$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/675CAE1C097B11F089FAE77FC4F9AE02.roa File: 675CAE1C097B11F089FAE77FC4F9AE02.roa (raw, json) Hash identifier: g8goRa5uN0098PK1vnqVTndrxAdY1S5JKnq752ZsLOQ= Subject key identifier: 12:B0:5F:1B:C3:00:6E:12:8D:A2:01:7C:CD:83:E0:66:11:77:A9:06 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: EF Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/675CAE1C097B11F089FAE77FC4F9AE02.roa Signing time: Tue 13 May 2025 04:56:17 +0000 ROA not before: Tue 13 May 2025 04:56:17 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152474 IP address blocks: 157.15.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: May 13 04:56:17 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6822d0f0-7344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6c:ac:7c:c6:b0:26:b4:ac:14:db:36:af:1a: 4b:10:6c:5a:09:9d:eb:ba:15:5d:08:0f:bf:2e:c2: e9:ce:bd:c4:a2:bc:dd:7e:9f:e1:ff:32:f6:71:be: 6a:c4:6b:b3:19:88:45:60:d4:f7:c2:d9:cd:0c:69: c6:dd:d0:3a:6b:89:fa:99:67:e6:04:8e:35:d0:96: ed:9b:2b:e0:12:aa:fc:ae:3d:2c:5a:02:7c:cd:56: 06:f1:dd:fa:fb:99:ac:a6:fd:a7:5e:9a:f9:dd:bf: 47:b0:aa:26:57:b4:11:4f:22:85:be:ad:33:a6:30: df:35:ea:6b:0f:66:75:ba:3d:78:10:b4:cd:c1:0c: a4:d3:d6:c3:2a:8d:1f:19:6f:1a:3a:d3:4a:c7:7f: b8:de:98:9f:2b:4a:b1:59:e5:fe:26:ab:7b:c7:d8: 6d:d1:80:b2:b2:59:80:f0:df:29:16:05:7d:ed:95: ab:a3:97:1b:bb:d2:3d:9f:65:1e:09:6d:b8:e7:e8: d8:ad:22:d6:66:3f:54:66:38:17:79:85:28:92:dc: f8:56:53:63:eb:05:fd:aa:53:10:cb:7c:c4:60:6c: f6:ed:87:4c:cd:49:75:7e:97:bb:be:b4:f3:70:1a: 9a:09:26:18:15:81:63:91:79:96:2c:3b:6b:9f:3b: d4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B0:5F:1B:C3:00:6E:12:8D:A2:01:7C:CD:83:E0:66:11:77:A9:06 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/675CAE1C097B11F089FAE77FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.229.0/24 Signature Algorithm: sha256WithRSAEncryption 48:21:7f:41:fd:3f:56:50:35:63:3d:5e:8d:c1:5c:2d:70:8a: 31:8e:88:71:c1:7c:db:70:7a:a2:a7:25:a9:6b:8a:3b:81:1a: 2e:e9:e0:8b:eb:79:16:db:94:a6:bd:da:36:5d:a1:c9:24:15: 5b:94:c1:7d:41:63:d7:78:4d:17:3e:e4:e4:11:f0:6b:ec:d7: 91:fa:05:82:61:76:f7:dc:cd:70:25:60:01:d5:ec:bf:95:2c: b9:dc:4d:7c:0f:a4:de:3a:3e:21:33:0d:f7:62:0c:70:8a:6b: c1:19:41:73:43:e6:31:6d:9a:84:18:25:3f:c3:be:da:4e:7b: d2:87:64:63:c8:ba:1e:46:f4:88:d8:e9:c6:73:3f:58:cb:9d: 79:fb:c4:bb:9f:02:31:0d:d0:9d:1c:16:6e:b7:e7:77:db:de: cb:a3:4c:f1:85:ca:de:be:0f:2e:bd:c1:9d:eb:25:50:c2:ab: e7:c9:24:dc:2c:c0:7a:69:9a:d3:15:44:81:3f:94:a5:07:e1: cf:74:ce:de:a7:5e:55:d4:2b:e1:17:b6:30:58:f1:e6:fc:3a: 61:02:0a:c3:28:fd:ea:ba:84:47:68:c7:bb:be:e0:34:c6:40: 76:b3:80:a7:0e:e4:c6:c2:9e:b5:3a:8e:bb:b4:6d:36:ff:15: ef:37:af:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjUwNTEzMDQ1NjE3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyZDBmMC03MzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymysfMawJrSsFNs2rxpLEGxaCZ3ruhVdCA+/LsLpzr3Eorzdfp/h/zL2cb5q xGuzGYhFYNT3wtnNDGnG3dA6a4n6mWfmBI410JbtmyvgEqr8rj0sWgJ8zVYG8d36 +5mspv2nXpr53b9HsKomV7QRTyKFvq0zpjDfNeprD2Z1uj14ELTNwQyk09bDKo0f GW8aOtNKx3+43pifK0qxWeX+Jqt7x9ht0YCyslmA8N8pFgV97ZWro5cbu9I9n2Ue CW245+jYrSLWZj9UZjgXeYUoktz4VlNj6wX9qlMQy3zEYGz27YdMzUl1fpe7vrTz cBqaCSYYFYFjkXmWLDtrnzvUfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBKwXxvD AG4SjaIBfM2D4GYRd6kGMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc1OEUvRERFQzgxMjRENTNEMTFFRThGMUU4QTg1QzRGOUFFMDIvNjc1Q0FFMUMw OTdCMTFGMDg5RkFFNzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD+UwDQYJKoZIhvcNAQELBQADggEBAEghf0H9P1ZQNWM9 Xo3BXC1wijGOiHHBfNtweqKnJalrijuBGi7p4IvreRbblKa92jZdockkFVuUwX1B Y9d4TRc+5OQR8Gvs15H6BYJhdvfczXAlYAHV7L+VLLncTXwPpN46PiEzDfdiDHCK a8EZQXND5jFtmoQYJT/DvtpOe9KHZGPIuh5G9IjY6cZzP1jLnXn7xLufAjEN0J0c Fm6353fb3sujTPGFyt6+Dy69wZ3rJVDCq+fJJNwswHppmtMVRIE/lKUH4c90zt6n XlXUK+EXtjBY8eb8OmECCsMo/eq6hEdox7u+4DTGQHazgKcO5MbCnrU6jru0bTb/ Fe83r9g= -----END CERTIFICATE-----Generated at Wed May 14 20:55:16 2025 by rpki-client