$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/3CFE7680BC5C11EFB951FD4FC4F9AE02.roa File: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (raw, json) Hash identifier: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY= Subject key identifier: 23:5C:A3:59:2D:CE:47:56:3D:E0:78:F1:FC:ED:3B:0C:4F:3C:B1:6E Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 5B Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/3CFE7680BC5C11EFB951FD4FC4F9AE02.roa Signing time: Sat 31 May 2025 03:50:56 +0000 ROA not before: Sat 31 May 2025 03:50:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150436 IP address blocks: 145.223.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 02:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: May 31 03:50:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a7ca0-6e4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:a5:b3:64:d3:e4:68:b7:f3:7e:a6:04:f8: be:45:33:46:56:ae:db:31:47:ae:02:89:10:9e:3a: e4:65:67:5f:09:97:7f:56:68:b2:45:c9:56:bb:7c: 98:ee:b2:e8:06:46:6c:70:e8:d5:25:38:3a:35:e0: 2a:ae:ff:91:04:bf:62:a7:fc:70:a7:f4:90:f3:b0: 34:2f:26:a6:c3:80:c1:46:74:d2:aa:6c:65:10:77: bf:78:16:e7:45:89:10:33:af:d8:16:73:db:d9:10: 07:4f:15:96:82:32:94:01:14:94:d1:55:0f:9c:f2: 01:a6:b3:de:b4:9d:77:8b:f1:e3:c9:ad:73:d2:8e: 7a:ba:bb:8c:f7:35:bf:a4:fc:eb:a2:d8:b6:12:c5: 37:a2:82:fd:75:60:b4:05:e7:86:dd:c5:5b:a4:38: 9a:a2:bb:b6:20:0e:47:c5:db:d3:e7:fc:85:f9:25: 16:db:60:f6:57:a4:5d:aa:84:8b:13:5f:83:73:be: 2c:fd:33:c1:ef:c2:0b:f8:06:88:ce:49:39:87:f2: 1f:8d:d9:c5:7e:cc:90:08:f9:49:e1:0d:ae:d1:5f: e0:e7:c9:49:ae:c6:f1:68:48:19:7c:ce:4f:8e:62: e2:76:cf:f7:11:e9:1c:aa:d5:46:bc:3c:f3:0f:8c: 61:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:5C:A3:59:2D:CE:47:56:3D:E0:78:F1:FC:ED:3B:0C:4F:3C:B1:6E X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/3CFE7680BC5C11EFB951FD4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 145.223.128.0/18 Signature Algorithm: sha256WithRSAEncryption b3:02:de:5b:16:94:40:c5:a9:3b:53:6c:43:12:1c:e7:8d:cb: bb:2a:30:90:f2:21:dd:75:e4:2f:4e:21:94:a5:26:ef:67:29: 21:38:11:6e:01:39:f8:96:10:56:0b:eb:ab:8f:dc:09:e2:cc: 97:fa:27:69:7b:8e:1f:b9:c4:93:7f:6a:ff:f4:46:f9:42:ea: 19:83:d4:f8:19:23:aa:b9:44:70:e8:b2:ab:77:15:f7:d9:9f: 5e:9c:08:fa:d6:f1:92:d6:64:a8:46:8d:cb:ce:c5:4b:ae:bf: 1a:4e:a3:9c:9f:ef:ee:22:d6:ac:e0:c0:7a:9a:52:55:60:fe: 3a:3d:f6:ad:ea:8a:a0:5e:ee:48:d7:47:6f:a1:b5:04:b8:b5: 7d:3a:6f:b4:77:da:89:ea:10:34:0e:01:e8:cc:ed:41:fc:bd: a4:7f:14:7a:d4:f4:e6:7b:b2:17:cd:08:f4:ca:01:33:f3:c6: c9:aa:30:b7:41:ea:65:51:bf:e5:b0:67:65:b2:93:b1:6c:28: 9a:a2:3e:4d:bd:a3:61:9c:60:57:3f:39:ed:6f:bf:f0:d9:f3: 7f:69:ce:a4:ae:d2:8f:86:46:be:36:6b:dd:06:c8:3f:76:33: 79:cc:40:14:76:b2:7a:99:6c:96:6a:ad:cb:47:5b:cc:fa:73: e2:25:ff:bb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA1MzEwMzUwNTZaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2E3Y2EwLTZlNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHaaWzZNPkaLfzfqYE+L5FM0ZWrtsxR64CiRCeOuRlZ18Jl39WaLJFyVa7fJju sugGRmxw6NUlODo14Cqu/5EEv2Kn/HCn9JDzsDQvJqbDgMFGdNKqbGUQd794FudF iRAzr9gWc9vZEAdPFZaCMpQBFJTRVQ+c8gGms960nXeL8ePJrXPSjnq6u4z3Nb+k /Oui2LYSxTeigv11YLQF54bdxVukOJqiu7YgDkfF29Pn/IX5JRbbYPZXpF2qhIsT X4Nzviz9M8Hvwgv4BojOSTmH8h+N2cV+zJAI+UnhDa7RX+DnyUmuxvFoSBl8zk+O YuJ2z/cR6Ryq1Ua8PPMPjGFvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUI1yjWS3O R1Y94Hjx/O07DE88sW4wHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi8zQ0ZFNzY4MEJD NUMxMUVGQjk1MUZENEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBpHfgDANBgkqhkiG9w0BAQsFAAOCAQEAswLeWxaUQMWpO1Ns QxIc543LuyowkPIh3XXkL04hlKUm72cpITgRbgE5+JYQVgvrq4/cCeLMl/onaXuO H7nEk39q//RG+ULqGYPU+BkjqrlEcOiyq3cV99mfXpwI+tbxktZkqEaNy87FS66/ Gk6jnJ/v7iLWrODAeppSVWD+Oj32reqKoF7uSNdHb6G1BLi1fTpvtHfaieoQNA4B 6MztQfy9pH8UetT05nuyF80I9MoBM/PGyaowt0HqZVG/5bBnZbKTsWwomqI+Tb2j YZxgVz857W+/8Nnzf2nOpK7Sj4ZGvjZr3QbIP3YzecxAFHayeplslmqty0dbzPpz 4iX/uw== -----END CERTIFICATE-----Generated at Thu Jun 5 19:45:54 2025 by rpki-client