$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A1E94B1AD33611EFBB5ACC53C4F9AE02.roa File: A1E94B1AD33611EFBB5ACC53C4F9AE02.roa (raw, json) Hash identifier: sI8Jlt7d4842Cc3TSCizvMfks6QziQN8FfJwETdvnP0= Subject key identifier: 0E:00:46:C5:40:EA:65:C8:66:4D:F0:54:60:3C:E0:C7:F2:E0:84:40 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1D6C Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A1E94B1AD33611EFBB5ACC53C4F9AE02.roa Signing time: Thu 08 May 2025 15:52:46 +0000 ROA not before: Thu 08 May 2025 15:52:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138272 IP address blocks: 157.15.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7532 (0x1d6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:52:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd34e-27bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8b:c1:56:77:58:b5:88:bb:cd:bb:a1:17:be: f5:da:ed:ff:89:0d:41:08:1f:2d:47:e3:c7:f8:d2: c6:ec:63:ce:55:03:6c:e3:01:32:a7:f3:f9:f2:b3: 79:60:32:05:ea:d9:16:a4:4b:40:40:53:81:b3:b3: be:27:bd:27:40:3e:c9:9e:9d:64:0d:10:5b:a8:a8: b2:9b:04:f9:e2:d4:08:a3:40:69:b2:87:85:8c:69: 30:54:2c:09:66:54:1c:66:f1:a0:d2:f3:db:df:7f: 54:82:21:a1:8a:eb:82:8b:3a:38:0e:6f:b2:5a:d2: 1f:b9:cb:81:46:94:1f:56:d6:07:13:bc:7c:2f:f7: cf:13:63:b5:08:1b:55:2c:74:8e:61:2a:bd:44:1f: af:87:5d:8a:5b:8f:6a:5a:f8:2e:af:c3:b6:f1:63: 7f:00:d3:8a:f6:2c:90:ad:df:47:4e:00:78:4d:a3: 06:81:37:90:26:9d:21:19:94:0d:99:3d:bf:b7:b7: 57:0b:71:e5:96:b4:71:7b:f3:60:76:81:f6:19:54: 59:7d:e2:1d:db:09:70:d6:e5:9a:59:f8:cb:53:63: 82:89:dc:a9:39:f1:30:1d:c0:7e:0f:ca:51:74:d1: 25:29:f2:c2:bc:80:db:e9:73:35:cc:6e:ca:8c:d6: f2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:00:46:C5:40:EA:65:C8:66:4D:F0:54:60:3C:E0:C7:F2:E0:84:40 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A1E94B1AD33611EFBB5ACC53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.132.0/23 Signature Algorithm: sha256WithRSAEncryption 96:90:a3:37:b3:22:9a:2e:8f:da:4e:67:22:ec:d9:d0:69:dc: a7:af:36:9f:bf:4b:d5:93:83:95:10:fa:7f:20:27:fe:5b:ab: fc:d8:9c:9e:fc:a2:d4:35:5b:78:85:8f:3f:7e:b3:82:49:9c: 6b:93:f5:b8:19:6d:ab:7e:a5:3d:b3:7d:75:69:c9:9e:91:a5: 25:46:4b:c8:98:18:18:82:bb:1a:d5:bf:46:13:54:fc:65:cd: 5e:64:16:1c:7e:02:7a:57:b4:c2:49:bc:73:ac:05:50:0c:31: b4:be:23:74:a2:a6:f1:89:b0:38:96:af:dc:4f:95:fe:e2:db: 72:d2:83:96:05:ff:fb:8b:e4:8f:29:22:82:62:77:77:71:c1: e3:d3:a1:91:fb:53:30:81:a7:9f:20:4a:66:95:e9:c1:c1:7a: 2c:bc:22:08:b2:65:ae:53:0d:a8:91:ba:fe:a0:18:54:51:56: 88:2d:ab:c1:3d:95:c9:ea:31:de:26:ec:ce:f2:f4:ee:54:75: 24:cb:9c:50:c4:b8:69:88:e9:3a:36:57:88:02:85:61:88:86: d1:b1:81:fe:b3:e2:e8:c5:80:84:b0:ca:67:57:a9:fa:04:7b: 49:70:0e:0d:b3:27:e6:b3:46:f6:be:fc:db:fa:8f:74:da:49: bc:46:32:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MjQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDM0ZS0yN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ovBVndYtYi7zbuhF7712u3/iQ1BCB8tR+PH+NLG7GPOVQNs4wEyp/P58rN5 YDIF6tkWpEtAQFOBs7O+J70nQD7Jnp1kDRBbqKiymwT54tQIo0BpsoeFjGkwVCwJ ZlQcZvGg0vPb339UgiGhiuuCizo4Dm+yWtIfucuBRpQfVtYHE7x8L/fPE2O1CBtV LHSOYSq9RB+vh12KW49qWvgur8O28WN/ANOK9iyQrd9HTgB4TaMGgTeQJp0hGZQN mT2/t7dXC3HllrRxe/NgdoH2GVRZfeId2wlw1uWaWfjLU2OCidypOfEwHcB+D8pR dNElKfLCvIDb6XM1zG7KjNbybwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA4ARsVA 6mXIZk3wVGA84Mfy4IRAMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTFFOTRCMUFE MzM2MTFFRkJCNUFDQzUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD4QwDQYJKoZIhvcNAQELBQADggEBAJaQozezIpouj9pO ZyLs2dBp3KevNp+/S9WTg5UQ+n8gJ/5bq/zYnJ78otQ1W3iFjz9+s4JJnGuT9bgZ bat+pT2zfXVpyZ6RpSVGS8iYGBiCuxrVv0YTVPxlzV5kFhx+AnpXtMJJvHOsBVAM MbS+I3SipvGJsDiWr9xPlf7i23LSg5YF//uL5I8pIoJid3dxwePToZH7UzCBp58g SmaV6cHBeiy8IgiyZa5TDaiRuv6gGFRRVogtq8E9lcnqMd4m7M7y9O5UdSTLnFDE uGmI6To2V4gChWGIhtGxgf6z4ujFgISwymdXqfoEe0lwDg2zJ+azRva+/Nv6j3Ta SbxGMko= -----END CERTIFICATE-----Generated at Tue May 13 16:08:30 2025 by rpki-client