$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/8B097276C5F911EE8D0FDF82C4F9AE02.roa File: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (raw, json) Hash identifier: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4= Subject key identifier: 49:A9:AF:C7:3F:4B:C7:7B:B5:59:94:03:C4:52:80:33:13:DA:37:1D Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: BD Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/8B097276C5F911EE8D0FDF82C4F9AE02.roa Signing time: Fri 07 Feb 2025 04:17:48 +0000 ROA not before: Fri 07 Feb 2025 04:17:48 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152297 IP address blocks: 157.10.32.0/24 maxlen: 24 157.10.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018 Validity Not Before: Feb 7 04:17:48 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a5896c-b18f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:dc:3a:f7:2a:f2:fd:88:22:0f:f0:ee:a9:18: 9d:ec:c2:fe:1a:b1:d2:31:60:4f:33:ce:35:49:2c: 90:e4:f3:17:a0:64:9c:ed:6a:9a:a5:6c:8c:32:a2: 11:a9:34:cb:5a:6f:66:45:61:58:84:47:e5:51:cc: 90:17:a9:db:fb:86:65:e4:ef:03:3d:fc:86:46:94: ce:92:28:31:c2:fd:0e:e0:c8:4a:5f:39:26:f3:66: 0d:7d:5f:d9:30:73:8b:d2:7e:33:a1:2f:40:52:cf: ad:f3:e2:18:ff:33:41:54:b8:87:70:42:07:9a:f0: 99:60:08:2c:bd:81:b9:6d:55:c0:68:a1:43:a5:43: 4c:aa:f4:9f:9e:e1:70:f2:40:a1:85:cd:31:d0:77: e9:2a:db:17:ed:e1:d3:b1:dd:9a:e5:f9:21:df:97: a8:17:9f:70:1a:15:9e:14:3e:35:1a:c2:f0:c0:6e: 14:07:72:99:d9:dc:15:36:93:dd:ce:bb:76:75:3a: ef:a4:87:08:87:41:1b:cb:87:d0:b1:e2:96:dd:24: e3:72:0b:4a:a8:b0:c5:ea:e6:22:9e:a0:f9:a2:61: f2:86:9d:ed:3a:65:1d:a3:02:9f:47:1b:3b:96:38: ce:74:ee:05:af:4e:12:4f:04:f9:be:73:9d:ed:2a: b0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A9:AF:C7:3F:4B:C7:7B:B5:59:94:03:C4:52:80:33:13:DA:37:1D X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/8B097276C5F911EE8D0FDF82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.32.0/23 Signature Algorithm: sha256WithRSAEncryption a3:6c:eb:4d:df:26:28:c7:d0:c5:a1:89:be:7c:02:fb:03:34: d1:11:df:09:9d:d5:db:4d:29:2f:9f:8d:11:c9:f5:c6:d1:9f: ad:60:f6:5e:0c:f2:ca:90:be:1f:ec:61:f2:d9:70:38:80:4c: 2d:20:8e:e5:dd:a1:91:5c:e4:ab:78:0f:b6:9d:dd:12:79:d1: 5d:e3:f4:de:c7:af:64:a0:51:88:6d:1e:a3:27:e6:78:35:5e: 1b:a4:6e:42:6b:54:65:be:77:b6:d1:86:e8:e6:33:e9:b5:6a: 14:ec:29:59:a8:50:40:c7:a3:fc:14:d8:21:ed:6a:d6:e1:b3: eb:da:16:a6:d2:60:9d:86:8a:28:ba:2e:a5:ae:1a:37:d1:be: d8:1b:1a:d5:75:eb:c2:66:5c:00:52:6f:6a:01:b5:05:29:85: 48:26:ac:71:8d:35:70:49:99:c7:2c:4b:bd:df:3e:34:56:a6: c5:0e:e2:7b:58:41:ee:02:bd:c7:8b:b8:cc:44:93:c0:4b:67: fe:66:6c:70:05:f4:c0:22:7d:f2:aa:4d:7e:8e:14:38:e1:6b: c4:33:3e:f5:d5:18:7b:9f:59:a1:20:80:c9:0f:b4:cc:1f:4d: 32:94:75:3d:29:64:92:03:b9:75:07:ae:93:d3:1d:56:65:ef: 44:53:5f:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUwMjA3MDQxNzQ4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1ODk2Yy1iMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dw69yry/YgiD/DuqRid7ML+GrHSMWBPM841SSyQ5PMXoGSc7WqapWyMMqIR qTTLWm9mRWFYhEflUcyQF6nb+4Zl5O8DPfyGRpTOkigxwv0O4MhKXzkm82YNfV/Z MHOL0n4zoS9AUs+t8+IY/zNBVLiHcEIHmvCZYAgsvYG5bVXAaKFDpUNMqvSfnuFw 8kChhc0x0HfpKtsX7eHTsd2a5fkh35eoF59wGhWeFD41GsLwwG4UB3KZ2dwVNpPd zrt2dTrvpIcIh0Eby4fQseKW3STjcgtKqLDF6uYinqD5omHyhp3tOmUdowKfRxs7 ljjOdO4Fr04STwT5vnOd7SqwQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEmpr8c/ S8d7tVmUA8RSgDMT2jcdMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0IwMTgvMzA3OUQ4MTJDNUY2MTFFRUJFMEI3OTYwQzRGOUFFMDIvOEIwOTcyNzZD NUY5MTFFRThEMEZERjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCiAwDQYJKoZIhvcNAQELBQADggEBAKNs603fJijH0MWh ib58AvsDNNER3wmd1dtNKS+fjRHJ9cbRn61g9l4M8sqQvh/sYfLZcDiATC0gjuXd oZFc5Kt4D7ad3RJ50V3j9N7Hr2SgUYhtHqMn5ng1XhukbkJrVGW+d7bRhujmM+m1 ahTsKVmoUEDHo/wU2CHtatbhs+vaFqbSYJ2Giii6LqWuGjfRvtgbGtV168JmXABS b2oBtQUphUgmrHGNNXBJmccsS73fPjRWpsUO4ntYQe4CvceLuMxEk8BLZ/5mbHAF 9MAiffKqTX6OFDjha8QzPvXVGHufWaEggMkPtMwfTTKUdT0pZJIDuXUHrpPTHVZl 70RTX9k= -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:26 2025 by rpki-client