$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/33938662E2EF11EF9827146DC4F9AE02.roa File: 33938662E2EF11EF9827146DC4F9AE02.roa (raw, json) Hash identifier: 3+31oUnCndjTSHwSrrUmFbywAm1a/qOnCQSlY1hNssI= Subject key identifier: 9D:67:E6:19:9F:D3:66:CE:EB:E9:72:38:CB:6D:40:CD:9A:EE:B9:CC Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E18 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/33938662E2EF11EF9827146DC4F9AE02.roa Signing time: Thu 08 May 2025 15:55:19 +0000 ROA not before: Thu 08 May 2025 15:55:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153263 IP address blocks: 161.248.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7704 (0x1e18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3e6-dde8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c3:7d:d6:13:48:6d:49:56:11:2b:7e:c7:fb: de:72:e1:09:ca:64:c6:70:ec:f9:40:49:04:50:75: 3f:d3:1d:bb:6c:b8:b6:82:c0:76:68:75:65:76:20: 47:b3:40:a8:75:ff:da:dc:69:6d:d6:b9:78:4e:c5: 38:31:be:02:20:9e:cb:9a:21:8a:3a:17:a0:58:5c: f5:df:38:f8:73:04:b0:5d:c2:a1:07:eb:87:3b:6b: ae:d1:00:23:b8:4f:9e:9f:86:19:74:31:f6:43:5f: c6:4e:53:6b:a1:bd:b0:58:81:90:fc:88:18:c2:8f: 5c:6b:52:ec:85:ae:51:c7:22:93:8b:c6:79:ca:2c: 94:e5:69:ab:07:f0:b7:58:67:99:fd:56:2d:15:24: 28:c7:dc:8d:b1:0e:18:a4:9b:66:f8:4f:d2:c2:db: 5d:e5:a4:74:a5:95:9c:28:4e:57:23:cd:a5:68:71: 60:78:27:ba:2b:0d:7f:01:b8:fc:46:aa:25:c5:73: 7d:e3:9c:57:4b:a1:02:36:35:c7:ad:04:a4:59:70: f9:a6:d2:c5:34:90:bf:eb:28:43:12:f6:f3:a1:59: 39:74:77:fc:b2:bd:ec:6e:5d:79:45:09:a1:45:84: 49:ed:66:6c:77:fc:60:0b:81:34:7d:0b:50:b7:fa: 67:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:67:E6:19:9F:D3:66:CE:EB:E9:72:38:CB:6D:40:CD:9A:EE:B9:CC X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/33938662E2EF11EF9827146DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.228.0/23 Signature Algorithm: sha256WithRSAEncryption c1:53:18:29:68:18:58:f6:d5:04:e8:90:a0:19:d2:3c:36:f0: 99:85:8c:55:cf:68:14:78:49:2a:12:eb:9b:5c:75:01:a3:86: 60:f8:03:55:aa:10:6a:21:11:6c:44:ad:0c:f5:10:62:9a:4e: 25:ca:0b:e3:b3:ef:26:2a:d5:3a:be:68:6d:a8:1b:ef:a7:d8: 11:08:f3:b0:c2:53:7a:ee:5c:04:3f:b7:62:64:db:f4:db:18: 9b:68:10:ce:f4:68:d6:88:dd:ec:79:c4:0e:8b:14:f7:ad:94: 21:e7:6a:1c:98:45:b9:17:aa:19:7a:ca:6d:74:3d:d5:1d:f8: 9a:18:c1:eb:3c:fa:cd:8a:dd:9e:68:51:b3:ca:cd:aa:d8:b6: a2:c0:d3:05:ea:1b:51:2c:c2:86:8d:be:b6:07:59:88:27:19: 72:d5:28:24:96:2b:a8:06:0a:4a:d3:fd:63:32:5d:24:9f:59: 8c:cd:1f:98:f2:be:e5:ca:38:f1:a3:6a:fe:ab:b7:17:fc:3c: 98:66:c5:41:b6:83:9b:64:6e:af:ee:25:6b:f6:35:d0:0f:20: 5b:24:19:77:dd:57:b8:1f:f5:dd:d3:5e:61:1a:42:65:5f:5d: 6d:3c:78:8b:fc:15:3f:e7:ca:92:e5:f2:d2:c1:f7:ef:a5:4c: 81:d5:c9:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNlNi1kZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMN91hNIbUlWESt+x/vecuEJymTGcOz5QEkEUHU/0x27bLi2gsB2aHVldiBH s0Codf/a3Glt1rl4TsU4Mb4CIJ7LmiGKOhegWFz13zj4cwSwXcKhB+uHO2uu0QAj uE+en4YZdDH2Q1/GTlNrob2wWIGQ/IgYwo9ca1Lsha5RxyKTi8Z5yiyU5WmrB/C3 WGeZ/VYtFSQox9yNsQ4YpJtm+E/Swttd5aR0pZWcKE5XI82laHFgeCe6Kw1/Abj8 RqolxXN945xXS6ECNjXHrQSkWXD5ptLFNJC/6yhDEvbzoVk5dHf8sr3sbl15RQmh RYRJ7WZsd/xgC4E0fQtQt/pnYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ1n5hmf 02bO6+lyOMttQM2a7rnMMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzM5Mzg2NjJF MkVGMTFFRjk4MjcxNDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+OQwDQYJKoZIhvcNAQELBQADggEBAMFTGCloGFj21QTo kKAZ0jw28JmFjFXPaBR4SSoS65tcdQGjhmD4A1WqEGohEWxErQz1EGKaTiXKC+Oz 7yYq1Tq+aG2oG++n2BEI87DCU3ruXAQ/t2Jk2/TbGJtoEM70aNaI3ex5xA6LFPet lCHnahyYRbkXqhl6ym10PdUd+JoYwes8+s2K3Z5oUbPKzarYtqLA0wXqG1EswoaN vrYHWYgnGXLVKCSWK6gGCkrT/WMyXSSfWYzNH5jyvuXKOPGjav6rtxf8PJhmxUG2 g5tkbq/uJWv2NdAPIFskGXfdV7gf9d3TXmEaQmVfXW08eIv8FT/nypLl8tLB9++l TIHVyXA= -----END CERTIFICATE-----Generated at Tue Nov 4 22:21:24 2025 by rpki-client