:11:32 2025 by rpki-client