$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/0452FC52FBE511EFA186694BC4F9AE02.roa File: 0452FC52FBE511EFA186694BC4F9AE02.roa (raw, json) Hash identifier: lZ3jyuS9kYtBcPX8UN7o2MuI6cCUiMG+t5ULrgC8fQk= Subject key identifier: 61:35:D2:31:22:69:F1:D7:51:9C:B1:4B:91:83:BC:65:64:B5:7D:E8 Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 0385 Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/0452FC52FBE511EFA186694BC4F9AE02.roa Signing time: Wed 21 May 2025 01:18:19 +0000 ROA not before: Wed 21 May 2025 01:18:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134428 IP address blocks: 157.119.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5, serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: May 21 01:18:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682d29da-5d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8e:49:68:c5:b6:ff:e5:c8:9d:71:02:3d:53: e1:64:22:6b:76:6a:3b:3a:42:46:d9:57:ec:11:7d: f2:39:cf:4e:5e:54:3e:0a:df:05:bc:4b:3c:80:98: 6c:dc:c0:77:6d:da:71:3e:b2:55:5e:f7:d6:86:17: 22:4e:43:1e:88:86:bc:4a:40:b0:c3:12:40:fa:05: 39:63:13:a7:ee:d3:3d:33:84:9c:6d:6a:3c:3f:fc: ce:f2:25:68:36:15:3f:9c:9a:96:c8:9d:98:d3:e7: 75:ae:6f:c1:32:8c:a4:a6:9f:0c:90:49:bd:e8:85: 9c:4c:16:08:41:a2:3a:f1:8e:57:e7:c6:f7:ca:e5: 37:3d:05:f4:67:17:9c:47:ad:6c:a8:1b:3c:27:17: 7b:f7:01:df:a4:8e:29:e0:a5:f7:ca:04:35:c2:e6: 46:b9:89:a0:55:45:4d:65:46:11:da:d7:35:c0:df: 7d:e7:c5:4e:5d:38:72:d6:a8:9c:d9:96:4b:ba:2d: 23:27:ac:20:e0:6a:6f:ab:ee:3b:f9:07:c0:d8:41: bf:1c:0a:a5:2b:d4:7a:ba:c5:ce:ec:83:81:e0:a4: f9:09:86:a6:19:0d:6d:1c:d4:d5:4d:ea:64:34:07: 67:0e:63:38:94:ea:5c:6c:ec:2f:64:c2:01:ef:f8: 6c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:35:D2:31:22:69:F1:D7:51:9C:B1:4B:91:83:BC:65:64:B5:7D:E8 X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/0452FC52FBE511EFA186694BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.22.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:02:e8:4f:cc:53:45:aa:3c:90:b7:fc:c9:48:43:8b:28:8a: a7:1b:05:df:2d:55:c3:b4:a3:5b:71:54:39:e0:a4:e4:98:d1: ac:4e:74:ae:b2:30:dc:6f:ee:0f:6e:ec:1c:ee:66:ce:ae:4d: e7:98:57:06:2a:2d:e3:eb:66:15:a5:cf:61:5c:a1:e6:75:b4: b1:48:6b:ba:db:9e:23:ac:95:1f:ab:8d:5e:66:93:7a:d0:6a: b8:f1:68:71:8d:e6:95:83:bd:e3:d2:eb:e3:10:65:40:0b:ec: 36:75:43:39:ac:93:71:d0:ae:22:cf:ff:13:04:45:94:74:b8: 79:73:52:f0:23:d5:96:0f:a8:83:39:9b:7a:5a:1e:00:10:69: d2:0e:d7:9d:23:15:d1:3f:65:21:42:b0:42:22:2b:ff:e5:74: 32:86:71:4e:72:fc:0f:38:71:90:e0:54:2d:25:26:eb:00:46: 5e:cf:de:b2:93:70:2a:e8:c6:1b:e2:41:d2:c8:af:c8:46:cb: 47:5b:a7:26:00:1f:c4:a3:98:63:07:2b:b8:fb:61:03:e5:ba: 6a:02:03:9a:94:f8:20:fc:b1:9b:12:07:70:3b:b1:e6:ae:00: c4:a0:6b:ea:a9:78:03:00:00:ff:67:cc:4d:60:63:b0:eb:08: 90:30:0f:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjUwNTIxMDExODE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkMjlkYS01ZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqo5JaMW2/+XInXECPVPhZCJrdmo7OkJG2VfsEX3yOc9OXlQ+Ct8FvEs8gJhs 3MB3bdpxPrJVXvfWhhciTkMeiIa8SkCwwxJA+gU5YxOn7tM9M4ScbWo8P/zO8iVo NhU/nJqWyJ2Y0+d1rm/BMoykpp8MkEm96IWcTBYIQaI68Y5X58b3yuU3PQX0Zxec R61sqBs8Jxd79wHfpI4p4KX3ygQ1wuZGuYmgVUVNZUYR2tc1wN9958VOXThy1qic 2ZZLui0jJ6wg4Gpvq+47+QfA2EG/HAqlK9R6usXO7IOB4KT5CYamGQ1tHNTVTepk NAdnDmM4lOpcbOwvZMIB7/hs9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGE10jEi afHXUZyxS5GDvGVktX3oMB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvMDQ1MkZDNTJG QkU1MTFFRkExODY2OTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACddxYwDQYJKoZIhvcNAQELBQADggEBAAsC6E/MU0WqPJC3 /MlIQ4soiqcbBd8tVcO0o1txVDngpOSY0axOdK6yMNxv7g9u7BzuZs6uTeeYVwYq LePrZhWlz2FcoeZ1tLFIa7rbniOslR+rjV5mk3rQarjxaHGN5pWDvePS6+MQZUAL 7DZ1Qzmsk3HQriLP/xMERZR0uHlzUvAj1ZYPqIM5m3paHgAQadIO150jFdE/ZSFC sEIiK//ldDKGcU5y/A84cZDgVC0lJusARl7P3rKTcCroxhviQdLIr8hGy0dbpyYA H8SjmGMHK7j7YQPlumoCA5qU+CD8sZsSB3A7seauAMSga+qpeAMAAP9nzE1gY7Dr CJAwD2o= -----END CERTIFICATE-----Generated at Fri Oct 24 07:18:03 2025 by rpki-client