$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DDE454AE022E11EF8BAE1732C4F9AE02.roa File: DDE454AE022E11EF8BAE1732C4F9AE02.roa (raw, json) Hash identifier: f5w3RlHHn3tcU9Z7/9K/46UB5bqJJ34wV+O1eO8+l80= Subject key identifier: 8C:D4:E0:C5:A1:B3:CA:72:BC:6E:9D:A9:0E:61:8A:68:1B:E5:95:0F Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1DC0 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DDE454AE022E11EF8BAE1732C4F9AE02.roa Signing time: Thu 08 May 2025 15:53:58 +0000 ROA not before: Thu 08 May 2025 15:53:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152495 IP address blocks: 157.66.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7616 (0x1dc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:53:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd396-1e2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:93:18:cd:ac:3b:2e:e8:88:7a:48:c8:39:6a: d7:0c:6d:2d:9e:cb:1e:cc:8f:7d:f2:73:fa:84:f4: 20:93:2e:67:17:ec:a3:79:78:25:6f:e1:9d:c8:3a: 11:7c:23:62:5a:f5:02:04:42:4d:bf:ae:c4:5f:02: 0e:36:bb:72:d8:c5:6c:78:8f:d9:a7:20:a8:28:20: 96:a9:c3:47:62:64:58:68:54:9c:07:cb:65:b1:29: d5:20:7b:45:9b:c7:94:71:4f:1d:88:20:04:d6:78: d3:06:d1:5a:67:0d:bf:09:98:dc:69:88:d6:b8:0d: 07:90:2e:5a:15:03:e8:53:15:40:9c:19:d3:29:10: 4b:c4:c9:7b:00:c1:00:af:29:d4:e4:45:4d:b8:40: a4:20:1d:3b:49:67:ee:1d:a1:5a:8c:70:2d:b3:f0: 97:04:1c:a0:04:86:e9:44:e4:29:39:71:4c:08:d0: 19:5c:ac:e6:ec:60:c0:da:07:eb:8e:5f:d1:9e:bd: d2:03:cb:48:b6:5d:03:5e:78:3b:55:bc:5f:7a:24: ab:48:3f:c1:46:e4:68:83:77:53:c6:a3:e3:6f:31: eb:34:2c:ac:02:8f:d3:e3:31:3c:70:be:ab:ba:66: e3:8a:44:ac:fe:7f:36:ff:d7:61:00:1c:5b:53:01: 50:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D4:E0:C5:A1:B3:CA:72:BC:6E:9D:A9:0E:61:8A:68:1B:E5:95:0F X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DDE454AE022E11EF8BAE1732C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.74.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:a6:02:4e:1a:a6:e2:b7:0c:85:98:80:a5:11:86:2a:73:60: f7:08:a0:0d:38:d0:19:6c:0b:99:a2:61:83:d6:ee:ed:f5:4d: 0e:a4:42:2c:c4:92:a1:d8:52:ba:c8:0e:68:03:f8:5c:1b:0e: b0:09:ec:72:3f:97:33:da:b5:e8:b1:4a:eb:de:e0:01:d9:03: 10:2c:bf:59:0f:ce:aa:28:23:0c:8d:a2:23:34:b9:61:a1:f7: f6:c9:49:36:9e:39:ea:b0:bc:8e:ae:6e:bd:88:79:be:21:c8: 08:1e:07:5a:33:c9:fc:f4:bf:77:14:47:4f:9f:78:45:f6:c3: 81:90:20:25:f0:94:f9:a9:57:b5:5f:51:ff:c2:68:94:26:29: 54:c2:29:83:65:a8:2d:d0:64:c1:eb:8e:eb:a1:f4:80:7d:54: 1c:2e:10:11:c2:26:c0:9b:94:37:8e:01:f5:29:17:8b:7b:4a: 6b:f2:c1:52:8d:0b:af:bd:86:41:99:c3:10:88:66:3a:e2:59: c6:7e:4f:a5:d2:90:33:c4:d1:7d:24:f1:06:56:8b:1e:11:40: 79:0a:4b:34:6c:c4:b0:23:66:0d:7c:73:ca:63:ee:86:a6:37: 94:15:3f:74:75:fc:4a:21:d4:fa:16:fd:95:47:08:e5:08:54: e8:24:2d:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MzU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM5Ni0xZTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5MYzaw7LuiIekjIOWrXDG0tnssezI998nP6hPQgky5nF+yjeXglb+GdyDoR fCNiWvUCBEJNv67EXwIONrty2MVseI/ZpyCoKCCWqcNHYmRYaFScB8tlsSnVIHtF m8eUcU8diCAE1njTBtFaZw2/CZjcaYjWuA0HkC5aFQPoUxVAnBnTKRBLxMl7AMEA rynU5EVNuECkIB07SWfuHaFajHAts/CXBBygBIbpROQpOXFMCNAZXKzm7GDA2gfr jl/Rnr3SA8tItl0DXng7VbxfeiSrSD/BRuRog3dTxqPjbzHrNCysAo/T4zE8cL6r umbjikSs/n82/9dhABxbUwFQVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIzU4MWh s8pyvG6dqQ5himgb5ZUPMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRERFNDU0QUUw MjJFMTFFRjhCQUUxNzMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdQkowDQYJKoZIhvcNAQELBQADggEBAFqmAk4apuK3DIWY gKURhipzYPcIoA040BlsC5miYYPW7u31TQ6kQizEkqHYUrrIDmgD+FwbDrAJ7HI/ lzPateixSuve4AHZAxAsv1kPzqooIwyNoiM0uWGh9/bJSTaeOeqwvI6ubr2Ieb4h yAgeB1ozyfz0v3cUR0+feEX2w4GQICXwlPmpV7VfUf/CaJQmKVTCKYNlqC3QZMHr juuh9IB9VBwuEBHCJsCblDeOAfUpF4t7SmvywVKNC6+9hkGZwxCIZjriWcZ+T6XS kDPE0X0k8QZWix4RQHkKSzRsxLAjZg18c8pj7oamN5QVP3R1/Eoh1PoW/ZVHCOUI VOgkLT0= -----END CERTIFICATE-----Generated at Tue May 13 02:36:03 2025 by rpki-client