$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/805DA0BCCCF811EEA9723F27C4F9AE02.roa File: 805DA0BCCCF811EEA9723F27C4F9AE02.roa (raw, json) Hash identifier: PVKfYcrhEpkGhk/bRv8ieDCU8VEgQ0tyddxr1XeEq3U= Subject key identifier: 8D:1C:68:4A:E7:59:C0:13:D1:C1:A9:0B:F6:D5:93:86:42:A3:6C:FC Certificate issuer: /CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Certificate serial: D7 Authority key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/805DA0BCCCF811EEA9723F27C4F9AE02.roa Signing time: Thu 03 Apr 2025 05:02:50 +0000 ROA not before: Thu 03 Apr 2025 05:02:50 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 152482 IP address blocks: 157.20.42.0/23 maxlen: 23 157.20.42.0/24 maxlen: 24 157.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE Validity Not Before: Apr 3 05:02:50 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67ee167a-5f62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e8:9e:0e:17:dc:7e:a3:42:6f:e9:46:f9:43: a4:a3:76:8c:45:26:bf:86:1a:9c:7c:a1:0e:fe:e5: df:82:97:7e:84:87:da:4d:15:58:34:33:27:91:06: 0e:ff:cc:f6:c4:90:2f:65:21:4f:20:90:2d:0a:10: a4:62:78:41:f5:7e:66:b1:1d:55:d8:15:f4:be:2b: e8:6b:16:f9:21:e6:4e:18:2b:c5:53:2f:19:7c:d2: 14:6f:1a:4d:65:46:de:26:c9:18:39:f4:da:a3:3d: 33:ae:db:01:c1:a9:44:df:3e:09:6b:76:ab:b5:58: 87:02:66:82:2c:4f:79:bf:45:2d:5d:f2:a0:21:9a: be:fe:d2:2b:22:2a:c0:c9:0c:a8:de:59:c1:e8:2e: 7b:36:85:31:47:10:28:82:bf:b5:9a:89:cb:63:1b: dd:5e:c7:ad:7b:a2:de:5e:fd:e2:8b:9b:21:14:ba: 7d:f3:39:1d:f7:2c:37:ce:2d:ca:14:ab:27:fa:46: 9b:8d:4b:43:84:82:94:aa:a0:e1:96:13:c2:7d:ab: 83:bc:90:75:ef:df:c8:8e:b2:2d:9b:d9:bc:f7:e9: 97:89:34:98:3a:4d:65:be:f0:4b:d9:48:d6:33:e0: ac:5a:b3:1a:0f:f3:cf:64:cf:e8:18:18:ca:c7:e1: 08:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:1C:68:4A:E7:59:C0:13:D1:C1:A9:0B:F6:D5:93:86:42:A3:6C:FC X509v3 Authority Key Identifier: keyid:7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/805DA0BCCCF811EEA9723F27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.42.0/23 Signature Algorithm: sha256WithRSAEncryption 39:a6:61:29:ea:73:75:20:30:45:99:20:99:f6:ee:60:cd:36: ba:fc:38:3f:f3:ae:12:57:3e:de:2d:4c:f5:f2:3f:39:a7:2c: 00:37:a4:26:62:00:ba:29:4a:eb:1e:09:a3:6f:f6:db:99:70: ae:1e:b5:37:0f:49:c8:0e:f4:e7:63:65:0a:d4:37:fb:5b:1c: 4d:a9:09:92:18:c1:a9:44:98:26:2a:73:20:ae:63:02:60:1e: ec:f4:8b:c5:56:03:ef:75:f6:4c:93:ee:0e:4e:40:a6:7d:b4: ae:d7:68:ab:5a:40:b2:e0:b7:01:05:06:9f:f1:e1:03:da:cd: 00:59:b0:e5:14:c0:a7:95:e6:4e:55:be:0d:21:b1:53:c8:bc: 69:cd:bb:a3:e9:9c:14:40:4a:e5:81:48:5c:d5:2f:e0:e3:bd: 33:9b:71:1c:38:9c:a9:6e:b1:63:0d:23:85:4b:f6:00:c3:70: 2c:9c:9b:3a:9e:f1:04:32:f8:ba:02:52:fe:d9:d3:a7:00:4a: 3a:96:ed:38:bb:f6:59:f6:eb:13:a8:9a:bc:ee:2c:98:03:a5: 2b:4e:49:7b:7f:fd:97:83:84:73:ee:2d:b5:0c:ed:ba:d4:98: 77:b6:97:95:30:d6:f5:c1:34:01:3d:18:6b:87:c9:c3:b5:46: b4:01:6f:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0QkUxMTAvBgNVBAUTKDdCMUZCMUJBM0IwRUM4Q0E1RTVDMTNBRUJDRkM2RUJB OEQyMEVBQTcwHhcNMjUwNDAzMDUwMjUwWhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMTY3YS01ZjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueieDhfcfqNCb+lG+UOko3aMRSa/hhqcfKEO/uXfgpd+hIfaTRVYNDMnkQYO /8z2xJAvZSFPIJAtChCkYnhB9X5msR1V2BX0vivoaxb5IeZOGCvFUy8ZfNIUbxpN ZUbeJskYOfTaoz0zrtsBwalE3z4Ja3artViHAmaCLE95v0UtXfKgIZq+/tIrIirA yQyo3lnB6C57NoUxRxAogr+1monLYxvdXsete6LeXv3ii5shFLp98zkd9yw3zi3K FKsn+kabjUtDhIKUqqDhlhPCfauDvJB179/IjrItm9m89+mXiTSYOk1lvvBL2UjW M+CsWrMaD/PPZM/oGBjKx+EIowIDAQABo4IClTCCApEwHQYDVR0OBBYEFI0caErn WcAT0cGpC/bVk4ZCo2z8MB8GA1UdIwQYMBaAFHsfsbo7DsjKXlwTrrz8brqNIOqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjRCRS82RjJGRDMzOEND RjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi9leC14dWpzT3lNcGVYQk91dlB4dXVvMGc2 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2V4LXh1anNPeU1wZVhCT3V2UHh1dW8wZzZxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0QkUvNkYyRkQzMzhDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvODA1REEwQkND Q0Y4MTFFRUE5NzIzRjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFCowDQYJKoZIhvcNAQELBQADggEBADmmYSnqc3UgMEWZ IJn27mDNNrr8OD/zrhJXPt4tTPXyPzmnLAA3pCZiALopSuseCaNv9tuZcK4etTcP ScgO9OdjZQrUN/tbHE2pCZIYwalEmCYqcyCuYwJgHuz0i8VWA+919kyT7g5OQKZ9 tK7XaKtaQLLgtwEFBp/x4QPazQBZsOUUwKeV5k5Vvg0hsVPIvGnNu6PpnBRASuWB SFzVL+DjvTObcRw4nKlusWMNI4VL9gDDcCycmzqe8QQy+LoCUv7Z06cASjqW7Ti7 9ln26xOomrzuLJgDpStOSXt//ZeDhHPuLbUM7brUmHe2l5Uw1vXBNAE9GGuHycO1 RrQBb1g= -----END CERTIFICATE-----Generated at Sun Apr 6 09:05:02 2025 by rpki-client