$ rpki-client -vvf rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/C75C471CB05F11EEB81C6C79C4F9AE02.roa File: C75C471CB05F11EEB81C6C79C4F9AE02.roa (raw, json) Hash identifier: 5LPH/WNi3gfNhKVoRLSA8Ih/RzW8kgqCDfXR1GGlrO8= Subject key identifier: B6:86:F1:63:EB:D3:4B:FB:A5:D0:49:40:05:6B:4A:86:46:11:44:61 Certificate issuer: /CN=A916B30C/serialNumber=BF08E8E0B2A676DCAEC49D519BFEC76546C2167E Certificate serial: E4 Authority key identifier: BF:08:E8:E0:B2:A6:76:DC:AE:C4:9D:51:9B:FE:C7:65:46:C2:16:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/C75C471CB05F11EEB81C6C79C4F9AE02.roa Signing time: Fri 21 Mar 2025 04:40:25 +0000 ROA not before: Fri 21 Mar 2025 04:40:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137000 IP address blocks: 157.10.166.0/24 maxlen: 24 157.10.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.crl rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B30C Validity Not Before: Mar 21 04:40:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67dcedb9-1308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3c:69:95:0d:18:b7:33:68:0c:5c:29:42:0a: 65:ea:4f:aa:4f:15:7e:9e:5f:48:73:10:41:84:22: c4:ce:b3:9d:07:b2:56:97:06:53:d6:a3:51:96:f9: b3:a2:9d:2a:db:f5:4a:64:44:69:90:ac:53:b1:a4: ff:3c:15:f5:8a:67:ae:5a:3c:c6:58:24:5a:c1:5a: e7:b6:66:d7:e7:ee:e0:e5:2c:72:1c:6d:3a:60:e1: 97:bb:42:43:7a:a6:60:30:d1:cb:89:2c:b1:e8:c6: cb:d1:3f:95:98:2f:c2:cd:91:bb:f8:79:9f:e9:bc: c6:33:7e:c3:ef:87:2d:69:c0:5a:ba:06:47:a6:8b: 9f:3f:aa:95:0f:b8:da:46:b7:bd:c1:19:d4:e6:8d: 31:b2:94:3b:44:35:19:b2:b2:cd:31:ae:2c:67:c1: 20:39:2f:c0:c1:45:a6:61:d2:a7:52:2f:b1:67:99: ba:85:65:46:5c:6e:20:d5:05:62:ad:a1:4c:88:57: 8c:3a:0f:45:c0:8d:cf:cc:80:fd:ec:58:df:af:52: 1f:08:70:23:ad:53:d2:62:24:56:92:1a:97:9e:88: 78:a9:13:40:ba:06:b0:31:a7:97:dc:aa:30:6b:05: 01:56:e1:ce:d3:1f:87:fe:0d:17:7a:a0:0b:14:88: bc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:86:F1:63:EB:D3:4B:FB:A5:D0:49:40:05:6B:4A:86:46:11:44:61 X509v3 Authority Key Identifier: keyid:BF:08:E8:E0:B2:A6:76:DC:AE:C4:9D:51:9B:FE:C7:65:46:C2:16:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vwjo4LKmdtyuxJ1Rm_7HZUbCFn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B30C/915CBA26B05E11EE97C78B75C4F9AE02/C75C471CB05F11EEB81C6C79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.166.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:3e:55:d1:5a:98:3f:40:fe:90:a9:bd:ce:8b:dc:2c:b6:8b: ee:17:36:7f:ac:bb:7d:5f:0f:6f:04:67:b7:98:6d:30:80:fa: d6:e8:05:06:80:0d:21:f3:b9:3e:4e:43:fb:b3:aa:e4:9e:26: d0:a5:33:75:8f:be:6c:b3:da:c4:b1:70:ee:03:5e:c0:80:91: 1f:b9:06:53:93:53:7b:9c:8e:9e:76:4d:a4:ae:3a:88:6f:d4: 2f:b7:39:e2:d2:af:70:6e:f3:c3:5a:f8:66:f1:07:88:0c:90: ba:f6:7f:42:1b:a8:19:34:80:e2:4e:1b:f1:e3:b2:ed:41:a6: 69:d5:50:47:2d:85:81:70:07:1a:a1:77:43:ca:a8:7a:77:1b: 9b:80:4c:18:ac:f8:1e:ee:15:1b:32:ae:c2:49:94:64:68:32: ce:c0:81:3e:d7:1c:f2:81:27:69:dd:68:b0:ed:5a:7c:c7:32: 1c:8a:64:3f:6c:cb:9d:2a:67:e5:10:6d:8c:af:f3:d1:27:54: 37:40:b5:93:12:cc:6d:1f:df:05:b6:55:22:12:e1:8b:ea:62: d2:b1:5b:d5:dd:a7:47:73:23:a9:ee:aa:0f:6d:ec:ec:05:b1: 7c:37:69:fc:3b:17:fa:71:ad:f0:18:54:ad:38:09:21:6e:1a: d4:a6:42:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIzMEMxMTAvBgNVBAUTKEJGMDhFOEUwQjJBNjc2RENBRUM0OUQ1MTlCRkVDNzY1 NDZDMjE2N0UwHhcNMjUwMzIxMDQ0MDI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjZWRiOS0xMzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzxplQ0YtzNoDFwpQgpl6k+qTxV+nl9IcxBBhCLEzrOdB7JWlwZT1qNRlvmz op0q2/VKZERpkKxTsaT/PBX1imeuWjzGWCRawVrntmbX5+7g5SxyHG06YOGXu0JD eqZgMNHLiSyx6MbL0T+VmC/CzZG7+Hmf6bzGM37D74ctacBaugZHpoufP6qVD7ja Rre9wRnU5o0xspQ7RDUZsrLNMa4sZ8EgOS/AwUWmYdKnUi+xZ5m6hWVGXG4g1QVi raFMiFeMOg9FwI3PzID97Fjfr1IfCHAjrVPSYiRWkhqXnoh4qRNAugawMaeX3Kow awUBVuHO0x+H/g0XeqALFIi8qwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLaG8WPr 00v7pdBJQAVrSoZGEURhMB8GA1UdIwQYMBaAFL8I6OCypnbcrsSdUZv+x2VGwhZ+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjMwQy85MTVDQkEyNkIw NUUxMUVFOTdDNzhCNzVDNEY5QUUwMi92d2pvNExLbWR0eXV4SjFSbV83SFpVYkNG bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Z3am80TEttZHR5dXhKMVJtXzdIWlViQ0ZuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIzMEMvOTE1Q0JBMjZCMDVFMTFFRTk3Qzc4Qjc1QzRGOUFFMDIvQzc1QzQ3MUNC MDVGMTFFRUI4MUM2Qzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCqYwDQYJKoZIhvcNAQELBQADggEBAA0+VdFamD9A/pCp vc6L3Cy2i+4XNn+su31fD28EZ7eYbTCA+tboBQaADSHzuT5OQ/uzquSeJtClM3WP vmyz2sSxcO4DXsCAkR+5BlOTU3ucjp52TaSuOohv1C+3OeLSr3Bu88Na+GbxB4gM kLr2f0IbqBk0gOJOG/Hjsu1BpmnVUEcthYFwBxqhd0PKqHp3G5uATBis+B7uFRsy rsJJlGRoMs7AgT7XHPKBJ2ndaLDtWnzHMhyKZD9sy50qZ+UQbYyv89EnVDdAtZMS zG0f3wW2VSIS4YvqYtKxW9Xdp0dzI6nuqg9t7OwFsXw3afw7F/pxrfAYVK04CSFu GtSmQlc= -----END CERTIFICATE-----Generated at Sat Apr 5 11:41:20 2025 by rpki-client