$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CC239EAFE3211EE81256247C4F9AE02.roa File: 0CC239EAFE3211EE81256247C4F9AE02.roa (raw, json) Hash identifier: WgQk3TzVMOhjm5m3/JtUyhWxIxU1lSdOdyNJRRE6CM0= Subject key identifier: 8D:90:28:B6:9A:D1:5C:02:68:C1:8D:A1:B4:B7:E3:F9:AA:51:9D:54 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D73 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CC239EAFE3211EE81256247C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:51 +0000 ROA not before: Thu 08 May 2025 15:52:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138769 IP address blocks: 157.66.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7539 (0x1d73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd353-2908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cf:24:61:ab:a9:0c:32:fc:67:ae:bf:e3:a6: 87:58:7a:70:64:ec:0c:18:8b:e6:7f:5a:73:5e:c0: 26:51:ab:66:bc:65:16:91:dd:0c:bd:25:c5:56:d2: b2:ee:41:46:75:c4:d6:6f:a5:4a:86:1b:9e:fc:cc: f6:e7:c1:47:2e:26:53:a9:8d:de:a3:7f:9b:c0:50: 21:8a:91:f8:1c:ff:0c:35:cb:54:fa:6d:a6:77:43: 06:42:b7:3b:f8:24:35:25:22:33:b4:ca:e6:56:ec: de:2f:33:d0:92:6b:b8:4a:23:7b:19:53:21:91:2b: e3:5d:23:16:85:60:86:b9:94:cb:1e:8e:4b:91:56: c0:26:9c:e9:de:50:76:87:01:3c:5e:35:8e:76:79: 84:a6:f1:fe:c3:7d:3a:e6:46:ad:ed:16:e0:6d:41: 3e:d8:9e:20:24:d4:8e:5f:5c:95:01:af:05:7a:23: b1:4c:67:02:9b:4d:78:25:91:aa:02:9c:75:64:ea: a6:f3:df:62:cb:e0:8f:98:00:43:0b:82:aa:1b:c4: c2:a3:02:54:dd:ec:6f:2e:48:fc:65:dc:9f:93:88: 57:6a:a6:fc:77:f0:0b:71:d0:3b:c5:ed:11:5d:dd: 0d:b3:b6:1e:50:20:be:0b:c3:49:db:3e:40:2d:8a: a4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:90:28:B6:9A:D1:5C:02:68:C1:8D:A1:B4:B7:E3:F9:AA:51:9D:54 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/0CC239EAFE3211EE81256247C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.104.0/24 Signature Algorithm: sha256WithRSAEncryption af:e8:04:e0:5f:77:4f:a4:14:b9:19:00:05:73:2c:f9:fa:70: cc:8f:9d:f3:79:ae:1e:cc:67:53:79:fc:67:d3:86:1e:88:42: 76:d8:c6:ba:d5:97:ba:73:9a:38:f6:be:16:19:df:2b:83:89: d3:a1:6e:68:9b:c6:ea:03:b6:2d:2a:e8:79:96:43:6b:78:d6: b1:d3:e3:ea:2b:a2:be:b7:c6:9e:ce:1a:90:a7:3c:bf:ec:d2: f0:2c:ff:76:af:72:27:f2:42:79:b5:41:f5:81:fa:b2:cd:62: 99:8b:e2:24:f3:79:6e:2d:6f:24:8d:54:f6:34:dd:c4:bf:61: bc:b6:2e:0d:a1:42:6b:8c:01:de:35:5d:bd:22:33:76:0d:85: f5:e2:6a:d1:09:bb:9a:3d:2b:ae:8a:fd:f3:0e:7d:c2:53:31: 23:22:50:ef:36:6b:b4:69:f2:7d:9c:53:0d:06:af:d2:c5:ec: 76:e1:31:5d:17:3c:40:e8:6d:c0:39:cf:87:e1:25:9a:1c:73: f0:b8:18:60:4c:d6:1d:62:55:44:ac:e5:6b:65:70:cf:36:a6: 3f:c4:3a:06:42:1d:5e:9a:af:39:40:a6:78:eb:5f:19:1d:74: f3:f3:3c:22:ab:08:8b:aa:38:69:4d:02:51:f3:ca:3c:23:47: e0:f2:3d:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM1My0yOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA388kYaupDDL8Z66/46aHWHpwZOwMGIvmf1pzXsAmUatmvGUWkd0MvSXFVtKy 7kFGdcTWb6VKhhue/Mz258FHLiZTqY3eo3+bwFAhipH4HP8MNctU+m2md0MGQrc7 +CQ1JSIztMrmVuzeLzPQkmu4SiN7GVMhkSvjXSMWhWCGuZTLHo5LkVbAJpzp3lB2 hwE8XjWOdnmEpvH+w3065kat7RbgbUE+2J4gJNSOX1yVAa8FeiOxTGcCm014JZGq Apx1ZOqm899iy+CPmABDC4KqG8TCowJU3exvLkj8Zdyfk4hXaqb8d/ALcdA7xe0R Xd0Ns7YeUCC+C8NJ2z5ALYqk1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFI2QKLaa 0VwCaMGNobS34/mqUZ1UMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMENDMjM5RUFG RTMyMTFFRTgxMjU2MjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdQmgwDQYJKoZIhvcNAQELBQADggEBAK/oBOBfd0+kFLkZ AAVzLPn6cMyPnfN5rh7MZ1N5/GfThh6IQnbYxrrVl7pzmjj2vhYZ3yuDidOhbmib xuoDti0q6HmWQ2t41rHT4+oror63xp7OGpCnPL/s0vAs/3avcifyQnm1QfWB+rLN YpmL4iTzeW4tbySNVPY03cS/Yby2Lg2hQmuMAd41Xb0iM3YNhfXiatEJu5o9K66K /fMOfcJTMSMiUO82a7Rp8n2cUw0Gr9LF7HbhMV0XPEDobcA5z4fhJZocc/C4GGBM 1h1iVUSs5WtlcM82pj/EOgZCHV6arzlApnjrXxkddPPzPCKrCIuqOGlNAlHzyjwj R+DyPaw= -----END CERTIFICATE-----Generated at Sun May 11 02:10:11 2025 by rpki-client