$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/E2EB4C72D85A11EDA96B1D11C4F9AE02.roa File: E2EB4C72D85A11EDA96B1D11C4F9AE02.roa (raw, json) Hash identifier: 4EZkD4ayzurgaQW9EQDR5KEXQfDfDFoolIhFxZ6KRTk= Subject key identifier: 62:B0:E2:B4:64:78:E4:EA:E5:73:91:42:97:F0:B1:59:A1:30:76:52 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 07C6 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/E2EB4C72D85A11EDA96B1D11C4F9AE02.roa Signing time: Mon 30 Jun 2025 22:39:04 +0000 ROA not before: Mon 30 Jun 2025 22:39:04 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 61317 IP address blocks: 45.114.190.0/24 maxlen: 24 103.54.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1990 (0x7c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2, serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jun 30 22:39:04 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68631208-fbdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1b:7b:11:a8:bb:b0:d5:ec:23:b1:ec:fa:02: 3d:46:f1:57:16:95:26:56:f4:4f:4b:ad:66:33:3c: 73:a7:4c:5e:6b:a3:01:36:e2:b4:05:49:8b:12:fc: cf:ad:c1:b0:bb:bc:a2:78:5c:19:07:4d:eb:42:9f: bf:87:07:a7:5d:4b:d0:40:e1:bc:bd:37:50:61:e0: f0:cd:80:2a:72:10:24:37:ec:3d:1a:8b:d8:9a:5e: 4a:12:3e:f3:41:8b:99:18:ba:e3:82:41:42:0c:9d: c3:17:09:7e:ee:81:69:ef:2c:68:e9:ef:a8:a0:48: e6:da:b6:63:95:29:24:f6:b4:d6:c0:f3:76:6f:b0: 04:91:b2:3a:cf:88:77:ee:90:b7:85:a6:bc:f3:20: 61:7a:57:ce:00:89:51:6a:42:f9:75:a6:bf:62:17: 54:8a:d5:24:d7:69:8d:6e:ab:ed:3d:4d:a8:3b:5f: 43:f5:bc:a1:45:7d:f4:e5:60:37:ff:a8:b6:a2:2b: 75:68:40:4f:0c:37:b8:31:18:e7:ab:6a:97:bd:c5: 3e:9f:9e:f7:94:96:86:57:9f:0e:af:1a:ea:a0:d1: c4:e4:08:54:1f:a1:d3:1e:ff:60:28:3d:d5:80:e9: fe:b0:6b:d6:28:a1:82:bd:43:ae:88:a5:94:45:a8: 84:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B0:E2:B4:64:78:E4:EA:E5:73:91:42:97:F0:B1:59:A1:30:76:52 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/E2EB4C72D85A11EDA96B1D11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.190.0/24 103.54.154.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:56:35:30:f3:17:7f:b0:09:06:10:26:a1:b3:1a:e0:4a:49: cd:98:fe:2e:ce:de:41:3d:1d:ad:72:37:8c:ef:a0:83:04:4e: 0c:40:94:58:6e:f1:34:36:d8:18:5c:7a:13:54:e8:b7:f1:9b: 27:02:ff:2b:28:27:be:8c:b7:d0:6a:97:7f:e4:91:55:d1:f7: 1e:9e:a6:23:93:f9:a4:67:27:59:d6:cb:36:19:90:82:17:a1: fc:44:4e:fa:83:b1:8f:b6:ac:6d:5a:f8:17:5a:86:79:33:08: f8:43:4c:62:f9:5b:b3:d3:e3:ce:99:66:bb:95:df:0b:b4:fe: 01:ca:42:a6:27:c6:51:4d:88:b8:c2:58:db:db:a8:7b:40:39: 90:3e:e5:80:34:9b:cd:91:d9:43:5e:87:a7:c5:2b:b4:c4:e1: 01:19:cf:ef:e8:78:16:4f:62:7a:77:25:08:62:8a:6e:09:dd: 7c:5d:e1:bf:e8:24:0f:1b:dc:4d:8c:72:21:15:f1:e1:02:b2: fd:e5:a4:73:5a:96:8f:4d:0e:aa:0a:1a:71:2f:00:2e:3e:a1: d2:77:36:66:a3:b9:40:b5:f0:38:5e:43:da:ba:fa:81:e3:ec: 64:c3:76:15:f0:d6:93:a3:1c:7a:d7:eb:8c:bb:79:fd:e5:c3: a9:e1:d4:b2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjUwNjMwMjIzOTA0WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMTIwOC1mYmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArht7Eai7sNXsI7Hs+gI9RvFXFpUmVvRPS61mMzxzp0xea6MBNuK0BUmLEvzP rcGwu7yieFwZB03rQp+/hwenXUvQQOG8vTdQYeDwzYAqchAkN+w9GovYml5KEj7z QYuZGLrjgkFCDJ3DFwl+7oFp7yxo6e+ooEjm2rZjlSkk9rTWwPN2b7AEkbI6z4h3 7pC3haa88yBhelfOAIlRakL5daa/YhdUitUk12mNbqvtPU2oO19D9byhRX305WA3 /6i2oit1aEBPDDe4MRjnq2qXvcU+n573lJaGV58OrxrqoNHE5AhUH6HTHv9gKD3V gOn+sGvWKKGCvUOuiKWURaiEtwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGKw4rRk eOTq5XORQpfwsVmhMHZSMB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvRTJFQjRDNzJE ODVBMTFFREE5NkIxRDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAtcr4DBABnNpowDQYJKoZIhvcNAQELBQADggEBABtWNTDz F3+wCQYQJqGzGuBKSc2Y/i7O3kE9Ha1yN4zvoIMETgxAlFhu8TQ22BhcehNU6Lfx mycC/ysoJ76Mt9Bql3/kkVXR9x6epiOT+aRnJ1nWyzYZkIIXofxETvqDsY+2rG1a +BdahnkzCPhDTGL5W7PT486ZZruV3wu0/gHKQqYnxlFNiLjCWNvbqHtAOZA+5YA0 m82R2UNeh6fFK7TE4QEZz+/oeBZPYnp3JQhiim4J3Xxd4b/oJA8b3E2MciEV8eEC sv3lpHNalo9NDqoKGnEvAC4+odJ3NmajuUC18DheQ9q6+oHj7GTDdhXw1pOjHHrX 64y7ef3lw6nh1LI= -----END CERTIFICATE-----Generated at Tue Jul 1 22:37:25 2025 by rpki-client