$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5535DEF8DE2311EFA15D0950C4F9AE02.roa File: 5535DEF8DE2311EFA15D0950C4F9AE02.roa (raw, json) Hash identifier: qRaJvaOOjCMrkvZUROUhho6MLVIUNv34OfKP2wmdctg= Subject key identifier: 2B:CE:03:8F:CD:2C:21:E9:CC:77:E2:28:B6:52:7D:BD:DE:14:6C:C1 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D48 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5535DEF8DE2311EFA15D0950C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:13 +0000 ROA not before: Thu 08 May 2025 15:52:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134320 IP address blocks: 157.20.196.0/24 maxlen: 24 157.20.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7496 (0x1d48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd32d-9d8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f4:bc:70:41:8d:e9:69:4a:1c:fa:1c:e7:78: 79:b4:dd:97:05:6b:b6:bf:9f:5a:f0:f6:92:09:8e: b3:b1:33:8e:57:8a:40:b5:4c:59:a9:55:3c:55:43: eb:aa:89:ea:48:f1:c5:0c:5f:96:bd:27:df:fa:ee: 28:1e:bd:f0:55:7a:01:c2:12:85:4f:99:cf:b6:2c: 00:6c:8e:86:73:a2:30:6b:28:ab:45:d9:63:56:dd: c0:cb:43:3e:7f:56:37:77:4f:8c:69:cd:78:02:c2: 62:b8:dd:73:56:7c:4e:4e:0c:89:c4:c8:eb:d9:19: 2e:ff:8b:19:50:63:39:79:22:0c:2a:56:80:f6:ae: 2b:bc:a2:96:80:af:54:5f:ec:17:58:ba:ee:b7:f7: 10:71:d8:ab:f2:73:41:40:35:e1:d5:e9:e2:72:a3: 8f:c8:00:57:95:b6:de:b6:c4:46:cc:81:da:ce:c9: 20:66:ea:98:cf:5f:a4:b4:12:20:89:2b:33:da:a2: fc:1f:9f:97:db:e8:7b:b3:d5:d0:d1:5b:18:a9:7d: 10:bd:d0:af:a4:e0:e9:48:10:ae:db:88:72:af:e8: 6d:20:59:a4:f2:b3:a9:e6:60:dd:39:77:25:3d:18: d9:1f:15:40:3b:91:71:1c:9c:26:b6:6a:7c:33:b8: 96:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CE:03:8F:CD:2C:21:E9:CC:77:E2:28:B6:52:7D:BD:DE:14:6C:C1 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5535DEF8DE2311EFA15D0950C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.196.0/23 Signature Algorithm: sha256WithRSAEncryption 55:c7:28:d6:c3:ca:68:95:24:05:5c:51:cf:f0:46:e1:73:38: 4d:c2:a7:9e:e0:9a:21:03:67:2c:0f:66:fc:00:c7:0c:6b:2f: 61:00:c2:c5:36:f9:cc:55:5a:13:03:43:82:b6:3b:af:cb:5d: ef:90:8d:30:0e:63:96:18:69:dd:c8:18:28:41:d5:91:21:f3: f5:3b:5c:99:65:f2:0d:61:65:bf:62:45:29:fe:0f:ae:e5:15: 66:a9:5f:1b:68:47:2a:fa:b3:21:6e:79:34:f9:3b:06:68:b0: e8:a7:05:b6:14:79:01:16:af:3f:19:b9:c4:ec:ec:67:83:f5: 22:af:de:30:b4:1d:8f:81:85:b6:7a:1c:74:3a:31:65:dd:e7: 35:da:91:52:c4:36:39:a8:20:38:ec:ff:97:f1:39:70:4c:1c: 74:3d:e6:74:af:d4:9b:64:63:8f:41:25:85:e9:01:4b:5c:bf: 25:9b:97:50:ac:bc:9d:a7:c3:3f:b6:ed:ad:ba:dc:87:e7:79: 89:b7:d3:41:45:aa:86:b3:a8:7b:d8:90:9c:f8:9e:40:37:f9: 8b:d8:3b:73:e7:e6:d5:0d:78:62:ba:24:19:6f:99:08:84:72: af:df:d8:cf:18:79:db:a8:a8:05:45:07:33:f8:de:0d:ba:62: 1a:01:49:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDMyZC05ZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvS8cEGN6WlKHPoc53h5tN2XBWu2v59a8PaSCY6zsTOOV4pAtUxZqVU8VUPr qonqSPHFDF+WvSff+u4oHr3wVXoBwhKFT5nPtiwAbI6Gc6IwayirRdljVt3Ay0M+ f1Y3d0+Mac14AsJiuN1zVnxOTgyJxMjr2Rku/4sZUGM5eSIMKlaA9q4rvKKWgK9U X+wXWLrut/cQcdir8nNBQDXh1enicqOPyABXlbbetsRGzIHazskgZuqYz1+ktBIg iSsz2qL8H5+X2+h7s9XQ0VsYqX0QvdCvpODpSBCu24hyr+htIFmk8rOp5mDdOXcl PRjZHxVAO5FxHJwmtmp8M7iWnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCvOA4/N LCHpzHfiKLZSfb3eFGzBMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTUzNURFRjhE RTIzMTFFRkExNUQwOTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFMQwDQYJKoZIhvcNAQELBQADggEBAFXHKNbDymiVJAVc Uc/wRuFzOE3Cp57gmiEDZywPZvwAxwxrL2EAwsU2+cxVWhMDQ4K2O6/LXe+QjTAO Y5YYad3IGChB1ZEh8/U7XJll8g1hZb9iRSn+D67lFWapXxtoRyr6syFueTT5OwZo sOinBbYUeQEWrz8ZucTs7GeD9SKv3jC0HY+BhbZ6HHQ6MWXd5zXakVLENjmoIDjs /5fxOXBMHHQ95nSv1JtkY49BJYXpAUtcvyWbl1CsvJ2nwz+27a263IfneYm300FF qoazqHvYkJz4nkA3+YvYO3Pn5tUNeGK6JBlvmQiEcq/f2M8YeduoqAVFBzP43g26 YhoBSa0= -----END CERTIFICATE-----Generated at Tue Nov 4 22:21:34 2025 by rpki-client