$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5EC43E1A213C11EE9DC66056C4F9AE02.roa File: 5EC43E1A213C11EE9DC66056C4F9AE02.roa (raw, json) Hash identifier: bMzkx/wFNepXXNSOPh8Vc6hh0XPBuOSFoU3g8UlRrqg= Subject key identifier: BC:ED:3D:8A:96:79:D2:03:FF:7F:B6:F3:02:9C:B8:81:07:83:5A:91 Certificate issuer: /CN=A918E6B7/serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708 Certificate serial: 1040 Authority key identifier: BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5EC43E1A213C11EE9DC66056C4F9AE02.roa Signing time: Fri 02 May 2025 17:57:12 +0000 ROA not before: Fri 02 May 2025 17:57:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 2764 IP address blocks: 147.76.28.0/24 maxlen: 24 147.76.52.0/24 maxlen: 24 147.76.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.crl rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4160 (0x1040) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708 Validity Not Before: May 2 17:57:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68150778-d310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e6:cf:05:47:e9:e6:5e:fd:c1:c1:44:30:67: a1:db:c3:e6:21:a9:53:a9:de:b2:10:24:da:0a:48: 6d:98:2a:be:30:23:04:fb:5d:55:46:29:db:05:f4: 03:5e:5b:0f:13:7b:91:e3:57:39:be:55:b0:bc:b1: e0:49:99:92:4a:99:93:ec:e4:e7:af:02:cd:50:a7: 9f:34:ac:2e:0a:2f:da:05:0b:29:13:4b:89:2a:4b: b9:e4:38:0d:5c:49:f4:6e:b9:31:0d:24:dd:0f:10: 95:fc:bb:41:50:c0:ac:c1:26:c1:ed:cd:00:29:69: 8c:1c:3a:f2:0d:60:d5:68:89:b8:ca:38:99:d2:10: 89:87:34:c5:54:bf:56:e0:04:61:c4:02:24:62:c7: ef:a4:a5:37:90:80:3e:4b:a9:d2:a2:d8:97:1d:bc: 5a:2a:da:5e:76:39:cb:51:5b:49:6b:87:10:e3:61: a2:1a:49:89:f5:12:6f:e5:6b:74:da:87:44:32:fa: 5a:b1:fb:19:78:63:32:ea:18:a5:db:44:e2:cb:bd: bd:2f:32:bc:a6:1a:a4:95:c0:d3:da:7e:30:d4:fa: b0:6d:9f:ec:dc:32:1f:ca:95:50:fc:70:2e:6b:c5: 97:1b:e1:e1:79:11:1c:b1:31:ac:35:8c:52:67:db: bc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:ED:3D:8A:96:79:D2:03:FF:7F:B6:F3:02:9C:B8:81:07:83:5A:91 X509v3 Authority Key Identifier: keyid:BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5EC43E1A213C11EE9DC66056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.76.28.0/24 147.76.52.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:af:26:8c:ce:cc:93:10:90:53:2f:f9:7b:fc:20:b9:08:a6: 7e:21:d3:2a:a1:ef:fb:48:ca:54:6c:80:d9:c8:00:64:ed:b3: 33:88:de:dc:92:3c:a0:19:ee:cc:0c:65:47:28:11:b9:3b:8a: 1f:5d:6a:b3:8a:ae:1e:ab:c4:56:86:1e:ff:1f:1b:94:23:18: 1a:5d:3b:00:b3:71:71:50:6a:05:ee:38:0e:ce:52:16:12:0a: 6a:7d:10:92:d2:c6:ae:b2:6a:6f:33:1b:bf:11:e1:31:29:cc: 05:60:c8:22:64:82:b7:fb:14:8d:96:93:68:38:a2:20:c6:7f: 49:4d:93:fe:01:32:25:ae:d4:6b:f1:b7:7f:f1:5b:55:cb:eb: 48:e3:d3:15:b6:9d:94:67:a4:64:63:6d:38:36:4d:ed:df:35: 3c:3a:f9:b2:24:ab:cd:f9:63:33:7b:dc:bc:a2:d6:29:a4:d6: 07:23:81:04:5f:4b:16:e4:5b:8b:4a:45:70:16:ae:79:ff:da: e0:8c:a2:13:41:16:f8:75:be:df:99:8c:1c:46:99:89:d9:83: 27:87:f0:34:94:82:93:99:9b:36:d3:7b:7a:59:d6:f2:f4:ac: 90:31:df:fb:bc:c2:5a:9a:b9:18:64:7c:10:65:6e:9e:7d:91: 4b:e0:55:f9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKEJFNzI1NDg0QjhDRDBEMUQ4RDc3RUQ4N0NDQ0VGQURG NzkzRjQ3MDgwHhcNMjUwNTAyMTc1NzEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MDc3OC1kMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsubPBUfp5l79wcFEMGeh28PmIalTqd6yECTaCkhtmCq+MCME+11VRinbBfQD XlsPE3uR41c5vlWwvLHgSZmSSpmT7OTnrwLNUKefNKwuCi/aBQspE0uJKku55DgN XEn0brkxDSTdDxCV/LtBUMCswSbB7c0AKWmMHDryDWDVaIm4yjiZ0hCJhzTFVL9W 4ARhxAIkYsfvpKU3kIA+S6nSotiXHbxaKtpedjnLUVtJa4cQ42GiGkmJ9RJv5Wt0 2odEMvpasfsZeGMy6hil20Tiy729LzK8phqklcDT2n4w1PqwbZ/s3DIfypVQ/HAu a8WXG+HheREcsTGsNYxSZ9u82QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLztPYqW edID/3+28wKcuIEHg1qRMB8GA1UdIwQYMBaAFL5yVIS4zQ0djXfth8zO+t95P0cI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9BRTdENEQ0RTQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi92bkpVaExqTkRSMk5kLTJIek03NjMza19S d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZuSlVoTGpORFIyTmQtMkh6TTc2MzNrX1J3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU2QjcvQUU3RDRENEU0NkFDMTFFOTk2MDg4MzQ4QzRGOUFFMDIvNUVDNDNFMUEy MTNDMTFFRTlEQzY2MDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACTTBwDBAGTTDQwDQYJKoZIhvcNAQELBQADggEBAJ6vJozO zJMQkFMv+Xv8ILkIpn4h0yqh7/tIylRsgNnIAGTtszOI3tySPKAZ7swMZUcoEbk7 ih9darOKrh6rxFaGHv8fG5QjGBpdOwCzcXFQagXuOA7OUhYSCmp9EJLSxq6yam8z G78R4TEpzAVgyCJkgrf7FI2Wk2g4oiDGf0lNk/4BMiWu1Gvxt3/xW1XL60jj0xW2 nZRnpGRjbTg2Te3fNTw6+bIkq835YzN73Lyi1imk1gcjgQRfSxbkW4tKRXAWrnn/ 2uCMohNBFvh1vt+ZjBxGmYnZgyeH8DSUgpOZmzbTe3pZ1vL0rJAx3/u8wlqauRhk fBBlbp59kUvgVfk= -----END CERTIFICATE-----Generated at Wed May 14 17:30:07 2025 by rpki-client