$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa File: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (raw, json) Hash identifier: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg= Subject key identifier: 03:4E:05:83:A2:C9:1C:FE:34:2F:99:BA:81:85:34:52:CF:7D:E8:13 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: DC Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa Signing time: Tue 06 May 2025 20:42:15 +0000 ROA not before: Tue 06 May 2025 20:42:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152605 IP address blocks: 157.20.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: May 6 20:42:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a7427-b25e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:dd:a1:fe:e7:6d:7a:c2:f3:09:d2:e4:c0:1f: 0d:5e:80:e8:fa:a2:8d:7a:e8:3c:46:89:75:97:b7: 4a:95:1d:dd:e9:37:07:1f:cc:c7:38:f0:72:7b:3d: da:ab:ff:31:54:06:dc:75:74:18:ee:8a:ec:f4:de: df:f8:19:f5:e8:1b:09:4b:b9:01:98:d9:8a:8f:49: 73:3b:bc:d8:ff:66:5d:15:ab:c4:cf:54:99:82:c1: 1f:80:4d:99:c7:5e:8a:d2:bf:92:3a:25:99:b0:8f: e4:10:16:86:eb:95:27:24:83:0f:fe:8f:15:d2:42: ea:e2:28:40:5c:be:a8:b0:66:b3:26:4b:67:45:a9: d3:31:91:e0:9f:78:38:a3:5e:24:95:5d:e3:ac:60: bd:80:93:e4:b6:df:03:09:b8:47:6d:b8:c9:bd:21: 90:71:47:d2:cb:c8:15:0a:7d:90:9b:08:86:0e:59: a5:06:b9:9c:28:a7:40:d9:e5:e0:d1:95:41:f3:0f: 9b:26:b6:0f:5e:54:80:af:a7:d5:b3:55:e9:18:48: f2:e7:15:0d:10:f5:5e:19:df:e9:84:3c:46:92:44: cc:54:5b:45:a1:63:68:d9:7b:3f:fe:3f:6b:4b:e6: be:62:1d:85:bb:af:a5:6c:e7:02:7b:53:bb:fb:69: 06:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4E:05:83:A2:C9:1C:FE:34:2F:99:BA:81:85:34:52:CF:7D:E8:13 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.146.0/23 Signature Algorithm: sha256WithRSAEncryption b2:cc:e7:3f:5b:78:2e:ca:80:7d:83:77:b7:3e:92:0b:1f:0e: a7:9c:af:cc:45:46:12:38:40:0f:11:e7:88:e4:26:e6:94:bd: af:bf:06:4f:a2:cb:ca:c5:d2:71:9d:cc:da:49:74:f5:de:7d: fd:0a:f4:e8:c8:f1:49:80:6c:f8:88:d4:ce:3a:32:77:95:56: 1a:fc:4b:68:dd:3c:db:df:ea:d0:e9:4a:c9:b8:67:be:4f:fd: 14:be:e0:f3:2f:68:dc:bd:0c:40:ed:39:18:86:35:0f:10:16: 57:03:45:73:8e:2b:3b:84:ed:43:07:7a:7c:71:2a:ad:f9:7e: 62:85:75:79:73:22:88:4d:ea:5c:0c:01:99:36:2e:1e:7b:6e: 54:b2:6b:67:e8:4b:9d:f0:9a:7a:98:98:f1:e7:64:40:96:64: 0d:f1:cb:4e:f6:8b:df:9e:89:7f:3f:3d:32:25:2d:1f:c8:1b: 51:61:a6:3d:72:1c:c8:01:50:f1:81:34:39:64:67:71:77:3b: bb:ce:fb:df:bd:9e:98:c1:8d:15:ca:d2:0b:6a:a8:0a:96:29: 5d:cc:fe:9d:2a:4d:65:bb:8b:5f:18:23:b2:82:63:85:04:97: f3:31:63:a0:dd:b9:02:06:6d:18:15:5e:d2:98:bf:07:31:f3: 89:46:aa:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUwNTA2MjA0MjE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhNzQyNy1iMjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1N2h/udtesLzCdLkwB8NXoDo+qKNeug8Rol1l7dKlR3d6TcHH8zHOPByez3a q/8xVAbcdXQY7ors9N7f+Bn16BsJS7kBmNmKj0lzO7zY/2ZdFavEz1SZgsEfgE2Z x16K0r+SOiWZsI/kEBaG65UnJIMP/o8V0kLq4ihAXL6osGazJktnRanTMZHgn3g4 o14klV3jrGC9gJPktt8DCbhHbbjJvSGQcUfSy8gVCn2QmwiGDlmlBrmcKKdA2eXg 0ZVB8w+bJrYPXlSAr6fVs1XpGEjy5xUNEPVeGd/phDxGkkTMVFtFoWNo2Xs//j9r S+a+Yh2Fu6+lbOcCe1O7+2kGBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFANOBYOi yRz+NC+ZuoGFNFLPfegTMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTI5REEvMzRCNUI1MTREQTU0MTFFRTgyN0NBNTdEQzRGOUFFMDIvQUUyRkQ5QzRE QTU0MTFFRTgzRTlFNjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFJIwDQYJKoZIhvcNAQELBQADggEBALLM5z9beC7KgH2D d7c+kgsfDqecr8xFRhI4QA8R54jkJuaUva+/Bk+iy8rF0nGdzNpJdPXeff0K9OjI 8UmAbPiI1M46MneVVhr8S2jdPNvf6tDpSsm4Z75P/RS+4PMvaNy9DEDtORiGNQ8Q FlcDRXOOKzuE7UMHenxxKq35fmKFdXlzIohN6lwMAZk2Lh57blSya2foS53wmnqY mPHnZECWZA3xy072i9+eiX8/PTIlLR/IG1Fhpj1yHMgBUPGBNDlkZ3F3O7vO+9+9 npjBjRXK0gtqqAqWKV3M/p0qTWW7i18YI7KCY4UEl/MxY6DduQIGbRgVXtKYvwcx 84lGqs4= -----END CERTIFICATE-----Generated at Mon May 12 08:32:01 2025 by rpki-client