$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/57A7394C4B0E11EE8682CD4CC4F9AE02.roa File: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (raw, json) Hash identifier: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo= Subject key identifier: 38:80:2B:AE:9C:06:21:87:5F:04:3E:F2:FF:EB:0D:27:CD:54:D3:9D Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0386 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/57A7394C4B0E11EE8682CD4CC4F9AE02.roa Signing time: Thu 05 Dec 2024 01:15:06 +0000 ROA not before: Thu 05 Dec 2024 01:15:06 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 134365 IP address blocks: 150.129.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 902 (0x386) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B Validity Not Before: Dec 5 01:15:06 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6750fe99-0622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:9d:e6:4d:84:e0:99:6f:c1:25:4d:e9:d1: 54:de:aa:85:fc:dd:af:fa:26:13:d4:3d:82:2e:a6: a6:16:4b:f0:73:c6:59:fe:66:53:b4:b5:3c:f6:cb: e7:d3:68:7d:3f:ca:48:0b:0e:4c:88:1a:b0:bc:c0: cc:fa:17:e3:3e:e6:2c:e5:55:5d:e3:f4:34:15:8d: 29:50:6a:da:de:c3:4c:2d:2c:ac:9c:1d:6f:d1:3c: d3:10:c0:de:92:8e:08:f9:c1:69:d9:cd:74:85:8a: 5d:b1:1a:51:76:94:d5:41:53:08:a9:7e:bf:29:e8: 5e:75:26:0f:a5:0a:f3:69:1c:a3:46:e7:c0:50:79: 1a:fc:a2:df:6c:1e:61:68:01:80:db:ab:75:46:9f: 19:30:e6:4b:5c:ce:bf:2a:08:c3:16:8e:13:e7:7e: fe:a9:08:25:f1:5d:40:7e:62:82:6d:b7:22:78:02: fc:e3:89:44:22:fe:65:19:1e:db:1a:10:1d:6f:1d: 74:cb:63:f5:d0:6e:3e:b5:f5:1b:2d:6a:78:f6:a4: 30:68:9e:1b:6e:89:b9:cd:42:c3:5c:c6:bf:6c:b0: 99:e9:b5:6c:4b:57:89:22:ae:ad:0c:45:ca:b9:14: 6c:74:9e:dc:3f:33:8f:42:09:37:3c:1f:11:4a:aa: c3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:80:2B:AE:9C:06:21:87:5F:04:3E:F2:FF:EB:0D:27:CD:54:D3:9D X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/57A7394C4B0E11EE8682CD4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.129.218.0/24 Signature Algorithm: sha256WithRSAEncryption 56:17:5b:11:2f:c2:66:16:aa:50:fa:f1:f9:de:28:31:d2:9e: ed:bf:9b:32:e4:40:7a:48:51:9b:a9:cd:fb:b4:f5:d6:af:82: c5:87:10:eb:1d:09:56:12:67:ab:01:3f:28:18:ec:b0:21:61: 9f:42:b1:6a:06:a4:2b:84:96:f3:46:db:89:df:aa:4e:e0:fc: d4:4c:fc:7a:a2:2e:c3:b3:a3:9a:b4:46:14:ad:8c:a8:af:e2: c7:34:71:79:ae:4b:88:3b:3b:b6:8a:fc:8a:e2:2e:02:cc:94: c8:79:19:6c:2c:2d:44:f5:8a:35:c5:fe:5f:4f:1f:3c:b2:d8: 50:5f:8f:9e:b6:49:35:cb:93:aa:3d:9b:ae:15:b5:20:bb:c7: 5d:99:af:bd:26:90:36:81:38:f5:4c:1e:a0:e2:e7:8a:7c:ef: 1a:2c:51:d2:c7:fe:74:3e:4b:77:bf:d0:51:a1:d7:b7:96:94: d9:11:fe:83:52:c7:a0:54:ec:d3:f0:28:a7:ca:12:12:41:4e: 0c:b9:cd:c5:16:a4:2b:ce:23:89:d6:25:89:59:30:46:52:2e: cf:6a:ee:4b:4e:4d:b1:91:e6:68:bb:f3:3f:ff:04:bc:ab:1d: 17:ed:38:31:0b:82:f2:22:cc:95:97:ad:c4:e8:8f:0f:2d:34: d1:54:c8:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQxMjA1MDExNTA2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZmU5OS0wNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3id5k2E4JlvwSVN6dFU3qqF/N2v+iYT1D2CLqamFkvwc8ZZ/mZTtLU89svn 02h9P8pICw5MiBqwvMDM+hfjPuYs5VVd4/Q0FY0pUGra3sNMLSysnB1v0TzTEMDe ko4I+cFp2c10hYpdsRpRdpTVQVMIqX6/KehedSYPpQrzaRyjRufAUHka/KLfbB5h aAGA26t1Rp8ZMOZLXM6/KgjDFo4T537+qQgl8V1AfmKCbbcieAL844lEIv5lGR7b GhAdbx10y2P10G4+tfUbLWp49qQwaJ4bbom5zULDXMa/bLCZ6bVsS1eJIq6tDEXK uRRsdJ7cPzOPQgk3PB8RSqrDmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDiAK66c BiGHXwQ+8v/rDSfNVNOdMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvNTdBNzM5NEM0 QjBFMTFFRTg2ODJDRDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACWgdowDQYJKoZIhvcNAQELBQADggEBAFYXWxEvwmYWqlD6 8fneKDHSnu2/mzLkQHpIUZupzfu09davgsWHEOsdCVYSZ6sBPygY7LAhYZ9CsWoG pCuElvNG24nfqk7g/NRM/HqiLsOzo5q0RhStjKiv4sc0cXmuS4g7O7aK/IriLgLM lMh5GWwsLUT1ijXF/l9PHzyy2FBfj562STXLk6o9m64VtSC7x12Zr70mkDaBOPVM HqDi54p87xosUdLH/nQ+S3e/0FGh17eWlNkR/oNSx6BU7NPwKKfKEhJBTgy5zcUW pCvOI4nWJYlZMEZSLs9q7ktOTbGR5mi78z//BLyrHRftODELgvIizJWXrcTojw8t NNFUyBU= -----END CERTIFICATE-----Generated at Fri Apr 11 18:28:15 2025 by rpki-client