$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/48005D9EE5AE11EE9ECE4023C4F9AE02.roa File: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (raw, json) Hash identifier: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08= Subject key identifier: 59:AF:30:04:9F:23:CA:C5:2A:23:EB:34:83:B2:62:AC:96:F6:CB:D6 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: F4 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/48005D9EE5AE11EE9ECE4023C4F9AE02.roa Signing time: Fri 20 Jun 2025 07:19:31 +0000 ROA not before: Fri 20 Jun 2025 07:19:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152594 IP address blocks: 157.20.129.0/24 maxlen: 24 165.99.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Jun 20 07:19:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68550b82-f59f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9d:6c:2e:63:6a:ab:ce:fd:cb:3b:5f:50:74: 07:2a:94:4a:a3:6e:58:ff:35:5f:c7:fd:53:7c:9c: 82:9c:eb:7e:d9:5c:49:8d:7b:36:b0:74:77:17:e7: 86:49:60:5c:31:40:ae:b7:76:e5:7d:19:41:7e:6f: 6e:2e:1f:6c:ea:72:72:01:60:8b:62:01:50:87:f8: 5f:27:63:d4:e0:bf:2c:3a:29:60:57:80:76:2a:e3: 5b:cf:7a:19:40:7c:c8:d3:ca:b4:2a:1d:11:da:1f: c9:09:b4:4b:a9:97:82:cc:e6:26:29:4b:ec:03:19: af:60:c3:0b:73:12:06:df:b7:5d:92:8f:04:8d:51: 88:01:8d:c0:ae:06:03:b2:83:f3:a3:1c:d7:d7:e3: b0:79:c4:fa:ef:54:c8:74:d2:f1:cb:a7:b3:3a:33: 93:9d:91:b0:c2:92:ce:79:b6:04:16:a9:27:4d:f4: a8:55:09:d6:15:ca:4b:fb:73:ba:45:49:54:f3:4c: b3:6d:bf:45:96:05:06:24:12:28:60:b0:e7:4d:a0: 08:48:bf:bf:10:a3:56:30:31:b0:15:61:44:e6:50: 56:8d:92:0f:08:dc:c8:da:4f:78:9e:c9:98:33:95: 33:0c:b2:24:49:4f:c3:4c:21:c7:16:07:7e:1a:1d: f9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AF:30:04:9F:23:CA:C5:2A:23:EB:34:83:B2:62:AC:96:F6:CB:D6 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/48005D9EE5AE11EE9ECE4023C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.129.0/24 165.99.224.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:f3:d0:aa:bc:34:cf:7d:02:2a:c7:98:b5:fc:b1:7f:bc:5c: b8:87:e1:2d:a6:84:07:d0:cf:a6:1b:65:8f:d0:2c:e6:e0:9c: 88:fb:22:d5:dc:e7:f7:f6:8a:6b:80:b4:60:3a:2c:41:b8:52: a8:b3:9d:08:a0:d1:cb:19:d0:eb:6e:80:b0:77:21:1b:22:fb: 7b:c4:36:82:6b:84:ae:66:8f:6c:6b:86:ca:ab:83:60:d3:07: e7:ad:44:d3:c6:6a:71:5a:8a:11:8c:9a:87:69:b8:ac:4e:57: 60:ee:87:42:fd:a9:55:bd:0d:72:a1:58:b7:c1:90:f0:ed:95: 6f:29:fc:d2:60:91:12:aa:78:24:87:24:03:77:36:71:06:4e: b9:38:00:0f:32:eb:ca:60:5f:d9:a6:6e:4b:07:7a:c1:f1:3b: 37:06:92:0d:c3:d9:f8:f6:75:8f:6f:4b:0b:dd:98:79:f3:b2: d9:2e:08:bb:97:ee:f8:50:5b:b3:4f:d8:0a:f9:2f:b8:36:c8: e9:1d:a1:44:5e:09:87:ac:cb:a0:af:9e:1a:68:74:9b:d7:24: e1:bb:b1:7a:c0:3f:72:7c:84:d0:57:d0:24:b7:07:d0:4c:b9: 60:21:10:0d:51:7f:ca:4b:9e:e0:f1:1f:47:b0:c9:91:58:d2: 54:bf:3d:6d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUwNjIwMDcxOTMxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODU1MGI4Mi1mNTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZ1sLmNqq879yztfUHQHKpRKo25Y/zVfx/1TfJyCnOt+2VxJjXs2sHR3F+eG SWBcMUCut3blfRlBfm9uLh9s6nJyAWCLYgFQh/hfJ2PU4L8sOilgV4B2KuNbz3oZ QHzI08q0Kh0R2h/JCbRLqZeCzOYmKUvsAxmvYMMLcxIG37ddko8EjVGIAY3ArgYD soPzoxzX1+OwecT671TIdNLxy6ezOjOTnZGwwpLOebYEFqknTfSoVQnWFcpL+3O6 RUlU80yzbb9FlgUGJBIoYLDnTaAISL+/EKNWMDGwFWFE5lBWjZIPCNzI2k94nsmY M5UzDLIkSU/DTCHHFgd+Gh35DwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFmvMASf I8rFKiPrNIOyYqyW9svWMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1QUMvQ0I3NEY4QkVFMUUwMTFFRUFGNkUxRTY4QzRGOUFFMDIvNDgwMDVEOUVF NUFFMTFFRTlFQ0U0MDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACdFIEDBAClY+AwDQYJKoZIhvcNAQELBQADggEBAIrz0Kq8 NM99AirHmLX8sX+8XLiH4S2mhAfQz6YbZY/QLObgnIj7ItXc5/f2imuAtGA6LEG4 UqiznQig0csZ0OtugLB3IRsi+3vENoJrhK5mj2xrhsqrg2DTB+etRNPGanFaihGM modpuKxOV2Duh0L9qVW9DXKhWLfBkPDtlW8p/NJgkRKqeCSHJAN3NnEGTrk4AA8y 68pgX9mmbksHesHxOzcGkg3D2fj2dY9vSwvdmHnzstkuCLuX7vhQW7NP2Ar5L7g2 yOkdoUReCYesy6CvnhpodJvXJOG7sXrAP3J8hNBX0CS3B9BMuWAhEA1Rf8pLnuDx H0ewyZFY0lS/PW0= -----END CERTIFICATE-----Generated at Fri Jul 4 06:14:05 2025 by rpki-client