$ rpki-client -vvf rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa File: AA73EF167DEB11EEB9699A24C4F9AE02.roa (raw, json) Hash identifier: EuI+jy3jz6zplStWvLeJaw92baXncm4w2hV/GfKLDMk= Subject key identifier: B8:D3:B4:07:49:81:32:F7:5C:7D:55:95:96:3E:36:49:70:22:14:DC Certificate issuer: /CN=A918F00E/serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Certificate serial: 017B Authority key identifier: 18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa Signing time: Wed 05 Feb 2025 02:28:18 +0000 ROA not before: Wed 05 Feb 2025 02:28:18 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136557 IP address blocks: 203.20.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F00E, serialNumber=18E1F732EFA53C3973A1ACD22C1368A5E1F2CA52 Validity Not Before: Feb 5 02:28:18 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a2ccc1-152e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c8:41:a6:9d:55:82:75:99:3a:ac:1d:95:e2: 11:86:8e:ff:d6:a5:80:fc:83:01:88:50:a7:c9:f7: ac:aa:2b:35:c8:5a:b0:cd:1e:01:e6:94:40:01:78: 37:d1:f2:8a:95:c3:b7:cd:b1:21:f1:a5:51:60:fe: a8:19:d8:fa:eb:1a:05:a2:83:a6:ea:3e:55:7a:a6: 21:51:8a:20:ae:a8:c6:90:b0:1f:4f:2a:42:bd:7a: 84:6e:09:83:07:1c:b6:ba:5b:ea:11:8e:10:63:84: 8c:e8:45:2b:2c:9d:ba:53:c2:9d:3f:fb:c7:e1:b4: aa:e9:dc:a6:16:e6:7a:3b:d4:90:89:57:bb:08:0a: 95:3d:7a:6b:d2:db:60:80:4e:36:b8:b8:c5:92:8c: c4:ee:22:4d:b8:01:fc:33:80:be:e5:56:62:78:72: 0c:55:64:0f:09:f4:ed:ce:b6:06:20:b2:74:b2:8f: 69:c8:d9:62:3f:98:ce:9f:f4:38:6b:75:c7:d5:09: 17:86:c7:09:13:a7:0a:fe:54:5b:91:2b:2a:69:c4: f2:ea:7e:c2:68:99:4c:69:05:f1:74:b9:5f:e7:9f: 34:8f:2f:88:d3:bf:b1:5d:f6:af:22:00:dd:11:c3: 73:05:fc:70:11:f6:ff:3a:24:07:e8:d9:dd:39:12: 96:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D3:B4:07:49:81:32:F7:5C:7D:55:95:96:3E:36:49:70:22:14:DC X509v3 Authority Key Identifier: keyid:18:E1:F7:32:EF:A5:3C:39:73:A1:AC:D2:2C:13:68:A5:E1:F2:CA:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/GOH3Mu-lPDlzoazSLBNopeHyylI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOH3Mu-lPDlzoazSLBNopeHyylI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F00E/5AA1822EAD3911EDA0B9B83CC4F9AE02/AA73EF167DEB11EEB9699A24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.69.0/24 Signature Algorithm: sha256WithRSAEncryption 82:00:5c:26:95:8f:14:2c:28:ad:fa:32:04:3c:d8:f3:c8:96: 3c:70:75:1e:ad:6d:b0:e6:f5:8b:7b:7c:40:6c:f8:de:06:2b: be:88:7e:e0:47:17:d6:15:ee:2c:23:c3:fd:a7:da:4b:73:22: 3d:0a:87:85:87:fd:e6:13:ac:99:b7:e9:e5:6c:fb:52:8d:e1: 89:36:c3:61:09:0c:58:19:23:7a:7c:df:0b:e1:0e:ef:bf:16: cc:bb:e4:4c:75:64:61:44:50:28:57:89:9b:41:c2:4c:a8:ee: 68:28:fe:d1:f4:94:7f:91:0f:1d:0b:30:3a:ae:b6:f5:0e:13: 8f:88:fa:ca:bc:dc:ce:1e:36:25:37:1d:09:a0:15:a2:d2:8c: 19:e3:5b:69:f9:92:78:d7:9e:7b:a2:57:88:dc:9c:4d:0f:09: d0:4d:57:fb:57:8f:3f:1d:27:6c:b4:10:3e:b2:ab:58:aa:39: 09:d4:73:cb:a9:07:36:cb:ab:90:0a:77:e3:33:a5:7c:a8:c9: a4:20:f1:48:57:a7:aa:b7:80:d6:c6:0b:39:f2:d7:83:03:5b: 80:0f:3e:8a:b3:e1:c5:b7:36:fd:01:5c:d7:0f:13:b7:18:5d: 4f:9a:e6:3e:a3:3e:a6:31:49:fc:76:37:6f:11:07:44:d1:5e: a3:c6:52:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwMEUxMTAvBgNVBAUTKDE4RTFGNzMyRUZBNTNDMzk3M0ExQUNEMjJDMTM2OEE1 RTFGMkNBNTIwHhcNMjUwMjA1MDIyODE4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyY2NjMS0xNTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApshBpp1VgnWZOqwdleIRho7/1qWA/IMBiFCnyfesqis1yFqwzR4B5pRAAXg3 0fKKlcO3zbEh8aVRYP6oGdj66xoFooOm6j5VeqYhUYogrqjGkLAfTypCvXqEbgmD Bxy2ulvqEY4QY4SM6EUrLJ26U8KdP/vH4bSq6dymFuZ6O9SQiVe7CAqVPXpr0ttg gE42uLjFkozE7iJNuAH8M4C+5VZieHIMVWQPCfTtzrYGILJ0so9pyNliP5jOn/Q4 a3XH1QkXhscJE6cK/lRbkSsqacTy6n7CaJlMaQXxdLlf5580jy+I07+xXfavIgDd EcNzBfxwEfb/OiQH6NndORKW0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLjTtAdJ gTL3XH1VlZY+NklwIhTcMB8GA1UdIwQYMBaAFBjh9zLvpTw5c6Gs0iwTaKXh8spS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjAwRS81QUExODIyRUFE MzkxMUVEQTBCOUI4M0NDNEY5QUUwMi9HT0gzTXUtbFBEbHpvYXpTTEJOb3BlSHl5 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dPSDNNdS1sUERsem9helNMQk5vcGVIeXlsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEYwMEUvNUFBMTgyMkVBRDM5MTFFREEwQjlCODNDQzRGOUFFMDIvQUE3M0VGMTY3 REVCMTFFRUI5Njk5QTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFEUwDQYJKoZIhvcNAQELBQADggEBAIIAXCaVjxQsKK36 MgQ82PPIljxwdR6tbbDm9Yt7fEBs+N4GK76IfuBHF9YV7iwjw/2n2ktzIj0Kh4WH /eYTrJm36eVs+1KN4Yk2w2EJDFgZI3p83wvhDu+/Fsy75Ex1ZGFEUChXiZtBwkyo 7mgo/tH0lH+RDx0LMDqutvUOE4+I+sq83M4eNiU3HQmgFaLSjBnjW2n5knjXnnui V4jcnE0PCdBNV/tXjz8dJ2y0ED6yq1iqOQnUc8upBzbLq5AKd+MzpXyoyaQg8UhX p6q3gNbGCzny14MDW4APPoqz4cW3Nv0BXNcPE7cYXU+a5j6jPqYxSfx2N28RB0TR XqPGUt4= -----END CERTIFICATE-----Generated at Sat Apr 26 08:12:27 2025 by rpki-client