$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa File: D161B1F0EA0411EE98A86A13C4F9AE02.roa (raw, json) Hash identifier: +NOhwE6m6lpwH5XuFy8HqU1ULWBp+YrGh21v4UoRt+M= Subject key identifier: 09:45:53:03:3D:11:4B:C7:99:44:93:17:85:F8:89:24:EE:7E:B7:CC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: CD Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa Signing time: Sun 27 Apr 2025 04:41:57 +0000 ROA not before: Sun 27 Apr 2025 04:41:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152593 IP address blocks: 157.20.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Apr 27 04:41:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=680db594-7675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:83:2e:f7:b6:f4:28:b2:b4:c2:b9:e1:eb:e5: a2:4d:81:2a:2d:0a:5c:ca:ee:b0:9c:1b:1d:3b:ad: 15:71:0c:6e:48:47:fe:65:27:38:6c:80:a0:7a:a9: 13:59:db:70:7a:24:cf:c9:ce:2b:0f:60:fb:df:34: 2a:57:16:df:8f:17:88:09:a6:0c:1e:c6:15:8b:ad: 45:31:7a:30:0f:61:d0:2f:fc:03:89:de:d6:a3:82: dd:5b:19:cb:61:b5:08:33:24:6d:23:70:7c:95:73: ae:d3:88:1d:35:47:cd:6c:48:c4:a0:6b:a6:50:99: 04:cc:88:61:49:7c:2b:c2:89:41:4f:84:ae:36:bf: ce:b0:be:4a:b8:10:ca:0e:97:d0:00:75:bc:35:d4: 9d:2d:41:38:0c:20:30:b1:2c:e6:f0:e5:16:34:9d: 2b:97:d7:aa:93:4a:0f:32:b1:fe:dc:38:00:2c:cb: 4b:d6:a7:e7:16:59:dc:29:cc:34:7c:f8:88:df:e6: 5b:8d:2e:d8:14:12:fc:47:6a:45:6f:f0:25:97:f9: 68:bf:9c:2b:90:5d:7e:14:5b:71:49:54:5d:59:e2: f0:5f:9e:4a:92:97:06:e0:3d:64:27:4f:71:b9:09: fc:42:f9:65:08:2d:f7:32:37:46:f0:71:18:8e:3d: 06:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:45:53:03:3D:11:4B:C7:99:44:93:17:85:F8:89:24:EE:7E:B7:CC X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/D161B1F0EA0411EE98A86A13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.116.0/23 Signature Algorithm: sha256WithRSAEncryption ca:45:54:da:b3:e7:02:62:d3:46:71:22:da:c4:14:b3:c3:84: a4:76:c5:f8:eb:6e:1a:d3:65:67:ca:4f:4f:2f:20:ab:c5:7f: 45:a2:12:4b:5f:4e:b0:2e:83:15:56:d9:2f:96:42:d0:1f:b9: c2:bf:4f:81:ec:1d:a6:b8:c4:56:32:ed:4a:6c:ec:d8:56:73: ee:09:8c:de:78:44:99:2a:dc:2b:2f:bd:0d:d1:81:56:af:07: 64:27:b8:11:c7:c8:0d:fa:83:d4:c7:ab:ac:b9:f4:ad:17:ae: 34:36:f5:31:e5:3d:bc:94:bd:40:2a:50:00:e8:75:b2:09:57: 9a:99:d4:ac:ff:bf:dc:7d:a1:48:42:ff:8e:9a:68:0d:ff:1c: 0e:7c:fb:e6:00:b8:44:24:58:5b:bd:60:aa:56:51:2a:46:ca: aa:e9:79:ff:b5:92:55:62:98:d9:1e:3b:65:c6:58:c8:5d:2c: aa:54:e6:33:c7:12:78:ae:c7:e5:ca:b2:99:df:34:35:1b:34: aa:bf:1f:28:2c:e8:19:d5:30:f2:44:a1:7b:3d:0f:87:97:e7: 85:1b:da:70:81:4c:ce:77:2f:c8:db:9c:0c:73:90:39:eb:d2: 54:64:79:de:a1:d8:03:4c:e5:26:dc:ae:bb:3b:46:29:a6:41: 26:00:6a:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwNDI3MDQ0MTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkYjU5NC03Njc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YMu97b0KLK0wrnh6+WiTYEqLQpcyu6wnBsdO60VcQxuSEf+ZSc4bICgeqkT WdtweiTPyc4rD2D73zQqVxbfjxeICaYMHsYVi61FMXowD2HQL/wDid7Wo4LdWxnL YbUIMyRtI3B8lXOu04gdNUfNbEjEoGumUJkEzIhhSXwrwolBT4SuNr/OsL5KuBDK DpfQAHW8NdSdLUE4DCAwsSzm8OUWNJ0rl9eqk0oPMrH+3DgALMtL1qfnFlncKcw0 fPiI3+ZbjS7YFBL8R2pFb/All/lov5wrkF1+FFtxSVRdWeLwX55KkpcG4D1kJ09x uQn8QvllCC33MjdG8HEYjj0GBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAlFUwM9 EUvHmUSTF4X4iSTufrfMMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OENGQUQvNEM5MDBGMUNFQTA0MTFFRTkyRDEwNjExQzRGOUFFMDIvRDE2MUIxRjBF QTA0MTFFRTk4QTg2QTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFHQwDQYJKoZIhvcNAQELBQADggEBAMpFVNqz5wJi00Zx ItrEFLPDhKR2xfjrbhrTZWfKT08vIKvFf0WiEktfTrAugxVW2S+WQtAfucK/T4Hs Haa4xFYy7Ups7NhWc+4JjN54RJkq3CsvvQ3RgVavB2QnuBHHyA36g9THq6y59K0X rjQ29THlPbyUvUAqUADodbIJV5qZ1Kz/v9x9oUhC/46aaA3/HA58++YAuEQkWFu9 YKpWUSpGyqrpef+1klVimNkeO2XGWMhdLKpU5jPHEniux+XKspnfNDUbNKq/Hygs 6BnVMPJEoXs9D4eX54Ub2nCBTM53L8jbnAxzkDnr0lRked6h2ANM5Sbcrrs7Rimm QSYAauI= -----END CERTIFICATE-----Generated at Thu Nov 6 00:40:46 2025 by rpki-client