$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa File: 1B09C20A9CD711EE8D4B0835C4F9AE02.roa (raw, json) Hash identifier: 7OqBQwbdapWyCvyq8jiiXli2XJMLbrPUHyj9SrBV36c= Subject key identifier: 17:7A:FC:A3:BD:91:9B:4D:A3:22:A9:90:69:67:C1:8C:40:A1:BB:93 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 07C5 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa Signing time: Mon 30 Jun 2025 22:39:03 +0000 ROA not before: Mon 30 Jun 2025 22:39:03 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 56683 IP address blocks: 45.114.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2, serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jun 30 22:39:03 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68631206-7400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c3:ff:8a:a6:db:a9:2e:4a:3f:15:e1:4c:88: c5:9a:bd:d8:3f:a3:8e:c9:ea:a6:6f:78:73:e2:c5: db:cf:43:65:b5:f7:0b:40:17:3e:6d:a3:f6:6d:5a: a7:89:ec:31:2f:fe:3e:0f:87:9a:74:f2:c9:0e:79: 86:a0:7e:ae:fc:09:2e:05:9d:ae:a9:41:c8:43:6e: 39:e7:91:a3:df:f5:a3:70:ee:a3:f1:24:d3:a0:4e: 20:a8:c8:a7:e6:9b:4e:6f:27:79:6a:55:96:db:ae: 19:bf:03:8b:32:56:b0:d0:c8:8a:be:7a:64:1d:e3: 67:24:2e:3f:ed:e4:02:bb:5d:da:8f:87:e0:fc:69: 20:11:39:a1:7a:3b:6f:57:a9:f0:b7:d4:01:f0:a9: 80:2f:a4:11:3f:d8:8b:a9:57:27:fd:ef:8f:2c:8f: a1:75:82:44:2d:09:51:af:66:82:0e:13:60:cd:c7: cc:a2:cf:cc:6a:7e:02:e6:7b:97:5b:9e:7d:3e:5f: dc:41:8f:fa:b3:1e:c3:78:3a:76:a0:06:23:3a:48: 07:6e:7d:76:c6:52:a6:32:c9:cc:fa:21:75:49:0a: da:60:fa:41:bd:52:1f:b9:e7:ff:6e:65:ba:3a:55: 84:23:e5:c9:5b:ab:7b:c4:81:0a:f4:96:05:33:75: 8b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:7A:FC:A3:BD:91:9B:4D:A3:22:A9:90:69:67:C1:8C:40:A1:BB:93 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.188.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:e1:27:26:75:b7:9b:a1:93:a3:ff:4d:a8:30:a4:c6:87:0d: ce:2c:96:a7:df:bd:1c:37:24:06:d0:69:08:86:49:85:3f:89: d9:36:28:f0:b3:c9:c1:75:1a:1c:c5:76:d5:35:9b:84:39:a2: 35:02:b9:95:f4:23:38:1d:9d:91:77:ff:7f:0b:81:ab:f1:39: b2:c8:7b:b8:6f:b3:f4:89:dd:b2:21:48:4c:93:12:3d:d0:a4: 1b:c5:40:09:6e:38:88:f9:bd:7d:10:1b:49:06:85:8f:93:e8: 81:09:11:74:c6:56:fc:e1:a6:32:99:6e:89:e2:a2:e8:b8:0d: 9d:47:ff:94:69:80:2b:ca:c4:80:08:25:0b:26:bc:a0:b6:cf: 55:0d:40:58:eb:3d:d5:e5:3e:38:34:6b:82:f7:49:d2:9a:9d: 26:55:f2:4f:f3:6c:da:41:65:4e:4f:7f:8a:9a:e6:7b:68:4d: 3e:74:f8:de:b6:4a:17:64:3e:3d:4c:8c:60:64:56:56:56:c1: 6f:f0:9d:30:c8:69:c7:62:25:b7:cd:c4:ee:ef:c1:c7:41:bb: bf:f8:54:60:a2:b1:d0:e6:7d:0b:61:b8:b9:f9:e7:30:7a:9e: a3:fe:a5:6b:30:a6:58:75:65:81:a8:82:5a:f7:48:9a:3d:cc: be:e9:c0:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjUwNjMwMjIzOTAzWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMTIwNi03NDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8P/iqbbqS5KPxXhTIjFmr3YP6OOyeqmb3hz4sXbz0NltfcLQBc+baP2bVqn iewxL/4+D4eadPLJDnmGoH6u/AkuBZ2uqUHIQ24555Gj3/WjcO6j8STToE4gqMin 5ptObyd5alWW264ZvwOLMlaw0MiKvnpkHeNnJC4/7eQCu13aj4fg/GkgETmhejtv V6nwt9QB8KmAL6QRP9iLqVcn/e+PLI+hdYJELQlRr2aCDhNgzcfMos/Man4C5nuX W559Pl/cQY/6sx7DeDp2oAYjOkgHbn12xlKmMsnM+iF1SQraYPpBvVIfuef/bmW6 OlWEI+XJW6t7xIEK9JYFM3WL9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBd6/KO9 kZtNoyKpkGlnwYxAobuTMB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvMUIwOUMyMEE5 Q0Q3MTFFRThENEIwODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcrwwDQYJKoZIhvcNAQELBQADggEBAErhJyZ1t5uhk6P/ TagwpMaHDc4slqffvRw3JAbQaQiGSYU/idk2KPCzycF1GhzFdtU1m4Q5ojUCuZX0 IzgdnZF3/38LgavxObLIe7hvs/SJ3bIhSEyTEj3QpBvFQAluOIj5vX0QG0kGhY+T 6IEJEXTGVvzhpjKZbonioui4DZ1H/5RpgCvKxIAIJQsmvKC2z1UNQFjrPdXlPjg0 a4L3SdKanSZV8k/zbNpBZU5Pf4qa5ntoTT50+N62ShdkPj1MjGBkVlZWwW/wnTDI acdiJbfNxO7vwcdBu7/4VGCisdDmfQthuLn55zB6nqP+pWswplh1ZYGoglr3SJo9 zL7pwC8= -----END CERTIFICATE-----Generated at Wed Jul 2 06:58:58 2025 by rpki-client