$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa File: 255842A2EFF411EE853CC833C4F9AE02.roa (raw, json) Hash identifier: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM= Subject key identifier: 62:84:3D:42:BC:C1:86:99:1A:E3:C1:63:DA:EC:4C:94:BA:3C:29:6B Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: BA Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa Signing time: Sat 29 Mar 2025 05:31:04 +0000 ROA not before: Sat 29 Mar 2025 05:31:04 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38203 IP address blocks: 157.20.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E Validity Not Before: Mar 29 05:31:04 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e78598-7d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:79:3a:10:0c:78:34:9a:85:76:94:79:26:b5: 0a:fe:84:c1:26:bb:9f:6a:11:99:ee:19:fb:87:13: 4a:0d:c2:0c:b2:1b:25:5e:f4:7f:bc:51:4f:1e:b1: 5d:18:8d:84:45:c1:12:0e:80:62:85:3a:29:35:be: c2:ce:ba:07:14:a7:db:b6:32:93:92:35:51:2b:34: 94:6c:db:63:fc:6c:89:46:49:1c:78:9e:72:f2:1e: 45:a8:b7:3f:7f:8c:94:9a:15:fa:e8:7b:b7:75:11: 48:80:0f:ac:90:a2:fb:b6:c5:8a:90:5b:bc:af:89: 86:8c:92:3b:e9:cf:16:38:92:c3:b8:aa:3b:6b:33: c9:34:b4:9f:11:e2:09:8c:28:90:ad:96:7c:c7:75: 0a:99:78:40:1e:fa:84:1a:74:d6:77:f7:20:ee:27: 85:25:c8:bd:64:17:6f:fe:46:1e:1c:a4:14:94:79: e9:90:f8:6a:2d:ad:ac:60:38:e5:c1:b4:1d:29:17: 14:11:39:4e:6b:bb:33:48:2a:46:1f:28:3d:c9:e5: 43:03:40:50:06:4d:7d:dd:f7:f4:e9:e9:42:79:fe: 00:9a:92:3d:f7:67:86:94:9f:0a:8c:32:45:47:2b: ee:41:e3:04:84:5a:eb:61:57:15:9b:e4:ff:58:88: 06:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:84:3D:42:BC:C1:86:99:1A:E3:C1:63:DA:EC:4C:94:BA:3C:29:6B X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/255842A2EFF411EE853CC833C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.148.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:d0:8c:b5:a8:be:fc:6a:b7:bd:5e:e4:23:10:f3:46:d5:55: ae:02:43:30:a8:1a:cc:5b:d6:30:a7:d8:fc:c6:1e:02:52:0b: e5:78:87:8c:9a:05:0d:d9:84:9e:9f:03:01:15:31:ec:cc:57: 46:56:ee:67:14:61:41:e2:0c:9a:39:d6:98:71:5d:67:ce:ae: 38:c5:2d:11:2e:14:b3:60:83:11:71:ee:ec:e4:35:3b:18:b9: 79:50:6d:4f:d9:83:30:8e:c9:f2:04:2a:0e:7a:e0:7d:a9:d9: 11:07:ca:69:5f:1c:27:fc:6e:4e:c7:08:d3:67:a9:90:c2:21: 0b:58:49:3e:05:26:d8:aa:5a:db:58:6a:04:f0:10:b6:2f:23: f0:f3:45:f2:7e:e7:da:50:69:96:2c:b4:6e:3b:5b:a9:5c:fe: cb:38:30:d6:62:11:db:1b:d7:2c:d9:f1:97:7c:f4:c8:ce:d3: 0b:aa:2b:90:a3:91:5f:ca:85:bf:5c:b4:3d:e6:de:17:ca:0e: 07:a4:a3:9f:40:c0:53:ce:bc:8d:b9:72:39:93:7e:db:ef:cf: 3d:bc:b4:82:3a:7e:44:0b:41:0d:7a:cd:ca:35:eb:ba:40:71: 38:7b:6c:24:b5:c9:19:ed:0f:f3:83:00:ea:cc:aa:6c:35:27: 3d:75:48:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUwMzI5MDUzMTA0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U3ODU5OC03ZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHk6EAx4NJqFdpR5JrUK/oTBJrufahGZ7hn7hxNKDcIMshslXvR/vFFPHrFd GI2ERcESDoBihTopNb7CzroHFKfbtjKTkjVRKzSUbNtj/GyJRkkceJ5y8h5FqLc/ f4yUmhX66Hu3dRFIgA+skKL7tsWKkFu8r4mGjJI76c8WOJLDuKo7azPJNLSfEeIJ jCiQrZZ8x3UKmXhAHvqEGnTWd/cg7ieFJci9ZBdv/kYeHKQUlHnpkPhqLa2sYDjl wbQdKRcUETlOa7szSCpGHyg9yeVDA0BQBk193ff06elCef4AmpI992eGlJ8KjDJF RyvuQeMEhFrrYVcVm+T/WIgGIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGKEPUK8 wYaZGuPBY9rsTJS6PClrMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU4NUUvNUJDMTI2N0FFRkYzMTFFRTk3N0NBQzMxQzRGOUFFMDIvMjU1ODQyQTJF RkY0MTFFRTg1M0NDODMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFJQwDQYJKoZIhvcNAQELBQADggEBAErQjLWovvxqt71e 5CMQ80bVVa4CQzCoGsxb1jCn2PzGHgJSC+V4h4yaBQ3ZhJ6fAwEVMezMV0ZW7mcU YUHiDJo51phxXWfOrjjFLREuFLNggxFx7uzkNTsYuXlQbU/ZgzCOyfIEKg564H2p 2REHymlfHCf8bk7HCNNnqZDCIQtYST4FJtiqWttYagTwELYvI/DzRfJ+59pQaZYs tG47W6lc/ss4MNZiEdsb1yzZ8Zd89MjO0wuqK5CjkV/Khb9ctD3m3hfKDgeko59A wFPOvI25cjmTftvvzz28tII6fkQLQQ16zco167pAcTh7bCS1yRntD/ODAOrMqmw1 Jz11SLU= -----END CERTIFICATE-----Generated at Sun Apr 6 06:48:03 2025 by rpki-client