$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/467FE46E10FE11EFA29A9758C4F9AE02.roa File: 467FE46E10FE11EFA29A9758C4F9AE02.roa (raw, json) Hash identifier: wEf6t906LIQhpfRfgNn30s5TMVxlLGUutYNCV4dsu0Y= Subject key identifier: E3:21:B5:B3:11:4A:38:92:A1:6B:BE:51:F8:91:1F:1E:8B:02:18:96 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D7E Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/467FE46E10FE11EFA29A9758C4F9AE02.roa Signing time: Thu 08 May 2025 15:53:01 +0000 ROA not before: Thu 08 May 2025 15:53:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141252 IP address blocks: 160.19.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7550 (0x1d7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:53:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd35c-e4ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:cc:80:ef:0f:39:16:ca:ac:45:a6:ba:25: 77:df:86:74:00:57:ed:e1:a7:1f:5a:cc:1c:74:be: b5:ca:a7:a4:6a:03:a7:93:9a:9e:7c:a8:e6:df:e5: db:86:09:2c:40:e0:d7:43:ff:42:77:f1:97:6b:52: 6e:c3:92:9d:ff:cc:9c:d3:3c:12:14:df:33:95:0c: 81:ae:56:96:61:40:80:0a:b1:8f:ec:23:c6:5d:35: 0e:ee:c1:cc:1a:39:16:79:af:02:e3:fb:57:20:59: 8a:49:28:13:3e:e1:35:54:99:9c:d4:87:83:d7:c5: d4:b8:18:f5:a7:01:16:36:06:ef:57:c9:ed:16:62: 14:9d:fd:1e:7c:2e:13:31:76:5d:2f:73:0a:3f:48: b5:09:89:e3:b0:19:21:42:65:a3:21:e8:b3:a4:58: fc:21:8c:c9:8f:7d:e1:51:cd:d6:c2:cf:f0:86:d0: c9:a6:06:7f:48:a2:c3:f6:8e:e5:3b:5b:9c:46:9a: 8c:ad:61:05:a1:7e:96:23:57:25:01:e2:cf:eb:7e: 52:75:f3:a0:14:b3:97:93:bd:b4:f7:c9:df:a9:70: dc:e2:f7:63:b7:46:0c:4e:54:05:3e:fa:ac:7d:48: a6:7f:46:0d:d4:63:30:c2:de:ae:b6:52:23:4b:f6: 78:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:21:B5:B3:11:4A:38:92:A1:6B:BE:51:F8:91:1F:1E:8B:02:18:96 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/467FE46E10FE11EFA29A9758C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.19.42.0/24 Signature Algorithm: sha256WithRSAEncryption 41:d1:7b:1d:96:27:42:cb:fe:56:43:fa:6e:9a:6a:a4:7c:9d: 6d:d7:d2:31:2b:5a:58:f1:ad:7b:39:60:4b:90:a8:a1:72:32: 28:0a:db:22:24:d4:ba:f9:3b:fa:6d:fa:0a:4c:54:eb:a4:83: ca:c4:27:ee:ac:a1:e6:ab:fb:03:95:e2:27:31:0b:6a:af:1e: 39:8b:6e:45:26:55:79:a9:40:6b:64:8d:d2:c4:2a:7e:d9:bb: b5:24:e1:cc:c2:5f:37:65:d3:c9:49:8d:f9:f8:69:e2:c0:87: cb:e9:60:8a:d4:5b:11:24:ed:cd:39:b5:be:d9:7d:da:cd:92: 3a:f7:2a:a2:2f:46:cf:70:18:31:88:9b:62:fe:d7:24:5f:de: 26:18:0d:03:12:00:66:99:f1:05:fc:19:b6:e6:75:b9:aa:aa: b6:d0:e1:4e:80:37:3a:69:47:b1:c2:ef:21:44:c3:bd:8b:d2: ec:44:83:93:5d:c4:95:7b:72:63:2c:40:fb:d1:25:6a:03:fb: ad:61:de:94:e4:fa:6a:b1:5c:36:af:58:03:f9:04:b1:8d:f3: 29:92:1a:0f:ac:30:b2:6a:b0:91:d0:04:24:3a:23:b5:71:eb: 90:3e:08:ab:23:15:50:64:86:1d:a8:7a:cb:ad:5c:33:35:36: 39:86:98:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MzAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM1Yy1lNGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumjMgO8PORbKrEWmuiV334Z0AFft4acfWswcdL61yqekagOnk5qefKjm3+Xb hgksQODXQ/9Cd/GXa1Juw5Kd/8yc0zwSFN8zlQyBrlaWYUCACrGP7CPGXTUO7sHM GjkWea8C4/tXIFmKSSgTPuE1VJmc1IeD18XUuBj1pwEWNgbvV8ntFmIUnf0efC4T MXZdL3MKP0i1CYnjsBkhQmWjIeizpFj8IYzJj33hUc3Wws/whtDJpgZ/SKLD9o7l O1ucRpqMrWEFoX6WI1clAeLP635SdfOgFLOXk72098nfqXDc4vdjt0YMTlQFPvqs fUimf0YN1GMwwt6utlIjS/Z4lQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOMhtbMR SjiSoWu+UfiRHx6LAhiWMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDY3RkU0NkUx MEZFMTFFRkEyOUE5NzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgEyowDQYJKoZIhvcNAQELBQADggEBAEHRex2WJ0LL/lZD +m6aaqR8nW3X0jErWljxrXs5YEuQqKFyMigK2yIk1Lr5O/pt+gpMVOukg8rEJ+6s oear+wOV4icxC2qvHjmLbkUmVXmpQGtkjdLEKn7Zu7Uk4czCXzdl08lJjfn4aeLA h8vpYIrUWxEk7c05tb7ZfdrNkjr3KqIvRs9wGDGIm2L+1yRf3iYYDQMSAGaZ8QX8 GbbmdbmqqrbQ4U6ANzppR7HC7yFEw72L0uxEg5NdxJV7cmMsQPvRJWoD+61h3pTk +mqxXDavWAP5BLGN8ymSGg+sMLJqsJHQBCQ6I7Vx65A+CKsjFVBkhh2oesutXDM1 NjmGmDM= -----END CERTIFICATE-----Generated at Tue Nov 4 22:21:08 2025 by rpki-client