$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/5BE270E26BBC11EFA9584A4EC4F9AE02.roa File: 5BE270E26BBC11EFA9584A4EC4F9AE02.roa (raw, json) Hash identifier: PO28TqT7JFAgsJS4OG8H4ivCR2vG+AQUGdE3hSyf+fM= Subject key identifier: B8:05:0A:6C:72:00:27:65:2F:40:26:6C:33:27:5F:4F:FE:46:30:07 Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 039A Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/5BE270E26BBC11EFA9584A4EC4F9AE02.roa Signing time: Wed 07 May 2025 01:38:18 +0000 ROA not before: Wed 07 May 2025 01:38:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140627 IP address blocks: 45.113.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 00:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2, serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: May 7 01:38:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681ab989-baa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7f:9a:62:bd:48:6e:f9:45:47:a3:0c:0c:42: bd:d6:bc:62:42:9f:eb:2a:ec:bc:9e:1b:4c:e4:9a: cc:34:1a:d4:09:4d:dc:0c:bf:f3:25:45:41:c2:e3: de:78:fe:76:6b:e2:2f:a4:16:c3:ad:8e:c6:49:63: e1:22:0d:8c:fd:4a:a1:24:20:8e:39:20:24:86:78: 97:ad:ad:ad:63:6b:32:65:f3:10:04:5b:a4:40:20: 7d:57:66:d2:d3:1b:77:ce:48:1f:fc:c0:44:a9:04: 16:1f:9b:84:ac:1c:20:64:90:bb:f4:12:f3:5c:2b: 72:d6:0c:71:fb:e6:98:ec:63:48:94:b3:bc:a7:19: c7:f1:62:c4:1a:1b:fa:09:47:1b:34:1f:79:ad:85: ce:b8:ed:5e:d1:8a:4c:68:14:78:a8:61:2e:cd:30: 60:32:18:f5:b5:bf:cd:b4:41:a6:7e:82:87:1f:ba: b1:fc:91:a6:9c:cc:f8:29:b7:ab:71:cb:a7:c1:04: f9:af:e3:18:48:56:8f:e0:32:9a:47:99:30:dd:49: 18:4e:e6:a5:93:95:1a:b0:4d:8a:80:fe:e6:f2:2f: b3:b5:2b:83:87:78:3a:a5:00:1f:1f:10:6e:37:88: b6:51:c8:2e:b8:d5:45:96:e1:6c:c9:50:84:96:d7: 34:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:05:0A:6C:72:00:27:65:2F:40:26:6C:33:27:5F:4F:FE:46:30:07 X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/5BE270E26BBC11EFA9584A4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.82.0/24 Signature Algorithm: sha256WithRSAEncryption 69:5c:32:37:56:39:a9:a8:98:a6:a1:98:93:55:28:71:bb:7d: 06:91:33:ba:0f:24:1d:64:23:b7:89:42:1e:07:16:d6:a6:8f: 5d:f9:bc:e0:63:a8:d1:24:ea:3e:0c:2f:cc:d9:01:45:b3:93: 3f:44:0d:b2:72:88:f2:16:b2:e9:c7:18:23:d6:e3:37:a0:89: 0d:c2:20:0f:a4:a3:85:8c:2b:58:95:38:de:01:12:93:bc:dd: c9:ac:7a:f8:b8:35:1a:b2:01:47:b6:9d:a1:76:1c:6e:65:ff: ce:50:e9:cd:30:ae:93:f9:19:21:59:3f:44:5b:3a:dd:34:35: 56:07:cf:b6:17:b0:bc:21:21:7e:e0:c6:4b:51:87:12:d3:d5: 0e:4b:d0:a4:e2:76:92:8c:8f:de:5b:ed:3a:a5:e7:05:8f:45: 80:c8:bf:21:c6:81:8e:01:70:28:ae:3c:b3:de:34:96:9a:e1: 3a:1b:5a:0d:37:c9:b9:2e:c8:99:13:7d:34:10:af:36:5e:5f: ed:56:57:e7:1a:22:a6:f5:ed:37:88:5a:04:b1:27:8c:f5:0a: 2a:4c:e0:a0:08:01:ae:26:99:07:b9:ac:3b:32:c6:72:31:7e: c6:b3:b7:81:9b:22:8c:ff:8e:ab:c3:af:b8:55:38:fc:e2:c9: 66:4a:fb:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjUwNTA3MDEzODE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjk4OS1iYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvH+aYr1IbvlFR6MMDEK91rxiQp/rKuy8nhtM5JrMNBrUCU3cDL/zJUVBwuPe eP52a+IvpBbDrY7GSWPhIg2M/UqhJCCOOSAkhniXra2tY2syZfMQBFukQCB9V2bS 0xt3zkgf/MBEqQQWH5uErBwgZJC79BLzXCty1gxx++aY7GNIlLO8pxnH8WLEGhv6 CUcbNB95rYXOuO1e0YpMaBR4qGEuzTBgMhj1tb/NtEGmfoKHH7qx/JGmnMz4Kber ccunwQT5r+MYSFaP4DKaR5kw3UkYTualk5UasE2KgP7m8i+ztSuDh3g6pQAfHxBu N4i2UcguuNVFluFsyVCEltc0TwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLgFCmxy ACdlL0AmbDMnX0/+RjAHMB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvNUJFMjcwRTI2 QkJDMTFFRkE5NTg0QTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcVIwDQYJKoZIhvcNAQELBQADggEBAGlcMjdWOamomKah mJNVKHG7fQaRM7oPJB1kI7eJQh4HFtamj135vOBjqNEk6j4ML8zZAUWzkz9EDbJy iPIWsunHGCPW4zegiQ3CIA+ko4WMK1iVON4BEpO83cmsevi4NRqyAUe2naF2HG5l /85Q6c0wrpP5GSFZP0RbOt00NVYHz7YXsLwhIX7gxktRhxLT1Q5L0KTidpKMj95b 7Tql5wWPRYDIvyHGgY4BcCiuPLPeNJaa4TobWg03ybkuyJkTfTQQrzZeX+1WV+ca Iqb17TeIWgSxJ4z1CipM4KAIAa4mmQe5rDsyxnIxfsazt4GbIoz/jqvDr7hVOPzi yWZK+8k= -----END CERTIFICATE-----Generated at Wed May 14 16:28:44 2025 by rpki-client