$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/637A68DAE8F111EE97648F87C4F9AE02.roa File: 637A68DAE8F111EE97648F87C4F9AE02.roa (raw, json) Hash identifier: h8xBaKAOAk0eKkhoSv9w8/EukWOEOOm+fJrsPzagVOY= Subject key identifier: 45:EA:C4:1A:B7:35:FE:43:A6:46:70:8E:20:15:E0:31:68:BC:CB:93 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1DCE Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/637A68DAE8F111EE97648F87C4F9AE02.roa Signing time: Thu 08 May 2025 15:54:13 +0000 ROA not before: Thu 08 May 2025 15:54:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152512 IP address blocks: 157.20.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7630 (0x1dce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:54:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3a4-50c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1b:94:74:5e:13:01:fe:07:e1:3d:a9:0e:a6: 10:2a:63:fe:7c:d0:b1:47:53:55:e2:93:a4:9a:27: 64:8e:a3:e4:a1:28:7a:c3:72:64:93:e8:1a:6d:4c: 24:85:28:dd:c4:1d:3d:66:65:d0:c9:4a:c0:95:8b: fb:fa:47:8c:ad:b0:8f:d9:06:62:5a:8c:e3:28:23: 6b:aa:2d:9e:8a:e7:bb:d9:2f:9e:69:8b:90:a7:26: 77:c2:b0:89:6b:1f:de:cc:19:a3:92:66:72:33:0c: ea:65:8e:aa:33:ac:e1:26:30:71:5c:50:9f:6c:14: 2d:e3:60:fd:ca:fe:35:62:32:ca:2e:c8:d2:be:13: 02:0f:b2:b0:b0:ea:6f:92:a0:95:f8:8f:b3:51:74: aa:ad:c9:6c:74:ed:2c:91:28:68:92:20:78:54:86: 54:08:90:52:30:8f:af:10:f7:81:20:c6:98:43:23: 50:fb:b7:83:ed:2a:90:55:9f:29:96:5f:55:10:08: 73:64:b1:e9:09:e6:a3:7e:5e:86:c7:9b:6a:df:f5: 90:cd:b3:ae:7b:3e:30:63:15:0f:ae:ba:9f:6b:5d: a1:4a:b9:2f:8d:c5:d9:63:6d:b8:1d:78:ed:bb:f7: 7e:e4:13:44:f9:04:5e:ad:18:d4:95:f3:56:ba:b3: a6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EA:C4:1A:B7:35:FE:43:A6:46:70:8E:20:15:E0:31:68:BC:CB:93 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/637A68DAE8F111EE97648F87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.242.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:02:c3:a2:1b:ea:da:40:68:ae:ea:aa:d1:a5:1d:e5:4b:e7: 5c:f0:ef:e4:4c:23:e3:7d:d6:12:55:12:fe:dc:25:91:7d:66: b8:e5:6e:f5:47:38:43:ee:7b:6b:dc:79:e6:01:e9:1e:20:fe: 3b:9a:c4:84:af:e7:c3:55:09:fb:12:70:34:1c:14:cf:f8:76: 62:db:df:a0:45:49:d2:5b:71:82:1b:b0:b0:89:24:60:ed:0a: a4:51:6a:e7:35:c3:7e:d9:14:b7:b6:33:50:8d:97:f9:e0:0b: e5:8a:fb:fd:4b:2a:26:7b:09:e0:b3:42:a6:4e:58:71:c1:3a: d3:77:41:2b:48:de:32:bf:33:91:62:a6:36:64:35:85:d7:5d: c2:73:7f:3f:ad:87:14:27:75:dd:db:16:41:8f:b8:63:2c:bc: 83:f4:bd:1a:2a:ba:c1:b1:d9:8e:90:e7:4d:ee:ab:c1:97:d7: 2d:63:3a:13:64:5f:1a:0c:e4:7c:30:58:76:ec:94:1e:85:5f: 40:7b:6a:19:b2:55:b4:8e:2a:c8:e2:71:ee:ca:b3:32:d9:21: a6:24:ea:22:00:7e:2f:e8:44:14:38:fe:23:8f:44:17:47:39: f3:a2:28:d3:98:8c:01:98:70:f0:e8:37:f0:2a:31:73:14:2a: 8a:00:3e:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NDEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNhNC01MGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BuUdF4TAf4H4T2pDqYQKmP+fNCxR1NV4pOkmidkjqPkoSh6w3Jkk+gabUwk hSjdxB09ZmXQyUrAlYv7+keMrbCP2QZiWozjKCNrqi2eiue72S+eaYuQpyZ3wrCJ ax/ezBmjkmZyMwzqZY6qM6zhJjBxXFCfbBQt42D9yv41YjLKLsjSvhMCD7KwsOpv kqCV+I+zUXSqrclsdO0skShokiB4VIZUCJBSMI+vEPeBIMaYQyNQ+7eD7SqQVZ8p ll9VEAhzZLHpCeajfl6Gx5tq3/WQzbOuez4wYxUPrrqfa12hSrkvjcXZY224HXjt u/d+5BNE+QRerRjUlfNWurOmHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEXqxBq3 Nf5DpkZwjiAV4DFovMuTMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNjM3QTY4REFF OEYxMTFFRTk3NjQ4Rjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFPIwDQYJKoZIhvcNAQELBQADggEBAAoCw6Ib6tpAaK7q qtGlHeVL51zw7+RMI+N91hJVEv7cJZF9ZrjlbvVHOEPue2vceeYB6R4g/juaxISv 58NVCfsScDQcFM/4dmLb36BFSdJbcYIbsLCJJGDtCqRRauc1w37ZFLe2M1CNl/ng C+WK+/1LKiZ7CeCzQqZOWHHBOtN3QStI3jK/M5FipjZkNYXXXcJzfz+thxQndd3b FkGPuGMsvIP0vRoqusGx2Y6Q503uq8GX1y1jOhNkXxoM5HwwWHbslB6FX0B7ahmy VbSOKsjice7KszLZIaYk6iIAfi/oRBQ4/iOPRBdHOfOiKNOYjAGYcPDoN/AqMXMU KooAPqE= -----END CERTIFICATE-----Generated at Tue Nov 4 22:23:20 2025 by rpki-client