$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa File: 4B97FFDA008D11EF84E0E056C4F9AE02.roa (raw, json) Hash identifier: /1lhNt+BnM13qkooibFV92RiLcdE+GwHLoDWqE/Jing= Subject key identifier: 4C:92:00:90:72:AB:27:79:41:47:2F:49:9A:E4:F9:7D:8E:F3:02:97 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D5A Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:29 +0000 ROA not before: Thu 08 May 2025 15:52:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135817 IP address blocks: 157.66.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7514 (0x1d5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd33d-b6e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:64:51:01:c1:9e:45:66:40:ba:5f:07:c1:ab: f1:09:a4:81:13:86:db:31:69:31:6c:a5:fb:86:9e: 15:34:f9:a3:06:c5:98:b3:f9:bd:09:20:42:14:5f: c0:a0:b9:bb:5c:79:eb:b8:0f:6d:c0:10:be:54:b1: 39:80:a3:b9:00:44:b0:15:ea:5d:9e:c4:ce:7b:fb: 0f:4b:6c:9e:ba:ed:98:f7:42:6c:69:cb:91:df:ec: a3:71:e9:c5:d0:10:2e:36:ee:42:dc:01:b4:80:b6: a0:c5:90:5c:ec:de:49:af:d3:f6:f3:91:16:9d:87: 3c:e4:6b:02:94:b9:81:1f:73:cb:44:68:00:73:31: c8:86:12:ec:46:78:a0:94:a6:60:ab:c3:a5:c9:5e: 6d:5e:83:ba:7c:3f:bc:10:5c:0c:85:1c:03:d0:09: f0:60:27:4f:1c:99:43:2a:de:4b:32:bb:0d:fb:8f: 0c:4c:3c:7d:b4:d9:8b:47:10:e1:9f:61:ef:5b:05: 10:eb:5f:d2:6b:25:b1:9e:c2:a3:f8:73:56:4d:47: 05:cb:8b:8b:b6:be:e1:b7:7b:35:24:00:07:9b:a2: d2:a9:0a:98:61:97:97:81:11:95:eb:a4:cc:97:88: e3:1a:33:bb:b9:9c:c4:d9:30:56:86:9a:af:94:05: 81:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:92:00:90:72:AB:27:79:41:47:2F:49:9A:E4:F9:7D:8E:F3:02:97 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4B97FFDA008D11EF84E0E056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.32.0/24 Signature Algorithm: sha256WithRSAEncryption c2:79:07:2c:fb:06:eb:b1:24:1a:90:7b:10:e4:fc:d1:a8:7b: 38:72:ff:90:d8:02:b8:e4:a7:c5:73:00:a2:7f:62:90:c4:2e: 71:90:b7:3d:89:e1:6b:d3:60:8c:cb:3e:b8:89:38:c6:50:c1: cd:09:0c:ac:44:5e:7e:db:bc:56:a1:17:3f:00:70:d5:94:b0: c0:60:b6:02:7b:5a:8b:e1:c3:ab:ae:e7:66:9b:c1:78:5f:e8: 57:c2:f9:10:76:f0:53:e9:64:ec:af:13:29:92:81:e0:7f:bd: 33:b3:e9:32:69:d0:04:ee:85:bb:47:4e:3d:ec:de:54:b1:b0: 77:e4:53:49:01:ce:0e:22:f8:4c:85:42:fb:91:da:47:a5:6c: 63:be:8d:82:e7:fd:10:47:68:9f:c5:1d:66:81:26:37:eb:67: 4c:58:df:6d:aa:77:14:53:68:58:b3:04:ab:5d:d6:20:53:8b: 3c:c5:39:f2:6e:a0:4c:70:46:50:a2:7a:cc:fc:2b:52:98:6e: 3b:ce:8b:ab:c6:b1:dc:e3:a1:fa:88:3d:9a:28:79:56:66:0c: e7:a0:30:44:32:f1:c4:4c:39:b9:f8:2c:95:ed:a7:ac:a9:91: 68:09:3d:0d:4a:04:8d:6e:d3:fe:6c:27:20:72:3a:50:b0:b9: 0c:fc:af:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDMzZC1iNmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGRRAcGeRWZAul8HwavxCaSBE4bbMWkxbKX7hp4VNPmjBsWYs/m9CSBCFF/A oLm7XHnruA9twBC+VLE5gKO5AESwFepdnsTOe/sPS2yeuu2Y90JsacuR3+yjcenF 0BAuNu5C3AG0gLagxZBc7N5Jr9P285EWnYc85GsClLmBH3PLRGgAczHIhhLsRnig lKZgq8OlyV5tXoO6fD+8EFwMhRwD0AnwYCdPHJlDKt5LMrsN+48MTDx9tNmLRxDh n2HvWwUQ61/SayWxnsKj+HNWTUcFy4uLtr7ht3s1JAAHm6LSqQqYYZeXgRGV66TM l4jjGjO7uZzE2TBWhpqvlAWBTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEySAJBy qyd5QUcvSZrk+X2O8wKXMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNEI5N0ZGREEw MDhEMTFFRjg0RTBFMDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdQiAwDQYJKoZIhvcNAQELBQADggEBAMJ5Byz7BuuxJBqQ exDk/NGoezhy/5DYArjkp8VzAKJ/YpDELnGQtz2J4WvTYIzLPriJOMZQwc0JDKxE Xn7bvFahFz8AcNWUsMBgtgJ7Wovhw6uu52abwXhf6FfC+RB28FPpZOyvEymSgeB/ vTOz6TJp0ATuhbtHTj3s3lSxsHfkU0kBzg4i+EyFQvuR2kelbGO+jYLn/RBHaJ/F HWaBJjfrZ0xY322qdxRTaFizBKtd1iBTizzFOfJuoExwRlCiesz8K1KYbjvOi6vG sdzjofqIPZooeVZmDOegMEQy8cRMObn4LJXtp6ypkWgJPQ1KBI1u0/5sJyByOlCw uQz8r70= -----END CERTIFICATE-----Generated at Tue May 13 05:47:36 2025 by rpki-client