$ rpki-client -vvf rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/2B1A3764302A11F0B211AD0BC4F9AE02.roa File: 2B1A3764302A11F0B211AD0BC4F9AE02.roa (raw, json) Hash identifier: NkhW5FW4JP+LMlscQaQBvoaph79aDkou+LpFxXsX7js= Subject key identifier: 13:E6:64:66:F1:55:9C:DA:8D:9E:F6:AD:A7:9F:39:FC:EF:FB:C8:A6 Certificate issuer: /CN=A918E269/serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Certificate serial: 2E Authority key identifier: 4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/2B1A3764302A11F0B211AD0BC4F9AE02.roa Signing time: Tue 22 Jul 2025 09:36:25 +0000 ROA not before: Tue 22 Jul 2025 09:36:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150142 IP address blocks: 163.227.238.0/24 maxlen: 24 163.227.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E269, serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Validity Not Before: Jul 22 09:36:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687f5b98-42ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9e:22:69:74:7c:63:bf:5c:cc:f5:96:da:e5: f6:8c:ac:67:ad:aa:11:9a:bf:48:5c:b3:a3:41:9f: 4f:c4:d2:d8:33:e0:7e:f0:82:2a:2c:d4:00:c8:62: 3c:f8:d2:fe:f7:98:83:b2:40:e0:0e:61:87:a7:18: 31:ca:e1:0b:31:5c:50:db:b3:7d:b1:55:26:49:6a: 59:ab:97:6a:d1:48:ed:f0:5d:dd:4a:9e:01:3c:49: d5:c2:0e:a6:6b:1b:21:d3:82:9d:58:93:bb:d1:e2: 3f:ef:77:5b:8a:d2:33:c1:57:5f:c7:c4:06:78:9a: 6c:0c:82:9b:dd:46:f3:2a:8c:94:5e:4d:25:3b:f1: 5c:b1:6f:b2:94:fc:36:4d:fd:6c:42:d6:2c:94:11: cc:de:de:49:53:12:67:73:05:68:8a:a6:86:7b:f6: a0:53:07:94:39:6d:a3:f5:6b:11:6a:ab:f3:2f:cb: d8:58:ec:be:04:4d:ae:7d:0b:64:8b:9b:ce:ab:fd: 40:27:21:b1:94:30:ed:b3:34:f2:85:60:cb:91:3e: 3b:3a:ec:21:08:a7:10:18:67:2d:86:5b:c2:20:7e: 02:fa:3e:a0:b8:5b:62:4d:06:98:5b:7c:11:40:55: 00:6d:6b:63:2e:62:0b:19:0a:4a:4f:c2:48:4d:1f: 33:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E6:64:66:F1:55:9C:DA:8D:9E:F6:AD:A7:9F:39:FC:EF:FB:C8:A6 X509v3 Authority Key Identifier: keyid:4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/2B1A3764302A11F0B211AD0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.238.0/23 Signature Algorithm: sha256WithRSAEncryption 54:47:c4:9f:1f:2d:39:df:f2:ee:73:3d:67:8d:25:a5:d0:60: e3:00:09:10:5e:e5:e1:e8:f0:67:f3:16:4a:3c:54:f8:ed:eb: 13:78:86:17:43:91:9d:82:d8:c5:06:fe:98:48:ba:4b:91:98: fb:c8:63:cb:39:da:3b:ef:af:a4:24:55:51:7b:7e:b4:be:8f: 1d:2f:0a:29:79:df:75:72:c3:a5:9e:ae:89:12:0f:69:bb:22: f2:db:ab:c5:86:91:1c:09:4f:e0:33:47:98:0d:46:92:72:af: a4:fb:0e:a9:99:e0:da:ce:0b:24:2e:4a:7b:43:6d:d3:97:81: a9:0f:9f:1e:2e:44:a7:f4:1d:53:b4:f4:45:c0:fc:71:92:75: 6c:15:00:6b:ca:a4:42:39:c1:65:df:86:a8:49:db:f0:b9:17: 0b:90:6d:75:94:95:49:09:aa:1c:66:5a:d6:06:b0:a7:a7:ac: 7f:ee:47:5f:88:6e:17:07:57:80:8d:0a:01:e7:fc:d4:94:e4: 6c:4f:90:d0:e5:d0:ba:16:75:f0:9f:b5:b1:a7:3f:fb:84:b9: 63:2f:92:f9:11:60:b4:13:69:13:4f:78:ae:1a:c6:ff:88:3f: b6:e0:06:f8:30:f7:14:65:fa:de:fb:43:68:b9:fb:cb:0d:fb: 7a:fe:39:f5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI2OTExMC8GA1UEBRMoNEJFMTA3MzkzNjI1MkUzQ0YwNzJGOTg5RDdGREM0RTdF N0M2NjI3NDAeFw0yNTA3MjIwOTM2MjRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2Y1Yjk4LTQyZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaniJpdHxjv1zM9Zba5faMrGetqhGav0hcs6NBn0/E0tgz4H7wgios1ADIYjz4 0v73mIOyQOAOYYenGDHK4QsxXFDbs32xVSZJalmrl2rRSO3wXd1KngE8SdXCDqZr GyHTgp1Yk7vR4j/vd1uK0jPBV1/HxAZ4mmwMgpvdRvMqjJReTSU78Vyxb7KU/DZN /WxC1iyUEcze3klTEmdzBWiKpoZ79qBTB5Q5baP1axFqq/Mvy9hY7L4ETa59C2SL m86r/UAnIbGUMO2zNPKFYMuRPjs67CEIpxAYZy2GW8IgfgL6PqC4W2JNBphbfBFA VQBta2MuYgsZCkpPwkhNHzPhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUE+ZkZvFV nNqNnvatp585/O/7yKYwHwYDVR0jBBgwFoAUS+EHOTYlLjzwcvmJ1/3E5+fGYnQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjY5LzM5M0JBOENFMkI2 RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6d2N2bUoxXzNFNS1mR1lu US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUy1FSE9UWWxManp3Y3ZtSjFfM0U1LWZHWW5RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI2OS8zOTNCQThDRTJCNkYxMUYwODZBREU1NEVDNEY5QUUwMi8yQjFBMzc2NDMw MkExMUYwQjIxMUFEMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPj7jANBgkqhkiG9w0BAQsFAAOCAQEAVEfEnx8tOd/y7nM9 Z40lpdBg4wAJEF7l4ejwZ/MWSjxU+O3rE3iGF0ORnYLYxQb+mEi6S5GY+8hjyzna O++vpCRVUXt+tL6PHS8KKXnfdXLDpZ6uiRIPabsi8turxYaRHAlP4DNHmA1GknKv pPsOqZng2s4LJC5Ke0Nt05eBqQ+fHi5Ep/QdU7T0RcD8cZJ1bBUAa8qkQjnBZd+G qEnb8LkXC5BtdZSVSQmqHGZa1gawp6esf+5HX4huFwdXgI0KAef81JTkbE+Q0OXQ uhZ18J+1sac/+4S5Yy+S+RFgtBNpE094rhrG/4g/tuAG+DD3FGX63vtDaLn7yw37 ev459Q== -----END CERTIFICATE-----Generated at Fri Aug 8 10:12:42 2025 by rpki-client