$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5F6DA23A46B111E98B793856C4F9AE02.roa File: 5F6DA23A46B111E98B793856C4F9AE02.roa (raw, json) Hash identifier: 9HyQ/57eR9eFUhHAz1W5cHWihQdkbA5M8sMmhzOnJTs= Subject key identifier: FA:20:21:42:72:DD:40:85:38:B0:C4:F5:B6:1F:DA:D5:FD:17:7E:53 Certificate issuer: /CN=A918E6B7/serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708 Certificate serial: 1041 Authority key identifier: BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5F6DA23A46B111E98B793856C4F9AE02.roa Signing time: Fri 02 May 2025 17:57:13 +0000 ROA not before: Fri 02 May 2025 17:57:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38809 IP address blocks: 147.76.19.0/24 maxlen: 24 147.76.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.crl rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4161 (0x1041) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708 Validity Not Before: May 2 17:57:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68150779-5bb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9f:d9:89:43:3a:8c:62:f3:24:2c:79:93:3d: 1f:09:bb:5e:4f:02:d4:b1:83:70:0e:ce:36:ab:54: 6c:0f:a6:82:5f:5e:60:62:c1:b2:bc:a9:16:cf:ea: 0e:5a:ef:f6:4d:2d:28:96:9f:57:e2:a3:d8:21:87: 4c:3d:84:5a:62:d2:19:2b:8a:03:41:dc:b7:bb:3d: ed:d1:32:4e:6d:20:c9:d3:13:47:f8:4f:a6:a1:f7: 79:7d:55:b3:0e:53:53:73:df:c2:88:e7:0b:5e:4d: 0b:2a:ad:64:eb:68:73:10:dc:dd:ea:5d:51:8c:6c: 78:d7:46:06:2e:5b:be:11:ee:14:ea:93:47:fd:d3: 79:f5:ea:6e:80:73:f6:95:dd:57:67:d9:42:65:de: 9e:55:08:10:c7:e5:96:89:de:c8:7c:0d:2e:8b:f7: 35:84:7c:cb:10:3f:b4:5b:86:74:e8:bd:c5:e0:fb: 8a:2f:66:36:bf:d7:6c:08:c0:fd:8a:6d:10:58:c1: 02:e2:65:b5:67:08:d3:44:5f:35:3e:c7:a1:bd:58: aa:3b:32:4b:c0:b0:13:11:5f:ca:f1:5e:f8:fb:ca: 65:17:3a:b5:70:38:47:69:8a:0a:9c:91:4d:ea:71: d3:56:5c:aa:fd:4c:96:19:c8:6d:6b:04:a1:85:0a: ee:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:20:21:42:72:DD:40:85:38:B0:C4:F5:B6:1F:DA:D5:FD:17:7E:53 X509v3 Authority Key Identifier: keyid:BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/5F6DA23A46B111E98B793856C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.76.19.0/24 147.76.240.0/24 Signature Algorithm: sha256WithRSAEncryption 20:3a:b2:1e:17:4d:3c:9a:b7:b9:63:5a:9f:75:f6:91:9f:27: 5c:d3:1a:d7:1d:46:a6:09:7c:fa:9a:e8:7c:de:1d:1f:24:92: d5:d6:05:80:7d:c4:43:7d:b9:90:15:1f:53:18:2a:cd:52:2a: b2:11:ea:89:d8:39:2d:9e:6d:d1:78:eb:92:e2:f4:9e:70:f1: 3e:8b:ab:30:08:f3:10:a5:8e:74:50:e4:c0:11:ea:50:d5:03: 9a:fd:58:49:2d:8a:3f:6e:40:57:9c:03:1f:3e:0e:c8:20:7d: 93:1f:ac:f6:f9:19:64:88:1a:83:3f:92:e4:95:1f:3a:eb:2a: 82:d0:4d:b6:e3:76:6a:61:b2:37:00:bb:99:ac:ca:a4:d3:d0: 71:d3:e6:28:e6:09:28:3e:7b:9e:96:f1:11:56:4d:b6:b3:c3: 3d:66:81:df:92:00:27:b4:1a:e0:e3:31:d5:e2:06:05:1b:a2: af:aa:2d:c6:e9:34:41:54:a5:b6:67:65:5f:83:96:ea:6f:32: de:cc:9f:cd:60:7e:ef:63:2e:4b:09:a6:e9:0f:f8:83:76:5e: 57:e3:f9:5a:bf:ed:9a:e6:ee:18:cd:b6:8b:6b:d5:92:21:7c: 06:77:5a:b6:6c:b3:17:b4:f7:f7:22:3d:af:dc:07:8e:0b:c4: c7:b2:49:6d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKEJFNzI1NDg0QjhDRDBEMUQ4RDc3RUQ4N0NDQ0VGQURG NzkzRjQ3MDgwHhcNMjUwNTAyMTc1NzEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MDc3OS01YmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJ/ZiUM6jGLzJCx5kz0fCbteTwLUsYNwDs42q1RsD6aCX15gYsGyvKkWz+oO Wu/2TS0olp9X4qPYIYdMPYRaYtIZK4oDQdy3uz3t0TJObSDJ0xNH+E+mofd5fVWz DlNTc9/CiOcLXk0LKq1k62hzENzd6l1RjGx410YGLlu+Ee4U6pNH/dN59epugHP2 ld1XZ9lCZd6eVQgQx+WWid7IfA0ui/c1hHzLED+0W4Z06L3F4PuKL2Y2v9dsCMD9 im0QWMEC4mW1ZwjTRF81PsehvViqOzJLwLATEV/K8V74+8plFzq1cDhHaYoKnJFN 6nHTVlyq/UyWGchtawShhQruHwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPogIUJy 3UCFOLDE9bYf2tX9F35TMB8GA1UdIwQYMBaAFL5yVIS4zQ0djXfth8zO+t95P0cI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9BRTdENEQ0RTQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi92bkpVaExqTkRSMk5kLTJIek03NjMza19S d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZuSlVoTGpORFIyTmQtMkh6TTc2MzNrX1J3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU2QjcvQUU3RDRENEU0NkFDMTFFOTk2MDg4MzQ4QzRGOUFFMDIvNUY2REEyM0E0 NkIxMTFFOThCNzkzODU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACTTBMDBACTTPAwDQYJKoZIhvcNAQELBQADggEBACA6sh4X TTyat7ljWp919pGfJ1zTGtcdRqYJfPqa6HzeHR8kktXWBYB9xEN9uZAVH1MYKs1S KrIR6onYOS2ebdF465Li9J5w8T6LqzAI8xCljnRQ5MAR6lDVA5r9WEktij9uQFec Ax8+DsggfZMfrPb5GWSIGoM/kuSVHzrrKoLQTbbjdmphsjcAu5msyqTT0HHT5ijm CSg+e56W8RFWTbazwz1mgd+SACe0GuDjMdXiBgUboq+qLcbpNEFUpbZnZV+Dlupv Mt7Mn81gfu9jLksJpukP+IN2Xlfj+Vq/7Zrm7hjNtotr1ZIhfAZ3WrZssxe09/ci Pa/cB44LxMeySW0= -----END CERTIFICATE-----Generated at Wed May 14 20:55:09 2025 by rpki-client