$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa File: 2520E06EDC4911EEA18D6172C4F9AE02.roa (raw, json) Hash identifier: 735CEWV4xMTdPvbKyy+BRBClE8tI8GawHTvrjslR6hs= Subject key identifier: 4E:5A:AB:86:D2:F4:DE:CD:35:75:68:BB:4C:3A:E5:54:7F:A1:49:5A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1DB9 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa Signing time: Thu 08 May 2025 15:53:52 +0000 ROA not before: Thu 08 May 2025 15:53:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152484 IP address blocks: 157.20.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7609 (0x1db9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:53:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd390-5c70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:27:dd:44:5b:a9:7d:f2:74:1a:35:33:45:69: b9:08:69:f8:1a:64:3d:45:de:b6:6f:08:ef:7b:0e: ba:25:89:b2:47:9f:5b:eb:53:e3:7e:49:52:a6:28: 3f:36:2e:4c:5c:a4:b9:c9:ba:69:86:6f:ce:27:63: 05:d9:b0:72:4c:62:66:e6:ea:ea:a9:5d:16:91:f2: 21:cd:94:c6:d8:d0:64:75:a6:28:92:15:99:05:15: dc:39:c2:b7:37:9c:68:20:2a:fa:80:78:3c:dd:44: dd:d3:7b:68:e2:8e:08:be:c3:1a:cb:4f:cb:3a:e5: 13:7e:44:71:0a:85:84:d3:1c:98:b6:93:2a:91:d3: 55:8f:6a:a1:51:60:e5:de:9c:44:86:e1:73:17:f4: e7:b8:e9:9c:44:59:73:0f:1d:c8:15:84:92:4d:fe: 6c:4a:9c:0e:ee:87:fd:e8:2e:da:ce:51:cd:00:e2: f8:8b:d3:9e:9b:fe:8d:8c:d9:65:36:cb:04:5f:e5: ef:ea:96:c8:86:2e:44:d9:c5:dd:77:55:ab:c1:14: 3f:17:54:c8:d5:e4:cd:e4:70:f8:57:4d:4a:21:dd: 2d:fb:01:7e:95:39:8c:b5:2b:fa:a0:14:79:8b:60: 48:82:56:98:e4:23:f4:06:2e:eb:44:01:41:81:51: 41:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5A:AB:86:D2:F4:DE:CD:35:75:68:BB:4C:3A:E5:54:7F:A1:49:5A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2520E06EDC4911EEA18D6172C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.180.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:ce:51:01:e5:96:7d:88:35:7e:3d:5f:cc:1a:aa:32:9a:6a: 32:f8:a4:85:81:25:6e:f9:97:66:41:43:49:f6:39:d2:85:bf: 4b:50:5d:88:77:52:22:58:6d:2f:a7:2a:a0:ba:83:1f:17:d3: 10:27:4b:fc:58:82:be:85:cf:e0:79:df:1b:44:bb:08:af:ea: 2c:ef:32:c1:a1:5c:ef:7c:69:99:7b:2c:56:61:dd:6a:57:9c: e3:96:ab:57:ae:02:f6:20:01:39:3e:e7:c7:a1:cd:cc:ef:50: e9:de:b2:a0:fe:97:14:7f:44:86:e4:09:13:7b:22:0d:4b:ca: 9e:cb:8a:e4:98:10:75:6b:89:50:f7:7e:a4:d1:c5:a8:50:58: bc:a4:0d:3e:22:ba:3c:9e:78:0e:65:30:71:49:55:7e:61:24: f3:21:f8:a8:b1:93:24:8e:9d:c1:b8:d1:50:a3:2a:67:41:8f: 10:3b:ba:1a:3d:22:72:7b:d6:83:12:0e:65:da:46:0c:7f:37: cb:ab:db:3d:ca:b5:74:6a:a8:66:57:5e:b5:93:17:21:06:bc: 23:e8:e5:de:d0:57:26:24:e7:a2:63:6c:ba:7d:9b:ba:59:d8: 13:0d:df:42:c1:30:be:3e:d5:c4:b8:c0:05:85:96:62:2f:30: 06:b4:43:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MzUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM5MC01YzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ifdRFupffJ0GjUzRWm5CGn4GmQ9Rd62bwjvew66JYmyR59b61PjfklSpig/ Ni5MXKS5ybpphm/OJ2MF2bByTGJm5urqqV0WkfIhzZTG2NBkdaYokhWZBRXcOcK3 N5xoICr6gHg83UTd03to4o4IvsMay0/LOuUTfkRxCoWE0xyYtpMqkdNVj2qhUWDl 3pxEhuFzF/TnuOmcRFlzDx3IFYSSTf5sSpwO7of96C7azlHNAOL4i9Oem/6NjNll NssEX+Xv6pbIhi5E2cXdd1WrwRQ/F1TI1eTN5HD4V01KId0t+wF+lTmMtSv6oBR5 i2BIglaY5CP0Bi7rRAFBgVFB8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFE5aq4bS 9N7NNXVou0w65VR/oUlaMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjUyMEUwNkVE QzQ5MTFFRUExOEQ2MTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFLQwDQYJKoZIhvcNAQELBQADggEBAEzOUQHlln2INX49 X8waqjKaajL4pIWBJW75l2ZBQ0n2OdKFv0tQXYh3UiJYbS+nKqC6gx8X0xAnS/xY gr6Fz+B53xtEuwiv6izvMsGhXO98aZl7LFZh3WpXnOOWq1euAvYgATk+58ehzczv UOnesqD+lxR/RIbkCRN7Ig1Lyp7LiuSYEHVriVD3fqTRxahQWLykDT4iujyeeA5l MHFJVX5hJPMh+KixkySOncG40VCjKmdBjxA7uho9InJ71oMSDmXaRgx/N8ur2z3K tXRqqGZXXrWTFyEGvCPo5d7QVyYk56JjbLp9m7pZ2BMN30LBML4+1cS4wAWFlmIv MAa0Q/0= -----END CERTIFICATE-----Generated at Mon May 12 18:51:24 2025 by rpki-client