$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5E2DFFA0F30411EE9E863142C4F9AE02.roa File: 5E2DFFA0F30411EE9E863142C4F9AE02.roa (raw, json) Hash identifier: x4zzjUO5d9GimvlA4WUan1CTS5EsDbPDr1cGCqRexEM= Subject key identifier: 53:59:83:BC:66:30:5A:65:18:E3:67:0A:44:51:4A:01:A0:DD:05:6A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E31 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5E2DFFA0F30411EE9E863142C4F9AE02.roa Signing time: Thu 08 May 2025 15:55:40 +0000 ROA not before: Thu 08 May 2025 15:55:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45536 IP address blocks: 157.20.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7729 (0x1e31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3fb-3150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:46:d7:83:6d:32:65:5b:6b:c4:5f:e7:79:cf: b7:ad:07:e5:99:45:2d:52:ec:ff:a9:80:c1:84:74: 27:f4:40:1f:05:f5:51:f4:2a:58:01:e0:f3:a4:8c: f1:64:7b:a9:b8:70:a1:aa:35:32:81:e8:30:23:a7: 30:a6:1d:87:d3:c0:c3:eb:0d:97:55:4d:7a:56:a3: 10:0a:24:ce:df:c5:12:8a:a1:35:d4:88:0a:c7:12: e5:f5:80:ea:f4:36:fd:a2:ca:cd:16:3a:36:3b:32: 31:91:c2:96:a6:12:d0:b4:45:5f:4c:2d:54:54:c2: d5:2f:d1:14:77:0a:b2:7a:60:f5:6c:a5:7a:e8:d1: 09:8b:e1:fc:c1:9c:ba:45:2c:3d:45:d1:0b:3d:eb: 0d:eb:3f:fd:aa:28:35:5e:fe:37:5a:e6:37:c3:77: 59:63:2a:73:20:2c:17:67:ab:d6:a2:cf:c7:90:e4: db:dd:cd:a1:b2:47:70:38:83:7a:e3:32:52:98:be: 55:36:b1:66:7a:4c:b8:6e:b7:2d:04:3e:3e:fc:33: 3f:3e:06:bc:91:55:7c:57:60:3e:19:2f:71:73:b1: 5a:db:2c:b6:bd:be:01:d4:12:81:a8:22:9e:3e:8e: f7:10:8e:2b:da:23:e8:25:d3:19:65:54:c5:94:30: 5c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:59:83:BC:66:30:5A:65:18:E3:67:0A:44:51:4A:01:A0:DD:05:6A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5E2DFFA0F30411EE9E863142C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.226.0/23 Signature Algorithm: sha256WithRSAEncryption 51:0d:0e:28:bd:b4:67:ad:aa:58:22:53:6a:8f:20:62:3a:50: f2:a4:f3:4c:58:08:a1:86:f2:5a:e8:d4:7f:ad:76:66:14:14: e9:d3:fd:58:4a:62:7a:71:7b:0f:7f:c2:50:6c:b6:70:b6:8c: 03:1d:ad:0b:98:54:c6:36:72:6c:2f:b1:eb:cc:aa:c1:b8:bf: 1f:81:0d:20:d7:8c:c7:8b:40:78:64:c5:fe:d2:89:24:c1:c9: 44:e9:4e:3b:1a:38:bc:23:83:fe:e8:9d:44:02:40:7c:89:17: 08:6b:0e:b0:e0:11:1a:fb:12:1d:66:62:b7:f6:60:69:87:84: 33:a9:bb:25:56:e7:f8:7d:68:ef:ce:db:d3:ae:df:64:5f:b2: ff:10:1d:e9:a6:9e:ef:c5:0c:02:46:eb:0c:d5:67:b0:77:5c: 9d:2c:10:8f:02:da:a3:47:fc:b1:92:12:09:2d:5f:cf:3c:4e: ad:8d:d1:ab:32:fc:da:e0:80:06:f9:a7:04:31:62:62:93:a8: 5c:e9:7c:96:ea:c1:52:27:f7:fb:fa:1a:79:ab:0e:02:99:10: ae:75:df:c5:31:2a:72:24:50:bb:fa:8b:ec:e3:da:58:7c:29: 3f:f7:48:84:47:19:6d:d2:d1:59:94:59:66:b8:8b:7c:c9:34: 68:fa:40:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTQwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNmYi0zMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUbXg20yZVtrxF/nec+3rQflmUUtUuz/qYDBhHQn9EAfBfVR9CpYAeDzpIzx ZHupuHChqjUygegwI6cwph2H08DD6w2XVU16VqMQCiTO38USiqE11IgKxxLl9YDq 9Db9osrNFjo2OzIxkcKWphLQtEVfTC1UVMLVL9EUdwqyemD1bKV66NEJi+H8wZy6 RSw9RdELPesN6z/9qig1Xv43WuY3w3dZYypzICwXZ6vWos/HkOTb3c2hskdwOIN6 4zJSmL5VNrFmeky4brctBD4+/DM/Pga8kVV8V2A+GS9xc7Fa2yy2vb4B1BKBqCKe Po73EI4r2iPoJdMZZVTFlDBcFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFNZg7xm MFplGONnCkRRSgGg3QVqMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUUyREZGQTBG MzA0MTFFRTlFODYzMTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFOIwDQYJKoZIhvcNAQELBQADggEBAFENDii9tGetqlgi U2qPIGI6UPKk80xYCKGG8lro1H+tdmYUFOnT/VhKYnpxew9/wlBstnC2jAMdrQuY VMY2cmwvsevMqsG4vx+BDSDXjMeLQHhkxf7SiSTByUTpTjsaOLwjg/7onUQCQHyJ FwhrDrDgERr7Eh1mYrf2YGmHhDOpuyVW5/h9aO/O29Ou32Rfsv8QHemmnu/FDAJG 6wzVZ7B3XJ0sEI8C2qNH/LGSEgktX888Tq2N0asy/NrggAb5pwQxYmKTqFzpfJbq wVIn9/v6GnmrDgKZEK5138UxKnIkULv6i+zj2lh8KT/3SIRHGW3S0VmUWWa4i3zJ NGj6QO4= -----END CERTIFICATE-----Generated at Sat May 10 23:37:32 2025 by rpki-client