$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa File: E1F3085E777E11EFB3F75352C4F9AE02.roa (raw, json) Hash identifier: 2xJjfpp98NtJEfsdZF7xdB6iZLc0XXycnGYFfCIk29I= Subject key identifier: 7B:22:42:AD:36:28:07:A4:58:73:71:C2:FE:BA:CB:F9:C7:07:B9:40 Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: A9 Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa Signing time: Wed 09 Jul 2025 07:43:13 +0000 ROA not before: Wed 09 Jul 2025 07:43:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135530 IP address blocks: 45.254.36.0/23 maxlen: 23 45.254.36.0/24 maxlen: 24 45.254.37.0/24 maxlen: 24 45.254.39.0/24 maxlen: 24 2405:a280:34::/48 maxlen: 48 2405:a280:35::/48 maxlen: 48 2405:a280:42::/48 maxlen: 48 2405:a280:43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Jul 9 07:43:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686e1d91-9957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:d8:9c:13:b6:4d:5a:a7:59:d1:74:ea:97: f5:0a:79:4a:2e:ba:15:ad:87:ea:b3:2b:c1:69:f3: 5e:fe:ba:13:da:b1:90:bf:68:0c:87:41:94:4c:fb: 4a:54:97:cb:66:bb:1a:de:e7:97:1a:24:7b:ef:02: 83:a5:09:a6:d0:7f:6a:db:39:5e:27:df:18:17:f2: 7d:8a:ab:78:3b:83:b5:49:5f:ee:36:fb:14:ad:07: b2:30:bd:43:d7:00:7d:75:8b:c9:6d:ce:e5:38:52: 29:fb:21:24:9c:a2:db:0c:c4:e4:72:c0:f7:78:58: 20:0f:2f:8a:6b:bf:b8:bd:5b:83:15:3f:45:d5:ac: a6:91:16:eb:1e:9b:ce:31:f3:b2:ee:e8:1a:e5:0e: 82:17:4b:3a:76:db:1d:3c:d6:1b:27:48:30:92:6d: 08:4f:61:1b:09:b4:7f:9e:ef:20:8a:97:5e:a9:eb: 83:08:de:8a:04:97:61:d5:c0:42:0f:97:c3:c3:e7: 02:c6:07:9b:5f:5c:ee:6a:3e:06:5f:a4:07:9d:e0: 90:83:66:51:7a:ec:e2:ef:5f:ec:8b:2f:fc:39:ae: a2:74:13:79:43:f9:97:79:dc:ad:52:37:21:8a:fb: c6:54:28:34:bb:11:cb:0c:3e:fe:ae:29:1e:10:e9: 8f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:22:42:AD:36:28:07:A4:58:73:71:C2:FE:BA:CB:F9:C7:07:B9:40 X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.254.36.0/23 45.254.39.0/24 IPv6: 2405:a280:34::/47 2405:a280:42::/47 Signature Algorithm: sha256WithRSAEncryption 85:10:d5:0d:12:c2:21:e8:9a:3c:ba:fa:f7:5b:8b:6c:92:35: a2:6f:4b:49:0e:ef:79:81:7b:59:3b:4a:09:cd:f4:10:1b:5d: 97:8b:40:f8:c8:11:71:05:79:21:8e:52:22:1d:22:9c:3c:34: 0e:9b:b4:17:4f:9b:67:84:ee:0c:27:00:78:c4:75:98:6c:8b: e0:e7:dc:9c:9d:10:b7:4d:36:f6:0d:90:2a:bc:64:7d:d1:5c: 49:93:df:93:e8:a6:44:e1:2a:33:9d:da:53:08:ec:31:76:55: d1:f7:b5:ad:90:20:2e:88:0b:4c:9e:b0:60:6b:00:f2:fd:54: 8e:04:81:45:ec:aa:3c:73:ab:13:ea:c4:4f:d4:21:c0:3a:0e: 49:3b:ce:43:67:03:b1:2a:22:6b:ac:5b:28:e7:25:30:4f:ed: bb:6a:ea:02:34:0d:34:96:4f:9d:21:cb:4f:10:bd:44:d3:1a: d1:50:bb:b3:2a:69:e0:78:99:5f:a8:6a:8a:2c:d7:58:cb:b2: 37:78:78:27:81:ab:ad:04:23:ed:4c:b4:dc:ae:b3:b6:23:6e: ec:2c:29:9f:88:d9:2e:7c:fb:7d:cc:f3:c9:af:1d:de:ae:90: 4d:8a:87:22:ce:be:84:ca:6d:83:35:43:50:a5:77:c5:a0:61: bd:99:4d:4b -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5MkMxMTAvBgNVBAUTKDgxN0REMzgwMkYyNkU1N0VDRTgyNjVDRTg2MjZGQ0JC OUM2NEU5RDQwHhcNMjUwNzA5MDc0MzEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZlMWQ5MS05OTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumnYnBO2TVqnWdF06pf1CnlKLroVrYfqsyvBafNe/roT2rGQv2gMh0GUTPtK VJfLZrsa3ueXGiR77wKDpQmm0H9q2zleJ98YF/J9iqt4O4O1SV/uNvsUrQeyML1D 1wB9dYvJbc7lOFIp+yEknKLbDMTkcsD3eFggDy+Ka7+4vVuDFT9F1aymkRbrHpvO MfOy7uga5Q6CF0s6dtsdPNYbJ0gwkm0IT2EbCbR/nu8gipdeqeuDCN6KBJdh1cBC D5fDw+cCxgebX1zuaj4GX6QHneCQg2ZReuzi71/siy/8Oa6idBN5Q/mXedytUjch ivvGVCg0uxHLDD7+rikeEOmPmwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFHsiQq02 KAekWHNxwv66y/nHB7lAMB8GA1UdIwQYMBaAFIF904AvJuV+zoJlzoYm/LucZOnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDkyQy9FMkMwNzdERTc3 NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVYN09nbVhPaGliOHU1eGs2 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5MkMvRTJDMDc3REU3NzY2MTFFRkI1NUVEMjc5QzRGOUFFMDIvRTFGMzA4NUU3 NzdFMTFFRkIzRjc1MzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBAEt/iQDBAAt/icwGAQCAAIwEgMHASQFooAANAMHASQFooAA QjANBgkqhkiG9w0BAQsFAAOCAQEAhRDVDRLCIeiaPLr691uLbJI1om9LSQ7veYF7 WTtKCc30EBtdl4tA+MgRcQV5IY5SIh0inDw0Dpu0F0+bZ4TuDCcAeMR1mGyL4Ofc nJ0Qt0029g2QKrxkfdFcSZPfk+imROEqM53aUwjsMXZV0fe1rZAgLogLTJ6wYGsA 8v1UjgSBReyqPHOrE+rET9QhwDoOSTvOQ2cDsSoia6xbKOclME/tu2rqAjQNNJZP nSHLTxC9RNMa0VC7sypp4HiZX6hqiizXWMuyN3h4J4GrrQQj7Uy03K6ztiNu7Cwp n4jZLnz7fczzya8d3q6QTYqHIs6+hMptgzVDUKV3xaBhvZlNSw== -----END CERTIFICATE-----Generated at Mon Jul 21 13:28:22 2025 by rpki-client