$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3087831CCEF811EE920B0062C4F9AE02.roa File: 3087831CCEF811EE920B0062C4F9AE02.roa (raw, json) Hash identifier: AThJMSKZ7UyxpSAcyWEhi1WPr0jZBp9rEFfNthZ0OPI= Subject key identifier: 19:E5:C8:BE:E7:75:0F:F5:50:47:BF:57:4A:86:50:40:A4:66:09:2C Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D7D Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3087831CCEF811EE920B0062C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:59 +0000 ROA not before: Thu 08 May 2025 15:52:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140641 IP address blocks: 157.20.51.0/24 maxlen: 24 160.30.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7549 (0x1d7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd35b-6bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:34:2f:dc:e4:31:d5:e8:9f:12:0c:14:3e:f3: 88:97:c3:7b:e9:97:b5:9a:f6:8b:6f:35:81:0f:eb: 71:1d:ba:c4:1f:e8:6a:be:1d:d8:db:d7:92:e4:a7: aa:b1:03:d5:7c:fd:79:16:7b:5a:2d:80:a7:b7:07: e2:b0:a8:23:67:33:9f:44:bf:dd:43:7a:16:ab:9b: 3e:a4:53:29:1f:af:dc:fc:43:db:5d:6c:fe:a5:98: f2:99:2b:d3:62:0b:6c:42:71:ee:4d:9d:44:85:6a: bb:7d:36:88:89:49:2c:9b:2f:10:a8:e0:e7:0d:13: 84:e6:ee:0c:1d:00:d0:ad:a5:36:4f:39:48:e5:6f: c8:ba:28:71:8d:4f:30:0d:7c:8d:50:e7:12:9c:3b: 79:e7:cf:0c:e8:7e:a2:2e:2d:c1:3d:85:b2:07:b0: f0:85:7f:5c:d2:93:d7:c7:5a:94:d2:ab:14:8c:89: d1:e1:94:60:97:ba:7e:bc:c9:62:a4:35:a3:d7:6f: 7a:e1:af:a6:aa:ca:e4:51:98:1b:1b:d5:a3:5f:38: df:21:aa:0f:c0:3f:d2:ec:ac:08:51:c4:f4:ea:bb: 64:11:7c:3d:ab:82:76:8d:dc:c7:84:3f:6d:72:d6: 85:10:a7:ae:d2:d5:6a:c7:42:80:de:bd:03:8c:f1: cb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E5:C8:BE:E7:75:0F:F5:50:47:BF:57:4A:86:50:40:A4:66:09:2C X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3087831CCEF811EE920B0062C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.51.0/24 160.30.246.0/23 Signature Algorithm: sha256WithRSAEncryption 75:57:e4:85:15:36:e4:79:35:94:4d:42:4b:5a:0a:d8:06:ac: cc:8f:db:04:35:81:a3:b5:41:38:e2:79:0f:c4:91:59:4f:c5: 4d:67:92:a4:24:3f:1e:30:2c:c7:64:dd:31:96:43:56:eb:2e: ba:27:bc:0c:61:22:d2:0e:27:f3:04:0f:97:73:d0:99:82:ab: 23:86:a6:b6:5a:7b:10:7e:26:47:19:f6:8b:d5:ff:31:f8:bf: c1:29:c8:08:d8:ac:ce:8d:5a:3b:b6:43:55:d3:47:c0:00:c1: 15:f1:94:f8:8b:fb:b1:e3:c4:4f:86:f2:3c:3b:d2:6e:15:f9: c9:87:ae:1b:29:86:bf:93:93:87:f5:9a:b9:fd:0c:9c:22:2c: 51:ec:47:d4:0f:b1:5b:d5:62:ce:70:78:4a:dc:01:72:57:50: 27:bf:c4:de:68:93:51:6d:24:c8:f4:f0:13:cc:82:ff:4f:1b: 57:43:71:53:f0:bc:1c:69:23:06:03:30:0d:37:2a:77:4f:0e: 9a:fa:0f:00:15:e3:69:62:82:1d:31:1c:d9:24:46:62:81:ce: 34:69:21:45:89:a5:28:b1:b2:d4:c2:9f:bb:bc:73:16:0e:93: cb:0c:bd:02:70:b0:3d:54:c6:a3:1d:67:09:a6:a3:53:36:e2: 87:95:4a:ba -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjU5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM1Yi02YmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDQv3OQx1eifEgwUPvOIl8N76Ze1mvaLbzWBD+txHbrEH+hqvh3Y29eS5Keq sQPVfP15FntaLYCntwfisKgjZzOfRL/dQ3oWq5s+pFMpH6/c/EPbXWz+pZjymSvT YgtsQnHuTZ1EhWq7fTaIiUksmy8QqODnDROE5u4MHQDQraU2TzlI5W/IuihxjU8w DXyNUOcSnDt5588M6H6iLi3BPYWyB7DwhX9c0pPXx1qU0qsUjInR4ZRgl7p+vMli pDWj12964a+mqsrkUZgbG9WjXzjfIaoPwD/S7KwIUcT06rtkEXw9q4J2jdzHhD9t ctaFEKeu0tVqx0KA3r0DjPHLZQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBnlyL7n dQ/1UEe/V0qGUECkZgksMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzA4NzgzMUND RUY4MTFFRTkyMEIwMDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACdFDMDBAGgHvYwDQYJKoZIhvcNAQELBQADggEBAHVX5IUV NuR5NZRNQktaCtgGrMyP2wQ1gaO1QTjieQ/EkVlPxU1nkqQkPx4wLMdk3TGWQ1br LronvAxhItIOJ/MED5dz0JmCqyOGprZaexB+JkcZ9ovV/zH4v8EpyAjYrM6NWju2 Q1XTR8AAwRXxlPiL+7HjxE+G8jw70m4V+cmHrhsphr+Tk4f1mrn9DJwiLFHsR9QP sVvVYs5weErcAXJXUCe/xN5ok1FtJMj08BPMgv9PG1dDcVPwvBxpIwYDMA03KndP Dpr6DwAV42ligh0xHNkkRmKBzjRpIUWJpSixstTCn7u8cxYOk8sMvQJwsD1UxqMd Zwmmo1M24oeVSro= -----END CERTIFICATE-----Generated at Wed Nov 5 02:17:52 2025 by rpki-client