$ rpki-client -vvf rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/A97CBD42A06611EFA888B57DC4F9AE02.roa File: A97CBD42A06611EFA888B57DC4F9AE02.roa (raw, json) Hash identifier: iA4PiBqhCGu6j+QREktQJZZ0YDevgINmDR162rqZIpg= Subject key identifier: 3E:78:4F:CF:A7:CE:DD:92:BB:07:06:F2:15:25:60:8C:4F:22:92:16 Certificate issuer: /CN=A917530D/serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Certificate serial: E0 Authority key identifier: B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/A97CBD42A06611EFA888B57DC4F9AE02.roa Signing time: Mon 03 Feb 2025 04:58:40 +0000 ROA not before: Mon 03 Feb 2025 04:58:40 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152333 IP address blocks: 157.10.226.0/23 maxlen: 23 157.10.226.0/24 maxlen: 24 157.10.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 04:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917530D, serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Validity Not Before: Feb 3 04:58:40 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a04d00-1930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:de:c7:91:ab:69:6b:80:55:d9:0d:88:77:34: d4:80:b8:86:50:de:a4:a8:af:80:e3:fa:b4:ba:3e: 26:e0:2c:6e:9c:07:af:7e:8a:ce:94:bb:a0:77:3a: b6:47:ba:58:2b:dd:f2:6c:5a:f8:c4:30:d6:33:11: 25:0a:e7:fe:c0:a1:af:74:fe:13:3a:e0:b5:08:ce: 6c:95:18:1a:06:aa:de:95:55:5f:e0:a2:43:8b:e1: a3:3f:f9:f6:9b:9f:f8:0f:7c:be:61:75:f3:4f:85: 79:f0:45:dd:bc:c0:68:c3:c0:09:b1:5c:ac:bb:21: 35:bc:04:e0:fc:e3:ed:52:f2:08:78:e4:e4:f0:15: 3f:51:f5:1c:c6:3e:45:a7:e1:b6:cd:74:26:21:79: 9d:b3:b3:65:1a:1f:8e:5f:87:6e:db:a8:fb:43:34: e3:33:05:d5:06:a4:b9:df:50:f8:f6:2f:c2:6d:1e: 1b:c3:29:c2:d7:68:de:76:33:53:42:37:36:ba:08: a4:cd:10:f0:16:4a:26:aa:a9:31:45:3f:f9:c2:d0: 26:1d:fe:30:0f:53:54:d8:53:5f:ba:0e:ee:e5:36: 24:2f:4f:b2:f5:52:d8:d8:55:ad:a6:ea:ff:bc:5e: e5:fd:1d:b8:6b:c4:07:b0:6b:05:d3:10:e1:8d:6f: 37:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:78:4F:CF:A7:CE:DD:92:BB:07:06:F2:15:25:60:8C:4F:22:92:16 X509v3 Authority Key Identifier: keyid:B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/A97CBD42A06611EFA888B57DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.226.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:b2:3f:69:8c:2f:a2:3a:1a:2d:9f:ab:1b:92:b5:df:44:9b: 9b:2d:3e:56:5e:d3:69:a8:59:0b:e2:eb:5d:9c:1e:4a:e1:e0: 2e:fa:92:cd:13:67:6a:c2:70:3a:6f:2f:6b:05:2e:78:51:60: 2e:4e:aa:85:46:23:fd:87:be:f4:45:fe:6f:3a:ba:3b:bc:9c: a5:60:ef:0a:30:5a:5e:84:90:53:11:58:59:13:bc:52:5d:08: 7b:63:e9:71:e5:d0:26:7a:7c:ec:67:ea:ec:d4:7a:73:cf:55: 39:16:eb:a0:3a:13:b4:ab:e6:93:ae:c2:49:9b:19:13:a4:0a: 9e:0a:19:dc:30:be:d3:69:82:69:c9:18:27:77:d7:c8:63:25: 88:5f:be:94:ae:ac:95:93:f9:b1:47:6d:82:03:16:e6:49:c6: 37:47:35:aa:b0:b5:84:78:51:03:8c:6c:30:cc:e3:d9:3a:42: 58:d7:b0:76:71:a1:61:57:4a:a1:06:82:14:3a:b1:e3:6d:34: ca:5f:ca:dc:23:f9:02:7d:98:d1:e6:bf:40:8a:7d:a6:d0:d9: 50:30:8e:35:3e:b6:2e:76:b2:39:8d:90:34:7b:f5:37:39:45: 51:c6:1e:5d:c9:39:f9:cd:0a:c2:b9:76:ef:b0:cf:78:3c:2e: 0a:cd:ec:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUzMEQxMTAvBgNVBAUTKEIzOTkyRjBENDlCQUY2QTM2RkRBNjU4RTVCNDU5NDY5 NTIxRTVCNDQwHhcNMjUwMjAzMDQ1ODQwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EwNGQwMC0xOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA897Hkatpa4BV2Q2IdzTUgLiGUN6kqK+A4/q0uj4m4CxunAevforOlLugdzq2 R7pYK93ybFr4xDDWMxElCuf+wKGvdP4TOuC1CM5slRgaBqrelVVf4KJDi+GjP/n2 m5/4D3y+YXXzT4V58EXdvMBow8AJsVysuyE1vATg/OPtUvIIeOTk8BU/UfUcxj5F p+G2zXQmIXmds7NlGh+OX4du26j7QzTjMwXVBqS531D49i/CbR4bwynC12jedjNT Qjc2ugikzRDwFkomqqkxRT/5wtAmHf4wD1NU2FNfug7u5TYkL0+y9VLY2FWtpur/ vF7l/R24a8QHsGsF0xDhjW83xQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD54T8+n zt2SuwcG8hUlYIxPIpIWMB8GA1UdIwQYMBaAFLOZLw1Juvajb9pljltFlGlSHltE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTMwRC9ERDdFMDkxQ0I2 NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi9zNWt2RFVtNjlxTnYybVdPVzBXVWFWSWVX MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3M1a3ZEVW02OXFOdjJtV09XMFdVYVZJZVcwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUzMEQvREQ3RTA5MUNCNjRCMTFFRTkxNDYzNzYwQzRGOUFFMDIvQTk3Q0JENDJB MDY2MTFFRkE4ODhCNTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCuIwDQYJKoZIhvcNAQELBQADggEBAByyP2mML6I6Gi2f qxuStd9Em5stPlZe02moWQvi612cHkrh4C76ks0TZ2rCcDpvL2sFLnhRYC5OqoVG I/2HvvRF/m86uju8nKVg7wowWl6EkFMRWFkTvFJdCHtj6XHl0CZ6fOxn6uzUenPP VTkW66A6E7Sr5pOuwkmbGROkCp4KGdwwvtNpgmnJGCd318hjJYhfvpSurJWT+bFH bYIDFuZJxjdHNaqwtYR4UQOMbDDM49k6QljXsHZxoWFXSqEGghQ6seNtNMpfytwj +QJ9mNHmv0CKfabQ2VAwjjU+ti52sjmNkDR79Tc5RVHGHl3JOfnNCsK5du+wz3g8 LgrN7EA= -----END CERTIFICATE-----Generated at Tue Apr 15 05:22:39 2025 by rpki-client