$ rpki-client -vvf rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/5E4A01CA941111EE84D37717C4F9AE02.roa File: 5E4A01CA941111EE84D37717C4F9AE02.roa (raw, json) Hash identifier: +U5B9OE0qMYRoG1rt8ratJnPLrr7cjy6lf0aOQepvOI= Subject key identifier: 51:08:0B:A3:45:6C:AC:4C:64:C9:9B:FD:25:FF:67:3D:19:1C:D7:6C Certificate issuer: /CN=A9140D20/serialNumber=EFCF131AD6480D1DD04F1D4476E3595452FF441C Certificate serial: 081E Authority key identifier: EF:CF:13:1A:D6:48:0D:1D:D0:4F:1D:44:76:E3:59:54:52:FF:44:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788TGtZIDR3QTx1EduNZVFL_RBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/5E4A01CA941111EE84D37717C4F9AE02.roa Signing time: Mon 02 Jun 2025 21:08:35 +0000 ROA not before: Mon 02 Jun 2025 21:08:35 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136506 IP address blocks: 157.119.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/788TGtZIDR3QTx1EduNZVFL_RBw.crl rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/788TGtZIDR3QTx1EduNZVFL_RBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788TGtZIDR3QTx1EduNZVFL_RBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140D20, serialNumber=EFCF131AD6480D1DD04F1D4476E3595452FF441C Validity Not Before: Jun 2 21:08:35 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e12d3-0f4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a4:fd:50:72:6a:c5:dd:84:65:ec:b1:b5:bb: b1:4e:e9:88:a9:28:f8:47:8c:03:08:31:17:a6:04: a5:c5:6a:1b:dc:71:80:7a:58:9f:69:3e:8a:2e:ea: e5:7e:c1:23:9b:7b:38:e0:79:ec:b1:df:bc:40:2e: 4b:35:c8:e5:e0:36:93:0c:cb:58:62:1d:35:b2:c9: eb:ca:55:99:33:d9:32:fe:46:4c:6e:85:96:ab:ab: af:ed:b8:c5:f3:42:d5:30:eb:c9:4e:9d:0b:02:7a: f1:93:2a:28:3e:73:8e:cf:22:96:d1:16:ce:4f:8d: 83:1c:27:2f:7e:5c:79:5b:a2:0d:1b:46:5b:f2:45: 85:b9:4f:4d:c1:93:0e:01:32:4f:95:4e:66:15:fb: ff:be:ba:fa:49:95:eb:8b:b0:eb:cf:fd:c2:66:0b: 44:c3:2f:38:b3:5c:73:ae:55:97:c8:2c:a1:1b:76: 0d:7c:6b:4d:58:e9:c5:42:5a:a4:71:fa:69:10:9c: e9:fe:dc:f9:3d:dd:cd:a6:b9:53:9e:d6:75:20:aa: a5:6d:01:d0:8a:c7:77:08:22:7d:78:94:a0:11:06: f2:f9:a0:2d:6e:38:1d:a5:b1:ab:80:d1:95:ea:55: 51:66:81:3f:2a:7d:99:ac:1c:40:e7:cc:a1:69:ac: 12:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:08:0B:A3:45:6C:AC:4C:64:C9:9B:FD:25:FF:67:3D:19:1C:D7:6C X509v3 Authority Key Identifier: keyid:EF:CF:13:1A:D6:48:0D:1D:D0:4F:1D:44:76:E3:59:54:52:FF:44:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/788TGtZIDR3QTx1EduNZVFL_RBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788TGtZIDR3QTx1EduNZVFL_RBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/5E4A01CA941111EE84D37717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.52.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:82:99:93:de:07:f6:d3:da:c9:93:f0:bd:e1:18:31:f0:b7: 73:a0:f2:4c:e9:85:f9:9f:7f:02:b7:66:2f:41:06:a3:72:62: b5:2c:c7:18:68:33:41:c4:b2:dc:51:dc:8e:66:9c:06:a1:e3: 73:4e:2f:d4:35:dc:f3:ac:ab:7e:7d:fc:d2:fa:dc:02:de:f1: 38:a0:3c:f6:d1:ce:dd:e1:c5:66:39:42:47:9a:16:33:c2:7a: 4a:38:fa:fc:5f:57:37:31:cc:9f:87:bd:28:b5:c1:96:da:07: e8:90:0b:e5:81:bb:78:24:37:dc:9f:70:6d:8f:8b:7b:91:62: 83:cc:8d:06:3e:83:2d:f4:51:bd:8c:9d:6c:f8:1a:3b:35:f9: 3b:80:44:cc:b6:2f:46:fb:e4:66:7c:4d:0d:57:24:90:cf:9c: f5:94:7b:7e:77:3d:af:63:4f:9b:00:ad:cd:1c:a6:65:12:98: 1b:6b:7f:1f:ea:ac:f4:8f:ad:ae:97:51:9d:55:8f:98:e1:36: b9:d8:74:a8:a6:6e:64:12:15:36:68:e4:34:5f:1e:c7:2c:c3: 4e:b0:7a:9f:5f:7b:93:56:0d:51:5a:00:43:f9:eb:76:92:1f: 8d:aa:26:7f:69:e5:0e:b8:72:2d:91:7a:6e:ff:38:cc:1a:7a: 13:55:40:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBEMjAxMTAvBgNVBAUTKEVGQ0YxMzFBRDY0ODBEMUREMDRGMUQ0NDc2RTM1OTU0 NTJGRjQ0MUMwHhcNMjUwNjAyMjEwODM1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTJkMy0wZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKT9UHJqxd2EZeyxtbuxTumIqSj4R4wDCDEXpgSlxWob3HGAelifaT6KLurl fsEjm3s44Hnssd+8QC5LNcjl4DaTDMtYYh01ssnrylWZM9ky/kZMboWWq6uv7bjF 80LVMOvJTp0LAnrxkyooPnOOzyKW0RbOT42DHCcvflx5W6ING0Zb8kWFuU9NwZMO ATJPlU5mFfv/vrr6SZXri7Drz/3CZgtEwy84s1xzrlWXyCyhG3YNfGtNWOnFQlqk cfppEJzp/tz5Pd3NprlTntZ1IKqlbQHQisd3CCJ9eJSgEQby+aAtbjgdpbGrgNGV 6lVRZoE/Kn2ZrBxA58yhaawSYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFEIC6NF bKxMZMmb/SX/Zz0ZHNdsMB8GA1UdIwQYMBaAFO/PExrWSA0d0E8dRHbjWVRS/0Qc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEQyMC9EOTQzQTQ1QURC REExMUVBQTJDQzJCNDFDNEY5QUUwMi83ODhUR3RaSURSM1FUeDFFZHVOWlZGTF9S QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OFRHdFpJRFIzUVR4MUVkdU5aVkZMX1JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBEMjAvRDk0M0E0NUFEQkRBMTFFQUEyQ0MyQjQxQzRGOUFFMDIvNUU0QTAxQ0E5 NDExMTFFRTg0RDM3NzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACddzQwDQYJKoZIhvcNAQELBQADggEBAGyCmZPeB/bT2smT 8L3hGDHwt3Og8kzphfmffwK3Zi9BBqNyYrUsxxhoM0HEstxR3I5mnAah43NOL9Q1 3POsq359/NL63ALe8TigPPbRzt3hxWY5QkeaFjPCeko4+vxfVzcxzJ+HvSi1wZba B+iQC+WBu3gkN9yfcG2Pi3uRYoPMjQY+gy30Ub2MnWz4Gjs1+TuARMy2L0b75GZ8 TQ1XJJDPnPWUe353Pa9jT5sArc0cpmUSmBtrfx/qrPSPra6XUZ1Vj5jhNrnYdKim bmQSFTZo5DRfHscsw06wep9fe5NWDVFaAEP563aSH42qJn9p5Q64ci2Rem7/OMwa ehNVQJU= -----END CERTIFICATE-----Generated at Tue Jun 3 23:37:14 2025 by rpki-client