$ rpki-client -vvf rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa File: 294CEBA68FDD11EDBC45E84DC4F9AE02.roa (raw, json) Hash identifier: 3IT/DHgHOTxt9Nlos2eMFej/wQukcdeUZ7Fwjd2moXo= Subject key identifier: C8:94:0E:3C:6D:76:31:F8:E6:15:F6:C8:13:98:07:55:31:FB:5D:FE Certificate issuer: /CN=A9157A68/serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Certificate serial: 081B Authority key identifier: 65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa Signing time: Mon 02 Jun 2025 21:08:30 +0000 ROA not before: Mon 02 Jun 2025 21:08:30 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 141366 IP address blocks: 45.249.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2075 (0x81b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157A68, serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Validity Not Before: Jun 2 21:08:30 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e12cd-6667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8b:76:ab:90:eb:ad:9a:88:c2:78:67:c6:53: 00:3c:ca:53:57:55:02:70:da:c2:ed:6a:b5:d5:fd: 3f:74:21:34:d1:77:0e:eb:49:44:4e:ac:b9:72:6e: 36:bb:68:e0:8b:4c:29:aa:3b:ee:b6:17:e3:88:c3: c3:c0:56:6c:1e:a7:c8:9a:34:b6:e4:cc:08:35:90: 1f:4e:43:af:71:cb:84:9b:9e:15:e0:3c:89:e5:1a: 99:10:98:f4:51:2d:2e:82:21:2d:98:05:45:b8:66: c1:a5:14:b1:0b:fb:55:b2:2d:92:20:3e:c3:76:39: 4c:20:77:16:38:33:fd:3c:a6:7f:89:1c:9a:7c:f8: 50:8e:a0:b7:48:65:de:f6:4a:08:24:b4:f7:3d:a3: fb:64:de:fc:48:37:bd:66:4f:9f:a2:02:4a:8a:b1: 88:f2:94:39:a7:ea:a6:c6:cc:74:61:3b:5a:7f:c6: f4:25:33:f3:e2:18:ce:ef:8f:02:a8:f7:0d:50:da: 7b:d2:2e:ac:86:f5:04:f5:19:3d:87:33:e9:14:db: 2b:26:60:79:d2:25:d8:a2:d8:15:a1:6a:24:b2:67: 31:51:2b:86:34:10:3f:5a:12:c2:07:12:20:70:20: 3b:f4:19:20:fc:ba:6b:d8:ed:da:27:4d:24:d8:df: 3e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:94:0E:3C:6D:76:31:F8:E6:15:F6:C8:13:98:07:55:31:FB:5D:FE X509v3 Authority Key Identifier: keyid:65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.99.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:32:f1:7c:17:3c:07:c5:db:cb:34:89:1d:50:b2:a7:6e:6d: 70:ff:35:6e:5f:89:c5:49:bd:bc:4a:79:42:ea:ce:5c:fc:ea: dc:8c:01:59:68:1c:d9:89:02:91:a0:bd:2f:8b:9f:8b:d1:d1: 26:0c:8c:54:8c:40:77:50:a2:67:ab:40:93:c8:0d:22:e6:05: a1:28:df:43:cd:6a:af:07:2d:d1:04:cc:21:ee:d7:5c:a9:20: b4:10:56:ea:ed:63:4e:47:4f:99:52:1d:ea:b7:a2:2a:3c:28: ce:99:6b:c3:59:e7:2c:59:99:d5:4b:20:4f:e4:97:20:67:c8: 9d:4c:9a:b4:d4:22:0c:a3:49:16:53:04:14:01:25:67:99:5a: be:6d:e3:33:22:31:d5:57:f7:a8:71:8a:83:41:0f:e4:e4:a6: c9:44:00:40:8f:33:ab:95:7c:84:c4:44:1b:6e:dc:e0:77:83: 8d:4b:61:26:28:fd:33:c4:68:e7:1b:72:60:a8:16:5a:a0:b1: e2:3a:26:6e:9c:17:92:03:4d:ff:bf:f5:2d:e0:56:4b:d4:10: d8:64:15:f5:fa:4a:24:dd:e5:1a:1f:55:0f:e2:d4:ea:98:00: 8f:cc:af:c7:58:df:e3:93:02:e8:34:40:ab:5b:f3:72:d9:94: 9c:1d:ee:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBNjgxMTAvBgNVBAUTKDY1QjdBRDk2NzVCMzgwOUVDRTA0QUYzMDFDMkVCNzAz N0ZGMDJCQkIwHhcNMjUwNjAyMjEwODMwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTJjZC02NjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14t2q5DrrZqIwnhnxlMAPMpTV1UCcNrC7Wq11f0/dCE00XcO60lETqy5cm42 u2jgi0wpqjvuthfjiMPDwFZsHqfImjS25MwINZAfTkOvccuEm54V4DyJ5RqZEJj0 US0ugiEtmAVFuGbBpRSxC/tVsi2SID7DdjlMIHcWODP9PKZ/iRyafPhQjqC3SGXe 9koIJLT3PaP7ZN78SDe9Zk+fogJKirGI8pQ5p+qmxsx0YTtaf8b0JTPz4hjO748C qPcNUNp70i6shvUE9Rk9hzPpFNsrJmB50iXYotgVoWoksmcxUSuGNBA/WhLCBxIg cCA79Bkg/Lpr2O3aJ00k2N8+qwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMiUDjxt djH45hX2yBOYB1Ux+13+MB8GA1UdIwQYMBaAFGW3rZZ1s4CezgSvMBwutwN/8Cu7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0E2OC80QjM2QjlCOERC REExMUVBOUE4RDI4NDBDNEY5QUUwMi9aYmV0bG5XemdKN09CSzh3SEM2M0EzX3dL N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1piZXRsbld6Z0o3T0JLOHdIQzYzQTNfd0s3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdBNjgvNEIzNkI5QjhEQkRBMTFFQTlBOEQyODQwQzRGOUFFMDIvMjk0Q0VCQTY4 RkREMTFFREJDNDVFODREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAt+WMwDQYJKoZIhvcNAQELBQADggEBACsy8XwXPAfF28s0 iR1QsqdubXD/NW5ficVJvbxKeULqzlz86tyMAVloHNmJApGgvS+Ln4vR0SYMjFSM QHdQomerQJPIDSLmBaEo30PNaq8HLdEEzCHu11ypILQQVurtY05HT5lSHeq3oio8 KM6Za8NZ5yxZmdVLIE/klyBnyJ1MmrTUIgyjSRZTBBQBJWeZWr5t4zMiMdVX96hx ioNBD+TkpslEAECPM6uVfITERBtu3OB3g41LYSYo/TPEaOcbcmCoFlqgseI6Jm6c F5IDTf+/9S3gVkvUENhkFfX6SiTd5RofVQ/i1OqYAI/Mr8dY3+OTAug0QKtb83LZ lJwd7iw= -----END CERTIFICATE-----Generated at Tue Jun 3 23:46:45 2025 by rpki-client