$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/295F005C2B4911F09184D156C4F9AE02.roa File: 295F005C2B4911F09184D156C4F9AE02.roa (raw, json) Hash identifier: qF6XTtFmca/FEh4XqwcAQucotffA6JCFF3lJWhUx5fQ= Subject key identifier: 8D:39:9C:BF:5E:84:F1:9D:1B:BE:BA:A6:00:0E:9B:C7:8F:26:36:E8 Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Certificate serial: 0128 Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/295F005C2B4911F09184D156C4F9AE02.roa Signing time: Wed 07 May 2025 13:42:47 +0000 ROA not before: Wed 07 May 2025 13:42:47 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138619 IP address blocks: 157.15.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 04:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Validity Not Before: May 7 13:42:47 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=681b6357-78e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d5:ab:92:f4:fe:14:b2:07:ce:22:a0:4e:5b: f7:48:ed:50:4d:cc:47:18:4a:0a:39:d7:ef:30:07: 75:bb:e4:27:25:72:8b:cd:d3:53:15:8c:e6:73:6c: 83:09:d7:d5:34:72:9b:78:9c:a8:80:22:c8:15:44: 35:bd:e9:89:56:49:29:02:47:8f:48:c9:5e:d0:67: 4e:4f:22:3d:76:00:2b:d4:6b:30:1f:67:48:04:ec: f2:4b:0a:dd:ff:2e:0a:d8:64:c1:70:a8:00:29:3c: c5:05:16:db:1b:a7:d9:14:58:ec:4f:e8:a9:de:4e: e5:b3:59:e4:ec:4a:21:c7:65:3b:a7:1c:1e:99:78: 0a:2d:f7:2b:ea:6f:20:f3:c8:4b:05:fa:a6:e6:88: 6f:98:fe:09:a3:91:6f:68:44:7e:d7:fc:13:67:d0: 1d:53:78:3a:25:47:52:e1:59:eb:64:16:30:d0:3c: b7:e7:e2:3c:54:d1:92:f3:34:17:94:a3:0d:22:aa: 46:5c:c4:d2:f1:36:40:48:0d:2c:de:29:eb:15:a7: 97:9b:04:f5:3e:81:74:cb:b7:0d:31:bc:01:d3:a3: 74:10:78:1c:63:57:30:2b:94:df:c4:e1:35:9d:53: 00:d2:83:3a:35:6f:d3:7b:0b:db:f2:01:86:0b:4d: 53:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:39:9C:BF:5E:84:F1:9D:1B:BE:BA:A6:00:0E:9B:C7:8F:26:36:E8 X509v3 Authority Key Identifier: keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/295F005C2B4911F09184D156C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.135.0/24 Signature Algorithm: sha256WithRSAEncryption d9:56:74:39:e5:f2:81:1c:a2:04:59:2b:bf:8e:54:67:07:84: 67:b5:37:b2:29:c5:81:d3:0e:7f:20:63:48:9e:61:98:2a:d1: 32:2a:9d:b0:a4:8c:60:75:61:fe:bd:4c:79:f6:c3:42:ff:c2: 0f:39:2a:33:59:5d:83:f0:4f:d2:38:14:32:f6:a6:fa:ec:d2: e9:30:a9:23:b7:1f:15:50:16:fe:ba:5c:da:b7:83:6f:6a:8a: 8a:ee:0c:1b:45:e7:44:e2:7e:87:35:16:24:61:bb:7a:4a:af: 3a:83:29:47:c3:ae:9d:88:dc:6a:eb:1a:30:5f:b8:e2:c6:7d: c4:88:30:87:c1:61:97:54:35:e3:66:cd:31:18:3c:41:ac:84: 8b:e2:96:f6:b3:b5:77:ad:b3:4b:9a:ef:e8:af:6c:32:96:49: 94:cb:e7:2e:41:75:cc:f3:f5:d6:df:4d:a3:a1:f2:34:52:b8: bd:87:b2:57:7d:97:9d:f1:1e:e2:34:97:d7:b1:6e:fe:b5:51: a7:4c:b2:65:2d:a1:86:34:2e:fb:e5:a9:b1:6b:ab:d4:58:19: 55:4b:3d:78:fb:2e:18:e9:25:38:d6:e6:42:ca:a3:09:a7:34: 8c:57:42:48:e7:9c:5e:af:71:41:a0:96:15:08:36:eb:09:09: 8a:ef:29:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEM3MzM4REYxQjc2OEMwNTA3NENEQUVEMEZEQjFBNEMx NEFERkI4QjUwHhcNMjUwNTA3MTM0MjQ3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFiNjM1Ny03OGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNWrkvT+FLIHziKgTlv3SO1QTcxHGEoKOdfvMAd1u+QnJXKLzdNTFYzmc2yD CdfVNHKbeJyogCLIFUQ1vemJVkkpAkePSMle0GdOTyI9dgAr1GswH2dIBOzySwrd /y4K2GTBcKgAKTzFBRbbG6fZFFjsT+ip3k7ls1nk7Eohx2U7pxwemXgKLfcr6m8g 88hLBfqm5ohvmP4Jo5FvaER+1/wTZ9AdU3g6JUdS4VnrZBYw0Dy35+I8VNGS8zQX lKMNIqpGXMTS8TZASA0s3inrFaeXmwT1PoF0y7cNMbwB06N0EHgcY1cwK5TfxOE1 nVMA0oM6NW/Tewvb8gGGC01TlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI05nL9e hPGdG766pgAOm8ePJjboMB8GA1UdIwQYMBaAFMczjfG3aMBQdM2u0P2xpMFK37i1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri80QUFCN0JDQUM0 N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dGQjB6YTdRX2JHa3dVcmZ1 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h6T044YmRvd0ZCMHphN1FfYkdrd1VyZnVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE2N0YvNEFBQjdCQ0FDNDdEMTFFRTlGQzdDODBGQzRGOUFFMDIvMjk1RjAwNUMy QjQ5MTFGMDkxODREMTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD4cwDQYJKoZIhvcNAQELBQADggEBANlWdDnl8oEcogRZ K7+OVGcHhGe1N7IpxYHTDn8gY0ieYZgq0TIqnbCkjGB1Yf69THn2w0L/wg85KjNZ XYPwT9I4FDL2pvrs0ukwqSO3HxVQFv66XNq3g29qioruDBtF50Tifoc1FiRhu3pK rzqDKUfDrp2I3GrrGjBfuOLGfcSIMIfBYZdUNeNmzTEYPEGshIvilvaztXets0ua 7+ivbDKWSZTL5y5Bdczz9dbfTaOh8jRSuL2Hsld9l53xHuI0l9exbv61UadMsmUt oYY0LvvlqbFrq9RYGVVLPXj7LhjpJTjW5kLKowmnNIxXQkjnnF6vcUGglhUINusJ CYrvKUQ= -----END CERTIFICATE-----Generated at Sat May 10 16:37:23 2025 by rpki-client