$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/23536D2A45CE11F098A7B377C4F9AE02.roa File: 23536D2A45CE11F098A7B377C4F9AE02.roa (raw, json) Hash identifier: 8UvkJUHTDAWM6km5YRgbTgh+pwT+klA0kDj/0QYSoAc= Subject key identifier: E2:58:71:FD:06:6D:FF:44:CF:54:7D:ED:51:48:A3:76:71:75:F8:35 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E93 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/23536D2A45CE11F098A7B377C4F9AE02.roa Signing time: Tue 10 Jun 2025 07:40:11 +0000 ROA not before: Tue 10 Jun 2025 07:40:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133592 IP address blocks: 165.99.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7827 (0x1e93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jun 10 07:40:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6847e15a-f560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b2:62:06:23:b4:18:82:b0:0d:1d:d7:01:52: 6f:15:5b:8f:9c:09:de:c0:56:97:55:4b:29:09:52: 43:23:7a:14:8d:bc:01:40:de:8a:fe:2f:41:9c:d2: 0c:f0:96:cd:05:b2:ea:78:88:cc:ed:fe:05:eb:ec: 8f:0d:5f:d7:b0:c3:da:2e:b4:5c:30:90:e9:4f:1f: 60:31:6e:16:42:c6:18:e6:d7:41:ba:81:be:da:0f: 45:a0:20:e7:77:e2:74:96:31:6c:cb:21:cd:bc:da: 30:e6:64:01:c8:9e:5d:da:87:c5:6d:83:98:5e:87: 2c:fe:a3:e0:ee:56:87:53:91:ed:53:af:98:8e:85: 7b:ee:b2:3c:8a:52:bb:b2:0f:9e:e7:dc:c4:42:47: 0e:3c:58:95:4d:12:0e:8c:5a:5f:e8:65:ac:5a:82: 51:66:65:00:cd:24:ce:3e:75:81:0e:bf:22:1d:97: ad:a1:a5:bf:2a:c9:ca:27:a3:07:18:98:25:6b:7c: bf:6f:24:e7:15:aa:4e:eb:87:39:95:7a:d5:b8:8b: 35:33:19:8b:62:9b:bb:f8:c3:31:4a:53:c0:38:c8: 71:50:1c:89:f4:51:c3:2c:d2:d8:ac:64:04:7b:74: 92:80:76:80:e6:89:22:c9:03:76:76:21:1b:11:ed: 37:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:58:71:FD:06:6D:FF:44:CF:54:7D:ED:51:48:A3:76:71:75:F8:35 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/23536D2A45CE11F098A7B377C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.174.0/23 Signature Algorithm: sha256WithRSAEncryption 04:24:c9:e3:4d:dd:d6:38:28:8e:b5:ae:ff:db:c5:2e:ef:ab: 72:2d:06:e2:15:90:af:b8:47:93:42:34:7f:6a:9c:69:6a:47: bf:6a:68:06:ab:d6:2e:cb:e2:6d:70:b7:b2:4b:21:50:61:ed: 94:d2:6a:a1:05:d6:5f:14:dc:7e:de:85:56:fc:b9:38:59:2c: cd:1d:fe:e8:ca:96:7a:91:4c:99:b3:9c:76:9c:0b:b1:0c:2c: 23:ba:f4:91:a8:84:28:c1:36:19:cf:e0:c6:97:0a:99:a4:ef: ec:15:c6:fe:93:63:b8:b2:f8:1b:3f:af:c8:53:22:e8:1c:ea: 07:f8:83:f9:37:f2:e9:45:44:16:c6:1c:c6:b2:04:b4:e1:0a: 00:ee:f0:0c:ce:ef:c6:22:b8:a2:78:77:93:1b:a9:d8:85:11: a8:25:35:41:a5:eb:5a:c6:af:c1:1f:08:ed:19:70:9c:0b:61: 81:bf:cd:90:66:17:04:eb:e2:7b:c4:7c:e4:8b:f8:47:2a:57: c3:eb:87:69:8d:93:24:ac:68:29:72:39:2b:aa:69:a3:bb:b3: 95:ee:47:02:74:1f:ee:25:ce:ff:fa:82:d8:1f:b1:f8:f6:09: e3:4c:8b:9d:1f:8f:9d:33:d2:4c:2e:0f:6e:50:da:a4:8b:d5: 66:59:35:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNjEwMDc0MDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ3ZTE1YS1mNTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrJiBiO0GIKwDR3XAVJvFVuPnAnewFaXVUspCVJDI3oUjbwBQN6K/i9BnNIM 8JbNBbLqeIjM7f4F6+yPDV/XsMPaLrRcMJDpTx9gMW4WQsYY5tdBuoG+2g9FoCDn d+J0ljFsyyHNvNow5mQByJ5d2ofFbYOYXocs/qPg7laHU5HtU6+YjoV77rI8ilK7 sg+e59zEQkcOPFiVTRIOjFpf6GWsWoJRZmUAzSTOPnWBDr8iHZetoaW/KsnKJ6MH GJgla3y/byTnFapO64c5lXrVuIs1MxmLYpu7+MMxSlPAOMhxUByJ9FHDLNLYrGQE e3SSgHaA5okiyQN2diEbEe03PQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOJYcf0G bf9Ez1R97VFIo3Zxdfg1MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjM1MzZEMkE0 NUNFMTFGMDk4QTdCMzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlY64wDQYJKoZIhvcNAQELBQADggEBAAQkyeNN3dY4KI61 rv/bxS7vq3ItBuIVkK+4R5NCNH9qnGlqR79qaAar1i7L4m1wt7JLIVBh7ZTSaqEF 1l8U3H7ehVb8uThZLM0d/ujKlnqRTJmznHacC7EMLCO69JGohCjBNhnP4MaXCpmk 7+wVxv6TY7iy+Bs/r8hTIugc6gf4g/k38ulFRBbGHMayBLThCgDu8AzO78YiuKJ4 d5MbqdiFEaglNUGl61rGr8EfCO0ZcJwLYYG/zZBmFwTr4nvEfOSL+EcqV8Prh2mN kySsaClyOSuqaaO7s5XuRwJ0H+4lzv/6gtgfsfj2CeNMi50fj50z0kwuD25Q2qSL 1WZZNa8= -----END CERTIFICATE-----Generated at Sun Jun 15 09:43:07 2025 by rpki-client