$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C384D79CEB5811EE9EDEBA53C4F9AE02.roa File: C384D79CEB5811EE9EDEBA53C4F9AE02.roa (raw, json) Hash identifier: CK4yB8CfXR+cqfLIiGsdvxjHUsgQvHvotXkc8VYqYMA= Subject key identifier: D6:F6:92:67:8B:76:FE:D6:EF:6D:CB:3E:4E:28:F3:D2:BC:B3:36:56 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E37 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C384D79CEB5811EE9EDEBA53C4F9AE02.roa Signing time: Thu 08 May 2025 15:55:45 +0000 ROA not before: Thu 08 May 2025 15:55:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58898 IP address blocks: 157.20.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7735 (0x1e37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd401-6718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fa:08:1f:29:ec:0e:17:1f:ec:77:72:6b:c3: d1:de:45:4c:98:63:ea:bf:ca:3b:82:bb:bf:87:a8: de:f7:e0:4d:27:f0:64:c4:66:74:87:73:15:17:17: a6:dc:73:83:88:c7:81:ec:ea:cc:17:b0:3f:72:d8: fd:95:fc:52:b3:b4:10:bd:a7:1d:fe:a6:89:6b:07: bc:2c:09:38:0e:76:cf:52:f6:c6:fd:83:cb:24:ec: 4d:8e:a3:87:3a:0d:30:23:91:39:06:e2:78:5b:89: f2:5b:26:a4:a1:a1:95:f9:14:cc:1c:fd:78:14:6a: 40:94:56:f6:0b:ba:86:6c:93:e0:af:c6:f8:2a:f8: 1b:de:1c:f9:3c:d3:d2:0a:a5:45:b9:32:ba:f4:a9: d1:9d:3f:f1:b4:7b:eb:59:62:76:d4:29:34:6f:9b: df:50:37:17:16:cc:8d:40:f3:da:5d:a9:dc:fe:73: 6b:5e:65:3f:6a:e7:ac:3b:fb:85:e3:13:d9:3f:37: ca:0b:73:81:24:b9:cc:56:b1:5d:16:99:02:a8:3d: b7:45:25:61:0e:b7:dd:7c:b5:e7:fd:3a:63:51:a6: 1c:4d:f2:ba:6c:5a:81:11:c4:af:9b:cb:b5:f1:d8: a6:af:21:1b:da:94:58:77:99:28:1a:2b:73:7d:35: 58:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F6:92:67:8B:76:FE:D6:EF:6D:CB:3E:4E:28:F3:D2:BC:B3:36:56 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C384D79CEB5811EE9EDEBA53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.250.0/23 Signature Algorithm: sha256WithRSAEncryption 62:2e:8d:e1:2d:4e:d2:93:8c:86:0e:11:4b:a8:d2:5f:21:8c: 30:2e:fa:b9:da:a0:da:40:4b:dc:97:e9:16:14:c2:fd:6a:fa: 5e:00:b7:b3:5c:cd:32:de:cd:bc:12:94:4c:ce:54:20:64:84: 49:29:99:6f:92:5c:05:b0:4f:b7:c6:47:bc:ab:a2:11:3d:2a: e6:00:6e:6b:ff:dd:03:31:b5:d1:0b:dc:4d:47:6f:50:89:29: 19:79:17:08:38:9e:7b:23:90:42:de:95:54:4d:02:c2:73:e0: cb:ab:6e:4a:6f:2a:ed:d0:3e:35:11:12:4a:a9:e3:08:09:f4: ec:cc:25:10:c2:de:c1:f0:ee:cf:90:7b:80:a0:96:29:a4:ec: 52:26:6c:3e:42:a5:10:00:dd:8a:00:b2:19:24:bb:70:11:51: 49:0a:5f:38:4a:4d:b4:98:5c:63:b8:b7:84:79:77:7c:49:b5: d7:9d:b7:15:6d:34:20:b2:09:b8:9b:32:09:4c:1b:6d:a7:0e: 14:80:bf:31:e6:84:df:5a:a0:0a:93:a4:8b:e1:91:34:24:57: 72:42:ea:7a:c5:b1:f6:f4:04:e3:46:36:4c:2a:b7:72:22:b9: 58:87:2d:b6:2e:6f:91:0f:52:2a:a0:6e:07:18:29:a2:c9:9d: d7:d3:23:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTQ1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDQwMS02NzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPoIHynsDhcf7Hdya8PR3kVMmGPqv8o7gru/h6je9+BNJ/BkxGZ0h3MVFxem 3HODiMeB7OrMF7A/ctj9lfxSs7QQvacd/qaJawe8LAk4DnbPUvbG/YPLJOxNjqOH Og0wI5E5BuJ4W4nyWyakoaGV+RTMHP14FGpAlFb2C7qGbJPgr8b4Kvgb3hz5PNPS CqVFuTK69KnRnT/xtHvrWWJ21Ck0b5vfUDcXFsyNQPPaXanc/nNrXmU/auesO/uF 4xPZPzfKC3OBJLnMVrFdFpkCqD23RSVhDrfdfLXn/TpjUaYcTfK6bFqBEcSvm8u1 8dimryEb2pRYd5koGitzfTVYuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNb2kmeL dv7W723LPk4o89K8szZWMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzM4NEQ3OUNF QjU4MTFFRTlFREVCQTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFPowDQYJKoZIhvcNAQELBQADggEBAGIujeEtTtKTjIYO EUuo0l8hjDAu+rnaoNpAS9yX6RYUwv1q+l4At7NczTLezbwSlEzOVCBkhEkpmW+S XAWwT7fGR7yrohE9KuYAbmv/3QMxtdEL3E1Hb1CJKRl5Fwg4nnsjkELelVRNAsJz 4MurbkpvKu3QPjUREkqp4wgJ9OzMJRDC3sHw7s+Qe4Cglimk7FImbD5CpRAA3YoA shkku3ARUUkKXzhKTbSYXGO4t4R5d3xJtdedtxVtNCCyCbibMglMG22nDhSAvzHm hN9aoAqTpIvhkTQkV3JC6nrFsfb0BONGNkwqt3IiuViHLbYub5EPUiqgbgcYKaLJ ndfTI5Y= -----END CERTIFICATE-----Generated at Sun May 11 04:07:16 2025 by rpki-client