$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/CB24F37C033711F0B76A8520C4F9AE02.roa File: CB24F37C033711F0B76A8520C4F9AE02.roa (raw, json) Hash identifier: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ= Subject key identifier: E3:F3:95:73:2C:6A:85:1B:8D:3C:63:92:AD:08:9D:B0:D5:0A:33:FD Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 50 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/CB24F37C033711F0B76A8520C4F9AE02.roa Signing time: Mon 17 Mar 2025 13:57:41 +0000 ROA not before: Mon 17 Mar 2025 13:57:41 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151495 IP address blocks: 157.20.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 05:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Mar 17 13:57:41 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67d82a55-b51e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8a:09:29:fd:60:2d:a9:2d:10:53:a9:7a:ce: 72:d0:c0:5e:84:e7:5d:16:7f:50:b2:10:2a:f7:e0: cf:c3:ba:32:df:a2:c2:03:a4:0d:f4:57:4e:b2:86: f7:62:12:90:3f:84:95:79:75:c1:e1:aa:2f:2a:41: 28:ab:e4:9f:24:e2:ce:da:0e:70:64:2e:a7:bc:d5: 00:ad:61:7a:e5:38:a0:8f:25:5c:a3:fa:ed:c8:12: db:a8:21:c8:ae:e1:5d:dc:3e:17:08:6e:b9:f2:0d: 31:59:ee:08:d2:49:2c:f9:ac:7b:f3:fc:b8:b4:d9: d3:13:f6:48:ad:38:96:ae:dd:1a:e0:40:55:1c:07: 39:bb:39:94:1b:c6:7b:a2:59:e7:6c:f0:75:85:c6: 04:6f:a7:24:12:5c:73:cf:40:71:ff:31:5b:80:15: 11:1a:6d:2c:bd:4e:77:40:8a:5c:be:48:27:29:f4: 0c:df:da:f8:87:1c:05:f6:4d:94:02:cf:05:d8:ba: 40:0e:61:37:ee:06:31:da:28:07:21:ab:04:70:38: b0:24:75:43:69:04:91:23:ee:b7:92:de:8d:e4:38: 96:20:ab:d4:b6:82:55:af:1e:d1:ef:29:e0:9c:f5: ae:54:45:ee:13:ed:10:9a:b3:e3:2d:3d:80:2d:79: 59:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F3:95:73:2C:6A:85:1B:8D:3C:63:92:AD:08:9D:B0:D5:0A:33:FD X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/CB24F37C033711F0B76A8520C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.65.0/24 Signature Algorithm: sha256WithRSAEncryption c2:e5:d2:2b:da:d3:9a:8e:95:16:4f:05:9e:5c:99:91:73:73: 80:90:40:53:e8:b7:64:ed:82:4b:0b:02:5b:db:24:45:87:38: 3a:d4:02:2b:6f:d4:ee:4c:5b:4b:71:af:33:28:d3:ce:99:6a: fe:44:72:aa:fa:be:c1:5f:6a:1c:10:ab:1e:cc:b3:e9:7f:63: 73:9f:0d:3f:c9:f8:05:2b:46:43:70:ff:ad:f5:a0:fe:78:76: 0f:56:85:2c:8c:88:ad:a7:c1:9d:3a:90:28:15:ee:76:26:a7: 74:ff:4b:1b:fd:ff:41:65:86:be:d0:e6:57:bd:d5:70:51:90: 59:92:f8:a2:95:11:0f:f4:5b:93:1d:d4:c2:8d:e8:11:6f:bd: 14:6c:9b:a4:36:37:2b:f0:bd:3f:78:d8:73:99:a8:19:69:67: 58:53:7f:5a:a9:d2:90:90:f4:d9:c5:64:4b:92:57:c9:65:e3: 82:c8:0e:b7:2b:26:92:40:e2:bf:c3:b2:38:9d:fc:91:ee:f0: 88:2b:b0:8b:99:98:b0:e7:35:a9:50:ae:e9:24:7c:27:61:4e: c6:5d:c6:28:dc:ef:3f:27:97:12:92:27:81:ed:ca:6f:a0:99: 0d:07:e8:2c:91:57:d2:7d:ec:d5:0b:5b:38:e0:2b:a5:75:2b: d4:1f:79:92 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoNUQ5NDZENEY0NzlEMzdCQ0UxNzAwQ0IwQkFERDUxQTJD M0RGNjIwRjAeFw0yNTAzMTcxMzU3NDFaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDgyYTU1LWI1MWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1igkp/WAtqS0QU6l6znLQwF6E510Wf1CyECr34M/DujLfosIDpA30V06yhvdi EpA/hJV5dcHhqi8qQSir5J8k4s7aDnBkLqe81QCtYXrlOKCPJVyj+u3IEtuoIciu 4V3cPhcIbrnyDTFZ7gjSSSz5rHvz/Li02dMT9kitOJau3RrgQFUcBzm7OZQbxnui Weds8HWFxgRvpyQSXHPPQHH/MVuAFREabSy9TndAily+SCcp9Azf2viHHAX2TZQC zwXYukAOYTfuBjHaKAchqwRwOLAkdUNpBJEj7reS3o3kOJYgq9S2glWvHtHvKeCc 9a5URe4T7RCas+MtPYAteVkbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4/OVcyxq hRuNPGOSrQidsNUKM/0wHwYDVR0jBBgwFoAUXZRtT0edN7zhcAywut1RosPfYg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzIyODY1NjJBOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZlln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFpSdFQwZWRON3poY0F5d3V0MVJvc1BmWWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9DQjI0RjM3QzAz MzcxMUYwQjc2QTg1MjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJ0UQTANBgkqhkiG9w0BAQsFAAOCAQEAwuXSK9rTmo6VFk8F nlyZkXNzgJBAU+i3ZO2CSwsCW9skRYc4OtQCK2/U7kxbS3GvMyjTzplq/kRyqvq+ wV9qHBCrHsyz6X9jc58NP8n4BStGQ3D/rfWg/nh2D1aFLIyIrafBnTqQKBXudian dP9LG/3/QWWGvtDmV73VcFGQWZL4opURD/Rbkx3Uwo3oEW+9FGybpDY3K/C9P3jY c5moGWlnWFN/WqnSkJD02cVkS5JXyWXjgsgOtysmkkDiv8OyOJ38ke7wiCuwi5mY sOc1qVCu6SR8J2FOxl3GKNzvPyeXEpInge3Kb6CZDQfoLJFX0n3s1QtbOOArpXUr 1B95kg== -----END CERTIFICATE-----Generated at Sat Apr 19 05:20:03 2025 by rpki-client