$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D9FBD5C2711511F0B3EA3787C4F9AE02.roa File: D9FBD5C2711511F0B3EA3787C4F9AE02.roa (raw, json) Hash identifier: qFWqsr4saXjCnkYP0AG8y4iTWCt0Gviz0Ru8RADZZUs= Subject key identifier: 5E:D7:D5:19:A2:E1:CE:A7:EE:A6:CF:EF:F1:69:1C:34:FE:AE:58:70 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1F43 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D9FBD5C2711511F0B3EA3787C4F9AE02.roa Signing time: Mon 04 Aug 2025 09:31:51 +0000 ROA not before: Mon 04 Aug 2025 09:31:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151720 IP address blocks: 157.10.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8003 (0x1f43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 4 09:31:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68907e07-6dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:28:00:84:cc:16:b4:bf:62:37:21:aa:cb:5d: e6:9c:9b:d9:77:60:d4:5b:c1:69:1a:da:f2:fa:48: ee:02:78:be:d9:ba:96:a4:17:9e:01:44:55:53:e0: c9:d6:49:47:3a:69:6d:37:ef:7f:89:e6:78:2e:bc: 73:f2:35:bb:7e:64:ac:a7:e3:ec:8b:fb:79:47:a3: 5a:ce:e0:d0:f2:e2:83:bb:1d:30:e1:0c:6b:4b:99: 89:39:cd:f4:e6:57:bf:26:ba:aa:a6:2e:65:0d:92: fe:f1:3c:a7:be:5e:cc:08:04:7b:b6:a2:00:ef:c7: 79:b4:6e:0e:31:cb:1d:48:47:62:59:45:55:ac:40: f1:bd:91:26:4e:6e:60:87:61:58:ef:fd:c3:39:e7: 73:a3:9c:5d:61:7d:74:e3:96:ad:91:37:d2:d7:35: 89:64:5d:86:fd:2c:ac:dd:5f:33:81:a5:a2:4a:9e: 2a:6e:ae:7a:8e:e7:a2:35:8b:a7:b5:ad:2e:4d:a7: 8b:1f:1a:f1:ab:c5:d8:48:f2:ff:a9:f2:da:e7:f3: 32:49:d2:97:2d:39:6e:3e:5b:ce:73:e6:51:68:03: 2a:2a:d8:16:fb:53:9d:4e:43:37:41:8c:73:11:71: 3b:4d:4f:5f:7c:f6:43:81:4a:96:75:55:14:85:bd: ef:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D7:D5:19:A2:E1:CE:A7:EE:A6:CF:EF:F1:69:1C:34:FE:AE:58:70 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D9FBD5C2711511F0B3EA3787C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.14.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:3b:3a:a6:d5:bb:58:a1:25:a1:37:27:f6:d5:90:ea:bb:50: dc:83:fd:51:f7:ba:db:ee:16:b1:36:10:cd:32:58:03:df:2c: d1:ea:e3:ae:b5:c7:ec:6b:63:36:db:d0:f1:07:ad:2a:43:57: bd:46:6a:0d:b7:3a:e2:f4:34:36:13:23:50:43:70:7e:a7:7d: a6:45:64:87:82:27:54:b0:2e:85:c3:71:44:8d:4e:c6:5b:d8: 68:00:96:6e:97:96:f5:bf:a7:56:ec:b7:1c:e9:8f:e4:35:f4: 36:6d:3c:96:92:55:80:c4:8e:7c:35:1b:52:d1:a9:51:e5:dc: 90:1d:77:bf:35:3e:d6:4b:47:12:31:5e:45:fb:df:72:f9:c8: 28:d5:f3:d4:67:91:1f:af:70:82:05:bf:0c:c3:bb:c5:f9:a9: db:bc:5f:6c:d1:c7:9e:16:b1:86:e0:17:ad:88:26:ba:99:4a: 73:92:fb:a1:96:f4:17:06:fc:fb:15:e1:57:21:72:41:62:45: 4d:69:5a:f0:5f:a8:98:58:55:0d:c5:79:0a:ff:06:71:c4:54: f2:68:22:4a:4d:50:21:c6:92:ae:29:12:36:04:62:14:68:cf: d6:5e:5c:3e:c7:27:0f:71:bb:c3:72:5b:a1:35:74:2e:fb:34: 81:b7:57:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODA0MDkzMTUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwN2UwNy02ZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCgAhMwWtL9iNyGqy13mnJvZd2DUW8FpGtry+kjuAni+2bqWpBeeAURVU+DJ 1klHOmltN+9/ieZ4Lrxz8jW7fmSsp+Psi/t5R6NazuDQ8uKDux0w4QxrS5mJOc30 5le/Jrqqpi5lDZL+8Tynvl7MCAR7tqIA78d5tG4OMcsdSEdiWUVVrEDxvZEmTm5g h2FY7/3DOedzo5xdYX1045atkTfS1zWJZF2G/Sys3V8zgaWiSp4qbq56jueiNYun ta0uTaeLHxrxq8XYSPL/qfLa5/MySdKXLTluPlvOc+ZRaAMqKtgW+1OdTkM3QYxz EXE7TU9ffPZDgUqWdVUUhb3vHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF7X1Rmi 4c6n7qbP7/FpHDT+rlhwMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDlGQkQ1QzI3 MTE1MTFGMEIzRUEzNzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCg4wDQYJKoZIhvcNAQELBQADggEBAH47OqbVu1ihJaE3 J/bVkOq7UNyD/VH3utvuFrE2EM0yWAPfLNHq4661x+xrYzbb0PEHrSpDV71Gag23 OuL0NDYTI1BDcH6nfaZFZIeCJ1SwLoXDcUSNTsZb2GgAlm6XlvW/p1bstxzpj+Q1 9DZtPJaSVYDEjnw1G1LRqVHl3JAdd781PtZLRxIxXkX733L5yCjV89RnkR+vcIIF vwzDu8X5qdu8X2zRx54WsYbgF62IJrqZSnOS+6GW9BcG/PsV4VchckFiRU1pWvBf qJhYVQ3FeQr/BnHEVPJoIkpNUCHGkq4pEjYEYhRoz9ZeXD7HJw9xu8NyW6E1dC77 NIG3V8M= -----END CERTIFICATE-----Generated at Sat Aug 9 14:32:28 2025 by rpki-client