$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa File: E1F3085E777E11EFB3F75352C4F9AE02.roa (raw, json) Hash identifier: KCUoweqEDh9jHcBtb7W3HaJWTeDZFQpve4LjGr9WIOQ= Subject key identifier: 72:10:01:16:A5:63:16:D3:44:29:A8:FE:13:4D:2C:29:0F:86:B8:8D Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: C5 Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa Signing time: Tue 19 Aug 2025 14:24:27 +0000 ROA not before: Tue 19 Aug 2025 14:24:27 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135530 IP address blocks: 45.254.36.0/23 maxlen: 23 45.254.36.0/24 maxlen: 24 45.254.37.0/24 maxlen: 24 45.254.38.0/24 maxlen: 24 45.254.39.0/24 maxlen: 24 2405:a280:33::/48 maxlen: 48 2405:a280:34::/48 maxlen: 48 2405:a280:35::/48 maxlen: 48 2405:a280:42::/48 maxlen: 48 2405:a280:43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Aug 19 14:24:27 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a4891b-4ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ed:42:98:6c:92:83:52:ab:6c:cb:e0:8c:05: 66:32:78:a3:9a:6b:7c:4f:a1:f8:a2:b0:b7:54:7e: 64:0f:fe:d1:51:6b:c8:7a:91:ba:c0:09:f5:d0:5c: 35:85:7a:33:cc:06:1e:cb:0b:e7:d6:f7:95:08:a3: ab:f9:c2:e6:36:3b:46:75:66:bc:39:99:31:36:ba: 48:c6:f8:67:20:79:09:07:75:21:c2:fe:01:da:7e: 4c:ab:43:0b:08:c4:15:a8:e4:2b:da:4c:8c:40:2c: 3f:7c:35:02:ee:62:b3:fc:5c:b8:57:3e:0b:db:69: f9:db:c3:f4:28:37:f0:19:eb:60:38:34:5a:ba:7f: f7:f7:e3:16:57:87:df:3b:69:ca:8b:1f:bb:96:52: 2d:69:82:cd:41:e7:84:67:ce:de:a2:6d:10:a0:48: 84:75:13:ce:79:40:8c:ab:e3:6d:6d:be:87:2e:5b: c6:5d:2f:7e:96:47:0d:29:bb:f8:98:cc:09:85:da: 98:9a:be:0d:fb:66:04:1d:b2:d5:fb:b6:2c:e9:5b: 9e:2b:b1:50:73:4a:ce:c0:4e:c2:6c:3a:1e:be:40: 66:c0:14:36:25:c0:38:3f:81:0e:3b:c9:0e:5f:7a: 03:79:e7:e1:9c:80:83:d5:21:18:82:ac:ea:70:f6: d1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:10:01:16:A5:63:16:D3:44:29:A8:FE:13:4D:2C:29:0F:86:B8:8D X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.254.36.0/22 IPv6: 2405:a280:33::-2405:a280:35:ffff:ffff:ffff:ffff:ffff 2405:a280:42::/47 Signature Algorithm: sha256WithRSAEncryption a5:b7:f6:c9:83:83:83:64:cd:9c:cd:0a:69:22:aa:58:75:1b: 14:88:e1:8d:8f:c8:23:5a:8e:8d:4d:2c:3b:20:89:92:db:83: 09:88:57:87:a5:ba:01:7c:fe:f9:e2:df:56:78:ea:3c:97:49: 23:0c:da:c5:1b:99:f8:c9:59:eb:b4:d2:a2:fb:d4:fb:e5:11: d6:bd:bb:55:38:59:5b:a8:68:80:f4:4a:81:1e:d3:d8:51:1f: 22:27:a3:84:dc:3c:88:e1:c0:9d:9d:c7:86:b4:d9:5c:a2:68: c2:0d:b1:f1:36:11:13:a9:f1:91:62:d1:5d:44:d8:d3:bb:b0: bd:e0:82:35:7f:1f:50:8a:68:c0:e3:c5:91:0e:95:85:0a:9c: f3:de:29:5c:50:34:e5:1a:79:57:c4:18:3d:7c:dd:fc:89:6d: 2e:f8:d8:8a:af:90:7a:8d:8b:a1:4b:6e:a0:0d:5c:7e:50:e5: 8b:41:2d:7f:1e:5b:d9:dd:91:d3:03:88:ac:31:0f:12:b1:ef: b6:a9:82:26:a9:0c:e3:33:9e:80:ee:2f:1f:52:96:ca:c4:fb: ff:73:c1:82:5e:db:b2:24:7f:ee:af:d3:00:46:3e:eb:02:44: f6:d9:0b:e2:b7:fe:ea:bb:d5:5a:94:19:26:9c:de:fb:2a:fc: 57:05:3a:20 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5MkMxMTAvBgNVBAUTKDgxN0REMzgwMkYyNkU1N0VDRTgyNjVDRTg2MjZGQ0JC OUM2NEU5RDQwHhcNMjUwODE5MTQyNDI3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0ODkxYi00ZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuu1CmGySg1KrbMvgjAVmMnijmmt8T6H4orC3VH5kD/7RUWvIepG6wAn10Fw1 hXozzAYeywvn1veVCKOr+cLmNjtGdWa8OZkxNrpIxvhnIHkJB3Uhwv4B2n5Mq0ML CMQVqOQr2kyMQCw/fDUC7mKz/Fy4Vz4L22n528P0KDfwGetgODRaun/39+MWV4ff O2nKix+7llItaYLNQeeEZ87eom0QoEiEdRPOeUCMq+Ntbb6HLlvGXS9+lkcNKbv4 mMwJhdqYmr4N+2YEHbLV+7Ys6VueK7FQc0rOwE7CbDoevkBmwBQ2JcA4P4EOO8kO X3oDeefhnICD1SEYgqzqcPbRPQIDAQABo4ICujCCArYwHQYDVR0OBBYEFHIQARal YxbTRCmo/hNNLCkPhriNMB8GA1UdIwQYMBaAFIF904AvJuV+zoJlzoYm/LucZOnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDkyQy9FMkMwNzdERTc3 NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVYN09nbVhPaGliOHU1eGs2 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5MkMvRTJDMDc3REU3NzY2MTFFRkI1NUVEMjc5QzRGOUFFMDIvRTFGMzA4NUU3 NzdFMTFFRkIzRjc1MzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMAwEAgABMAYDBAIt/iQwIwQCAAIwHTASAwcAJAWigAAzAwcBJAWigAA0AwcB JAWigABCMA0GCSqGSIb3DQEBCwUAA4IBAQClt/bJg4ODZM2czQppIqpYdRsUiOGN j8gjWo6NTSw7IImS24MJiFeHpboBfP754t9WeOo8l0kjDNrFG5n4yVnrtNKi+9T7 5RHWvbtVOFlbqGiA9EqBHtPYUR8iJ6OE3DyI4cCdnceGtNlcomjCDbHxNhETqfGR YtFdRNjTu7C94II1fx9QimjA48WRDpWFCpzz3ilcUDTlGnlXxBg9fN38iW0u+NiK r5B6jYuhS26gDVx+UOWLQS1/HlvZ3ZHTA4isMQ8Sse+2qYImqQzjM56A7i8fUpbK xPv/c8GCXtuyJH/ur9MARj7rAkT22Qvit/7qu9ValBkmnN77KvxXBTog -----END CERTIFICATE-----Generated at Sun Aug 24 03:23:26 2025 by rpki-client