$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/209F6792FBE511EFBBA1A156C4F9AE02.roa File: 209F6792FBE511EFBBA1A156C4F9AE02.roa (raw, json) Hash identifier: zFx3A/ppY2ngfMBUR3sH6hNASk1iji+2IxF22Re4J6o= Subject key identifier: AF:9E:EF:94:5F:B9:3F:C5:01:E0:AD:C7:A3:69:A0:2D:37:DF:D0:BF Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 0354 Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/209F6792FBE511EFBBA1A156C4F9AE02.roa Signing time: Sat 08 Mar 2025 06:18:19 +0000 ROA not before: Sat 08 Mar 2025 06:18:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135110 IP address blocks: 157.119.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 852 (0x354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5 Validity Not Before: Mar 8 06:18:19 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67cbe12a-8af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:86:35:ed:fc:24:d2:50:88:48:5e:87:10:21: 5f:bf:8a:76:7f:3e:4c:a5:5d:78:d3:45:fb:8e:96: 22:13:72:ae:41:5b:e8:e4:b4:14:dd:b9:2a:be:72: eb:2d:b9:aa:8d:fe:cf:10:14:22:1c:52:92:e5:96: 5c:ce:d0:be:f2:bc:eb:2b:a1:b3:f0:8a:09:6d:60: ea:5d:dd:fb:89:b3:9d:02:14:cc:db:22:90:39:2f: 4a:d4:a6:5b:03:59:dd:0b:db:84:5d:63:80:95:56: 9e:16:cb:87:24:77:55:70:89:06:2a:17:3b:b0:e6: e5:f9:89:af:99:43:b1:44:18:74:ab:91:79:df:af: af:d5:b4:38:36:8c:27:c9:6f:a8:20:b1:fb:5c:0f: b8:a8:52:33:ff:bc:75:d2:99:4b:a4:33:5a:3a:8d: 40:6b:78:85:80:6f:1f:3f:6c:f5:48:13:e5:0a:28: 14:fc:dd:a6:2d:b2:20:3c:34:00:1c:db:fa:8c:57: 4b:5c:5a:83:c6:34:68:a1:5e:cf:55:17:ca:b5:3c: 56:a1:7a:cd:28:f2:9b:d7:80:c3:97:65:06:7c:e1: 47:66:f8:68:90:f7:13:5b:1d:a2:e2:0c:47:01:3a: bd:9f:0e:ae:de:0c:ea:5a:2f:78:0d:1f:8b:1f:06: f6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9E:EF:94:5F:B9:3F:C5:01:E0:AD:C7:A3:69:A0:2D:37:DF:D0:BF X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/209F6792FBE511EFBBA1A156C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.21.0/24 Signature Algorithm: sha256WithRSAEncryption 48:69:6b:e8:54:5e:f1:7b:a6:0c:9f:2f:1d:17:80:83:42:0e: e6:e8:4b:5b:e9:16:b5:21:ec:7e:d8:c3:92:95:f8:39:bf:4a: 05:af:40:dc:9f:82:db:9c:38:e8:e6:f1:30:2c:0e:61:fe:1d: 67:0b:ff:d0:f4:02:ec:79:d6:e3:b7:cc:99:6f:23:eb:49:76: 2a:fa:e8:2f:73:71:98:85:4c:f0:1d:7e:68:30:8f:4d:77:10: 1b:06:b2:af:a3:b3:9c:94:81:7f:7c:e7:4d:b1:0c:b1:9e:34: 24:73:a4:7b:07:81:b2:bf:6f:12:3e:21:02:2d:c5:bc:d8:42: 68:77:0d:25:fe:a3:98:f0:55:33:8b:20:0e:5c:c9:95:26:59: 54:e3:75:5e:e6:f5:b3:d3:e9:25:32:8d:8f:9f:84:c8:75:cc: 5f:ec:8f:13:ec:91:87:f1:38:4d:72:d0:1c:61:58:44:21:6a: e0:b8:b8:15:35:78:a1:0a:18:8a:59:82:08:1a:9f:dc:0b:65: c7:2a:bf:3e:c5:cc:1e:29:b6:4c:fa:96:dc:ed:b3:26:84:40: 05:e8:e5:75:b9:5a:c2:db:1f:e7:eb:67:70:ea:e4:c1:38:9d: 37:55:da:fe:b4:74:14:f1:fe:c5:bf:b6:b4:41:33:06:a3:41: 18:2f:bf:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjUwMzA4MDYxODE5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NiZTEyYS04YWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoY17fwk0lCISF6HECFfv4p2fz5MpV1400X7jpYiE3KuQVvo5LQU3bkqvnLr Lbmqjf7PEBQiHFKS5ZZcztC+8rzrK6Gz8IoJbWDqXd37ibOdAhTM2yKQOS9K1KZb A1ndC9uEXWOAlVaeFsuHJHdVcIkGKhc7sObl+YmvmUOxRBh0q5F536+v1bQ4Nown yW+oILH7XA+4qFIz/7x10plLpDNaOo1Aa3iFgG8fP2z1SBPlCigU/N2mLbIgPDQA HNv6jFdLXFqDxjRooV7PVRfKtTxWoXrNKPKb14DDl2UGfOFHZvhokPcTWx2i4gxH ATq9nw6u3gzqWi94DR+LHwb2KwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK+e75Rf uT/FAeCtx6NpoC0339C/MB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvMjA5RjY3OTJG QkU1MTFFRkJCQTFBMTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACddxUwDQYJKoZIhvcNAQELBQADggEBAEhpa+hUXvF7pgyf Lx0XgINCDuboS1vpFrUh7H7Yw5KV+Dm/SgWvQNyfgtucOOjm8TAsDmH+HWcL/9D0 Aux51uO3zJlvI+tJdir66C9zcZiFTPAdfmgwj013EBsGsq+js5yUgX98502xDLGe NCRzpHsHgbK/bxI+IQItxbzYQmh3DSX+o5jwVTOLIA5cyZUmWVTjdV7m9bPT6SUy jY+fhMh1zF/sjxPskYfxOE1y0BxhWEQhauC4uBU1eKEKGIpZgggan9wLZccqvz7F zB4ptkz6ltztsyaEQAXo5XW5WsLbH+frZ3Dq5ME4nTdV2v60dBTx/sW/trRBMwaj QRgvv18= -----END CERTIFICATE-----Generated at Sun Apr 6 10:09:31 2025 by rpki-client