$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0AC03CAC007411EFA54F0579C4F9AE02.roa File: 0AC03CAC007411EFA54F0579C4F9AE02.roa (raw, json) Hash identifier: 3PHCVgLUhOltqssysnSTlfzC2hEpRlrYMQtBINEXn5Y= Subject key identifier: 58:EB:84:BC:26:6D:7D:8D:CD:A9:69:A9:35:A4:09:2B:59:75:8B:0C Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1DB8 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0AC03CAC007411EFA54F0579C4F9AE02.roa Signing time: Thu 08 May 2025 15:53:51 +0000 ROA not before: Thu 08 May 2025 15:53:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152483 IP address blocks: 157.20.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7608 (0x1db8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:53:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd38e-2325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f1:df:81:80:14:8f:83:51:05:b6:3c:59:6e: 0b:8c:f9:9a:1d:d6:c8:8f:ac:31:d0:20:f2:61:b7: 18:0a:07:79:f9:ad:44:5c:c0:81:df:0d:40:61:6f: 9f:78:2f:7c:c9:af:3c:a6:2a:29:0a:26:bd:27:3c: 13:33:8a:d2:0e:9e:4e:c1:17:d7:53:a4:c5:ac:37: 71:7e:65:7a:92:74:b9:99:42:b6:09:68:da:40:d5: 54:73:82:a3:99:a2:f7:52:db:32:39:30:73:b5:a4: e2:11:3f:7b:12:fa:c5:8f:2c:79:da:96:a6:7d:c2: b1:f2:ba:41:27:a4:a9:e1:85:89:26:69:bc:0a:78: 70:2e:99:a6:ec:2d:1d:2c:44:6c:9c:0f:05:bd:1a: 50:bd:c9:2f:ff:dd:92:50:b2:14:63:36:f7:d3:4f: 0b:ae:75:6f:98:5d:f9:46:6e:57:6a:49:9a:97:f0: 5d:99:56:84:eb:f3:25:df:93:e9:08:bb:7a:17:94: 92:74:52:18:8a:3a:20:d7:34:ae:3f:5e:1e:d0:d2: a3:f2:7a:6c:d0:86:f3:33:21:26:ee:9f:37:57:4b: 6b:33:7b:d6:98:4d:95:71:a7:20:22:a1:e0:a1:04: 43:b3:47:c6:1f:15:cc:44:cb:c3:7d:4b:0b:57:b9: c7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:EB:84:BC:26:6D:7D:8D:CD:A9:69:A9:35:A4:09:2B:59:75:8B:0C X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0AC03CAC007411EFA54F0579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.166.0/24 Signature Algorithm: sha256WithRSAEncryption b3:8d:ae:d7:19:ab:78:07:f3:48:44:9e:d5:8c:d3:7e:e8:d4: d3:a4:36:de:54:af:e9:5a:54:78:3b:1f:0a:11:35:d8:bc:48: 0a:e0:4a:5f:c4:04:f6:85:11:8b:95:c3:a4:dd:06:13:59:57: 4a:62:e2:e0:01:65:d8:3e:91:0e:8c:95:40:f6:8e:39:df:61: 0b:14:fa:aa:ee:ad:18:01:e8:63:ee:3d:3d:be:02:29:a1:d1: 43:87:6a:bd:6d:fe:95:36:34:f0:d8:72:34:22:f9:1a:20:db: 67:71:71:cc:2e:3b:1a:cc:f4:2a:e7:bb:3d:97:2a:78:07:be: 3d:4a:6c:5c:3a:f7:a4:21:a1:62:9e:05:f6:ee:e5:04:6e:8b: ad:1e:6f:52:bc:20:22:22:6b:67:92:26:50:fd:f2:3a:c9:09: 7c:f1:92:59:f0:4f:8a:24:d3:16:cf:40:89:f5:6f:e2:ae:2b: 72:37:48:67:60:cc:45:0a:56:d4:78:86:15:6f:e9:f3:3d:a5: 2c:94:d6:fa:1b:3e:78:45:95:ca:24:4c:e6:79:36:39:a3:9c: d7:e3:49:46:32:04:39:fa:c3:5e:37:9a:84:ad:4b:b6:cb:c3: 36:7f:11:f8:54:c0:5e:35:58:d7:15:63:c4:cc:9d:20:75:5e: 49:76:5d:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MzUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM4ZS0yMzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlPHfgYAUj4NRBbY8WW4LjPmaHdbIj6wx0CDyYbcYCgd5+a1EXMCB3w1AYW+f eC98ya88piopCia9JzwTM4rSDp5OwRfXU6TFrDdxfmV6knS5mUK2CWjaQNVUc4Kj maL3UtsyOTBztaTiET97EvrFjyx52pamfcKx8rpBJ6Sp4YWJJmm8CnhwLpmm7C0d LERsnA8FvRpQvckv/92SULIUYzb3008LrnVvmF35Rm5Xakmal/BdmVaE6/Ml35Pp CLt6F5SSdFIYijog1zSuP14e0NKj8nps0IbzMyEm7p83V0trM3vWmE2VcacgIqHg oQRDs0fGHxXMRMvDfUsLV7nHDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFjrhLwm bX2NzalpqTWkCStZdYsMMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMEFDMDNDQUMw MDc0MTFFRkE1NEYwNTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFKYwDQYJKoZIhvcNAQELBQADggEBALONrtcZq3gH80hE ntWM037o1NOkNt5Ur+laVHg7HwoRNdi8SArgSl/EBPaFEYuVw6TdBhNZV0pi4uAB Zdg+kQ6MlUD2jjnfYQsU+qrurRgB6GPuPT2+Aimh0UOHar1t/pU2NPDYcjQi+Rog 22dxccwuOxrM9Crnuz2XKngHvj1KbFw696QhoWKeBfbu5QRui60eb1K8ICIia2eS JlD98jrJCXzxklnwT4ok0xbPQIn1b+KuK3I3SGdgzEUKVtR4hhVv6fM9pSyU1vob PnhFlcokTOZ5NjmjnNfjSUYyBDn6w143moStS7bLwzZ/EfhUwF41WNcVY8TMnSB1 Xkl2XSA= -----END CERTIFICATE-----Generated at Sun May 11 22:08:26 2025 by rpki-client