$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ABCCEBB6CDC711EE8A262C4EC4F9AE02.roa File: ABCCEBB6CDC711EE8A262C4EC4F9AE02.roa (raw, json) Hash identifier: zIOBj5YBTE6pEEkPxatT0lPoJEUY6kzYZZceZ5XmYbM= Subject key identifier: 3A:E3:D4:BD:4F:48:D1:2C:06:CE:E7:E0:8D:60:29:6D:46:9C:65:F6 Certificate issuer: /CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7 Certificate serial: D6 Authority key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ABCCEBB6CDC711EE8A262C4EC4F9AE02.roa Signing time: Thu 03 Apr 2025 05:02:49 +0000 ROA not before: Thu 03 Apr 2025 05:02:49 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 139901 IP address blocks: 157.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE Validity Not Before: Apr 3 05:02:49 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67ee1679-66e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:aa:f4:c0:a1:47:bb:aa:d2:0d:70:da:68:ca: 56:20:cf:08:d2:72:1c:df:d7:b9:20:ee:b0:59:0f: 65:f8:ac:31:eb:f5:04:38:f6:2b:f2:ae:cf:0e:63: ec:71:c3:53:cb:88:9e:b3:7f:af:ee:8b:01:18:5e: da:b9:95:78:6e:a8:73:7e:12:bb:60:d2:94:19:a1: 64:7e:a9:ec:63:1c:bd:b2:65:87:b8:63:01:d6:0c: 23:83:60:94:a3:e1:e2:c8:d7:13:4b:b9:71:72:64: fd:e0:a5:23:0d:08:0b:74:6e:f2:48:d6:31:c0:7a: 72:62:70:bd:ca:26:6c:ed:e1:95:dc:eb:b3:06:d1: ed:06:b1:a9:bf:48:05:c3:53:cc:ce:0f:63:ee:c8: 15:b5:d5:8b:2f:b5:a8:53:8d:db:bf:de:68:a5:cc: a5:12:f5:7c:9d:f3:6c:ee:d1:fb:53:a6:57:7e:2e: e0:ae:82:35:67:cb:d5:af:bd:28:f8:3f:33:b0:ac: cd:35:9b:00:80:87:f6:17:e0:0f:9c:8b:0b:f5:45: e1:e9:e4:cc:3b:cf:c7:50:4a:88:36:4c:57:d3:d5: 5c:44:dc:32:29:6c:f4:36:11:a8:ca:e7:88:33:92: 90:93:d3:bf:df:38:d0:25:d6:b2:de:df:9b:9d:80: ad:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E3:D4:BD:4F:48:D1:2C:06:CE:E7:E0:8D:60:29:6D:46:9C:65:F6 X509v3 Authority Key Identifier: keyid:7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ABCCEBB6CDC711EE8A262C4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.43.0/24 Signature Algorithm: sha256WithRSAEncryption 20:e4:31:a3:a8:c0:61:79:52:67:64:3c:d1:19:fe:9c:e5:d0: 93:e4:c8:3d:31:84:32:2b:bf:48:f6:b2:c0:0e:88:a3:f1:6a: 15:d2:6d:7a:6e:8c:5a:6b:cb:70:e6:26:b5:42:47:6a:48:ce: 11:2d:c1:20:64:6b:1d:39:ad:31:a3:d9:ec:15:0e:ee:24:0a: d5:e4:22:5c:e5:df:3a:0e:8f:4e:3d:74:42:d5:db:ac:3d:8a: 18:a1:6e:a6:8a:bb:62:e2:d2:ca:d6:85:22:0d:f9:ca:cd:4a: b0:35:59:b8:a9:4e:6e:a3:32:18:c6:b9:1e:51:b2:6a:23:36: 47:e6:1c:12:8a:4f:ab:9b:90:c9:7f:42:2f:40:91:2f:7f:d2: 63:46:b2:3b:de:f1:ad:aa:8f:c6:bf:6e:fc:81:3e:03:7e:7b: c5:95:ae:12:fd:59:21:2c:93:f6:d4:3b:39:00:29:c1:13:8b: 3c:d0:2d:1f:cd:47:9a:14:4c:95:77:95:49:26:66:28:9b:11: 61:cd:a8:ad:a5:22:55:8e:25:53:41:ee:09:b7:0f:a6:e9:46: 70:59:be:6c:9b:f0:fe:7b:b8:b6:9f:0e:8d:6c:a5:f4:8b:23: 43:4b:eb:73:25:ad:5a:d5:f6:1a:52:4a:b1:cb:00:d7:53:5a: d5:88:45:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0QkUxMTAvBgNVBAUTKDdCMUZCMUJBM0IwRUM4Q0E1RTVDMTNBRUJDRkM2RUJB OEQyMEVBQTcwHhcNMjUwNDAzMDUwMjQ5WhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMTY3OS02NmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKr0wKFHu6rSDXDaaMpWIM8I0nIc39e5IO6wWQ9l+Kwx6/UEOPYr8q7PDmPs ccNTy4ies3+v7osBGF7auZV4bqhzfhK7YNKUGaFkfqnsYxy9smWHuGMB1gwjg2CU o+HiyNcTS7lxcmT94KUjDQgLdG7ySNYxwHpyYnC9yiZs7eGV3OuzBtHtBrGpv0gF w1PMzg9j7sgVtdWLL7WoU43bv95opcylEvV8nfNs7tH7U6ZXfi7groI1Z8vVr70o +D8zsKzNNZsAgIf2F+APnIsL9UXh6eTMO8/HUEqINkxX09VcRNwyKWz0NhGoyueI M5KQk9O/3zjQJday3t+bnYCt7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDrj1L1P SNEsBs7n4I1gKW1GnGX2MB8GA1UdIwQYMBaAFHsfsbo7DsjKXlwTrrz8brqNIOqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjRCRS82RjJGRDMzOEND RjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi9leC14dWpzT3lNcGVYQk91dlB4dXVvMGc2 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2V4LXh1anNPeU1wZVhCT3V2UHh1dW8wZzZxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0QkUvNkYyRkQzMzhDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvQUJDQ0VCQjZD REM3MTFFRThBMjYyQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFCswDQYJKoZIhvcNAQELBQADggEBACDkMaOowGF5Umdk PNEZ/pzl0JPkyD0xhDIrv0j2ssAOiKPxahXSbXpujFpry3DmJrVCR2pIzhEtwSBk ax05rTGj2ewVDu4kCtXkIlzl3zoOj049dELV26w9ihihbqaKu2Li0srWhSIN+crN SrA1WbipTm6jMhjGuR5RsmojNkfmHBKKT6ubkMl/Qi9AkS9/0mNGsjve8a2qj8a/ bvyBPgN+e8WVrhL9WSEsk/bUOzkAKcETizzQLR/NR5oUTJV3lUkmZiibEWHNqK2l IlWOJVNB7gm3D6bpRnBZvmyb8P57uLafDo1spfSLI0NL63MlrVrV9hpSSrHLANdT WtWIRYs= -----END CERTIFICATE-----Generated at Sat Apr 5 18:48:48 2025 by rpki-client