$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7B6334003D2C11F0A30B5E63C4F9AE02.roa File: 7B6334003D2C11F0A30B5E63C4F9AE02.roa (raw, json) Hash identifier: TR4Q1VWTO2KmNfrDMSm/QCcJvcjih+Dcb9DhZBA17ak= Subject key identifier: F7:94:8E:45:C0:8C:94:7A:6F:BE:A2:6A:29:BD:28:B4:A8:96:C5:30 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E77 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7B6334003D2C11F0A30B5E63C4F9AE02.roa Signing time: Fri 30 May 2025 08:02:51 +0000 ROA not before: Fri 30 May 2025 08:02:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152500 IP address blocks: 157.20.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7799 (0x1e77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 30 08:02:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6839662a-d65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:25:f2:a7:4d:09:0b:3c:ac:4f:51:4d:39:c7: 43:9d:1c:a8:2e:24:34:52:5f:79:c2:df:39:5e:4b: 17:61:6a:5f:a0:63:81:8e:f2:53:f7:6b:ee:af:86: 9f:d1:d8:a8:0b:bc:28:72:a3:85:9b:21:56:fc:f0: 6a:d8:07:10:90:e9:b9:93:d4:04:93:8f:40:62:a8: 0f:69:0b:b8:35:3a:d9:d1:fc:9c:fe:b1:bb:94:23: b8:58:a7:70:b3:15:17:20:ed:0d:20:62:92:a0:6b: 4a:dc:5b:0e:48:a0:a8:57:e3:e5:bb:58:f5:97:0f: 41:16:5e:64:dd:12:77:98:49:91:b0:0e:6a:de:3b: ca:ca:75:2a:2e:72:44:a1:bb:7f:76:7d:17:96:1a: d9:48:1c:aa:43:90:d5:c9:77:a8:76:44:fa:28:ba: 49:82:ec:a0:4e:f6:55:b6:88:ca:38:6c:ba:66:f4: 19:30:c5:fc:21:59:6e:26:80:c6:9a:0f:61:e6:dd: 0f:2a:97:04:07:32:0e:f7:cf:d7:c5:0e:21:85:32: 7b:f7:17:6c:33:80:d9:ca:04:e4:a6:39:32:ad:a4: 48:cb:c0:f0:70:2c:98:32:7d:8a:25:66:d8:a0:c4: c4:40:89:e8:a0:e2:7a:3c:81:59:2a:15:e1:18:83: 1a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:94:8E:45:C0:8C:94:7A:6F:BE:A2:6A:29:BD:28:B4:A8:96:C5:30 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/7B6334003D2C11F0A30B5E63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.84.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:c7:8e:24:98:43:7c:ad:a0:38:71:61:bf:5c:e5:9c:7b:c7: cd:de:bf:ff:9f:c6:f0:33:5d:25:27:12:c5:04:bf:27:52:c6: d2:f4:1e:6e:e9:a7:cb:ee:1a:44:97:7d:9b:5a:99:80:46:c1: 90:b4:ce:f2:7d:79:a1:68:01:4f:d8:37:24:1f:10:e3:d5:25: fb:18:c6:fd:34:8d:6d:c9:7c:13:62:3d:2c:54:75:48:3a:f6: 99:f8:21:2b:d2:f8:be:49:50:3b:2e:c5:00:dc:f0:f3:2e:8f: 27:2c:94:69:0b:36:00:ac:3b:42:fa:26:64:79:21:b8:49:5e: 4f:5e:1d:88:78:ef:c5:ea:94:88:8c:c3:2f:f7:da:eb:22:cc: 09:8e:d4:de:2a:84:2d:d5:e0:74:ab:26:86:40:30:6a:78:77: f5:1e:b5:a0:57:13:7d:6a:3e:82:dd:28:20:75:95:9f:6f:f7: 2a:94:2a:2d:ea:99:a9:34:f5:97:17:59:04:42:2a:c4:78:0e: 6a:2a:31:6b:c8:52:48:80:b0:d3:9c:f4:c9:6e:d2:00:54:05: 0c:8d:75:05:2a:8e:a8:0c:29:72:7c:ed:a6:29:3b:ed:80:dd: 1b:5e:55:b4:83:80:02:dd:e8:87:3d:2e:3b:ee:99:2f:be:c1: 7c:88:4c:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTMwMDgwMjUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM5NjYyYS1kNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCXyp00JCzysT1FNOcdDnRyoLiQ0Ul95wt85XksXYWpfoGOBjvJT92vur4af 0dioC7wocqOFmyFW/PBq2AcQkOm5k9QEk49AYqgPaQu4NTrZ0fyc/rG7lCO4WKdw sxUXIO0NIGKSoGtK3FsOSKCoV+Plu1j1lw9BFl5k3RJ3mEmRsA5q3jvKynUqLnJE obt/dn0XlhrZSByqQ5DVyXeodkT6KLpJguygTvZVtojKOGy6ZvQZMMX8IVluJoDG mg9h5t0PKpcEBzIO98/XxQ4hhTJ79xdsM4DZygTkpjkyraRIy8DwcCyYMn2KJWbY oMTEQInooOJ6PIFZKhXhGIMamQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPeUjkXA jJR6b76iaim9KLSolsUwMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvN0I2MzM0MDAz RDJDMTFGMEEzMEI1RTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFFQwDQYJKoZIhvcNAQELBQADggEBAHrHjiSYQ3ytoDhx Yb9c5Zx7x83ev/+fxvAzXSUnEsUEvydSxtL0Hm7pp8vuGkSXfZtamYBGwZC0zvJ9 eaFoAU/YNyQfEOPVJfsYxv00jW3JfBNiPSxUdUg69pn4ISvS+L5JUDsuxQDc8PMu jycslGkLNgCsO0L6JmR5IbhJXk9eHYh478XqlIiMwy/32usizAmO1N4qhC3V4HSr JoZAMGp4d/UetaBXE31qPoLdKCB1lZ9v9yqUKi3qmak09ZcXWQRCKsR4DmoqMWvI UkiAsNOc9Mlu0gBUBQyNdQUqjqgMKXJ87aYpO+2A3RteVbSDgALd6Ic9LjvumS++ wXyITDg= -----END CERTIFICATE-----Generated at Sun Jun 15 16:07:27 2025 by rpki-client