$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/E2EB4C72D85A11EDA96B1D11C4F9AE02.roa File: E2EB4C72D85A11EDA96B1D11C4F9AE02.roa (raw, json) Hash identifier: i6AcoSqcO3NvCwEFhXskxT9JukL3BBiPTq3PwcXZ51Y= Subject key identifier: AC:41:70:C5:27:8D:22:AC:CE:83:83:76:7B:94:D5:22:8F:C5:09:F4 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 07D2 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/E2EB4C72D85A11EDA96B1D11C4F9AE02.roa Signing time: Wed 02 Jul 2025 22:31:21 +0000 ROA not before: Wed 02 Jul 2025 22:31:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 61317 IP address blocks: 45.114.190.0/24 maxlen: 24 103.54.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2, serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jul 2 22:31:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6865b339-975c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a5:13:84:fd:9a:e1:5d:90:9a:b9:51:a2:21: 96:11:fe:53:d7:68:5c:1f:6f:23:5c:c6:16:78:0b: 6f:ba:75:72:ae:45:63:e3:a6:2d:d4:fc:2e:3f:ec: 81:ff:18:4c:ed:54:7a:3f:4a:e3:27:5a:4f:bb:42: 58:b1:4b:1a:f7:b4:df:30:59:92:46:7d:8b:5b:c9: f6:89:67:f7:08:8c:c0:7a:07:e8:64:68:ae:02:66: 04:32:1e:bf:3c:96:0a:61:7d:cb:e4:37:53:ed:29: cc:23:ff:62:72:75:8e:6b:17:31:92:e3:a1:6d:a6: 95:75:d0:71:73:38:d0:46:12:15:33:3b:76:3a:85: 3d:9e:d4:19:ba:89:9f:fa:49:0a:45:ee:a5:e4:97: de:53:ca:12:d7:82:f3:a2:35:b5:92:23:36:18:4f: a6:c9:0b:21:36:79:81:48:ea:a8:35:75:f0:bf:71: 28:de:22:78:1a:51:fa:30:d5:95:d2:5f:42:5b:ce: 3c:3d:4d:49:cb:68:b5:d3:fd:a7:83:54:ef:80:14: 79:41:16:0b:94:a1:ad:0d:f2:e4:52:48:4c:9b:a5: 7a:42:1f:da:6c:d7:04:aa:01:04:d0:4c:8c:ee:21: 8b:1e:09:b6:5b:93:89:37:02:98:c6:a0:8a:02:8d: 08:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:41:70:C5:27:8D:22:AC:CE:83:83:76:7B:94:D5:22:8F:C5:09:F4 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/E2EB4C72D85A11EDA96B1D11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.190.0/24 103.54.154.0/24 Signature Algorithm: sha256WithRSAEncryption 95:38:45:66:41:7f:a9:48:c8:00:fa:46:02:51:9e:a2:f8:7c: 5b:73:4e:72:b8:c2:06:9f:51:3e:73:f5:07:17:45:7c:3f:07: 09:93:9a:93:ec:7c:f5:b9:df:44:44:24:d8:24:f8:f5:a8:30: 55:48:b5:a8:77:cb:35:59:ae:c9:21:96:67:66:c7:b6:57:e5: 94:7b:c6:61:61:ca:42:6b:95:f0:e4:b6:ac:60:1d:0e:89:c6: c0:30:53:08:fe:27:b6:84:00:0c:a1:b5:61:0c:10:7f:82:07: e0:0f:2a:8f:8c:fe:46:61:00:30:02:a6:a8:6a:af:d0:df:60: 00:92:48:fc:7d:93:13:bb:f4:a5:e3:6c:61:69:6b:db:a8:3d: 7c:03:e7:b0:81:35:41:54:dd:11:51:74:53:b8:6f:fc:0a:ac: 78:a9:70:30:d1:bf:e3:44:e1:2c:0d:48:4e:26:33:b2:54:7d: c1:a5:da:a9:52:90:94:8f:ee:3d:ba:00:24:da:13:00:97:6b: 29:0d:12:16:83:33:ca:77:0c:e6:91:ac:a4:32:b0:0a:79:3b: 9f:bc:4e:3b:ef:a9:75:ae:25:56:34:8d:8f:be:2e:58:a3:1a: 02:85:2a:67:b8:8f:60:e4:b1:94:5b:58:1f:3e:38:7f:b1:03: 2a:f6:b4:fd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjUwNzAyMjIzMTIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YjMzOS05NzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqUThP2a4V2QmrlRoiGWEf5T12hcH28jXMYWeAtvunVyrkVj46Yt1PwuP+yB /xhM7VR6P0rjJ1pPu0JYsUsa97TfMFmSRn2LW8n2iWf3CIzAegfoZGiuAmYEMh6/ PJYKYX3L5DdT7SnMI/9icnWOaxcxkuOhbaaVddBxczjQRhIVMzt2OoU9ntQZuomf +kkKRe6l5JfeU8oS14LzojW1kiM2GE+myQshNnmBSOqoNXXwv3Eo3iJ4GlH6MNWV 0l9CW848PU1Jy2i10/2ng1TvgBR5QRYLlKGtDfLkUkhMm6V6Qh/abNcEqgEE0EyM 7iGLHgm2W5OJNwKYxqCKAo0IIwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKxBcMUn jSKszoODdnuU1SKPxQn0MB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvRTJFQjRDNzJE ODVBMTFFREE5NkIxRDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAtcr4DBABnNpowDQYJKoZIhvcNAQELBQADggEBAJU4RWZB f6lIyAD6RgJRnqL4fFtzTnK4wgafUT5z9QcXRXw/BwmTmpPsfPW530REJNgk+PWo MFVItah3yzVZrskhlmdmx7ZX5ZR7xmFhykJrlfDktqxgHQ6JxsAwUwj+J7aEAAyh tWEMEH+CB+APKo+M/kZhADACpqhqr9DfYACSSPx9kxO79KXjbGFpa9uoPXwD57CB NUFU3RFRdFO4b/wKrHipcDDRv+NE4SwNSE4mM7JUfcGl2qlSkJSP7j26ACTaEwCX aykNEhaDM8p3DOaRrKQysAp5O5+8TjvvqXWuJVY0jY++LlijGgKFKme4j2DksZRb WB8+OH+xAyr2tP0= -----END CERTIFICATE-----Generated at Mon Jul 21 08:42:54 2025 by rpki-client