$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5E46267A46B111E98B793856C4F9AE02.roa File: 5E46267A46B111E98B793856C4F9AE02.roa (raw, json) Hash identifier: ggdry6EXThW8/Iqa+JecYkvu6rQ2Ed52IzTRWBsgoGk= Subject key identifier: A9:E0:7B:54:03:39:43:75:1C:CA:F8:08:2E:3F:5D:06:58:F7:BD:86 Certificate issuer: /CN=A918E6B7/serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708 Certificate serial: 103E Authority key identifier: BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5E46267A46B111E98B793856C4F9AE02.roa Signing time: Fri 02 May 2025 17:57:11 +0000 ROA not before: Fri 02 May 2025 17:57:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136518 IP address blocks: 147.76.54.0/24 maxlen: 24 147.76.55.0/24 maxlen: 24 147.76.60.0/24 maxlen: 24 147.76.62.0/24 maxlen: 24 147.76.63.0/24 maxlen: 24 147.76.64.0/24 maxlen: 24 147.76.65.0/24 maxlen: 24 147.76.66.0/24 maxlen: 24 147.76.99.0/24 maxlen: 24 147.76.100.0/24 maxlen: 24 147.76.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.crl rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4158 (0x103e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708 Validity Not Before: May 2 17:57:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68150777-eacb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:14:d7:79:43:75:06:eb:d1:b5:50:27:79:31: 06:87:df:79:2f:76:ff:86:d3:c2:f4:0b:f2:5d:9b: 59:c8:24:20:79:8b:33:51:0b:c3:6d:cf:ba:b9:21: 19:ab:8d:88:9a:86:cd:c8:d6:62:9b:52:41:8c:fa: 74:3d:8a:4e:c7:bb:de:85:b5:f0:24:b6:c3:ad:a3: 30:08:a2:9c:12:98:cb:3b:c3:e7:5c:0e:e7:b1:bf: 70:50:1f:b9:3e:eb:03:0b:87:97:b5:a2:ff:25:15: c5:0d:e9:2a:aa:4d:eb:51:8e:0b:ac:a5:bb:bc:08: 68:55:48:52:f7:45:aa:44:e4:d3:5e:2f:84:73:e8: 2b:9f:81:d1:69:67:9f:3a:c1:d4:71:d6:f9:73:c5: a5:4a:f4:47:ab:6f:b9:91:42:83:5b:00:c0:75:26: 2f:33:c2:92:57:d7:a7:e1:ff:97:e7:22:43:08:12: 72:10:03:76:ba:c9:84:96:9c:c0:f1:84:17:e1:07: 36:65:c7:61:d5:e4:57:bc:4b:75:a8:b8:50:cf:1f: cb:91:a7:ee:19:93:47:3e:c7:e4:57:b0:ed:ba:61: 1f:90:0f:a8:49:ba:ec:3d:4f:ad:dc:d7:8d:15:d2: 42:e4:17:51:b3:fa:7b:c9:96:df:a1:43:c4:38:d8: 60:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E0:7B:54:03:39:43:75:1C:CA:F8:08:2E:3F:5D:06:58:F7:BD:86 X509v3 Authority Key Identifier: keyid:BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5E46267A46B111E98B793856C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.76.54.0/23 147.76.60.0/24 147.76.62.0-147.76.66.255 147.76.99.0-147.76.101.255 Signature Algorithm: sha256WithRSAEncryption 61:ce:87:f9:0c:88:b5:8e:fa:f2:cb:af:8f:15:ef:df:76:40: db:4a:35:de:91:75:4f:1d:b1:2d:3b:6c:cf:89:5c:d0:cb:28: b5:89:de:ab:e7:0e:25:d2:0a:f3:1b:44:17:ca:63:50:b3:ad: 99:3d:bf:95:a3:6c:49:b3:ed:6b:5d:3f:86:bc:89:d8:d2:0a: d6:5d:38:b1:5c:f2:c1:e4:83:b2:bb:31:10:30:20:0e:e3:a0: ee:7a:b2:a2:1c:ba:97:43:9e:7f:65:e4:09:37:4d:f0:dd:fe: 12:5c:0f:32:cb:65:33:58:9f:b2:7c:9b:35:c9:a6:4f:8e:79: df:ea:dc:1a:90:2f:57:68:95:90:f8:86:a4:04:90:e8:86:fb: ed:29:73:23:e4:c4:70:79:11:a9:b5:f6:a2:79:25:29:c4:a2: 6d:f6:2d:f0:05:07:fe:b5:41:c4:8c:1a:1a:e3:f9:5a:42:12: 64:2a:97:18:a4:f7:fb:65:39:6e:d5:50:d8:01:07:4d:b6:ba: e0:95:4a:a2:8b:71:18:b3:39:c2:af:41:d0:43:32:a3:98:4c: c1:cd:c6:db:bb:3a:c8:f4:83:1d:ab:5c:f3:2f:ed:b3:89:fc: 6f:34:69:3a:00:75:15:e6:62:95:c1:af:40:68:08:67:4e:51: e1:29:6f:e4 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICED4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKEJFNzI1NDg0QjhDRDBEMUQ4RDc3RUQ4N0NDQ0VGQURG NzkzRjQ3MDgwHhcNMjUwNTAyMTc1NzExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MDc3Ny1lYWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9BTXeUN1BuvRtVAneTEGh995L3b/htPC9AvyXZtZyCQgeYszUQvDbc+6uSEZ q42ImobNyNZim1JBjPp0PYpOx7vehbXwJLbDraMwCKKcEpjLO8PnXA7nsb9wUB+5 PusDC4eXtaL/JRXFDekqqk3rUY4LrKW7vAhoVUhS90WqROTTXi+Ec+grn4HRaWef OsHUcdb5c8WlSvRHq2+5kUKDWwDAdSYvM8KSV9en4f+X5yJDCBJyEAN2usmElpzA 8YQX4Qc2Zcdh1eRXvEt1qLhQzx/LkafuGZNHPsfkV7DtumEfkA+oSbrsPU+t3NeN FdJC5BdRs/p7yZbfoUPEONhgQwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFKnge1QD OUN1HMr4CC4/XQZY972GMB8GA1UdIwQYMBaAFL5yVIS4zQ0djXfth8zO+t95P0cI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9BRTdENEQ0RTQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi92bkpVaExqTkRSMk5kLTJIek03NjMza19S d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZuSlVoTGpORFIyTmQtMkh6TTc2MzNrX1J3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU2QjcvQUU3RDRENEU0NkFDMTFFOTk2MDg4MzQ4QzRGOUFFMDIvNUU0NjI2N0E0 NkIxMTFFOThCNzkzODU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgDBAGTTDYDBACTTDwwDAMEAZNMPgMEAJNMQjAMAwQAk0xjAwQB k0xkMA0GCSqGSIb3DQEBCwUAA4IBAQBhzof5DIi1jvryy6+PFe/fdkDbSjXekXVP HbEtO2zPiVzQyyi1id6r5w4l0grzG0QXymNQs62ZPb+Vo2xJs+1rXT+GvInY0grW XTixXPLB5IOyuzEQMCAO46DuerKiHLqXQ55/ZeQJN03w3f4SXA8yy2UzWJ+yfJs1 yaZPjnnf6twakC9XaJWQ+IakBJDohvvtKXMj5MRweRGptfaieSUpxKJt9i3wBQf+ tUHEjBoa4/laQhJkKpcYpPf7ZTlu1VDYAQdNtrrglUqii3EYsznCr0HQQzKjmEzB zcbbuzrI9IMdq1zzL+2zifxvNGk6AHUV5mKVwa9AaAhnTlHhKW/k -----END CERTIFICATE-----Generated at Sun May 11 15:39:29 2025 by rpki-client