$ rpki-client -vvf rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa File: 015250F6309311F084231321C4F9AE02.roa (raw, json) Hash identifier: KNC2/s+vZ/9r775F1mGNGMou3oGOdH7k+vpChxT9cqQ= Subject key identifier: AB:86:88:0E:D9:A0:C5:19:00:97:40:E5:79:35:9F:FD:56:BC:84:D1 Certificate issuer: /CN=A912A5D4/serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Certificate serial: 37 Authority key identifier: 66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa Signing time: Wed 14 May 2025 07:14:20 +0000 ROA not before: Wed 14 May 2025 07:14:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 8075 IP address blocks: 143.188.148.0/22 maxlen: 23 143.188.152.0/22 maxlen: 23 143.188.156.0/22 maxlen: 23 143.188.160.0/23 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 07:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A5D4, serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Validity Not Before: May 14 07:14:20 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=682442cc-d117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:0e:fc:fd:c8:d7:63:7a:b5:51:e3:5e:c8:a0: 7e:17:d7:e5:79:2b:e8:d8:45:54:78:39:ff:07:27: 72:cc:8e:20:ec:2b:e2:b9:b3:92:c0:53:b6:92:3f: e7:6f:5e:aa:e0:50:6e:e3:8a:f0:81:4e:5b:58:68: 66:30:bc:e2:83:43:7d:13:f0:f8:71:95:4f:cf:6a: 0d:55:0e:24:12:41:4b:ab:58:6e:ee:3a:c1:c3:cb: 35:37:07:be:6b:87:60:1a:c0:dd:c5:13:e1:b6:bf: 7c:de:72:c5:6e:45:69:8f:17:ef:c7:16:c8:6d:8f: 46:bc:e6:f3:99:8b:3b:64:28:03:e1:64:a1:d1:eb: fc:20:74:2f:d7:86:3a:ba:b9:94:bc:e2:cf:d0:f9: aa:79:13:32:0e:2b:74:cb:cb:42:cc:0b:b4:2b:fd: 2d:2a:0b:b7:8b:f7:93:50:12:69:98:73:95:f7:39: 84:c9:f5:94:13:5f:0c:34:d8:dd:c5:85:33:3b:55: ed:39:44:d0:05:90:0a:49:3f:b3:2d:2a:9b:b6:ac: f9:45:9b:f3:39:9f:8a:b6:c3:c5:04:0b:53:75:fa: 6c:c6:ed:bb:45:e9:f9:6b:4e:7d:cc:e8:29:3d:85: eb:27:9d:2a:27:f3:5c:a5:14:1d:07:3a:93:b4:2c: 6c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:86:88:0E:D9:A0:C5:19:00:97:40:E5:79:35:9F:FD:56:BC:84:D1 X509v3 Authority Key Identifier: keyid:66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.188.148.0-143.188.161.255 Signature Algorithm: sha256WithRSAEncryption f5:91:93:6c:72:82:a0:75:0b:c9:1d:13:eb:62:14:3b:18:9d: 6d:99:6f:67:e8:a2:65:d7:39:84:00:43:0d:0f:fd:89:3a:05: f2:0d:8a:cb:8e:4e:46:87:6a:9b:20:bb:92:bb:51:1e:02:cd: b6:62:df:9c:00:3a:a0:6e:5c:6f:a5:ef:20:28:a0:07:05:3a: 11:c6:c7:e9:a8:f6:54:7a:d0:d4:c8:06:05:19:08:8b:c6:61: 58:de:ec:33:ac:6f:1b:60:ab:ea:e9:cf:66:bc:55:64:38:e6: 54:e6:f0:cd:90:6d:aa:d2:10:bf:a6:71:2d:b6:fa:cf:36:bc: 06:dc:3b:0c:49:08:c2:00:d5:df:6f:d5:55:36:f9:2c:69:84: d4:97:d9:da:87:a3:a9:a0:67:28:ce:fd:d6:77:59:9e:ef:f7: 84:60:b4:f7:63:35:d6:3a:7d:19:a1:77:da:84:f2:ee:87:c2: b1:39:85:b8:57:3c:be:4b:f5:66:ba:62:42:15:76:f6:ce:58: b9:b5:3f:5f:5a:26:5a:e1:17:79:0f:3f:2a:2b:c7:f7:d8:29: 04:a1:e5:01:5f:01:e1:1d:70:36:e2:5c:e0:10:7d:1d:85:da: e7:87:14:8b:be:0c:75:d1:fa:2c:a4:16:22:05:a3:17:e6:9d: e4:da:72:69 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTVENDExMC8GA1UEBRMoNjYxMzREQTFCRkVEQUMwQzkxOUQyNkIxRjdGOUUxNjhB RjlEMkI0RTAeFw0yNTA1MTQwNzE0MjBaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjQ0MmNjLWQxMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzDvz9yNdjerVR417IoH4X1+V5K+jYRVR4Of8HJ3LMjiDsK+K5s5LAU7aSP+dv XqrgUG7jivCBTltYaGYwvOKDQ30T8PhxlU/Pag1VDiQSQUurWG7uOsHDyzU3B75r h2AawN3FE+G2v3zecsVuRWmPF+/HFshtj0a85vOZiztkKAPhZKHR6/wgdC/Xhjq6 uZS84s/Q+ap5EzIOK3TLy0LMC7Qr/S0qC7eL95NQEmmYc5X3OYTJ9ZQTXww02N3F hTM7Ve05RNAFkApJP7MtKpu2rPlFm/M5n4q2w8UEC1N1+mzG7btF6flrTn3M6Ck9 hesnnSon81ylFB0HOpO0LGz/AgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUq4aIDtmg xRkAl0DleTWf/Va8hNEwHwYDVR0jBBgwFoAUZhNNob/trAyRnSax9/nhaK+dK04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBNUQ0LzY1MEI0REU4RjND RTExRUY5MTRFRjY0NEM0RjlBRTAyL1poTk5vYl90ckF5Um5TYXg5X25oYUstZEsw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWmhOTm9iX3RyQXlSblNheDlfbmhhSy1kSzA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTVENC82NTBCNERFOEYzQ0UxMUVGOTE0RUY2NDRDNEY5QUUwMi8wMTUyNTBGNjMw OTMxMUYwODQyMzEzMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQCj7yUAwQBj7ygMA0GCSqGSIb3DQEBCwUAA4IBAQD1kZNs coKgdQvJHRPrYhQ7GJ1tmW9n6KJl1zmEAEMND/2JOgXyDYrLjk5Gh2qbILuSu1Ee As22Yt+cADqgblxvpe8gKKAHBToRxsfpqPZUetDUyAYFGQiLxmFY3uwzrG8bYKvq 6c9mvFVkOOZU5vDNkG2q0hC/pnEttvrPNrwG3DsMSQjCANXfb9VVNvksaYTUl9na h6OpoGcozv3Wd1me7/eEYLT3YzXWOn0ZoXfahPLuh8KxOYW4Vzy+S/VmumJCFXb2 zli5tT9fWiZa4Rd5Dz8qK8f32CkEoeUBXwHhHXA24lzgEH0dhdrnhxSLvgx10fos pBYiBaMX5p3k2nJp -----END CERTIFICATE-----Generated at Sat May 17 11:18:39 2025 by rpki-client